|
Informations |
Messages |
|
zarzar
9 messages
Neurone isolé
|
 Le 29 Mars 2011 à 22h29
Bonjour,
Je rencontre de sérieux problemes avec mon PC:
Je suis sous vista.
Depuis peu j'ai été infecté par doctor antimalware et je m'en suis débarrassé.
J'ai donc fait un scan avec eset : rien
scan avec spybot: plusieurs spywares nettoyés seul click.giftload reste tenace et ne veut pas faire ses bagages.
scan avec malwarebytes: rien mais aujourd'hui 7 !!!
Autres problèmes rencontrés : bugs répétitifs d'IE8, surtout quand j'ouvre dans un nouvel onglet, impossible d'installer IE9 (y a t il un rapport?)
Plantage diverses du pc (un coup plus rien ne réponds un coup "écran bleu")
Eset nod 32 m'indique plusieurs fois par jour qu'il a bloqué une URL (avec un nom composé d'une suite de lettres impossible à retenir genre : http://lllruugekjkskjhgzhldnzkldfznf)
Je poste un rapport hijackthis et dessous celui de MB:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:09:31, on 29/03/2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.19019)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\RtHDVCpl.exe
C:\Windows\PixArt\Pac207\Monitor.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Athan\Athan.exe
C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Program Files\Microsoft Visual Studio 10.0\Common7\IDE\VCSExpress.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://format.packardbell.com/cgi-bin/redirect/?country=FR&range=AD&phase=8&key=IESTART
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://downloads.phpnuke.org/fr/index.php?rvs=google
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://downloads.phpnuke.org/fr/index.php?rvs=google
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://downloads.phpnuke.org/fr/index.php?rvs=google
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {0FFF1C54-B79A-BA55-29E8-C59F2B0B8B2A} - c:\windows\system32\cbfsiomy.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - (no file)
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Monitor] C:\Windows\PixArt\PAC207\Monitor.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [Athan] C:\Program Files\Athan\Athan.exe
O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Program Files\Google\Gmail Notifier\gnotify.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: &Envoyer à OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Ajouter la cible du lien à un fichier PDF existant - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Ajouter à un fichier PDF existant - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir au format Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien au format Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O15 - Trusted Zone: *.canalplay.com (HKLM)
O15 - Trusted Zone: *.canalplusactive.com (HKLM)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{AFD489B6-BF64-40F7-B708-BDC67E217295}: NameServer = 89.2.0.1,89.2.0.2
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: EBP Pervasive.SQL - Unknown owner - C:\PVSW\Bin\WGE_SRV.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Service Google Update (gupdate1c9f386defa27b8) (gupdate1c9f386defa27b8) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
--
End of file - 8105 bytes
Celui de Malwarebytes:
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Version de la base de données: 6206
Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.19019
29/03/2011 22:08:33
mbam-log-2011-03-29 (22-08-20).txt
Type d'examen: Examen rapide
Elément(s) analysé(s): 169514
Temps écoulé: 5 minute(s), 22 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 1
Clé(s) du Registre infectée(s): 5
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 1
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
c:\Windows\System32\cbfsiomy.dll (Trojan.Boaxxe) -> No action taken.
Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\CLSID\{0FFF1C54-B79A-BA55-29E8-C59F2B0B8B2A} (Trojan.Boaxxe) -> No action taken.
HKEY_CLASSES_ROOT\Sovsewwa (Trojan.Boaxxe) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FFF1C54-B79A-BA55-29E8-C59F2B0B8B2A} (Trojan.Boaxxe) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FFF1C54-B79A-BA55-29E8-C59F2B0B8B2A} (Trojan.Boaxxe) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FFF1C54-B79A-BA55-29E8-C59F2B0B8B2A} (Trojan.Boaxxe) -> No action taken.
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
c:\Windows\System32\cbfsiomy.dll (Trojan.Boaxxe) -> No action taken.
avez vous besoin d'autre renseignements?
Merci d'avance pour votre aide !!!! |
| |
|
|
|
|
Winx
19826 messages
No-Life
AidoHardware
AidoAntivirus
AidoWindows
|
Le 30 Mars 2011 à 09h18
Salut à toi et bienvenue, 
Afin de nous éclairer sur la nature précise de tes soucis "infectieux", ( ou pas ? )
dans un premier temps fais cette procédure et poste le rapport généré par Random's system information tool (RSIT) par
random/random
Télécharge random's system information tool (RSIT) par random/random et sauvegarde-le sur le Bureau.
- Double-clique sur RSIT.exe afin de lancer RSIT.
- Clique Continue à l'écran Disclaimer.
- Si l'outil HIjackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera et tu devras accepter la licence.
- Poste le contenu de log.txt (<<qui sera affiché)
ainsi que info.txt (<<qui sera réduit dans la Barre des Tâches).
// ! Important !
=======================
Citation Durant la phase de désinfection, il est absolument indispensable et primordial de ne pas rajouter de programmes à votre PC, afin de ne pas perturber la décontamination de votre machine. Faites-en un usage minimum durant cette phase.
D'autre part, ne pas utiliser d'outil(s) de décontamination de sa propre initiative, cela peut définitivement nuire à notre travail et au bon rétablissement de la machine.
C'est à la mode en ce moment, d'utiliser des outils comme Combofix sans autorisation !
C'est ABSOLUMENT proscrit ici sur ce Forum.
Il est évident qu'un PC infecté peut tout à fait devenir inutilisable malgré la tentative de désinfection, et de ce fait prendre la précaution de sauvegarder tous ses documents personnels, c'est une très bonne idée en soi....merci de prendre ça en considération 
Il est évident que je considère que l'option formatage et/ou une restauration du Système ne fait pas actuellement partie de ton intention, ce qui m'évite de perdre du temps.... merci d'avance
Ps:
======
Conseil d'ordre général
---->> Aller sur le Net avec Windows Internet Explorer, n'est pas souhaitable.
Pour vous en convaincre, un petit test de votre navigateur 
Comparez-donc Windows Internet Explorer avec Mozilla-Firefox (ce dernier devrait atteindre les 92 )
Quand à Windows Internet Explorer, j'en laisse la surprise...
Toutefois, ce qui ne veut pas dire que Windows Internet Explorer, ne doit pas être à jour ! (vérifier que vous avez la dernière version ! )
Télécharger Mozilla-Firefox 3.0. X. (le X représente évidemment la dernière version ) et le mettre à l'install comme Navigateur par défaut.
lien ici
-->source ici de conseils
Eviter à tous prix de poster dans plusieurs Forum à la fois...pas de multi-postage donc !
Poster les 2 rapports demandés (log.txt et info.txt)
En cas de fichier trop gros, suffit de le diviser sur deux réponses, ou plus.....
PS:
si tu ne peux pas télécharger en direct avec la machine infectée, il est évident qu'il faut faire usage, d'une carte SD ou clé usb via un autre PC. |
| |
Je n'ai pas la prétention de résoudre les problèmes, mais celle de vous aider à les résoudre ;-)
|
|
|
|
zarzar
9 messages
Neurone isolé
|
Le 30 Mars 2011 à 18h32
Bonjour et merci de vous occuper de mon cas !!
voici le log.txt:
Logfile of random's system information tool 1.08 (written by random/random)
Run by Ilyès at 2011-03-30 18:24:28
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2
System drive C: has 338 GB (72%) free of 469 GB
Total RAM: 3582 MB (59% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:24:36, on 30/03/2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.19019)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\RtHDVCpl.exe
C:\Windows\PixArt\Pac207\Monitor.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Athan\Athan.exe
C:\Program Files\Google\Gmail Notifier\gnotify.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Microsoft Visual Studio 10.0\Common7\IDE\VCSExpress.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Ilyès\Desktop\RSIT.exe
C:\Program Files\trend micro\Ilyès.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://format.packardbell.com/cgi-bin/redirect/?country=FR&range=AD&phase=8&key=IESTART
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://downloads.phpnuke.org/fr/index.php?rvs=google
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://downloads.phpnuke.org/fr/index.php?rvs=google
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://downloads.phpnuke.org/fr/index.php?rvs=google
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - (no file)
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Monitor] C:\Windows\PixArt\PAC207\Monitor.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [Athan] C:\Program Files\Athan\Athan.exe
O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Program Files\Google\Gmail Notifier\gnotify.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: &Envoyer à OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Ajouter la cible du lien à un fichier PDF existant - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Ajouter à un fichier PDF existant - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir au format Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien au format Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O15 - Trusted Zone: *.canalplay.com (HKLM)
O15 - Trusted Zone: *.canalplusactive.com (HKLM)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{AFD489B6-BF64-40F7-B708-BDC67E217295}: NameServer = 89.2.0.1,89.2.0.2
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe
O23 - Service: @%SystemRoot%\system32\dhcpcsvc.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: EBP Pervasive.SQL - Unknown owner - C:\PVSW\Bin\WGE_SRV.exe
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\ehome\ehstart.dll,-101 (ehstart) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: @%SystemRoot%\system32\emdmgmt.dll,-1000 (EMDMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (Eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Service Google Update (gupdate1c9f386defa27b8) (gupdate1c9f386defa27b8) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: hpqcxs08 - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Service HP CUE DeviceDiscovery (hpqddsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: HP Network Devices Support (HPSLPSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-200 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe
O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: Net Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprof.dll,-246 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Pml Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe
O23 - Service: Microsoft Infrared HID Controller (qlhzpemb) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe
O23 - Service: @%SystemRoot%\system32\SLUINotify.dll,-103 (SLUINotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100 (WPFFontCache_v0400) - Unknown owner - C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
--
End of file - 22112 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Extension de garantie.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2158493240-3770032250-1768986334-1002Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2158493240-3770032250-1768986334-1002UA.job
C:\Windows\tasks\Norton Internet Security - Analyse système complète - Ilyès.job
C:\Windows\tasks\Recovery DVD Creator.job
C:\Windows\tasks\User_Feed_Synchronization-{F7D6EFE9-DDE1-402A-9EE6-DDED2159A235}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2010-09-22 61888]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-03-01 4390912]
"Monitor"=C:\Windows\PixArt\PAC207\Monitor.exe [2006-11-03 319488]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-05-14 2029640]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"Athan"=C:\Program Files\Athan\Athan.exe [2005-09-12 937984]
"{0228e555-4f9c-4e35-a3ec-b109a192b4c2}"=C:\Program Files\Google\Gmail Notifier\gnotify.exe [2005-07-15 479232]
"Malwarebytes' Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2010-12-20 963976]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM"=C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [2007-08-30 205480]
"AdobeBridge"= []
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-21 932288]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-01-31 35760]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccleaner]
C:\Program Files\CCleaner\CCleaner.exe [2011-02-23 2251064]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2010-09-01 1164584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray.exe]
C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Ilyès\AppData\Local\Google\Update\GoogleUpdate.exe /c []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2010-06-09 49208]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SEO Soft]
C:\Users\Ilyès\Desktop\Deco dailleurs.com\stats\stat.exe [2010-08-18 1098240]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe]
C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-19 202240]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2009-05-21 275768]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Ilyès^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2010 - Capture d’écran et lancement.lnk]
C:\PROGRA~1\MICROS~2\Office14\ONENOTEM.EXE [2010-03-29 227712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHoo ks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 4222864]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDrive r]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoSetActiveDesktop"=0
"NoActiveDesktopChanges"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewall policy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewall policy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit -
.js - open -
.txt - open -
======List of files/folders created in the last 1 months======
2011-03-29 22:56:52 ----D---- C:\Program Files\Common Files\Steam
2011-03-29 21:16:00 ----D---- C:\Program Files\THQ
2011-03-29 20:57:12 ----A---- C:\Windows\system32\regsvr32.exe.log
2011-03-26 20:11:17 ----A---- C:\Windows\system32\0FFF1C54-B79A-BA55-29E8-C59F2B0B8B2A.txt
2011-03-17 09:51:37 ----A---- C:\Windows\system32\cohelper.dll
2011-03-09 16:51:46 ----A---- C:\Windows\system32\EncDec.dll
2011-03-09 16:51:45 ----A---- C:\Windows\system32\sbeio.dll
2011-03-09 16:51:45 ----A---- C:\Windows\system32\sbe.dll
2011-03-09 16:51:44 ----A---- C:\Windows\system32\mstscax.dll
2011-03-09 16:51:43 ----A---- C:\Windows\system32\mstsc.exe
2011-03-03 20:44:41 ----A---- C:\Windows\system32\shsvcs.dll
2011-03-02 10:59:27 ----D---- C:\Program Files\CCleaner
2011-03-01 22:52:16 ----D---- C:\rsit
2011-03-01 22:47:07 ----A---- C:\Windows\is-U0DT1.exe
2011-03-01 22:22:23 ----D---- C:\Users\Ilyès\AppData\Roaming\OfferBox
======List of files/folders modified in the last 1 months======
2011-03-30 18:24:31 ----D---- C:\Windows\Temp
2011-03-30 18:24:29 ----AD---- C:\Program Files\Trend Micro
2011-03-30 18:18:42 ----D---- C:\Windows\inf
2011-03-30 18:18:42 ----AD---- C:\Windows\System32
2011-03-30 18:18:42 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-03-30 10:53:41 ----SHD---- C:\Windows\Installer
2011-03-30 10:53:41 ----D---- C:\Windows
2011-03-30 10:53:41 ----D---- C:\Program Files\Common Files
2011-03-30 10:53:40 ----D---- C:\Program Files\NVIDIA Corporation
2011-03-30 10:45:17 ----D---- C:\Program Files
2011-03-29 22:43:07 ----D---- C:\Windows\winsxs
2011-03-29 22:13:27 ----D---- C:\Windows\system32\drivers
2011-03-29 22:12:29 ----D---- C:\Windows\Branding
2011-03-29 21:24:36 ----D---- C:\ProgramData\Spybot - Search & Destroy
2011-03-29 21:21:23 ----RSD---- C:\Windows\assembly
2011-03-29 21:16:03 ----D---- C:\Windows\Prefetch
2011-03-29 21:15:43 ----D---- C:\Program Files\Common Files\Research In Motion
2011-03-29 21:15:28 ----HD---- C:\ProgramData
2011-03-29 20:57:43 ----D---- C:\Users\Ilyès\AppData\Roaming\Notepad++
2011-03-29 20:55:48 ----HD---- C:\Program Files\InstallShield Installation Information
2011-03-29 20:49:15 ----D---- C:\Windows\system32\Tasks
2011-03-29 20:48:54 ----D---- C:\Program Files\Adobe
2011-03-29 20:42:10 ----D---- C:\Windows\system32\catroot
2011-03-29 20:36:04 ----D---- C:\Program Files\Google
2011-03-29 20:34:08 ----D---- C:\Users\Ilyès\AppData\Roaming\Mozilla
2011-03-29 09:16:52 ----A---- C:\Windows\1way.ini
2011-03-28 23:56:36 ----D---- C:\Users\Ilyès\AppData\Roaming\uTorrent
2011-03-28 22:21:45 ----D---- C:\Windows\Minidump
2011-03-26 00:31:34 ----D---- C:\Windows\pss
2011-03-22 10:47:04 ----D---- C:\Windows\system32\catroot2
2011-03-19 18:06:25 ----SHD---- C:\System Volume Information
2011-03-19 17:35:16 ----D---- C:\ProgramData\NVIDIA
2011-03-17 10:06:59 ----D---- C:\Windows\Debug
2011-03-09 20:01:30 ----D---- C:\ProgramData\Microsoft Help
2011-03-09 20:00:13 ----A---- C:\Windows\system32\mrt.exe
2011-03-09 11:46:47 ----SD---- C:\Windows\Downloaded Program Files
2011-03-05 16:51:22 ----D---- C:\Program Files\Mozilla Firefox
2011-03-04 03:16:10 ----D---- C:\Program Files\Windows Live
2011-03-04 02:53:22 ----D---- C:\Program Files\Common Files\Adobe
2011-03-04 02:35:48 ----D---- C:\ProgramData\Adobe
2011-03-04 02:32:27 ----D---- C:\Program Files\Microsoft Silverlight
2011-03-03 21:05:58 ----D---- C:\Windows\Resources
2011-03-03 10:31:47 ----D---- C:\Windows\Microsoft.NET
2011-03-02 22:31:49 ----A---- C:\Windows\NeroDigital.ini
2011-03-02 22:31:20 ----D---- C:\Program Files\Microsoft Visual Studio 10.0
2011-03-02 22:30:18 ----D---- C:\Program Files\HP
2011-03-02 22:30:07 ----D---- C:\Program Files\SHOUTcast
2011-03-02 12:14:46 ----D---- C:\Users\Ilyès\AppData\Roaming\Adobe
2011-03-02 11:56:35 ----RSD---- C:\Windows\Fonts
2011-03-02 11:32:50 ----D---- C:\Program Files\Microsoft Games
2011-03-02 11:32:50 ----AD---- C:\Users\Ilyès\AppData\Roaming\Microsoft Game Studios
2011-03-02 11:32:50 ----AD---- C:\ProgramData\Microsoft Games
2011-03-02 11:22:53 ----D---- C:\Program Files\Common Files\PX Storage Engine
2011-03-02 11:02:16 ----D---- C:\Windows\Tasks
2011-03-01 23:14:04 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-03-01 23:13:57 ----D---- C:\Windows\registration
2011-03-01 22:27:12 ----D---- C:\Windows\system32\spool
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 nvstor32;nvstor32; C:\Windows\system32\drivers\nvstor32.sys [2007-08-09 110624]
R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2010-04-27 45648]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2008-09-14 717296]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2009-05-14 107256]
R2 eamon;eamon; C:\Windows\system32\DRIVERS\eamon.sys [2009-05-14 114472]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2009-05-14 93312]
R3 Dot4;Pilote MS IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-19 131584]
R3 Dot4Print;Pilote de classe Imprimante pour IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-19 16384]
R3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-19 36864]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-03-01 1744928]
R3 KMWDFILTER;HIDUASDesc; C:\Windows\system32\DRIVERS\KMWDFILTER.sys [2008-10-09 17408]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2010-07-10 11008040]
R3 NVNET;NVIDIA nForce 10/100 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2010-08-12 292712]
R3 StillCam;Pilote d'appareil photo numérique série; C:\Windows\system32\DRIVERS\serscan.sys [2008-01-19 9216]
R3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-19 35328]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S1 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys []
S2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys []
S3 61883;Pilote d'unité 61883; C:\Windows\system32\DRIVERS\61883.sys [2008-01-19 45696]
S3 adm7zolj;adm7zolj; C:\Windows\system32\drivers\adm7zolj.sys []
S3 Avc;Périphérique AVC; C:\Windows\system32\DRIVERS\avc.sys [2008-01-19 40448]
S3 catchme;catchme; \??\C:\Users\ILYS~1\AppData\Local\Temp\catchme.sys []
S3 cpuz132;cpuz132; \??\C:\Users\ILYS~1\AppData\Local\Temp\cpuz132\cpuz132_x32.sys []
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\System32\Drivers\GEARAspiWDM.sys []
S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys [2008-01-19 52608]
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2010-08-12 292712]
S3 PAC207;SoC PC-Camera; C:\Windows\system32\DRIVERS\PFC027.SYS [2006-12-05 507136]
S3 RimUsb;Téléphone intelligent BlackBerry ; C:\Windows\System32\Drivers\RimUsb.sys []
S3 RimVSerPort;RIM Virtual Serial Port v2; C:\Windows\system32\DRIVERS\RimSerial.sys [2009-01-09 27136]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2008-01-19 8192]
S3 s616bus;Sony Ericsson Device 616 driver (WDM); C:\Windows\system32\DRIVERS\s616bus.sys [2007-04-03 83208]
S3 s616mdfl;Sony Ericsson Device 616 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s616mdfl.sys [2007-04-03 15112]
S3 s616mdm;Sony Ericsson Device 616 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s616mdm.sys [2007-04-03 108680]
S3 s616mgmt;Sony Ericsson Device 616 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s616mgmt.sys [2007-04-03 100360]
S3 s616nd5;Sony Ericsson Device 616 USB Ethernet Emulation SEMC616 (NDIS); C:\Windows\system32\DRIVERS\s616nd5.sys [2007-04-03 23176]
S3 s616obex;Sony Ericsson Device 616 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s616obex.sys [2007-04-03 98568]
S3 s616unic;Sony Ericsson Device 616 USB Ethernet Emulation SEMC616 (WDM); C:\Windows\system32\DRIVERS\s616unic.sys [2007-04-03 99080]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys []
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 EBP Pervasive.SQL;EBP Pervasive.SQL; C:\PVSW\Bin\WGE_SRV.exe [2006-12-07 32768]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-05-14 731840]
R2 hpqddsvc;Service HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2007-08-08 836904]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-07-09 129640]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 SBSDWSCService;SBSD Security Center Service; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate1c9f386defa27b8;Service Google Update (gupdate1c9f386defa27b8); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-02-15 136176]
S2 KMService;KMService; C:\Windows\system32\srvany.exe [2003-04-18 8192]
S2 qlhzpemb;Microsoft Infrared HID Controller; C:\Windows\System32\svchost.exe [2008-01-19 21504]
S3 aspnet_state;Service d'état ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-05-14 20680]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2007-08-03 382248]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2006-09-14 73728]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Par contre je n'ai pas de info.txt ???
De plus tous mes fichiers txt ne s'ouvre plus avec le bloc note m:ais avec microsoft visual C#2010 Express, comment faire pour revenir à la normale ? |
| |
|
|
|
|
Winx
19826 messages
No-Life
AidoHardware
AidoAntivirus
AidoWindows
|
Le 30 Mars 2011 à 18h56
re,
Fais ceci,
* Désactive ton Antivirus pour le moment.
* Télécharge Ad-Remover (de C_XX) sur le bureau.
* /!\ Déconnecte-toi et ferme toutes les applications en cours /!\
* Double clic sur le programme pour le lancer...
* Pour Vista et Seven toujours faire un clic droit, et choisir lancer comme administrateur
* Au menu principal choisis l'option "Scanner"
* /!\ Laisse travailler l'outil /!\
* Patiente jusqu'à la fin du scan sans rien faire d'autre sur ton PC.
* Un rapport apparaitra à la fin, poste le sur le forum dans ta réponse.
Si tu ne trouve pas !
(Le rapport est aussi sauvegardé sous C:\Ad-Report-SCAN.log)
|
| |
Je n'ai pas la prétention de résoudre les problèmes, mais celle de vous aider à les résoudre ;-)
|
|
|
|
zarzar
9 messages
Neurone isolé
|
Le 30 Mars 2011 à 21h51
ok, voici le rapport demandé:
======= RAPPORT D'AD-REMOVER 2.0.0.2,F | UNIQUEMENT XP/VISTA/7 =======
Mis à jour par TeamXscript le 01/03/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org
C:\Program Files\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 21:48:20 le 30/03/2011, Mode normal
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2 (X86)
Ilyès@PCILYES (HP-Pavilion WK685AA-ABF p6353fr)
============== RECHERCHE ==============
Dossier trouvé: C:\Windows\Eurobarre
Dossier trouvé: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eurobarre
Dossier trouvé: C:\Users\Ilyès\AppData\Roaming\OfferBox
-- Fichier ouvert: C:\Users\Ilyès\AppData\Roaming\Mozilla\FireFox\Profiles\yz29ioc3.default\Prefs.js --
Ligne trouvée: user_pref("extensions.snipit.askTbInstalled", true);
-- Fichier Fermé --
Clé trouvée: HKLM\Software\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Clé trouvée: HKLM\Software\Conduit
Clé trouvée: HKLM\Software\AppDataLow\Software\Conduit
Clé trouvée: HKCU\Software\OfferBox
Clé trouvée: HKCU\Software\VB and VBA Program Settings\eurobarre
Clé trouvée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{043C5167-00BB-4324-AF7E-62013FAEDACF}
Clé trouvée: HKLM\Software\Google\Chrome\Extensions\bjeikeheijdjdfjbmknpefojickbkmom
Valeur trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing\Trust Database\0|goicfboogidikkejccmclpieicihhlpo jimddp
Valeur trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing\Trust Database\0|goicfboogidikkejccmclpieicihhlpo hpfanicgkffmccehnpkikogcffaepkfp
Valeur trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing\Trust Database\0|goicfboogidikkejccmclpieicihhlpo dgnckdmmolaijpbbakmplfhlfpdhglgc
Valeur trouvée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F}
Valeur trouvée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{043C5167-00BB-4324-AF7E-62013FAEDACF}
============== SCAN ADDITIONNEL ==============
**** Mozilla Firefox Version [3.6.14 (fr)] ****
-- C:\Users\Ilyès\AppData\Roaming\Mozilla\FireFox\Profiles\yz29ioc3.default --
Extensions\firebug@software.joehewitt.com (Firebug)
Extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f} (Winamp Toolbar)
Extensions\{12e4c684-c03e-4e4d-85bc-0c065e7a9489} (SHOUTcast Radio Toolbar)
Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34} (FlashGot)
Extensions\{3112ca9c-de6d-4884-a869-9855de68056c} (Google Toolbar for Firefox)
Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326} (ColorZilla)
Extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7} (Adobe DLM (powered by getPlus(R)))
Extensions\{e3f6c2cc-d8db-498c-af6c-499fb211db97} (Page Speed)
Extensions\{e3f6c2cc-d8db-498c-af6c-499fb211db97}-trash (?)
Searchplugins\ustart.xml (?)
Searchplugins\winamp-search.xml (?)
Prefs.js - browser.download.dir, C:\\Users\\Ilyès\\Desktop
Prefs.js - browser.search.defaultenginename, Google
Prefs.js - browser.search.defaulturl, hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
Prefs.js - browser.search.selectedEngine, hxxp://downloads.phpnuke.org/fr/index.php?rvs=google
Prefs.js - browser.startup.homepage, hxxp://google.fr
Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.14
========================================
**** Internet Explorer Version [8.0.6001.19019] ****
HKCU_Main|Default_Page_URL - hxxp://format.packardbell.com/cgi-bin/redirect/?country=FR&range=AD&phase=8&key=IESTART
HKCU_Main|Search Page - hxxp://downloads.phpnuke.org/fr/index.php?rvs=google
HKCU_Main|Start Page - hxxp://google.fr/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=69157
HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Search Page - hxxp://downloads.phpnuke.org/fr/index.php?rvs=google
HKLM_Main|Start Page - hxxp://downloads.phpnuke.org/fr/index.php?rvs=google
HKCU_SearchScopes\{043C5167-00BB-4324-AF7E-62013FAEDACF} - "Web Search..." (hxxp://vshare.toolbarhome.com/search.aspx?q={searchTerms}&srch=dsp)
HKCU_SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - "Babylon Search" (hxxp://search.babylon.com/web/{searchTerms}?babsrc=browsersearch)
HKCU_SearchScopes\{739A1936-BE2C-4F07-AF8A-F2F487039CE0} - "http://downloads.phpnuke.org/fr/index.php?rvs=google" (hxxp://downloads.phpnuke.org/fr/index.php?rvs=google)
HKLM_SearchScopes\{739A1936-BE2C-4F07-AF8A-F2F487039CE0} - "http://downloads.phpnuke.org/fr/index.php?rvs=google" (hxxp://downloads.phpnuke.org/fr/index.php?rvs=google)
HKCU_Toolbar\WebBrowser|{E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} (x)
HKCU_Toolbar\WebBrowser|{A057A204-BACC-4D26-8287-79A187E26987} (x)
HKCU_Toolbar\WebBrowser|{32099AAC-C132-4136-9E9A-4E364A424E17} (x)
HKCU_Toolbar\WebBrowser|{47833539-D0C5-4125-9FA8-0819E2EAAC93} (x)
HKCU_Toolbar\WebBrowser|{043C5167-00BB-4324-AF7E-62013FAEDACF} (x)
HKCU_Toolbar\WebBrowser|{71576546-354D-41C9-AAE8-31F2EC22BF0D} (x)
HKCU_ElevationPolicy\{4536918A-95A8-498F-B542-CB906C561A43} - C:\Users\Ilyès\AppData\Local\Google\Update\GoogleUpdate.exe (x)
HKLM_ElevationPolicy\{09B74B5E-2912-48de-9167-D80158E2A379} - C:\Program Files\CA VMN Anti-Spyware\CA_VMN_antispyware.exe (x)
HKLM_ElevationPolicy\{0C5365B7-358F-402d-A440-F1270AEF1175} - C:\ProgramData\EmailNotifier\EmailNotifier.exe (?)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x)
HKLM_Extensions\{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - "?" (?)
BHO\{DBC80044-A445-435b-BC74-9C25C1C588A9} (?)
========================================
C:\Program Files\Ad-Remover\Quarantine: 0 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 1 Fichier(s)
C:\Ad-Report-SCAN[1].txt - 30/03/2011 21:48:27 (5835 Octet(s))
Fin à: 21:49:17, 30/03/2011
============== E.O.F ==============
|
| |
|
|
|
|
Winx
19826 messages
No-Life
AidoHardware
AidoAntivirus
AidoWindows
|
Le 31 Mars 2011 à 19h01
Passons à la suppression:
-----------------------------------------------------------
* Double clic sur le programme Ad-Remover pour le lancer...
* Pour Vista et Seven toujours faire un clic droit, et choisir lancer comme administrateur
* Au menu principal choisis l'option "Nettoyer"
* /!\ Laisse travailler l'outil /!\
* Patiente jusqu'à la fin du scan sans rien faire d'autre sur ton PC.
* Un rapport apparaitra à la fin, poste le sur le forum dans ta réponse.
Si tu ne trouve pas !
(Le rapport est aussi sauvegardé sous C:\Ad-Report-SCAN.log)
|
| |
Je n'ai pas la prétention de résoudre les problèmes, mais celle de vous aider à les résoudre ;-)
|
|
|
|
zarzar
9 messages
Neurone isolé
|
Le 31 Mars 2011 à 22h34
ok voici le rapport et encore merci !!
======= RAPPORT D'AD-REMOVER 2.0.0.2,F | UNIQUEMENT XP/VISTA/7 =======
Mis à jour par TeamXscript le 01/03/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org
C:\Program Files\Ad-Remover\main.exe (CLEAN [2]) -> Lancé à 22:09:25 le 31/03/2011, Mode normal
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2 (X86)
Ilyès@PCILYES (HP-Pavilion WK685AA-ABF p6353fr)
============== ACTION(S) ==============
(!) -- Fichiers temporaires supprimés.
============== SCAN ADDITIONNEL ==============
**** Mozilla Firefox Version [3.6.14 (fr)] ****
-- C:\Users\Ilyès\AppData\Roaming\Mozilla\FireFox\Profiles\yz29ioc3.default --
Extensions\firebug@software.joehewitt.com (Firebug)
Extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f} (Winamp Toolbar)
Extensions\{12e4c684-c03e-4e4d-85bc-0c065e7a9489} (SHOUTcast Radio Toolbar)
Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34} (FlashGot)
Extensions\{3112ca9c-de6d-4884-a869-9855de68056c} (Google Toolbar for Firefox)
Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326} (ColorZilla)
Extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7} (Adobe DLM (powered by getPlus(R)))
Extensions\{e3f6c2cc-d8db-498c-af6c-499fb211db97} (Page Speed)
Extensions\{e3f6c2cc-d8db-498c-af6c-499fb211db97}-trash (?)
Searchplugins\ustart.xml (?)
Searchplugins\winamp-search.xml (?)
Prefs.js - browser.download.dir, C:\\Users\\Ilyès\\Desktop
Prefs.js - browser.search.defaultenginename, Google
Prefs.js - browser.search.defaulturl, hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
Prefs.js - browser.search.selectedEngine, hxxp://downloads.phpnuke.org/fr/index.php?rvs=google
Prefs.js - browser.startup.homepage, hxxp://google.fr
Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.14
========================================
**** Internet Explorer Version [8.0.6001.19019] ****
HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKCU_SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - "Babylon Search" (hxxp://search.babylon.com/web/{searchTerms}?babsrc=browsersearch)
HKCU_SearchScopes\{739A1936-BE2C-4F07-AF8A-F2F487039CE0} - "http://downloads.phpnuke.org/fr/index.php?rvs=google" (hxxp://downloads.phpnuke.org/fr/index.php?rvs=google)
HKLM_SearchScopes\{739A1936-BE2C-4F07-AF8A-F2F487039CE0} - "http://downloads.phpnuke.org/fr/index.php?rvs=google" (hxxp://downloads.phpnuke.org/fr/index.php?rvs=google)
HKCU_Toolbar\WebBrowser|{A057A204-BACC-4D26-8287-79A187E26987} (x)
HKCU_Toolbar\WebBrowser|{32099AAC-C132-4136-9E9A-4E364A424E17} (x)
HKCU_Toolbar\WebBrowser|{47833539-D0C5-4125-9FA8-0819E2EAAC93} (x)
HKCU_Toolbar\WebBrowser|{71576546-354D-41C9-AAE8-31F2EC22BF0D} (x)
HKCU_ElevationPolicy\{4536918A-95A8-498F-B542-CB906C561A43} - C:\Users\Ilyès\AppData\Local\Google\Update\GoogleUpdate.exe (x)
HKLM_ElevationPolicy\{09B74B5E-2912-48de-9167-D80158E2A379} - C:\Program Files\CA VMN Anti-Spyware\CA_VMN_antispyware.exe (x)
HKLM_ElevationPolicy\{0C5365B7-358F-402d-A440-F1270AEF1175} - C:\ProgramData\EmailNotifier\EmailNotifier.exe (?)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x)
HKLM_Extensions\{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - "?" (?)
BHO\{DBC80044-A445-435b-BC74-9C25C1C588A9} (?)
========================================
C:\Program Files\Ad-Remover\Quarantine: 3 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 18 Fichier(s)
C:\Ad-Report-CLEAN[1].txt - 31/03/2011 19:39:28 (5944 Octet(s))
C:\Ad-Report-SCAN[1].txt - 30/03/2011 21:48:27 (5973 Octet(s))
Fin à: 22:10:12, 31/03/2011
============== E.O.F ==============
Merci !!!
|
| |
|
|
|
|
Winx
19826 messages
No-Life
AidoHardware
AidoAntivirus
AidoWindows
|
Le 01 Avril 2011 à 12h13
re,
apparemment tu avais déjà effectué la suppression....
Ensuite fais ceci:
Télécharge Malwarebytes' Anti-Malware (MBAM)
[*] Double clique sur le fichier téléchargé pour lancer le processus d'installation.
[*] Dans l'onglet "Mise à jour", clique sur le bouton "Recherche de mise à jour": si le pare-feu demande l'autorisation à MBAM de se connecter, accepte.
[*] Une fois la mise à jour terminée, rends-toi dans l'onglet "Recherche".
[*] Sélectionne "Exécuter un examen rapide"
[*] Clique sur "Rechercher"
[*] L'analyse démarre, le scan est relativement long, c'est normal.
[*] A la fin de l'analyse, un message s'affiche :
Citation L'examen s'est terminé normalement. Clique sur 'Afficher les résultats' pour afficher tous les objets trouvés.
Clique sur "Ok" pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
[*] Ferme tes navigateurs.
[*] Si des malwares ont été détectés, clique sur Afficher les résultats.
Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.
[*] MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport et poste-le dans ta prochaine réponse.
ps:
--->aide visuelle sur Mbam ici
Etiré
|
| |
Je n'ai pas la prétention de résoudre les problèmes, mais celle de vous aider à les résoudre ;-)
|
|
|
|
zarzar
9 messages
Neurone isolé
|
Le 03 Avril 2011 à 00h24
Bonsoir,
Voici le rapport de MBAM qui n'a rien trouvé (serait ce la fin de mes soucis???)
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Version de la base de données: 6249
Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.19019
03/04/2011 00:21:24
mbam-log-2011-04-03 (00-21-24).txt
Type d'examen: Examen rapide
Elément(s) analysé(s): 166046
Temps écoulé: 12 minute(s), 46 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
|
| |
|
|
|
|
VIRUS/C/C
345 messages
Processeur
|
Le 03 Avril 2011 à 07h55
Salut
* On va vérifier !!
• Télécharge ZHPDiag (de Nicolas coolman)
>> ZHPDiag (de Nicolas coolman)
• Une fois le téléchargement achevé,
• double clique sur ZHPDiag.exe et suis les instructions.
• /!\Utilisateurs de Windows Vista et Windows 7
>> Clique droit sur le logo de ZHPDiag.exe, « exécuter en tant qu'Administrateur »
• • L'outil va créer 3 icônes ZHPDiag > 
• >> ZHPFix > sur ton Bureau
• et >> MBRcheck
• Laisse toi guider lors de l'installation,
• N'oublie pas de cocher la case qui permet de mettre un raccourci sur le Bureau.
• Il se lancera automatiquement à la fin.
• Clique sur l'icône représentant une loupe  (« Lancer le diagnostic »)
• Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
• Héberge le rapport ZHPDiag.txt sur ce site,
>> cijoint.fr
• puis copie/colle le lien fourni
Pour le rapport
• Rends toi sur >> cijoint.fr
• clic sur Parcourir
• trouve >> le rapport que tu viens d'enregistrer qui doit par exemple être sur ton bureau
• et valide en cliquant sur >> Cliquez ici pour déposer le Fichier
• Un lien de ce genre [http://www.cijoint.fr/cjlink.php?file=cj201004/cijecaEGX.txt] te sera généré,
• Il te suffit de le poster
Citation
• Sinon tu postes les rapports en plusieurs parties >> mais ne Entier
@+ VIRUS/C/C
|
| |
Windows 7 SP1// Windows Vista SP2 // Windows XP SP3 --- On sait tout mais rien ne Fonctionne Ou tout fonctionne mais on ne sait pourquoi!
|
|
|
|
zarzar
9 messages
Neurone isolé
|
Le 03 Avril 2011 à 14h09
Bonjour et merci,
Impossible d'héberger sur ci-joint ni même ailleurs le fichier txt avec firefox et impossible d'ouvrir IE (malgré que le processus est en cours dans le gestionnaire des taches)
Je poste donc ici:
1ere partie:
Rapport de ZHPDiag v1.27.1849 par Nicolas Coolman, Update du 31/03/2011
Run by Ilyès at 03/04/2011 13:46:37
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.19019
MFIE: Mozilla Firefox v3.6.14 (fr) (Defaut)
---\\ System Information
Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)
Processor: x86 Family 16 Model 6 Stepping 2, AuthenticAMD
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3582 MB (62% free)
System Restore: Activé (Enable)
System drive C: has 357 GB (78%) free of 458 GB
---\\ Logged in mode
Computer Name: PCILYES
User Name: Ilyès
All Users Names: Ilyès, ASPNET, Administrateur,
Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator
---\\ Environnement Variables
%AppData%=C:\Users\Ilyès\AppData\Roaming
%LocalAppData%=C:\Users\Ilyès\AppData\Local
%StartMenu%=C:\Users\Ilyès\AppData\Roaming\Microsoft\Windows\Start Menu
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 357 Go of 458 Go)
D:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
E:\ CD-ROM drive (Not Inserted)
F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ CD-ROM drive (Not Inserted)
J:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: Modified
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: Modified
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDD EN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWAL L] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
---\\ Recherche particulière de fichiers génériques
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 07:27:36.) -- C:\Windows\Explorer.exe [2926592]
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.19/01/2008 08:33:37.) -- C:\Windows\System32\Wininit.exe [96768]
[MD5.74BCC23D622F32DA0450D164735ACAB1] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.18/12/2010 07:27:04.) -- C:\Windows\System32\wininet.dll [916480]
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 07:28:13.) -- C:\Windows\System32\Winlogon.exe [314368]
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 07:32:26.) -- C:\Windows\System32\drivers\atapi.sys [19944]
[MD5.6A4A98CEE84CF9E99564510DDA4BAA47] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.11/04/2009 07:32:49.) -- C:\Windows\System32\drivers\ntfs.sys [1083880]
---\\ Processus lancés
[MD5.F3B864BF39CDB3A71F2774DD02FC1090] - (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe [4390912]
[MD5.72334F906C2E2B002CDD2FF9022FD957] - (.PixArt Imaging Incorporation - Registry Monitor.) -- C:\Windows\PixArt\Pac207\Monitor.exe [319488]
[MD5.03B1DC67F343BF2AF8CFEC3DCA09C943] - (.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2029640]
[MD5.8D6B4BB1BEA52A7F2A2CB813F74E6B60] - (.www.IslamicFinder.org - Automatic Athan (Azan) five times a day f.) -- C:\Program Files\Athan\Athan.exe [937984]
[MD5.23518AA08D8B22CD27AA54FC21D0AC87] - (.Macrovision Corporation - Macrovision Software Manager.) -- C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [205480]
[MD5.390679F7A217A5E73D756276C40AE887] - (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2260480]
[MD5.D88135FE55B356618FCCDF1CC5653174] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [912344]
[MD5.2187DD20EFE345C9D8D6859EC2D95975] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [16856]
[MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe [69120]
[MD5.BE01E566D1F569AAB32D0335613E1EEA] - (.Microsoft Corporation - COM Surrogate.) -- C:\Windows\system32\DllHost.exe [7168]
[MD5.42A8D7674CC494E73930C69D4987C49F] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [642048]
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M3 - MFPP: Plugins - [Ilyès] -- C:\Users\Ilyès\AppData\Roaming\Mozilla\Firefox\Profiles\yz29ioc3.default\searchplugins\daemon-search.xml
M3 - MFPP: Plugins - [Ilyès] -- C:\Users\Ilyès\AppData\Roaming\Mozilla\Firefox\Profiles\yz29ioc3.default\searchplugins\ustart.xml
M3 - MFPP: Plugins - [Ilyès] -- C:\Users\Ilyès\AppData\Roaming\Mozilla\Firefox\Profiles\yz29ioc3.default\searchplugins\winamp-search.xml
M3 - MFPP: Plugins - [Ilyès] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Ilyès] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Ilyès] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Ilyès] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Ilyès] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Ilyès] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeploytk.dll
P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.3".) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX,Inc. - DivX Web Player version 2.0.3.4.) -- C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60129.0.) -- c:\Program Files\Microsoft Silverlight\4.0.60129.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.3] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll (.not file.)
P2 - FPN: [HKLM] [@microsoft.com/SharePoint,version=14.0] - (.Microsoft Corporation - The plug-in allows you to open and edit files using Microsoft Office a.) -- C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll
P2 - FPN: [HKLM] [@veetle.com/vbp;version=0.9.17] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Veetle\VLCBroadcast\npvbp.dll (.not file.)
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=8] - (.Pas de propriétaire - Pas de description.) -- C:\Users\Ilyès\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll (.not file.)
M0 - MFSP: prefs.js [Ilyès - yz29ioc3.default] http://google.fr
M2 - MFEP: prefs.js [Ilyès - yz29ioc3.default\firebug@software.joehewitt.com] [] Firebug v1.6.2 (.Joe Hewitt.)
M2 - MFEP: prefs.js [Ilyès - yz29ioc3.default\{0b38152b-1b20-484d-a11f-5e04a9b0661f}] [] Winamp Toolbar v5.6.12.1 (.AOL LLC.)
M2 - MFEP: prefs.js [Ilyès - yz29ioc3.default\{12e4c684-c03e-4e4d-85bc-0c065e7a9489}] [] SHOUTcast Radio Toolbar v5.23.2.10 (.AOL LLC.)
M2 - MFEP: prefs.js [Ilyès - yz29ioc3.default\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}] [] FlashGot v1.2.8.2 (.Giorgio Maone.)
M2 - MFEP: prefs.js [Ilyès - yz29ioc3.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.)
M2 - MFEP: prefs.js [Ilyès - yz29ioc3.default\{3112ca9c-de6d-4884-a869-9855de68056c}] [] Google Toolbar for Firefox v7.1.20101113Wb1 (.Google Inc..)
M2 - MFEP: prefs.js [Ilyès - yz29ioc3.default\{6AC85730-7D0F-4de0-B3FA-21142DD85326}] [] ColorZilla v2.2.2 (.Alex Sirota.)
M2 - MFEP: prefs.js [Ilyès - yz29ioc3.default\{73a6fe31-595d-460b-a920-fcc0f8843232}] [noscript] NoScript v2.0.9.8 (.Giorgio Maone.)
M2 - MFEP: prefs.js [Ilyès - yz29ioc3.default\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}] [] Adobe DLM (powered by getPlus(R)) v1,6,2,48 (.NOS Microsystems Ltd..)
M2 - MFEP: prefs.js [Ilyès - yz29ioc3.default\{e3f6c2cc-d8db-498c-af6c-499fb211db97}] [] Page Speed v1.10.2 (.Google Inc..)
|
| |
|
|
|
|
zarzar
9 messages
Neurone isolé
|
Le 03 Avril 2011 à 14h11
2eme partie:
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R0 - HKUS\S-1-5-21-2158493240-3770032250-1768986334-1002\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)) -- C:\Windows\system32\ieframe.dll
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 0
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} Clé orpheline
---\\ ---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe
O4 - HKLM\..\Run: [Monitor] . (.PixArt Imaging Incorporation - Registry Monitor.) -- C:\Windows\PixArt\PAC207\Monitor.exe
O4 - HKLM\..\Run: [egui] . (.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
O4 - HKLM\..\Run: [BCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files\Microsoft Office\Office14\BCSSync.exe
O4 - HKLM\..\Run: [Athan] . (.www.IslamicFinder.org - Automatic Athan (Azan) five times a day f.) -- C:\Program Files\Athan\Athan.exe
O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] . (.Google Inc. - Gmail Notifier.) -- C:\Program Files\Google\Gmail Notifier\gnotify.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
O4 - HKCU\..\Run: [ISUSPM] . (.Macrovision Corporation - Macrovision Software Manager.) -- C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
O4 - HKCU\..\Run: [AdobeBridge] Clé orpheline
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] oobefldr.dll
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] oobefldr.dll
O4 - HKUS\S-1-5-21-2158493240-3770032250-1768986334-1002\..\Run: [ISUSPM] . (.Macrovision Corporation - Macrovision Software Manager.) -- C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
O4 - HKUS\S-1-5-21-2158493240-3770032250-1768986334-1002\..\Run: [AdobeBridge] Clé orpheline
O4 - HKUS\S-1-5-21-2158493240-3770032250-1768986334-1002\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-21-2158493240-3770032250-1768986334-1002\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe
---\\ ---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Ilyès\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Ilyès\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Mail\WinMail.exe
O4 - Global Startup: C:\Users\Ilyès\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Users\Ilyès\Desktop\AD-R.lnk . (...) -- C:\Program Files\Ad-Remover\main.exe
O4 - Global Startup: C:\Users\Ilyès\Desktop\EBP Devis et Facturation Pratic 2009 6.0.lnk . (.EBP-Informatique.) -- C:\Program Files\EBP\Devis6.0\Devis.exe
O4 - Global Startup: C:\Users\Ilyès\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Athan.lnk . (.www.IslamicFinder.org.) -- C:\Program Files\Athan\Athan.exe
O4 - Global Startup: C:\Users\Ilyès\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\DAEMON Tools Lite.lnk . (.DT Soft Ltd.) -- C:\Program Files\DAEMON Tools\daemon.exe
O4 - Global Startup: C:\Users\Ilyès\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Digital Photo Professional.lnk . (...) -- C:\Program Files\Canon\Digital Photo Professional\DPP\DPPViewer.exe (.not file.)
O4 - Global Startup: C:\Users\Ilyès\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Disk Cleanup.lnk . (.Microsoft Corporation.) -- C:\Windows\System32\cleanmgr.exe
O4 - Global Startup: C:\Users\Ilyès\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\HijackThis.lnk . (.Trend Micro Inc..) -- C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
O4 - Global Startup: C:\Users\Ilyès\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Internet.lnk - Clé orpheline
O4 - Global Startup: C:\Users\Ilyès\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk . (.Malwarebytes Corporation.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
O4 - Global Startup: C:\Users\Ilyès\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Outlook.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE
O4 - Global Startup: C:\Users\Ilyès\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\Ilyès\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Nero Home.lnk . (.Nero AG.) -- C:\Program Files\Nero\Nero8\Nero Home\NeroHome.exe
O4 - Global Startup: C:\Users\Ilyès\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart.lnk . (.Nero AG.) -- C:\Program Files\Nero\Nero8\Nero StartSmart\NeroStartSmart.exe
O4 - Global Startup: C:\Users\Ilyès\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Notepad++.lnk . (...) -- C:\Program Files\Notepad++\notepad++.exe (.not file.)
O4 - Global Startup: C:\Users\Ilyès\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Notepad.lnk . (.Microsoft Corporation.) -- C:\Windows\System32\notepad.exe
O4 - Global Startup: C:\Users\Ilyès\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Snipping Tool.lnk . (.Microsoft Corporation.) -- C:\Windows\System32\SnippingTool.exe
O4 - Global Startup: C:\Users\Ilyès\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
O4 - Global Startup: C:\Users\Ilyès\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Live Messenger .lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O4 - Global Startup: C:\Users\Ilyès\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Users\Ilyès\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk . (.BitTorrent, Inc..) -- C:\Program Files\utorrent\utorrent.exe
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: &Envoyer à OneNote . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll
O8 - Extra context menu item: Ajouter la cible du lien à un fichier PDF existant - (.not file.) - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O8 - Extra context menu item: Ajouter à un fichier PDF existant - (.not file.) - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O8 - Extra context menu item: Convertir au format Adobe PDF - (.not file.) - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O8 - Extra context menu item: Convertir la cible du lien au format Adobe PDF - (.not file.) - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Excel.) -- C:\PROGRA~1\MICROS~2\Office14\EXCEL.exe
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll
O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~2\Office14\ONBTTN~1.dll
O9 - Extra button: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~2\Office14\ONBTTN~1.dll
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
---\\ Site dans la Zone de confiance d'Internet Explorer (O15)
O15 - Trusted Zone: [HKLM\...\Domains] *.canalplay.com
O15 - Trusted Zone: [HKLM\...\Domains\www] *.canalplay.com
O15 - Trusted Zone: [HKLM\...\Domains] *.canalplusactive.com
O15 - Trusted Zone: [HKLM\...\Domains\www] *.canalplusactive.com
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} () - http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} () - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{AFD489B6-BF64-40F7-B708-BDC67E217295}: NameServer = 89.2.0.1,89.2.0.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{AFD489B6-BF64-40F7-B708-BDC67E217295}: NameServer = 89.2.0.1,89.2.0.2
O17 - HKLM\System\CS2\Services\Tcpip\..\{AFD489B6-BF64-40F7-B708-BDC67E217295}: NameServer = 89.2.0.1,89.2.0.2
O17 - HKLM\System\CCS\Services\Tcpip\..\{E922F8ED-350C-46B9-A645-8E668D8DA7E2}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{E922F8ED-350C-46B9-A645-8E668D8DA7E2}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS2\Services\Tcpip\..\{E922F8ED-350C-46B9-A645-8E668D8DA7E2}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll
---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: EBP Pervasive.SQL (EBP Pervasive.SQL) . (...) - C:\PVSW\Bin\WGE_SRV.exe
O23 - Service: (EhttpSrv) . (.ESET - ESET HTTP Server Service.) - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: (gupdate1c9f386defa27b8) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: (IDriverT) . (.Macrovision Corporation - IDriverT Module.) - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: (KMService) . (...) - C:\Windows\system32\srvany.exe
O23 - Service: (Microsoft SharePoint Workspace Audit Service) - Clé orpheline
O23 - Service: (Nero BackItUp Scheduler 3) . (.Nero AG - Nero BackItUp.) - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: (NMIndexingService) . (.Nero AG - Nero Home.) - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 258.9.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: (SBSDWSCService) . (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: (stllssvr) . (.MicroVision Development, Inc. - SureThing Labelflash Disc Printer Service M.) - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: (wlidsvc) . (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.exe
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe (.not file.)
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Extension de garantie.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2158493240-3770032250-1768986334-1002Core.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2158493240-3770032250-1768986334-1002UA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Norton Internet Security - Analyse système complète - Ilyès.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Recovery DVD Creator.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\User_Feed_Synchronization-{9DB71E5E-8868-4F0B-9DF9-485F2EE6C8B0}.job
[MD5.00000000000000000000000000000000] [APT] [Extension de garantie] (.Pas de propriétaire.) -- C:\Program Files\Packard Bell\SetupmyPC\PBCarNot.exe (.not file.)
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskUserS-1-5-21-2158493240-3770032250-1768986334-1002Core] (.Pas de propriétaire.) -- C:\Users\Ilyès\AppData\Local\Google\Update\GoogleUpdate.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskUserS-1-5-21-2158493240-3770032250-1768986334-1002UA] (.Pas de propriétaire.) -- C:\Users\Ilyès\AppData\Local\Google\Update\GoogleUpdate.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [Norton Internet Security - Analyse systŠme complŠte - IlyŠs] (.Pas de propriétaire.) -- C:\PROGRA~1\NORTON~1\NORTON~1\Navw32.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [Recovery DVD Creator] (.Pas de propriétaire.) -- C:\Program Files\Packard Bell\SetupMyPc\MCDCheck.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{57C873EE-2BF4-4B40-B316-B23F47785844}] (.Pas de propriétaire.) -- c:\users\Ilyès\appdata\local\atoab.bat (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{62C40AA6-4406-467a-A5A5-DFDF1B559B7A}] (.Pas de propriétaire.) -- C:\Windows\Jkoloa.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{DBA25B95-2888-49C6-8F57-CB1F102C0B41}] (.Pas de propriétaire.) -- C:\Users\Ilyès\Desktop\Jeux WII\Sage Payroll v12.01.029\setup.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{FCA076D0-67D9-44FF-83C1-C9E83DEBE69A}] (.Pas de propriétaire.) -- C:\Program Files\Skype\Phone\Skype.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [AppleSoftwareUpdate] (.Pas de propriétaire.) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe (.not file.)
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: (ehdrv) . (.ESET - ESET Helper driver.) - C:\Windows\System32\DRIVERS\ehdrv.sys
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys
O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VClone) . (. - .) - C:\Windows\System32\DRIVERS\VClone.sys (.not file.)
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
---\\ Logiciels installés (O42)
O42 - Logiciel: 32 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {92127AF5-FDD8-4ADF-BC40-C356C9EE0B7D}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {B194272D-1F92-46DF-99EB-8D5CE91CB4EC}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader 9.4.3 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A94000000001}
O42 - Logiciel: Adobe Shockwave Player - (.Adobe Systems, Inc..) [HKLM] -- {A7DB362E-16DC-4E29-8A34-E74381E00B5B}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {A93944F2-D2D4-4750-BFE7-9A288FEAF2CF}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033}
O42 - Logiciel: Application Profiles - (.ATI Technologies, Inc..) [HKLM] -- {F446160A-373F-2310-2062-914C4DED0309}
O42 - Logiciel: Archiveur WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Athan Pro 3.0 - (.Pas de propriétaire.) [HKLM] -- Athan
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Configuration DivX - (.DivX, Inc. .) [HKLM] -- DivX Setup.divx.com
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Definition update for Microsoft Office 2010 (KB982726) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{2CF1930D-7485-42D3-BED1-B3E2EBB1FD7F}
O42 - Logiciel: EBP Btrieve 8.6 - (.EBP.) [HKLM] -- {747D0A04-5BDA-478D-A010-68CCCBE4D15A}
O42 - Logiciel: EBP Compta 14.1 - (.EBP.) [HKLM] -- {10A4CAB8-D1B8-4C8C-9F54-76BF6063E71B}
O42 - Logiciel: EBP Devis et Facturation Pratic 2009 6.0 - (.EBP.) [HKLM] -- EBP Devis et Facturation Pratic 2009 6.0
O42 - Logiciel: EBP Devis et Facturation Pratic 2009 6.0 - (.EBP.) [HKLM] -- {D9E7E2A3-3EED-4BB7-B930-7F705BB49133}
O42 - Logiciel: EBP Utilitaire d'échanges 1.1 - (.EBP.) [HKLM] -- {5E39F2FB-0D5B-413E-903C-3F495017109C}
O42 - Logiciel: FileZilla Client 3.3.2 - (.Pas de propriétaire.) [HKLM] -- FileZilla Client
O42 - Logiciel: Firefox - (.Pas de propriétaire.) [HKLM] -- FirefoxFR
O42 - Logiciel: Flash Player 9 Internet Explorer - (.Pas de propriétaire.) [HKLM] -- Flashplayer
O42 - Logiciel: Google Gmail Notifier - (.Google Inc..) [HKLM] -- {0228e555-4f9c-4e35-a3ec-b109a192b4c2}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {DBEA1034-5882-4A88-8033-81C4EF0CFA29}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HP Imaging Device Functions 13.0 - (.HP.) [HKLM] -- HP Imaging Device Functions
O42 - Logiciel: HP Photosmart Wireless B109n-z All-In-One Driver Software 13.0 Rel .6 - (.HP.) [HKLM] -- {722B4A13-F24D-43AE-8813-5DB82C0B23C2}
O42 - Logiciel: HP Print Projects 1.0 - (.HP.) [HKLM] -- HP Print Projects
O42 - Logiciel: HP Solution Center 13.0 - (.HP.) [HKLM] -- HP Solution Center & Imaging Support Tools
O42 - Logiciel: HPDiagnosticAlert - (.Microsoft.) [HKLM] -- {846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.) [HKLM] -- {C04E32E0-0416-434D-AFB9-6969D703A9EF}
O42 - Logiciel: MSXML 4.0 SP2 (KB941833) - (.Microsoft Corporation.) [HKLM] -- {C523D256-313D-4866-B36A-F3DE528246EF}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Medal of Honor Allied Assault - (.Pas de propriétaire.) [HKLM] -- {0DEA94ED-915A-4834-A87E-388D012C8E02}
O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra - (.Microsoft Corporation.) [HKLM] -- {3E31821C-7917-367E-938E-E65FC413EA31}
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}
O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Extended
O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- {0A0CADCF-78DA-33C4-A350-CD51849B9702}
O42 - Logiciel: Microsoft .NET Framework 4 Extended FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {043F86B7-EE12-3399-B2CA-D0B603D87963}
O42 - Logiciel: Microsoft .NET Framework 4 Multi-Targeting Pack - (.Microsoft Corporation.) [HKLM] -- {CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}
O42 - Logiciel: Microsoft Help Viewer 1.0 - (.Microsoft Corporation.) [HKLM] -- Microsoft Help Viewer 1.0
O42 - Logiciel: Microsoft Help Viewer 1.0 - (.Microsoft Corporation.) [HKLM] -- {47C39E4A-28F2-33B1-B9B7-97F24E52D917}
O42 - Logiciel: Microsoft Help Viewer 1.0 Language Pack - FRA - (.Microsoft Corporation.) [HKLM] -- {BC398BE9-C1DC-374B-90B1-460CB70C7CDD}
O42 - Logiciel: Microsoft Office Access MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0015-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Excel MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0016-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Groove MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-00BA-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0044-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office OneNote MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-00A1-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Outlook Connector - (.Microsoft Corporation.) [HKLM] -- {95140000-007A-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Outlook MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001A-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0018-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Professional Plus 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Professionnel Plus 2010 - (.Microsoft Corporation.) [HKLM] -- Office14.PROPLUS
O42 - Logiciel: Microsoft Office Proof (Arabic) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0401-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Dutch) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0413-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (English) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (German) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0407-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Spanish) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0C0A-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proofing (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-002C-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Publisher MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0019-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Shared MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-006E-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Word MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001B-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Visual C# 2010 Express - FRA - (.Microsoft Corporation.) [HKLM] -- {EA8C8305-BC9A-3DAE-B6FC-6072B87EF620}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d}
O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 - (.Microsoft Corporation.) [HKLM] -- {B7E38540-E355-3503-AFD7-635B2F2F76E1}
O42 - Logiciel: Microsoft Visual C# 2010 Express - Français - (.Microsoft Corporation.) [HKLM] -- Microsoft Visual C# 2010 Express - FRA
O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack SP1 - fra
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Extended FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Extended FRA Language Pack
O42 - Logiciel: Module linguistique de la visionneuse d'aide Microsoft 1.0 - FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft Help Viewer 1.0 Language Pack - FRA
O42 - Logiciel: Mozilla Firefox (3.6.14) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.14)
O42 - Logiciel: NVIDIA Display Control Panel - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Display Control Panel
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Drivers
O42 - Logiciel: Nero 8 - (.Nero AG.) [HKLM] -- {8AEA4BE2-2B52-41C0-BB7D-9F2D17AF1036}
O42 - Logiciel: OFFICE One Fonts v7 - (.ISSENDIS.) [HKLM] -- {CC0C788C-7C68-47A9-BFBF-0DF7B205B4CC}
O42 - Logiciel: PVSonyDll - (.NVIDIA Corporation.) [HKLM] -- {3D3E663D-4E7E-4577-A560-7ECDDD45548A}
O42 - Logiciel: Realtek HD Audio V6.0.1.5374 - (.Pas de propriétaire.) [HKLM] -- AUDIO_REALTEK
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Extended (KB2416472) - (.Microsoft Corporation.) [HKLM] -- {0A0CADCF-78DA-33C4-A350-CD51849B9702}.KB2416472
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2289078) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{1D1A4F08-2F17-475B-BA72-476CE5992FEE}
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2289161) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F134C2C6-30B3-4169-A325-58482B4CE6FC}
O42 - Logiciel: Security Update for Microsoft Publisher 2010 (KB2409055) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{C3C277D5-36E3-4B1A-926A-175B2BC019CF}
O42 - Logiciel: Security Update for Microsoft Word 2010 (KB2345000) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{A6D422EE-1196-45EE-B9AE-6B5B64975E8B}
O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}
O42 - Logiciel: Shockwave player 10 - (.Pas de propriétaire.) [HKLM] -- Shockwave
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1
O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707
O42 - Logiciel: Update for Microsoft Office 2010 (KB2202188) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{86B7A074-265D-420C-9E1E-7A920EF0ECA7}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2413186) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{556146F7-74AE-4E0A-B64F-5B8B93469F61}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2413186) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B5516874-E926-4BFD-B412-D0E70112F244}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2413186) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{D6CE7280-6EE3-419A-8F47-DB111C040B1B}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2494150) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}
O42 - Logiciel: Update for Microsoft OneNote 2010 (KB2493983) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{309EEC22-83CE-4109-B019-BA9392FAA322}
O42 - Logiciel: Update for Microsoft Outlook Social Connector (KB2289116) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{75F91382-920C-4AE1-B9E6-FFFCEDA797E8}
O42 - Logiciel: VC80CRTRedist - 8.0.50727.4053 - (.DivX, Inc.) [HKLM] -- {5EE7D259-D137-4438-9A5F-42F432EC0421}
O42 - Logiciel: Video NVIDIA v158.18 - (.Pas de propriétaire.) [HKLM] -- VIDEO_NVIDIA
O42 - Logiciel: Win2PDF 3.30 - (.Dane Prairie Systems, LLC..) [HKLM] -- Win2PDF_is1
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066}
O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {61AD15B2-50DB-4686-A739-14FE180D4429}
O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM] -- {0B0F231F-CE6A-483D-AA23-77B364F75917}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {6057E21C-ABE9-4059-AE3E-3BEB9925E660}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {EB4DF488-AAEF-406F-A341-CB2AAA315B90}
O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM] -- {4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70}
O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4}
O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F}
O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM] -- {09F56A49-A7B1-4AAB-95B9-D13094254AD1}
O42 - Logiciel: µTorrent - (.Pas de propriétaire.) [HKCU] -- uTorrent |
| |
|
|
|
|
zarzar
9 messages
Neurone isolé
|
Le 03 Avril 2011 à 14h31
3eme partie
---\\ HKCU & HKLM Software Keys
[HKCU\Software\2015]
[HKCU\Software\ACE Compression Software]
[HKCU\Software\ASProtect]
[HKCU\Software\Ad-Remover]
[HKCU\Software\Addictive Software]
[HKCU\Software\Adobe]
[HKCU\Software\Against Intuition]
[HKCU\Software\Ahead]
[HKCU\Software\AnalogX]
[HKCU\Software\AppDataLow\Aurigma]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Against Intuition]
[HKCU\Software\AppDataLow\Software\DivXNetworks]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\Yahoo]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Banner Maker Pro 6]
[HKCU\Software\BitTorrent]
[HKCU\Software\Bugsplat]
[HKCU\Software\CDDB]
[HKCU\Software\CISRA]
[HKCU\Software\Canon]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Cookie Crumble]
[HKCU\Software\Cyberlink]
[HKCU\Software\DDD]
[HKCU\Software\DT Soft]
[HKCU\Software\DVD Identifier]
[HKCU\Software\Dane Prairie Systems]
[HKCU\Software\DivXNetworks]
[HKCU\Software\DivX]
[HKCU\Software\EBP]
[HKCU\Software\ESET]
[HKCU\Software\EasyBanner]
[HKCU\Software\Emulators]
[HKCU\Software\Enigma Protector]
[HKCU\Software\FileZilla]
[HKCU\Software\Google]
[HKCU\Software\HP]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IM Providers]
[HKCU\Software\ImgBurn]
[HKCU\Software\InstallShield]
[HKCU\Software\InterVideo]
[HKCU\Software\JEDI-VCL]
[HKCU\Software\JavaSoft]
[HKCU\Software\Kazaa]
[HKCU\Software\Lavalys]
[HKCU\Software\Licenses]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\MGS]
[HKCU\Software\Macromedia]
[HKCU\Software\MainConcept (Adobe2)]
[HKCU\Software\MainConcept]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MicroGaming]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Opera Software]
[HKCU\Software\Packard Bell]
[HKCU\Software\Paul Glagla]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Privoxy]
[HKCU\Software\Realtek]
[HKCU\Software\Research In Motion]
[HKCU\Software\Roxio]
[HKCU\Software\SHOUTcast]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\SecuROM]
[HKCU\Software\Skype]
[HKCU\Software\Softonic]
[HKCU\Software\Sonic]
[HKCU\Software\SourceTec]
[HKCU\Software\Symantec]
[HKCU\Software\TCP Optimizer]
[HKCU\Software\TVANTS]
[HKCU\Software\TomTom]
[HKCU\Software\Totem]
[HKCU\Software\Trolltech]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\Valve]
[HKCU\Software\VirtualDJ]
[HKCU\Software\WNR]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Xfire]
[HKCU\Software\Xobni]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\Yahoo]
[HKCU\Software\ej-technologies]
[HKCU\Software\keyhole.com]
[HKLM\Software\685D6D1C-D73A-4F37-B7E5E53660311DDB]
[HKLM\Software\ATI]
[HKLM\Software\Adobe]
[HKLM\Software\Ahead]
[HKLM\Software\America Online]
[HKLM\Software\AppDataLow]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Audible]
[HKLM\Software\BrowserChoice]
[HKLM\Software\CDDB]
[HKLM\Software\Canal+ Active]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\DDD]
[HKLM\Software\DT Soft]
[HKLM\Software\Dane Prairie Systems]
[HKLM\Software\Debug]
[HKLM\Software\DivXNetworks]
[HKLM\Software\DivX]
[HKLM\Software\EA GAMES]
[HKLM\Software\EBP]
[HKLM\Software\ESET]
[HKLM\Software\Electronic Arts]
[HKLM\Software\FileZilla 3]
[HKLM\Software\Global IP Solutions]
[HKLM\Software\Google]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IPPrivacy]
[HKLM\Software\ISSENDIS]
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\InterVideo]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Khronos]
[HKLM\Software\Licenses]
[HKLM\Software\Macromedia]
[HKLM\Software\Macrovision]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MicroVision]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nero]
[HKLM\Software\Nullsoft]
[HKLM\Software\ODBC]
[HKLM\Software\PBreg]
[HKLM\Software\PTECH]
[HKLM\Software\Pervasive Software]
[HKLM\Software\Piriform]
[HKLM\Software\PixArt]
[HKLM\Software\Policies]
[HKLM\Software\Rabbit]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Research In Motion]
[HKLM\Software\S3R521]
[HKLM\Software\SRS Labs]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\Sage]
[HKLM\Software\Save_Uninstall]
[HKLM\Software\Sonic]
[HKLM\Software\SymNRT]
[HKLM\Software\Symantec]
[HKLM\Software\Trad-FR]
[HKLM\Software\TrendMicro]
[HKLM\Software\Valve]
[HKLM\Software\Visicom Media]
[HKLM\Software\Volatile]
[HKLM\Software\Vqfeasbp]
[HKLM\Software\WNR]
[HKLM\Software\WholeSecurity]
[HKLM\Software\Windows]
[HKLM\Software\Wise Solutions]
[HKLM\Software\Wow6432Node]
[HKLM\Software\Yahoo]
[HKLM\Software\ej-technologies]
[HKLM\Software\mozilla.org]
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 30/03/2011 - 21:48:22 - [168590883] ----D- C:\Program Files\Ad-Remover
O43 - CFD: 29/03/2011 - 20:48:56 - [164345016] ----D- C:\Program Files\Adobe
O43 - CFD: 15/09/2010 - 17:20:00 - [36150919] ---AD- C:\Program Files\Athan
O43 - CFD: 11/11/2010 - 14:09:46 - [270650] ----D- C:\Program Files\ATI Technologies
O43 - CFD: 02/03/2011 - 10:59:32 - [3653664] ----D- C:\Program Files\CCleaner
O43 - CFD: 30/03/2011 - 10:53:42 - [1085509543] ----D- C:\Program Files\Common Files
O43 - CFD: 14/09/2008 - 18:57:50 - [5224196] ---AD- C:\Program Files\DAEMON Tools
O43 - CFD: 17/11/2010 - 21:19:38 - [93929324] ----D- C:\Program Files\DivX
O43 - CFD: 22/02/2011 - 19:43:00 - [124370262] ----D- C:\Program Files\EBP
O43 - CFD: 12/10/2009 - 11:26:46 - [51642354] ---AD- C:\Program Files\ESET
O43 - CFD: 06/10/2007 - 20:56:54 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 30/03/2011 - 20:40:06 - [15992039] ----D- C:\Program Files\FileZilla FTP Client
O43 - CFD: 29/03/2011 - 20:36:06 - [3445151] ----D- C:\Program Files\Google
O43 - CFD: 02/03/2011 - 22:30:20 - [239153187] ----D- C:\Program Files\HP
O43 - CFD: 29/03/2011 - 20:55:50 - [65851209] --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD: 10/02/2011 - 04:18:46 - [4687059] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 11/11/2010 - 13:49:58 - [0] ----D- C:\Program Files\Macromedia
O43 - CFD: 01/03/2011 - 23:14:06 - [5011543] ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 15/08/2010 - 16:24:20 - [39848379] ----D- C:\Program Files\Microsoft Analysis Services
O43 - CFD: 12/10/2007 - 13:52:32 - [800662] ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2
O43 - CFD: 02/03/2011 - 11:32:52 - [93446071] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 30/11/2010 - 12:39:28 - [6262171] ----D- C:\Program Files\Microsoft Help Viewer
O43 - CFD: 15/08/2010 - 16:45:44 - [992177257] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 30/11/2010 - 12:39:16 - [16688718] ----D- C:\Program Files\Microsoft SDKs
O43 - CFD: 04/03/2011 - 02:32:28 - [38371963] ----D- C:\Program Files\Microsoft Silverlight
O43 - CFD: 03/09/2010 - 16:17:04 - [1808400] ----D- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 15/08/2010 - 16:45:42 - [793991] ----D- C:\Program Files\Microsoft Sync Framework
O43 - CFD: 15/08/2010 - 16:46:18 - [323504] ----D- C:\Program Files\Microsoft Synchronization Services
O43 - CFD: 02/03/2011 - 22:31:22 - [182739287] ----D- C:\Program Files\Microsoft Visual Studio 10.0
O43 - CFD: 15/10/2007 - 13:07:58 - [1378033] ----D- C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 15/08/2010 - 16:45:42 - [8263551] ----D- C:\Program Files\Microsoft.NET
O43 - CFD: 12/08/2010 - 18:58:06 - [99342446] ----D- C:\Program Files\Movie Maker
O43 - CFD: 05/03/2011 - 16:51:24 - [30390466] ----D- C:\Program Files\Mozilla Firefox
O43 - CFD: 15/08/2010 - 16:47:50 - [26521] ----D- C:\Program Files\MSBuild
O43 - CFD: 16/08/2010 - 15:24:40 - [11962340] ----D- C:\Program Files\MSECache
O43 - CFD: 07/10/2007 - 16:12:14 - [0] ----D- C:\Program Files\MSXML 4.0
O43 - CFD: 06/04/2008 - 17:05:44 - [828450441] ----D- C:\Program Files\Nero
O43 - CFD: 30/03/2011 - 10:53:42 - [61497846] ----D- C:\Program Files\NVIDIA Corporation
O43 - CFD: 11/11/2010 - 13:49:16 - [258471439] ----D- C:\Program Files\Packard Bell
O43 - CFD: 20/12/2010 - 21:34:08 - [31060] ----D- C:\Program Files\PC Connectivity Solution
O43 - CFD: 11/11/2010 - 13:25:34 - [0] ----D- C:\Program Files\PC Drivers HeadQuarters
O43 - CFD: 26/06/2007 - 13:33:48 - [12676987] ----D- C:\Program Files\Realtek
O43 - CFD: 02/11/2006 - 14:37:36 - [349797523] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 20/12/2010 - 21:35:56 - [9275875] ----D- C:\Program Files\Samsung
O43 - CFD: 02/03/2011 - 22:30:08 - [57875] ----D- C:\Program Files\SHOUTcast
O43 - CFD: 10/03/2010 - 11:43:12 - [69758107] ----D- C:\Program Files\Spybot - Search & Destroy
O43 - CFD: 29/03/2011 - 21:16:02 - [55893264] ----D- C:\Program Files\THQ
O43 - CFD: 30/03/2011 - 18:31:30 - [1205397] ---AD- C:\Program Files\Trend Micro
O43 - CFD: 02/11/2006 - 15:01:56 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 15/09/2010 - 16:44:54 - [289584] ----D- C:\Program Files\utorrent
O43 - CFD: 29/07/2010 - 19:04:40 - [520704] ----D- C:\Program Files\VideoLAN
O43 - CFD: 22/10/2009 - 20:29:12 - [1016832] ----D- C:\Program Files\Windows Calendar
O43 - CFD: 22/10/2009 - 20:29:08 - [2737152] ----D- C:\Program Files\Windows Collaboration
O43 - CFD: 22/10/2009 - 20:28:52 - [4490624] ----D- C:\Program Files\Windows Defender
O43 - CFD: 22/10/2009 - 20:29:08 - [7084664] ----D- C:\Program Files\Windows Journal
O43 - CFD: 04/03/2011 - 03:16:12 - [61032423] ----D- C:\Program Files\Windows Live
O43 - CFD: 16/12/2010 - 19:57:54 - [9116344] ----D- C:\Program Files\Windows Mail
O43 - CFD: 15/10/2010 - 22:15:42 - [4498121] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 06/10/2007 - 20:56:54 - [7957544] ----D- C:\Program Files\Windows NT
O43 - CFD: 22/10/2009 - 20:29:04 - [13528738] ----D- C:\Program Files\Windows Photo Gallery
O43 - CFD: 18/11/2009 - 04:16:06 - [134144] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 22/10/2009 - 20:29:08 - [27310528] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 14/06/2008 - 23:47:14 - [3451643] ----D- C:\Program Files\WinRAR
O43 - CFD: 03/04/2011 - 13:46:54 - [3651393] ----D- C:\Program Files\ZHPDiag
O43 - CFD: 04/03/2011 - 02:53:24 - [106140171] ----D- C:\Program Files\Common Files\Adobe
O43 - CFD: 23/02/2011 - 19:40:32 - [30516688] ----D- C:\Program Files\Common Files\Adobe AIR
O43 - CFD: 04/08/2010 - 15:23:36 - [44308227] ----D- C:\Program Files\Common Files\Apple
O43 - CFD: 10/02/2010 - 17:46:44 - [868678] ----D- C:\Program Files\Common Files\Canon
O43 - CFD: 15/08/2010 - 16:46:16 - [99136] ----D- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 01/07/2010 - 22:07:28 - [24006656] ----D- C:\Program Files\Common Files\DivX Shared
O43 - CFD: 22/02/2011 - 19:43:02 - [6165201] ----D- C:\Program Files\Common Files\EBP
O43 - CFD: 03/06/2010 - 18:56:12 - [997653] ----D- C:\Program Files\Common Files\Hewlett-Packard
O43 - CFD: 03/06/2010 - 18:56:32 - [1817436] ----D- C:\Program Files\Common Files\HP
O43 - CFD: 13/10/2008 - 23:27:22 - [26360159] ----D- C:\Program Files\Common Files\InstallShield
O43 - CFD: 07/07/2010 - 12:15:24 - [1231815] ----D- C:\Program Files\Common Files\Java
O43 - CFD: 15/08/2010 - 13:59:30 - [98304] ----D- C:\Program Files\Common Files\Macromedia
O43 - CFD: 11/11/2010 - 13:49:54 - [98304] ----D- C:\Program Files\Common Files\Macromedia Shared
O43 - CFD: 30/11/2010 - 12:39:28 - [429928801] ----D- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 06/04/2008 - 17:13:32 - [139736726] ----D- C:\Program Files\Common Files\Nero
O43 - CFD: 02/03/2011 - 11:22:54 - [4739392] ----D- C:\Program Files\Common Files\PX Storage Engine
O43 - CFD: 29/03/2011 - 21:15:44 - [2557] ----D- C:\Program Files\Common Files\Research In Motion
O43 - CFD: 27/08/2010 - 09:41:24 - [25302014] ----D- C:\Program Files\Common Files\Roxio Shared
O43 - CFD: 20/12/2010 - 21:32:16 - [4466394] ----D- C:\Program Files\Common Files\Samsung
O43 - CFD: 04/05/2008 - 14:54:38 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 27/08/2010 - 09:41:56 - [1081344] ----D- C:\Program Files\Common Files\Sonic Shared
O43 - CFD: 02/11/2006 - 13:18:34 - [41101735] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 29/03/2011 - 23:11:12 - [403240] ----D- C:\Program Files\Common Files\Steam
O43 - CFD: 26/06/2007 - 13:42:40 - [595968] ----D- C:\Program Files\Common Files\SureThing Shared
O43 - CFD: 12/10/2009 - 11:19:28 - [2567008] ----D- C:\Program Files\Common Files\Symantec Shared
O43 - CFD: 22/10/2009 - 20:29:04 - [18889768] ----D- C:\Program Files\Common Files\System
O43 - CFD: 10/11/2009 - 22:32:00 - [121549867] ----D- C:\Program Files\Common Files\Windows Live
O43 - CFD: 10/03/2008 - 22:26:06 - [52433599] -SH-D- C:\Program Files\Common Files\WindowsLiveInstaller
O43 - CFD: 19/12/2010 - 13:59:30 - [399] ----D- C:\ProgramData\3DVIA
O43 - CFD: 04/03/2011 - 02:35:50 - [156649678] ----D- C:\ProgramData\Adobe
O43 - CFD: 29/08/2008 - 18:50:16 - [58321408] ----D- C:\ProgramData\Apple
O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 06/10/2007 - 20:56:54 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 07/06/2009 - 12:45:02 - [9438440] --H-D- C:\ProgramData\CanonBJ
O43 - CFD: 06/07/2010 - 14:09:46 - [0] ----D- C:\ProgramData\Caphyon
O43 - CFD: 14/09/2010 - 09:30:52 - [4212] ----D- C:\ProgramData\CheckPoint
O43 - CFD: 26/06/2007 - 13:49:30 - [150660] ----D- C:\ProgramData\Ciel
O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 17/11/2010 - 21:19:38 - [3738792] ----D- C:\ProgramData\DivX
O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 22/02/2011 - 20:02:10 - [67165461] ----D- C:\ProgramData\EBP
O43 - CFD: 01/06/2009 - 23:21:58 - [1713520] ----D- C:\ProgramData\EmailNotifier
O43 - CFD: 12/10/2009 - 11:26:46 - [68684859] ---AD- C:\ProgramData\ESET
O43 - CFD: 06/10/2007 - 20:56:54 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 20/02/2009 - 20:03:44 - [225420] ----D- C:\ProgramData\FLEXnet
O43 - CFD: 02/04/2010 - 15:08:04 - [0] ----D- C:\ProgramData\Google
O43 - CFD: 03/06/2010 - 19:35:36 - [21251419] ----D- C:\ProgramData\HP
O43 - CFD: 03/06/2010 - 18:57:56 - [8988] ----D- C:\ProgramData\HP Product Assistant
O43 - CFD: 26/06/2007 - 13:42:48 - [590] ----D- C:\ProgramData\InstallShield
O43 - CFD: 19/02/2010 - 19:19:14 - [320] ----D- C:\ProgramData\IsolatedStorage
O43 - CFD: 15/08/2010 - 14:20:04 - [6197] ----D- C:\ProgramData\Macromedia
O43 - CFD: 15/12/2008 - 18:52:38 - [14275637] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 06/10/2007 - 20:56:54 - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 14/07/2008 - 22:37:08 - [0] ----D- C:\ProgramData\MGS
O43 - CFD: 14/07/2008 - 22:37:08 - [0] ----D- C:\ProgramData\Microgaming
O43 - CFD: 13/01/2011 - 09:55:26 - [978321388] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 02/03/2011 - 11:32:52 - [0] ---AD- C:\ProgramData\Microsoft Games
O43 - CFD: 06/11/2010 - 20:17:58 - [17] ----D- C:\ProgramData\Microsoft Games
O43 - CFD: 09/03/2011 - 20:01:32 - [284736] ----D- C:\ProgramData\Microsoft Help
O43 - CFD: 06/10/2007 - 20:56:54 - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 06/02/2010 - 16:06:08 - [61650227] ----D- C:\ProgramData\MySQL
O43 - CFD: 06/04/2008 - 17:05:46 - [5360711] ----D- C:\ProgramData\Nero
O43 - CFD: 19/03/2011 - 17:35:18 - [272133] ----D- C:\ProgramData\NVIDIA
O43 - CFD: 27/08/2010 - 18:08:00 - [522537] ----D- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 11/11/2010 - 13:26:52 - [144] ----D- C:\ProgramData\PC Drivers HeadQuarters
O43 - CFD: 20/12/2010 - 21:35:14 - [7803783] ----D- C:\ProgramData\Samsung
O43 - CFD: 11/11/2010 - 13:48:44 - [22782286] ----D- C:\ProgramData\Skype
O43 - CFD: 07/10/2007 - 00:12:02 - [948] ----D- C:\ProgramData\Sonic
O43 - CFD: 29/03/2011 - 21:24:38 - [90364948] ----D- C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 14/02/2010 - 16:10:52 - [189] ----D- C:\ProgramData\Sun
O43 - CFD: 12/10/2009 - 11:19:28 - [48] ----D- C:\ProgramData\Symantec
O43 - CFD: 15/01/2010 - 23:28:18 - [0] ---AD- C:\ProgramData\TEMP
O43 - CFD: 02/11/2006 - 15:02:06 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 22/11/2010 - 22:51:26 - [0] ----D- C:\ProgramData\TomTom
O43 - CFD: 03/06/2010 - 19:35:52 - [213] ----D- C:\ProgramData\WEBREG
O43 - CFD: 05/05/2009 - 18:08:26 - [0] ----D- C:\ProgramData\WindowsSearch
O43 - CFD: 10/03/2008 - 22:15:40 - [216050] ----D- C:\ProgramData\WLInstaller
O43 - CFD: 02/03/2011 - 12:14:48 - [570474124] ----D- C:\Users\Ilyès\AppData\Roaming\Adobe
O43 - CFD: 04/08/2010 - 15:25:46 - [2577197] ----D- C:\Users\Ilyès\AppData\Roaming\Apple Computer
O43 - CFD: 17/05/2009 - 19:41:42 - [1991] ----D- C:\Users\Ilyès\AppData\Roaming\Babylon
O43 - CFD: 01/06/2010 - 12:35:34 - [0] ----D- C:\Users\Ilyès\AppData\Roaming\Canon
O43 - CFD: 13/05/2008 - 14:13:36 - [2560] ----D- C:\Users\Ilyès\AppData\Roaming\Classes de site
O43 - CFD: 15/03/2009 - 13:06:00 - [1040] ----D- C:\Users\Ilyès\AppData\Roaming\DAEMON Tools
O43 - CFD: 01/07/2010 - 22:08:40 - [418872] ----D- C:\Users\Ilyès\AppData\Roaming\DivX
O43 - CFD: 13/05/2008 - 14:09:08 - [109199] ----D- C:\Users\Ilyès\AppData\Roaming\Dynamique
O43 - CFD: 22/02/2011 - 19:43:24 - [8211] ----D- C:\Users\Ilyès\AppData\Roaming\EBP
O43 - CFD: 28/02/2011 - 15:02:38 - [19093] ----D- C:\Users\Ilyès\AppData\Roaming\FileZilla
O43 - CFD: 18/08/2010 - 23:02:46 - [1187796] ----D- C:\Users\Ilyès\AppData\Roaming\GnoZtiK Consulting
O43 - CFD: 07/10/2007 - 02:18:18 - [0] ----D- C:\Users\Ilyès\AppData\Roaming\Google
O43 - CFD: 04/01/2011 - 21:37:00 - [168] ----D- C:\Users\Ilyès\AppData\Roaming\gtk-2.0
O43 - CFD: 03/06/2010 - 19:44:04 - [368990] ----D- C:\Users\Ilyès\AppData\Roaming\HP
O43 - CFD: 21/02/2011 - 22:53:02 - [13873] ----D- C:\Users\Ilyès\AppData\Roaming\HpUpdate
O43 - CFD: 06/10/2007 - 21:07:24 - [0] ----D- C:\Users\Ilyès\AppData\Roaming\Identities
O43 - CFD: 28/06/2010 - 21:53:06 - [0] ----D- C:\Users\Ilyès\AppData\Roaming\ImgBurn
O43 - CFD: 15/12/2008 - 18:48:10 - [292] ----D- C:\Users\Ilyès\AppData\Roaming\InstallShield
O43 - CFD: 15/08/2010 - 14:01:10 - [285884] ----D- C:\Users\Ilyès\AppData\Roaming\Macromedia
O43 - CFD: 15/12/2008 - 18:52:42 - [49062] ----D- C:\Users\Ilyès\AppData\Roaming\Malwarebytes
O43 - CFD: 02/11/2006 - 14:37:36 - [0] ----D- C:\Users\Ilyès\AppData\Roaming\Media Center Programs
O43 - CFD: 30/11/2010 - 12:42:08 - [21628484] -S--D- C:\Users\Ilyès\AppData\Roaming\Microsoft
O43 - CFD: 02/03/2011 - 11:32:52 - [0] ---AD- C:\Users\Ilyès\AppData\Roaming\Microsoft Game Studios
O43 - CFD: 29/03/2011 - 20:34:10 - [55785112] ----D- C:\Users\Ilyès\AppData\Roaming\Mozilla
O43 - CFD: 07/10/2007 - 16:08:46 - [225835] ----D- C:\Users\Ilyès\AppData\Roaming\Nero
O43 - CFD: 29/03/2011 - 20:57:44 - [179] ----D- C:\Users\Ilyès\AppData\Roaming\Notepad++
O43 - CFD: 12/05/2008 - 23:05:54 - [1532947] ----D- C:\Users\Ilyès\AppData\Roaming\Nvu
O43 - CFD: 06/10/2007 - 21:07:50 - [134] ----D- C:\Users\Ilyès\AppData\Roaming\OFFICE One v7
O43 - CFD: 04/02/2010 - 23:04:28 - [2463353] ----D- C:\Users\Ilyès\AppData\Roaming\OFFICEOne7
O43 - CFD: 26/08/2010 - 19:38:52 - [194635] ----D- C:\Users\Ilyès\AppData\Roaming\Opera
O43 - CFD: 08/10/2007 - 17:58:52 - [404215] ----D- C:\Users\Ilyès\AppData\Roaming\Packard Bell
O43 - CFD: 07/10/2007 - 01:00:50 - [0] ----D- C:\Users\Ilyès\AppData\Roaming\PeerNetworking
O43 - CFD: 11/11/2010 - 22:18:46 - [4098] ----D- C:\Users\Ilyès\AppData\Roaming\PgcEdit
O43 - CFD: 21/11/2007 - 23:57:40 - [2580888] ----D- C:\Users\Ilyès\AppData\Roaming\PPTminimizer
O43 - CFD: 20/12/2010 - 21:32:06 - [4384655] ----D- C:\Users\Ilyès\AppData\Roaming\Samsung
O43 - CFD: 07/10/2007 - 23:25:56 - [7332] R-H-D- C:\Users\Ilyès\AppData\Roaming\SecuROM
O43 - CFD: 13/05/2008 - 14:13:04 - [210432] ----D- C:\Users\Ilyès\AppData\Roaming\Sites
O43 - CFD: 04/10/2010 - 20:20:24 - [2555913] ----D- C:\Users\Ilyès\AppData\Roaming\Skype
O43 - CFD: 04/10/2010 - 16:06:56 - [11072] ----D- C:\Users\Ilyès\AppData\Roaming\skypePM
O43 - CFD: 20/08/2010 - 04:19:02 - [14325] ----D- C:\Users\Ilyès\AppData\Roaming\Stellarium
O43 - CFD: 06/10/2007 - 21:13:22 - [7386] ----D- C:\Users\Ilyès\AppData\Roaming\Talkback
O43 - CFD: 22/11/2010 - 22:49:14 - [27300483] ----D- C:\Users\Ilyès\AppData\Roaming\TomTom
O43 - CFD: 17/10/2007 - 12:42:24 - [9403152] ----D- C:\Users\Ilyès\AppData\Roaming\Uniblue
O43 - CFD: 28/03/2011 - 23:56:38 - [18838145] ----D- C:\Users\Ilyès\AppData\Roaming\uTorrent
O43 - CFD: 10/03/2010 - 12:02:26 - [4671] ----D- C:\Users\Ilyès\AppData\Roaming\VS Revo Group
O43 - CFD: 11/11/2010 - 13:50:04 - [0] ----D- C:\Users\Ilyès\AppData\Roaming\WinBatch
O43 - CFD: 14/06/2008 - 23:47:42 - [0] ----D- C:\Users\Ilyès\AppData\Roaming\WinRAR
O43 - CFD: 17/04/2009 - 12:59:50 - [338836] ----D- C:\Users\Ilyès\AppData\Roaming\WNR
O43 - CFD: 03/06/2010 - 18:59:58 - [0] ----D- C:\Users\Ilyès\AppData\Roaming\Yahoo!
|
| |
|
|
|
|
VIRUS/C/C
345 messages
Processeur
|
Le 03 Avril 2011 à 17h30
Salut
* Le log ZHPDiag que tu as posté en plusieurs parties est incomplet !!!
• Héberge le rapport ZHPDiag.txt sur ce site,
>> cijoint.fr
• puis copie/colle le lien fourni
Pour le rapport
• Rends toi sur >> cijoint.fr
• clic sur Parcourir
• trouve >> le rapport que tu viens d'enregistrer qui doit par exemple être sur ton bureau
• et valide en cliquant sur >> Cliquez ici pour déposer le Fichier
• Un lien de ce genre [http://www.cijoint.fr/cjlink.php?file=cj201004/cijecaEGX.txt] te sera généré,
• Il te suffit de le poster
Citation
• Sinon tu postes les rapports en plusieurs parties >> mais ne Entier
* Sinon essayes ici
* Rends toi sur >> malekal.com
* Clique sur "Parcourir "
* Sélectionne le rapport
*Clique ensuite sur " Envoyer le fichier " et copie/colle le lien dans ton prochain message
@+ VIRUS/C/C
|
| |
Windows 7 SP1// Windows Vista SP2 // Windows XP SP3 --- On sait tout mais rien ne Fonctionne Ou tout fonctionne mais on ne sait pourquoi!
|
|
|
|
zarzar
9 messages
Neurone isolé
|
Le 04 Avril 2011 à 09h25
Bonjour, impossible d'uploader un fichier comme je le disais et je n'arrive pas non plus à poster la suite??? |
| |
|
|
|
|
Demander de l'aide
RSS
Profil
Les Pays-Bas inscrivent la neutralité du net dans la loi
Facebook Messenger: Plus besoin d'un navigateur web pour discuter sur le chat Facebook
Google Drive: Google lancerait bientôt un service de stockage en ligne
Un tiers des divorces en Angleterre seraient liés à Facebook
Des photos privées de Mark Zuckerberg dévoilées à cause d'une faille de sécurité Facebook
Rock-It 2.0 : un amplificateur à se mettre dans la poche
Google Chrome passe devant Firefox et devient le second navigateur mondial
Procurez vous le nouveau design de Youtube dès maintenant
Appelez vos amis Facebook via Skype - même s'ils n'ont pas Skype!
Impact des cyber-attaques sur le monde réel: Aux portes d'une guerre?
Vider son cache DNS sous Windows, Mac et Linux
Achetez et vendez votre matériel multimédia d'occasion sur notre service de petites annonces informatiques gratuites
