Probleme antivir
Résolu
Utilisateur anonyme
-
Utilisateur anonyme -
Utilisateur anonyme -
Bonjour, j'ai un souci avec mon pc il ne veut plus rien savoir, CCleaner ne répond plus, antivir et comodo non plus, je les ais désinstallé puis réinstallé mais rien ne s'installe.Si quelqu'un pouvait m'aider.Merci d'avance.
A voir également:
- Probleme antivir
- Antivir - Télécharger - Antivirus & Antimalwares
- Avira Free Security - Télécharger - Antivirus & Antimalwares
- Aide probleme antispyware qui me fait buger.. - Forum Virus
- Fenetres intempestives souvrent avec "antivir - Forum Virus
- Avira antivir ✓ - Forum Antivirus
44 réponses
Malwarebytes' Anti-Malware 1.41
Version de la base de données: 2876
Windows 5.1.2600 Service Pack 3
30/09/2009 19:03:41
mbam-log-2009-09-30 (19-03-41).txt
Type de recherche: Examen complet (C:\|)
Eléments examinés: 132360
Temps écoulé: 15 minute(s), 35 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
Version de la base de données: 2876
Windows 5.1.2600 Service Pack 3
30/09/2009 19:03:41
mbam-log-2009-09-30 (19-03-41).txt
Type de recherche: Examen complet (C:\|)
Eléments examinés: 132360
Temps écoulé: 15 minute(s), 35 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
On va confirmer ça :
SuperAntiSpyware ---->
[x] Télécharge SuperAntiSpyware à cette adresse : http://dl.commentcamarche.net/www.commentcamarche.net/download/files/SUPERAntiSpyware4.28.1010.exe
[x] Suis la procédure d'installation
[x] Séléctionne " French " dans la fenêtre " language " qui s'ouvrira
[x] Clique sur " Oui " dans la fenêtre qui te demanderas si tu veux mettre à jour SuperAntiSpyware
[x] Dans la fenêtre de configuration qui s'ouvrira avec la MaJ , laisse les options par défaut et clique sur suivant.
[x] Au menu principal, séléctionne " Scanner votre ordinateur "
[x] A droite de la fenêtre, coche " Executer scan complet " puis clique sur " Suivant "
[x] Patiente pendant le scan
[x] Si des éléments sont détectés, vérifie qu'ils sont tous cochés plus clique sur suivant
[x] Il te sera peut être proposé de redémarrer, fais le.
[x] Relance SaS, puis clique sur " Préférences "
[x] Va dans l'onglet " Statistiques/Journaux de bord "
[x] Clique sur le rapport puis sur " Voir le journal de bord "
[x] Copie/Colle son contenu ( CTRL+A pour tout séléctionner, CTRL+C pour copier, CTRL+V pour coller ) dans ton prochain message.
SuperAntiSpyware ---->
[x] Télécharge SuperAntiSpyware à cette adresse : http://dl.commentcamarche.net/www.commentcamarche.net/download/files/SUPERAntiSpyware4.28.1010.exe
[x] Suis la procédure d'installation
[x] Séléctionne " French " dans la fenêtre " language " qui s'ouvrira
[x] Clique sur " Oui " dans la fenêtre qui te demanderas si tu veux mettre à jour SuperAntiSpyware
[x] Dans la fenêtre de configuration qui s'ouvrira avec la MaJ , laisse les options par défaut et clique sur suivant.
[x] Au menu principal, séléctionne " Scanner votre ordinateur "
[x] A droite de la fenêtre, coche " Executer scan complet " puis clique sur " Suivant "
[x] Patiente pendant le scan
[x] Si des éléments sont détectés, vérifie qu'ils sont tous cochés plus clique sur suivant
[x] Il te sera peut être proposé de redémarrer, fais le.
[x] Relance SaS, puis clique sur " Préférences "
[x] Va dans l'onglet " Statistiques/Journaux de bord "
[x] Clique sur le rapport puis sur " Voir le journal de bord "
[x] Copie/Colle son contenu ( CTRL+A pour tout séléctionner, CTRL+C pour copier, CTRL+V pour coller ) dans ton prochain message.
SUPERAntiSpyware Scan Log
https://www.superantispyware.com/
Generated 09/30/2009 at 07:26 PM
Application Version : 4.28.1010
Core Rules Database Version : 4136
Trace Rules Database Version: 2068
Scan type : Complete Scan
Total Scan Time : 00:12:46
Memory items scanned : 570
Memory threats detected : 0
Registry items scanned : 6177
Registry threats detected : 0
File items scanned : 12448
File threats detected : 17
Adware.Tracking Cookie
C:\Documents and Settings\stephane\Cookies\stephane@tradedoubler[1].txt
C:\Documents and Settings\stephane\Cookies\stephane@atdmt[1].txt
C:\Documents and Settings\stephane\Cookies\stephane@bluestreak[1].txt
C:\Documents and Settings\stephane\Cookies\stephane@smartadserver[2].txt
Trojan.Agent/Gen
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP3\A0000561.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP3\A0000610.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP4\A0000742.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP4\A0000754.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP4\A0000767.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP5\A0000979.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP5\A0000988.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP5\A0001004.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP5\A0001086.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP6\A0001134.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP6\A0001185.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP6\A0001199.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP8\A0001329.SYS
https://www.superantispyware.com/
Generated 09/30/2009 at 07:26 PM
Application Version : 4.28.1010
Core Rules Database Version : 4136
Trace Rules Database Version: 2068
Scan type : Complete Scan
Total Scan Time : 00:12:46
Memory items scanned : 570
Memory threats detected : 0
Registry items scanned : 6177
Registry threats detected : 0
File items scanned : 12448
File threats detected : 17
Adware.Tracking Cookie
C:\Documents and Settings\stephane\Cookies\stephane@tradedoubler[1].txt
C:\Documents and Settings\stephane\Cookies\stephane@atdmt[1].txt
C:\Documents and Settings\stephane\Cookies\stephane@bluestreak[1].txt
C:\Documents and Settings\stephane\Cookies\stephane@smartadserver[2].txt
Trojan.Agent/Gen
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP3\A0000561.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP3\A0000610.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP4\A0000742.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP4\A0000754.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP4\A0000767.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP5\A0000979.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP5\A0000988.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP5\A0001004.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP5\A0001086.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP6\A0001134.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP6\A0001185.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP6\A0001199.SYS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{F2E81428-097C-468E-8875-76813ED81B18}\RP8\A0001329.SYS
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Que dois-je faire maintenant il n'y a pas de rapport? http://www.cijoint.fr/cjlink.php?file=cj200909/cij8plBkB7.jpg
Le rapport se trouve sous C:\ESET\...\log.txt
Mais sur ton screen il est marqué que nod32 n'a trouvé aucun virus, tu peux cocher " désinstaller l'application... "
Refais un scan RSIT
Des améliorations au niveau du PC ?
Mais sur ton screen il est marqué que nod32 n'a trouvé aucun virus, tu peux cocher " désinstaller l'application... "
Refais un scan RSIT
Des améliorations au niveau du PC ?
Logfile of random's system information tool 1.06 (written by random/random)
Run by stephane at 2009-09-30 20:29:17
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 153 GB (64%) free of 238 GB
Total RAM: 958 MB (55% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:46:29, on 30/09/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16876)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\stephane\Mes documents\Logiciels\Utorrent - .exe
C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\Wanadoo\Watch.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Documents and Settings\stephane\Bureau\RSIT.exe
C:\Program Files\trend micro\stephane.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://runonce.msn.com/runonce3.aspx
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: (no name) - {E9FAB13D-4600-49E1-90D1-EE961C859D39} - (no file)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [SMSTray] C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Documents and Settings\stephane\Mes documents\Logiciels\Utorrent - .exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user')
O4 - Startup: Secunia PSI.lnk = C:\Program Files\Secunia\PSI\psi.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O20 - AppInit_DLLs:
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
Run by stephane at 2009-09-30 20:29:17
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 153 GB (64%) free of 238 GB
Total RAM: 958 MB (55% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:46:29, on 30/09/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16876)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\stephane\Mes documents\Logiciels\Utorrent - .exe
C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\Wanadoo\Watch.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Documents and Settings\stephane\Bureau\RSIT.exe
C:\Program Files\trend micro\stephane.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://runonce.msn.com/runonce3.aspx
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: (no name) - {E9FAB13D-4600-49E1-90D1-EE961C859D39} - (no file)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [SMSTray] C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Documents and Settings\stephane\Mes documents\Logiciels\Utorrent - .exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user')
O4 - Startup: Secunia PSI.lnk = C:\Program Files\Secunia\PSI\psi.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O20 - AppInit_DLLs:
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
Ok, désinstalle par ajout/supression de programme yahoo! toolbar et windows live toolbar.
- Désinstalle également SuperAntiSpyware.
Fais ensuite ceci :
CCleaner ----->
[x] Télécharge CCleaner à cette adresse : https://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.html
[X] Choisis " french " pour l'installation.
[x] /!\ Important : Décoche " Ajouter la barre d'outil Yahoo toolbar ! /!\
[x] Lance le, dans la partie " nettoyeur " clique sur " analyser à droite puis ensuite nettoyer
[x] Clique sur l'onglet " Registre " puis " chercher les erreurs "
[x] Clique sur " corriger les erreurs " puis un message de demandera si tu veux faire un backup, accepte en cliquant sur " oui " et enregistre le quelque part.
[x] Clique enfin sur " Corriger toutes les erreurs séléctionnées "
[x] Pense à renouveller l'opération assez souvent pour garder un pc propre
-------------
Toolbar S&D ----->
Télécharge Toolbar S&D Ici : https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cpVobGk5bHnxrhQ4yaoEUDJvOYNnEGyYjgqHZz5GqZLfutR3fMFPlsC3-CGIilfupPAguYATNyua3csodN_frdMK8sSzUpit10Yac-QJCOkMqJKkbdKcP6ySs8trWPgoNVIq4TGGWCe6o0txXQv-ZueJF9vZzw3RXsGwFYIqN2lvF2LPdQzS8mE1d5kWOVOz6EMzQuE5-lClSJM869uq3oc7-t7yg%3D%3D&attredirects=3
Suis le tutorial disponible à cette adresse : https://www.malekal.com/adwcleaner-supprimer-virus-adwares-pup/
Lance l'option 1 ( Recherche )
Puis copie/colle le rapport dans ton prochain message ( Il se trouve sous C:\TB.txt )
-----------
On a presque terminé.
- Désinstalle également SuperAntiSpyware.
Fais ensuite ceci :
CCleaner ----->
[x] Télécharge CCleaner à cette adresse : https://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.html
[X] Choisis " french " pour l'installation.
[x] /!\ Important : Décoche " Ajouter la barre d'outil Yahoo toolbar ! /!\
[x] Lance le, dans la partie " nettoyeur " clique sur " analyser à droite puis ensuite nettoyer
[x] Clique sur l'onglet " Registre " puis " chercher les erreurs "
[x] Clique sur " corriger les erreurs " puis un message de demandera si tu veux faire un backup, accepte en cliquant sur " oui " et enregistre le quelque part.
[x] Clique enfin sur " Corriger toutes les erreurs séléctionnées "
[x] Pense à renouveller l'opération assez souvent pour garder un pc propre
-------------
Toolbar S&D ----->
Télécharge Toolbar S&D Ici : https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cpVobGk5bHnxrhQ4yaoEUDJvOYNnEGyYjgqHZz5GqZLfutR3fMFPlsC3-CGIilfupPAguYATNyua3csodN_frdMK8sSzUpit10Yac-QJCOkMqJKkbdKcP6ySs8trWPgoNVIq4TGGWCe6o0txXQv-ZueJF9vZzw3RXsGwFYIqN2lvF2LPdQzS8mE1d5kWOVOz6EMzQuE5-lClSJM869uq3oc7-t7yg%3D%3D&attredirects=3
Suis le tutorial disponible à cette adresse : https://www.malekal.com/adwcleaner-supprimer-virus-adwares-pup/
Lance l'option 1 ( Recherche )
Puis copie/colle le rapport dans ton prochain message ( Il se trouve sous C:\TB.txt )
-----------
On a presque terminé.
Message lors de la désinstallation de superantispyre http://www.cijoint.fr/cjlink.php?file=cj200909/cijuQAGr0a.jpg
c'est le rapport de CCleaner Windows Registry Editor Version 5.00
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.Evt]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.Evt\OpenWithList]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pf]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pf\OpenWithList]
[HKEY_CLASSES_ROOT\.dxp\DefaultIcon]
@="C:\\Program Files\\Droppix\\Droppix Label Maker 2.x\\DxLMManager.dll,0"
[HKEY_CLASSES_ROOT\.dxp\shell\open]
[HKEY_CLASSES_ROOT\.dxp\shell\open\Command]
@="\"C:\\Program Files\\Droppix\\Droppix Label Maker 2.x\\DxLabelMaker.exe\" /file:\"%1\""
[HKEY_CLASSES_ROOT\.dxt\DefaultIcon]
@="C:\\Program Files\\Droppix\\Droppix Label Maker 2.x\\DxLMManager.dll,0"
[HKEY_CLASSES_ROOT\.dxt\shell\open]
[HKEY_CLASSES_ROOT\.dxt\shell\open\Command]
@="\"C:\\Program Files\\Droppix\\Droppix Label Maker 2.x\\DxLabelMaker.exe\" /file:\"%1\""
[HKEY_CLASSES_ROOT\CLSID\{0D81DFEC-5610-4A2B-9B57-FC33D21366F0}]
[HKEY_CLASSES_ROOT\CLSID\{0D81DFEC-5610-4A2B-9B57-FC33D21366F0}\LocalServer32]
@="C:\\PROGRA~1\\WI1F86~1\\MESSEN~1\\msnmsgr.exe"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\CLSID\{0D81DFEC-5610-4A2B-9B57-FC33D21366F0}\ProgID]
@="MSNMessenger.MsgrSessionManager"
[HKEY_CLASSES_ROOT\CLSID\{0D81DFEC-5610-4A2B-9B57-FC33D21366F0}\Programmable]
[HKEY_CLASSES_ROOT\CLSID\{0D81DFEC-5610-4A2B-9B57-FC33D21366F0}\Version]
@="1.0"
[HKEY_CLASSES_ROOT\CLSID\{0D81DFEC-5610-4A2B-9B57-FC33D21366F0}\VersionIndependentProgID]
@="MSNMessenger.MsgrSessionManager.1"
[HKEY_CLASSES_ROOT\CLSID\{119CBC23-11B3-4A94-83FB-AFD246765DC7}]
[HKEY_CLASSES_ROOT\CLSID\{119CBC23-11B3-4A94-83FB-AFD246765DC7}\LocalServer32]
@="C:\\PROGRA~1\\WI1F86~1\\MESSEN~1\\msnmsgr.exe"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\CLSID\{119CBC23-11B3-4A94-83FB-AFD246765DC7}\Programmable]
[HKEY_CLASSES_ROOT\CLSID\{119CBC23-11B3-4A94-83FB-AFD246765DC7}\Version]
@="1.0"
[HKEY_CLASSES_ROOT\CLSID\{17BE27FE-0B6C-4234-B487-FFC6E3DCA2D6}]
[HKEY_CLASSES_ROOT\CLSID\{17BE27FE-0B6C-4234-B487-FFC6E3DCA2D6}\LocalServer32]
@="C:\\PROGRA~1\\WI1F86~1\\MESSEN~1\\msnmsgr.exe"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\CLSID\{17BE27FE-0B6C-4234-B487-FFC6E3DCA2D6}\Version]
@="1.0"
[HKEY_CLASSES_ROOT\CLSID\{4ECFCE7C-5F9E-4EED-96A3-30978459FB7F}]
[HKEY_CLASSES_ROOT\CLSID\{4ECFCE7C-5F9E-4EED-96A3-30978459FB7F}\LocalServer32]
@="C:\\PROGRA~1\\WI1F86~1\\MESSEN~1\\msnmsgr.exe"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\CLSID\{4ECFCE7C-5F9E-4EED-96A3-30978459FB7F}\Programmable]
[HKEY_CLASSES_ROOT\CLSID\{4ECFCE7C-5F9E-4EED-96A3-30978459FB7F}\Version]
@="1.0"
[HKEY_CLASSES_ROOT\CLSID\{5C4C8078-24CF-4c71-B05E-8B1D935DB5AC}]
@=""
[HKEY_CLASSES_ROOT\CLSID\{5C4C8078-24CF-4c71-B05E-8B1D935DB5AC}\LocalServer32]
@="\"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\""
[HKEY_CLASSES_ROOT\CLSID\{762DAFB9-15BD-4b41-B919-F3D5023D1E78}]
@=""
[HKEY_CLASSES_ROOT\CLSID\{762DAFB9-15BD-4b41-B919-F3D5023D1E78}\LocalServer32]
@="\"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\""
[HKEY_CLASSES_ROOT\CLSID\{77D92A1D-13B7-43CC-820E-60B3ED572453}]
[HKEY_CLASSES_ROOT\CLSID\{77D92A1D-13B7-43CC-820E-60B3ED572453}\LocalServer32]
@="C:\\PROGRA~1\\WI1F86~1\\MESSEN~1\\msnmsgr.exe"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\CLSID\{77D92A1D-13B7-43CC-820E-60B3ED572453}\Programmable]
[HKEY_CLASSES_ROOT\CLSID\{77D92A1D-13B7-43CC-820E-60B3ED572453}\Version]
@="1.0"
[HKEY_CLASSES_ROOT\CLSID\{7F72DD4F-F9DB-40B1-A248-1F77F3C3B132}]
[HKEY_CLASSES_ROOT\CLSID\{7F72DD4F-F9DB-40B1-A248-1F77F3C3B132}\LocalServer32]
@="C:\\PROGRA~1\\WI1F86~1\\MESSEN~1\\msnmsgr.exe"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\CLSID\{7F72DD4F-F9DB-40B1-A248-1F77F3C3B132}\Version]
@="1.0"
[HKEY_CLASSES_ROOT\CLSID\{8A96A6C6-3534-4E81-9967-47F2053A9C0A}]
[HKEY_CLASSES_ROOT\CLSID\{8A96A6C6-3534-4E81-9967-47F2053A9C0A}\LocalServer32]
@="C:\\PROGRA~1\\WI1F86~1\\MESSEN~1\\msnmsgr.exe"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\CLSID\{8A96A6C6-3534-4E81-9967-47F2053A9C0A}\Programmable]
[HKEY_CLASSES_ROOT\CLSID\{8A96A6C6-3534-4E81-9967-47F2053A9C0A}\Version]
@="1.0"
[HKEY_CLASSES_ROOT\CLSID\{A3E84F97-4A68-4e42-9976-DA8DF946B571}]
@=""
[HKEY_CLASSES_ROOT\CLSID\{A3E84F97-4A68-4e42-9976-DA8DF946B571}\LocalServer32]
@="\"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\""
[HKEY_CLASSES_ROOT\CLSID\{E13AAC70-70AE-4988-808C-B267F2C20E79}]
[HKEY_CLASSES_ROOT\CLSID\{E13AAC70-70AE-4988-808C-B267F2C20E79}\LocalServer32]
@="C:\\PROGRA~1\\WI1F86~1\\MESSEN~1\\msnmsgr.exe"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\CLSID\{E13AAC70-70AE-4988-808C-B267F2C20E79}\ProgID]
@="MSNMessenger.P4QuickLaunch"
[HKEY_CLASSES_ROOT\CLSID\{E13AAC70-70AE-4988-808C-B267F2C20E79}\Programmable]
[HKEY_CLASSES_ROOT\CLSID\{E13AAC70-70AE-4988-808C-B267F2C20E79}\Version]
@="1.0"
[HKEY_CLASSES_ROOT\CLSID\{E13AAC70-70AE-4988-808C-B267F2C20E79}\VersionIndependentProgID]
@="MSNMessenger.P4QuickLaunch.1"
[HKEY_CLASSES_ROOT\CLSID\{ECE0D1C0-1D1F-4EBF-A8BD-A37AAC028514}]
@="CDxGlobalService Object"
"AppID"="{215B82AF-10BB-4C82-ADF1-8A69743A0AAC}"
[HKEY_CLASSES_ROOT\CLSID\{ECE0D1C0-1D1F-4EBF-A8BD-A37AAC028514}\LocalServer32]
@="\"C:\\Program Files\\Fichiers communs\\Droppix\\DxService.exe\""
"ThreadingModel"="apartment"
[HKEY_CLASSES_ROOT\CLSID\{ECE0D1C0-1D1F-4EBF-A8BD-A37AAC028514}\ProgID]
@="DxService.DxGlobalService.1"
[HKEY_CLASSES_ROOT\CLSID\{ECE0D1C0-1D1F-4EBF-A8BD-A37AAC028514}\Programmable]
[HKEY_CLASSES_ROOT\CLSID\{ECE0D1C0-1D1F-4EBF-A8BD-A37AAC028514}\TypeLib]
@="{215B82AF-10BB-4C82-ADF1-8A69743A0AAC}"
[HKEY_CLASSES_ROOT\CLSID\{ECE0D1C0-1D1F-4EBF-A8BD-A37AAC028514}\VersionIndependentProgID]
@="DxService.DxGlobalService"
[HKEY_CLASSES_ROOT\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2}]
@="YMECompPlugin Class"
"AppID"="{7D831388-D405-4272-9511-A07440AD2927}"
[HKEY_CLASSES_ROOT\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2}\InprocServer32]
@="C:\\Program Files\\Yahoo!\\Companion\\Installs\\cpn\\YMERemote.dll"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2}\ProgID]
@="YMERemote.YMECompPlugin.1"
[HKEY_CLASSES_ROOT\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2}\Programmable]
[HKEY_CLASSES_ROOT\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2}\TypeLib]
@="{B722ED8B-0B38-408E-BB89-260C73BCF3D4}"
[HKEY_CLASSES_ROOT\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2}\VersionIndependentProgID]
@="YMERemote.YMECompPlugin"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\MSNMSGR.EXE]
@="C:\\Program Files\\Windows Live\\Messenger\\MsnMsgr.Exe"
"Path"="C:\\Program Files\\Windows Live\\Messenger\\"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\\Documents and Settings\\stephane\\Application Data\\SUPERAntiSpyware.com\\SUPERAntiSpyware\\"="1"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\HijackThis]
"DisplayName"="HijackThis 2.0.2"
"UninstallString"="\"C:\\Documents and Settings\\stephane\\Bureau\\HijackThis.exe\" /uninstall"
"DisplayIcon"="C:\\Documents and Settings\\stephane\\Bureau\\HijackThis.exe"
"DisplayVersion"="2.0.2"
"Publisher"="TrendMicro"
[HKEY_CURRENT_USER\Software\ESET]
[HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications]
[HKEY_LOCAL_MACHINE\Software\Droppix]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="\"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\" /background"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Avira]
"Order"=hex:08,00,00,00,02,00,00,00,88,00,00,00,01,00,00,00,01,00,00,00,7c,\
00,00,00,00,00,00,00,6e,00,00,00,41,75,67,4d,02,00,00,00,01,00,00,00,5c,00,\
31,00,00,00,00,00,3e,3b,93,70,10,00,41,4e,54,49,56,49,7e,31,00,00,36,00,03,\
00,04,00,ef,be,3e,3b,93,70,3e,3b,eb,7b,14,00,00,00,41,00,6e,00,74,00,69,00,\
56,00,69,00,72,00,20,00,44,00,65,00,73,00,6b,00,74,00,6f,00,70,00,00,00,18,\
00,0e,00,00,00,0a,00,ef,be,00,00,00,00,18,00,00,00,00,00,00,00,00,00
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Avira\AntiVir Desktop]
"Order"=hex:08,00,00,00,02,00,00,00,aa,01,00,00,01,00,00,00,03,00,00,00,82,\
00,00,00,00,00,00,00,74,00,00,00,41,75,67,4d,02,00,00,00,01,00,00,00,62,00,\
32,00,a6,06,00,00,3e,3b,93,70,20,00,41,49,44,45,41,4e,7e,31,2e,4c,4e,4b,00,\
00,38,00,03,00,04,00,ef,be,3e,3b,93,70,3e,3b,ec,7b,14,00,00,00,41,00,69,00,\
64,00,65,00,20,00,41,00,6e,00,74,00,69,00,56,00,69,00,72,00,2e,00,6c,00,6e,\
00,6b,00,00,00,1c,00,0e,00,00,00,0a,00,ef,be,00,00,00,00,1c,00,00,00,00,00,\
00,00,00,00,92,00,00,00,01,00,00,00,84,00,00,00,41,75,67,4d,02,00,00,00,01,\
00,00,00,72,00,32,00,3c,03,00,00,3e,3b,93,70,20,00,41,4e,54,49,56,49,7e,31,\
2e,4c,4e,4b,00,00,48,00,03,00,04,00,ef,be,3e,3b,93,70,3e,3b,ec,7b,14,00,00,\
00,41,00,6e,00,74,00,69,00,56,00,69,00,72,00,20,00,73,00,75,00,72,00,20,00,\
49,00,6e,00,74,00,65,00,72,00,6e,00,65,00,74,00,2e,00,6c,00,6e,00,6b,00,00,\
00,1c,00,0e,00,00,00,0a,00,ef,be,00,00,00,00,1c,00,00,00,00,00,00,00,00,00,\
8a,00,00,00,02,00,00,00,7c,00,00,00,41,75,67,4d,02,00,00,00,01,00,00,00,6a,\
00,32,00,bd,06,00,00,3e,3b,93,70,20,00,44,4d,41,52,52,45,7e,31,2e,4c,4e,4b,\
00,00,40,00,03,00,04,00,ef,be,3e,3b,93,70,3e,3b,ec,7b,14,00,00,00,44,00,e9,\
00,6d,00,61,00,72,00,72,00,65,00,72,00,20,00,41,00,6e,00,74,00,69,00,56,00,\
69,00,72,00,2e,00,6c,00,6e,00,6b,00,00,00,1c,00,0e,00,00,00,0a,00,ef,be,00,\
00,00,00,1c,00,00,00,00,00,00,00,00,00
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Avira\AntiVir Desktop]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Comodo]
"Order"=hex:08,00,00,00,02,00,00,00,9a,00,00,00,01,00,00,00,01,00,00,00,8e,\
00,00,00,00,00,00,00,80,00,00,00,41,75,67,4d,02,00,00,00,01,00,00,00,6e,00,\
31,00,00,00,00,00,38,3b,00,a9,10,00,43,4f,4d,4f,44,4f,7e,31,00,00,48,00,03,\
00,04,00,ef,be,38,3b,00,a9,3e,3b,2b,4f,14,00,00,00,43,00,4f,00,4d,00,4f,00,\
44,00,4f,00,20,00,49,00,6e,00,74,00,65,00,72,00,6e,00,65,00,74,00,20,00,53,\
00,65,00,63,00,75,00,72,00,69,00,74,00,79,00,00,00,18,00,0e,00,00,00,0a,00,\
ef,be,00,00,00,00,18,00,00,00,00,00,00,00,00,00
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Comodo\COMODO Internet Security]
"Order"=hex:08,00,00,00,02,00,00,00,38,01,00,00,01,00,00,00,02,00,00,00,9a,\
00,00,00,00,00,00,00,8c,00,00,00,41,75,67,4d,02,00,00,00,01,00,00,00,7a,00,\
32,00,3a,03,00,00,38,3b,00,a9,20,00,43,4f,4d,4f,44,4f,7e,31,2e,4c,4e,4b,00,\
00,50,00,03,00,04,00,ef,be,38,3b,00,a9,3c,3b,f0,a2,14,00,00,00,43,00,4f,00,\
4d,00,4f,00,44,00,4f,00,20,00,49,00,6e,00,74,00,65,00,72,00,6e,00,65,00,74,\
00,20,00,53,00,65,00,63,00,75,00,72,00,69,00,74,00,79,00,2e,00,6c,00,6e,00,\
6b,00,00,00,1c,00,0e,00,00,00,0a,00,ef,be,00,00,00,00,1c,00,00,00,00,00,00,\
00,00,00,92,00,00,00,01,00,00,00,84,00,00,00,41,75,67,4d,02,00,00,00,01,00,\
00,00,72,00,32,00,57,03,00,00,38,3b,00,a9,20,00,55,4e,49,4e,53,54,7e,31,2e,\
4c,4e,4b,00,00,48,00,03,00,04,00,ef,be,38,3b,00,a9,3c,3b,f0,a2,14,00,00,00,\
55,00,6e,00,69,00,6e,00,73,00,74,00,61,00,6c,00,6c,00,20,00,6f,00,72,00,20,\
00,55,00,70,00,67,00,72,00,61,00,64,00,65,00,2e,00,6c,00,6e,00,6b,00,00,00,\
1c,00,0e,00,00,00,0a,00,ef,be,00,00,00,00,1c,00,00,00,00,00,00,00,00,00
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Comodo\COMODO Internet Security]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Droppix Label Maker 2.x]
"Order"=hex:08,00,00,00,02,00,00,00,3c,02,00,00,01,00,00,00,04,00,00,00,62,\
00,00,00,00,00,00,00,54,00,00,00,41,75,67,4d,02,00,00,00,01,00,00,00,42,00,\
31,00,00,00,00,00,3e,3b,37,3f,10,00,41,69,64,65,00,00,20,00,03,00,04,00,ef,\
be,3e,3b,37,3f,3e,3b,38,3f,14,00,00,00,41,00,69,00,64,00,65,00,00,00,14,00,\
0e,00,00,00,0a,00,ef,be,00,00,00,00,14,00,00,00,00,00,00,00,00,00,b0,00,00,\
00,01,00,00,00,a2,00,00,00,41,75,67,4d,02,00,00,00,01,00,00,00,90,00,32,00,\
af,06,00,00,3e,3b,37,3f,20,00,44,53,49,4e,53,54,7e,31,2e,4c,4e,4b,00,00,66,\
00,03,00,04,00,ef,be,3e,3b,37,3f,3e,3b,37,3f,14,00,00,00,44,00,e9,00,73,00,\
69,00,6e,00,73,00,74,00,61,00,6c,00,6c,00,61,00,74,00,69,00,6f,00,6e,00,20,\
00,44,00,72,00,6f,00,70,00,70,00,69,00,78,00,20,00,4c,00,61,00,62,00,65,00,\
6c,00,20,00,4d,00,61,00,6b,00,65,00,72,00,2e,00,6c,00,6e,00,6b,00,00,00,1c,\
00,0e,00,00,00,0a,00,ef,be,00,00,00,00,1c,00,00,00,00,00,00,00,00,00,90,00,\
00,00,02,00,00,00,82,00,00,00,41,75,67,4d,02,00,00,00,01,00,00,00,70,00,32,\
00,37,03,00,00,3e,3b,37,3f,20,00,44,52,4f,50,50,49,7e,31,2e,4c,4e,4b,00,00,\
46,00,03,00,04,00,ef,be,3e,3b,37,3f,3e,3b,37,3f,14,00,00,00,44,00,72,00,6f,\
00,70,00,70,00,69,00,78,00,20,00,4c,00,61,00,62,00,65,00,6c,00,20,00,4d,00,\
61,00,6b,00,65,00,72,00,2e,00,6c,00,6e,00,6b,00,00,00,1c,00,0e,00,00,00,0a,\
00,ef,be,00,00,00,00,1c,00,00,00,00,00,00,00,00,00,8e,00,00,00,03,00,00,00,\
80,00,00,00,41,75,67,4d,02,00,00,00,01,00,00,00,6e,00,32,00,eb,05,00,00,3e,\
3b,37,3f,20,00,44,52,4f,50,50,49,7e,32,2e,4c,4e,4b,00,00,44,00,03,00,04,00,\
ef,be,3e,3b,37,3f,3e,3b,37,3f,14,00,00,00,44,00,72,00,6f,00,70,00,70,00,69,\
00,78,00,20,00,73,00,75,00,72,00,20,00,6c,00,65,00,20,00,57,00,65,00,62,00,\
2e,00,6c,00,6e,00,6b,00,00,00,1c,00,0e,00,00,00,0a,00,ef,be,00,00,00,00,1c,\
00,00,00,00,00,00,00,00,00
[HKEY_CURRENT_USER\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="msnmsgr"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\\Documents and Settings\\stephane\\Application Data\\drivers\\winupgro.exe"="winupgro"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\\Program Files\\SUPERAntiSpyware\\SUPERAntiSpyware.exe"="SUPERAntiSpyware Application"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\\PROGRA~1\\Yahoo!\\Common\\UNYT_W~1.EXE"="Yahoo! Toolbar Uninstall Setup"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\\Program Files\\Yahoo!\\Common\\unyt.exe"="Yahoo! Toolbar Setup"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\\DOCUME~1\\stephane\\LOCALS~1\\Temp\\~nsu.tmp\\Bu_.exe"="Yahoo! Toolbar Setup"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.Evt]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.Evt\OpenWithList]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pf]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pf\OpenWithList]
[HKEY_CLASSES_ROOT\.dxp\DefaultIcon]
@="C:\\Program Files\\Droppix\\Droppix Label Maker 2.x\\DxLMManager.dll,0"
[HKEY_CLASSES_ROOT\.dxp\shell\open]
[HKEY_CLASSES_ROOT\.dxp\shell\open\Command]
@="\"C:\\Program Files\\Droppix\\Droppix Label Maker 2.x\\DxLabelMaker.exe\" /file:\"%1\""
[HKEY_CLASSES_ROOT\.dxt\DefaultIcon]
@="C:\\Program Files\\Droppix\\Droppix Label Maker 2.x\\DxLMManager.dll,0"
[HKEY_CLASSES_ROOT\.dxt\shell\open]
[HKEY_CLASSES_ROOT\.dxt\shell\open\Command]
@="\"C:\\Program Files\\Droppix\\Droppix Label Maker 2.x\\DxLabelMaker.exe\" /file:\"%1\""
[HKEY_CLASSES_ROOT\CLSID\{0D81DFEC-5610-4A2B-9B57-FC33D21366F0}]
[HKEY_CLASSES_ROOT\CLSID\{0D81DFEC-5610-4A2B-9B57-FC33D21366F0}\LocalServer32]
@="C:\\PROGRA~1\\WI1F86~1\\MESSEN~1\\msnmsgr.exe"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\CLSID\{0D81DFEC-5610-4A2B-9B57-FC33D21366F0}\ProgID]
@="MSNMessenger.MsgrSessionManager"
[HKEY_CLASSES_ROOT\CLSID\{0D81DFEC-5610-4A2B-9B57-FC33D21366F0}\Programmable]
[HKEY_CLASSES_ROOT\CLSID\{0D81DFEC-5610-4A2B-9B57-FC33D21366F0}\Version]
@="1.0"
[HKEY_CLASSES_ROOT\CLSID\{0D81DFEC-5610-4A2B-9B57-FC33D21366F0}\VersionIndependentProgID]
@="MSNMessenger.MsgrSessionManager.1"
[HKEY_CLASSES_ROOT\CLSID\{119CBC23-11B3-4A94-83FB-AFD246765DC7}]
[HKEY_CLASSES_ROOT\CLSID\{119CBC23-11B3-4A94-83FB-AFD246765DC7}\LocalServer32]
@="C:\\PROGRA~1\\WI1F86~1\\MESSEN~1\\msnmsgr.exe"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\CLSID\{119CBC23-11B3-4A94-83FB-AFD246765DC7}\Programmable]
[HKEY_CLASSES_ROOT\CLSID\{119CBC23-11B3-4A94-83FB-AFD246765DC7}\Version]
@="1.0"
[HKEY_CLASSES_ROOT\CLSID\{17BE27FE-0B6C-4234-B487-FFC6E3DCA2D6}]
[HKEY_CLASSES_ROOT\CLSID\{17BE27FE-0B6C-4234-B487-FFC6E3DCA2D6}\LocalServer32]
@="C:\\PROGRA~1\\WI1F86~1\\MESSEN~1\\msnmsgr.exe"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\CLSID\{17BE27FE-0B6C-4234-B487-FFC6E3DCA2D6}\Version]
@="1.0"
[HKEY_CLASSES_ROOT\CLSID\{4ECFCE7C-5F9E-4EED-96A3-30978459FB7F}]
[HKEY_CLASSES_ROOT\CLSID\{4ECFCE7C-5F9E-4EED-96A3-30978459FB7F}\LocalServer32]
@="C:\\PROGRA~1\\WI1F86~1\\MESSEN~1\\msnmsgr.exe"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\CLSID\{4ECFCE7C-5F9E-4EED-96A3-30978459FB7F}\Programmable]
[HKEY_CLASSES_ROOT\CLSID\{4ECFCE7C-5F9E-4EED-96A3-30978459FB7F}\Version]
@="1.0"
[HKEY_CLASSES_ROOT\CLSID\{5C4C8078-24CF-4c71-B05E-8B1D935DB5AC}]
@=""
[HKEY_CLASSES_ROOT\CLSID\{5C4C8078-24CF-4c71-B05E-8B1D935DB5AC}\LocalServer32]
@="\"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\""
[HKEY_CLASSES_ROOT\CLSID\{762DAFB9-15BD-4b41-B919-F3D5023D1E78}]
@=""
[HKEY_CLASSES_ROOT\CLSID\{762DAFB9-15BD-4b41-B919-F3D5023D1E78}\LocalServer32]
@="\"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\""
[HKEY_CLASSES_ROOT\CLSID\{77D92A1D-13B7-43CC-820E-60B3ED572453}]
[HKEY_CLASSES_ROOT\CLSID\{77D92A1D-13B7-43CC-820E-60B3ED572453}\LocalServer32]
@="C:\\PROGRA~1\\WI1F86~1\\MESSEN~1\\msnmsgr.exe"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\CLSID\{77D92A1D-13B7-43CC-820E-60B3ED572453}\Programmable]
[HKEY_CLASSES_ROOT\CLSID\{77D92A1D-13B7-43CC-820E-60B3ED572453}\Version]
@="1.0"
[HKEY_CLASSES_ROOT\CLSID\{7F72DD4F-F9DB-40B1-A248-1F77F3C3B132}]
[HKEY_CLASSES_ROOT\CLSID\{7F72DD4F-F9DB-40B1-A248-1F77F3C3B132}\LocalServer32]
@="C:\\PROGRA~1\\WI1F86~1\\MESSEN~1\\msnmsgr.exe"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\CLSID\{7F72DD4F-F9DB-40B1-A248-1F77F3C3B132}\Version]
@="1.0"
[HKEY_CLASSES_ROOT\CLSID\{8A96A6C6-3534-4E81-9967-47F2053A9C0A}]
[HKEY_CLASSES_ROOT\CLSID\{8A96A6C6-3534-4E81-9967-47F2053A9C0A}\LocalServer32]
@="C:\\PROGRA~1\\WI1F86~1\\MESSEN~1\\msnmsgr.exe"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\CLSID\{8A96A6C6-3534-4E81-9967-47F2053A9C0A}\Programmable]
[HKEY_CLASSES_ROOT\CLSID\{8A96A6C6-3534-4E81-9967-47F2053A9C0A}\Version]
@="1.0"
[HKEY_CLASSES_ROOT\CLSID\{A3E84F97-4A68-4e42-9976-DA8DF946B571}]
@=""
[HKEY_CLASSES_ROOT\CLSID\{A3E84F97-4A68-4e42-9976-DA8DF946B571}\LocalServer32]
@="\"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\""
[HKEY_CLASSES_ROOT\CLSID\{E13AAC70-70AE-4988-808C-B267F2C20E79}]
[HKEY_CLASSES_ROOT\CLSID\{E13AAC70-70AE-4988-808C-B267F2C20E79}\LocalServer32]
@="C:\\PROGRA~1\\WI1F86~1\\MESSEN~1\\msnmsgr.exe"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\CLSID\{E13AAC70-70AE-4988-808C-B267F2C20E79}\ProgID]
@="MSNMessenger.P4QuickLaunch"
[HKEY_CLASSES_ROOT\CLSID\{E13AAC70-70AE-4988-808C-B267F2C20E79}\Programmable]
[HKEY_CLASSES_ROOT\CLSID\{E13AAC70-70AE-4988-808C-B267F2C20E79}\Version]
@="1.0"
[HKEY_CLASSES_ROOT\CLSID\{E13AAC70-70AE-4988-808C-B267F2C20E79}\VersionIndependentProgID]
@="MSNMessenger.P4QuickLaunch.1"
[HKEY_CLASSES_ROOT\CLSID\{ECE0D1C0-1D1F-4EBF-A8BD-A37AAC028514}]
@="CDxGlobalService Object"
"AppID"="{215B82AF-10BB-4C82-ADF1-8A69743A0AAC}"
[HKEY_CLASSES_ROOT\CLSID\{ECE0D1C0-1D1F-4EBF-A8BD-A37AAC028514}\LocalServer32]
@="\"C:\\Program Files\\Fichiers communs\\Droppix\\DxService.exe\""
"ThreadingModel"="apartment"
[HKEY_CLASSES_ROOT\CLSID\{ECE0D1C0-1D1F-4EBF-A8BD-A37AAC028514}\ProgID]
@="DxService.DxGlobalService.1"
[HKEY_CLASSES_ROOT\CLSID\{ECE0D1C0-1D1F-4EBF-A8BD-A37AAC028514}\Programmable]
[HKEY_CLASSES_ROOT\CLSID\{ECE0D1C0-1D1F-4EBF-A8BD-A37AAC028514}\TypeLib]
@="{215B82AF-10BB-4C82-ADF1-8A69743A0AAC}"
[HKEY_CLASSES_ROOT\CLSID\{ECE0D1C0-1D1F-4EBF-A8BD-A37AAC028514}\VersionIndependentProgID]
@="DxService.DxGlobalService"
[HKEY_CLASSES_ROOT\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2}]
@="YMECompPlugin Class"
"AppID"="{7D831388-D405-4272-9511-A07440AD2927}"
[HKEY_CLASSES_ROOT\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2}\InprocServer32]
@="C:\\Program Files\\Yahoo!\\Companion\\Installs\\cpn\\YMERemote.dll"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2}\ProgID]
@="YMERemote.YMECompPlugin.1"
[HKEY_CLASSES_ROOT\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2}\Programmable]
[HKEY_CLASSES_ROOT\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2}\TypeLib]
@="{B722ED8B-0B38-408E-BB89-260C73BCF3D4}"
[HKEY_CLASSES_ROOT\CLSID\{F51C15D4-3D0A-4DBA-A095-EBCC09F24DA2}\VersionIndependentProgID]
@="YMERemote.YMECompPlugin"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\MSNMSGR.EXE]
@="C:\\Program Files\\Windows Live\\Messenger\\MsnMsgr.Exe"
"Path"="C:\\Program Files\\Windows Live\\Messenger\\"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]
"C:\\Documents and Settings\\stephane\\Application Data\\SUPERAntiSpyware.com\\SUPERAntiSpyware\\"="1"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\HijackThis]
"DisplayName"="HijackThis 2.0.2"
"UninstallString"="\"C:\\Documents and Settings\\stephane\\Bureau\\HijackThis.exe\" /uninstall"
"DisplayIcon"="C:\\Documents and Settings\\stephane\\Bureau\\HijackThis.exe"
"DisplayVersion"="2.0.2"
"Publisher"="TrendMicro"
[HKEY_CURRENT_USER\Software\ESET]
[HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications]
[HKEY_LOCAL_MACHINE\Software\Droppix]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="\"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\" /background"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Avira]
"Order"=hex:08,00,00,00,02,00,00,00,88,00,00,00,01,00,00,00,01,00,00,00,7c,\
00,00,00,00,00,00,00,6e,00,00,00,41,75,67,4d,02,00,00,00,01,00,00,00,5c,00,\
31,00,00,00,00,00,3e,3b,93,70,10,00,41,4e,54,49,56,49,7e,31,00,00,36,00,03,\
00,04,00,ef,be,3e,3b,93,70,3e,3b,eb,7b,14,00,00,00,41,00,6e,00,74,00,69,00,\
56,00,69,00,72,00,20,00,44,00,65,00,73,00,6b,00,74,00,6f,00,70,00,00,00,18,\
00,0e,00,00,00,0a,00,ef,be,00,00,00,00,18,00,00,00,00,00,00,00,00,00
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Avira\AntiVir Desktop]
"Order"=hex:08,00,00,00,02,00,00,00,aa,01,00,00,01,00,00,00,03,00,00,00,82,\
00,00,00,00,00,00,00,74,00,00,00,41,75,67,4d,02,00,00,00,01,00,00,00,62,00,\
32,00,a6,06,00,00,3e,3b,93,70,20,00,41,49,44,45,41,4e,7e,31,2e,4c,4e,4b,00,\
00,38,00,03,00,04,00,ef,be,3e,3b,93,70,3e,3b,ec,7b,14,00,00,00,41,00,69,00,\
64,00,65,00,20,00,41,00,6e,00,74,00,69,00,56,00,69,00,72,00,2e,00,6c,00,6e,\
00,6b,00,00,00,1c,00,0e,00,00,00,0a,00,ef,be,00,00,00,00,1c,00,00,00,00,00,\
00,00,00,00,92,00,00,00,01,00,00,00,84,00,00,00,41,75,67,4d,02,00,00,00,01,\
00,00,00,72,00,32,00,3c,03,00,00,3e,3b,93,70,20,00,41,4e,54,49,56,49,7e,31,\
2e,4c,4e,4b,00,00,48,00,03,00,04,00,ef,be,3e,3b,93,70,3e,3b,ec,7b,14,00,00,\
00,41,00,6e,00,74,00,69,00,56,00,69,00,72,00,20,00,73,00,75,00,72,00,20,00,\
49,00,6e,00,74,00,65,00,72,00,6e,00,65,00,74,00,2e,00,6c,00,6e,00,6b,00,00,\
00,1c,00,0e,00,00,00,0a,00,ef,be,00,00,00,00,1c,00,00,00,00,00,00,00,00,00,\
8a,00,00,00,02,00,00,00,7c,00,00,00,41,75,67,4d,02,00,00,00,01,00,00,00,6a,\
00,32,00,bd,06,00,00,3e,3b,93,70,20,00,44,4d,41,52,52,45,7e,31,2e,4c,4e,4b,\
00,00,40,00,03,00,04,00,ef,be,3e,3b,93,70,3e,3b,ec,7b,14,00,00,00,44,00,e9,\
00,6d,00,61,00,72,00,72,00,65,00,72,00,20,00,41,00,6e,00,74,00,69,00,56,00,\
69,00,72,00,2e,00,6c,00,6e,00,6b,00,00,00,1c,00,0e,00,00,00,0a,00,ef,be,00,\
00,00,00,1c,00,00,00,00,00,00,00,00,00
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Avira\AntiVir Desktop]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Comodo]
"Order"=hex:08,00,00,00,02,00,00,00,9a,00,00,00,01,00,00,00,01,00,00,00,8e,\
00,00,00,00,00,00,00,80,00,00,00,41,75,67,4d,02,00,00,00,01,00,00,00,6e,00,\
31,00,00,00,00,00,38,3b,00,a9,10,00,43,4f,4d,4f,44,4f,7e,31,00,00,48,00,03,\
00,04,00,ef,be,38,3b,00,a9,3e,3b,2b,4f,14,00,00,00,43,00,4f,00,4d,00,4f,00,\
44,00,4f,00,20,00,49,00,6e,00,74,00,65,00,72,00,6e,00,65,00,74,00,20,00,53,\
00,65,00,63,00,75,00,72,00,69,00,74,00,79,00,00,00,18,00,0e,00,00,00,0a,00,\
ef,be,00,00,00,00,18,00,00,00,00,00,00,00,00,00
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Comodo\COMODO Internet Security]
"Order"=hex:08,00,00,00,02,00,00,00,38,01,00,00,01,00,00,00,02,00,00,00,9a,\
00,00,00,00,00,00,00,8c,00,00,00,41,75,67,4d,02,00,00,00,01,00,00,00,7a,00,\
32,00,3a,03,00,00,38,3b,00,a9,20,00,43,4f,4d,4f,44,4f,7e,31,2e,4c,4e,4b,00,\
00,50,00,03,00,04,00,ef,be,38,3b,00,a9,3c,3b,f0,a2,14,00,00,00,43,00,4f,00,\
4d,00,4f,00,44,00,4f,00,20,00,49,00,6e,00,74,00,65,00,72,00,6e,00,65,00,74,\
00,20,00,53,00,65,00,63,00,75,00,72,00,69,00,74,00,79,00,2e,00,6c,00,6e,00,\
6b,00,00,00,1c,00,0e,00,00,00,0a,00,ef,be,00,00,00,00,1c,00,00,00,00,00,00,\
00,00,00,92,00,00,00,01,00,00,00,84,00,00,00,41,75,67,4d,02,00,00,00,01,00,\
00,00,72,00,32,00,57,03,00,00,38,3b,00,a9,20,00,55,4e,49,4e,53,54,7e,31,2e,\
4c,4e,4b,00,00,48,00,03,00,04,00,ef,be,38,3b,00,a9,3c,3b,f0,a2,14,00,00,00,\
55,00,6e,00,69,00,6e,00,73,00,74,00,61,00,6c,00,6c,00,20,00,6f,00,72,00,20,\
00,55,00,70,00,67,00,72,00,61,00,64,00,65,00,2e,00,6c,00,6e,00,6b,00,00,00,\
1c,00,0e,00,00,00,0a,00,ef,be,00,00,00,00,1c,00,00,00,00,00,00,00,00,00
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Comodo\COMODO Internet Security]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Droppix Label Maker 2.x]
"Order"=hex:08,00,00,00,02,00,00,00,3c,02,00,00,01,00,00,00,04,00,00,00,62,\
00,00,00,00,00,00,00,54,00,00,00,41,75,67,4d,02,00,00,00,01,00,00,00,42,00,\
31,00,00,00,00,00,3e,3b,37,3f,10,00,41,69,64,65,00,00,20,00,03,00,04,00,ef,\
be,3e,3b,37,3f,3e,3b,38,3f,14,00,00,00,41,00,69,00,64,00,65,00,00,00,14,00,\
0e,00,00,00,0a,00,ef,be,00,00,00,00,14,00,00,00,00,00,00,00,00,00,b0,00,00,\
00,01,00,00,00,a2,00,00,00,41,75,67,4d,02,00,00,00,01,00,00,00,90,00,32,00,\
af,06,00,00,3e,3b,37,3f,20,00,44,53,49,4e,53,54,7e,31,2e,4c,4e,4b,00,00,66,\
00,03,00,04,00,ef,be,3e,3b,37,3f,3e,3b,37,3f,14,00,00,00,44,00,e9,00,73,00,\
69,00,6e,00,73,00,74,00,61,00,6c,00,6c,00,61,00,74,00,69,00,6f,00,6e,00,20,\
00,44,00,72,00,6f,00,70,00,70,00,69,00,78,00,20,00,4c,00,61,00,62,00,65,00,\
6c,00,20,00,4d,00,61,00,6b,00,65,00,72,00,2e,00,6c,00,6e,00,6b,00,00,00,1c,\
00,0e,00,00,00,0a,00,ef,be,00,00,00,00,1c,00,00,00,00,00,00,00,00,00,90,00,\
00,00,02,00,00,00,82,00,00,00,41,75,67,4d,02,00,00,00,01,00,00,00,70,00,32,\
00,37,03,00,00,3e,3b,37,3f,20,00,44,52,4f,50,50,49,7e,31,2e,4c,4e,4b,00,00,\
46,00,03,00,04,00,ef,be,3e,3b,37,3f,3e,3b,37,3f,14,00,00,00,44,00,72,00,6f,\
00,70,00,70,00,69,00,78,00,20,00,4c,00,61,00,62,00,65,00,6c,00,20,00,4d,00,\
61,00,6b,00,65,00,72,00,2e,00,6c,00,6e,00,6b,00,00,00,1c,00,0e,00,00,00,0a,\
00,ef,be,00,00,00,00,1c,00,00,00,00,00,00,00,00,00,8e,00,00,00,03,00,00,00,\
80,00,00,00,41,75,67,4d,02,00,00,00,01,00,00,00,6e,00,32,00,eb,05,00,00,3e,\
3b,37,3f,20,00,44,52,4f,50,50,49,7e,32,2e,4c,4e,4b,00,00,44,00,03,00,04,00,\
ef,be,3e,3b,37,3f,3e,3b,37,3f,14,00,00,00,44,00,72,00,6f,00,70,00,70,00,69,\
00,78,00,20,00,73,00,75,00,72,00,20,00,6c,00,65,00,20,00,57,00,65,00,62,00,\
2e,00,6c,00,6e,00,6b,00,00,00,1c,00,0e,00,00,00,0a,00,ef,be,00,00,00,00,1c,\
00,00,00,00,00,00,00,00,00
[HKEY_CURRENT_USER\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="msnmsgr"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\\Documents and Settings\\stephane\\Application Data\\drivers\\winupgro.exe"="winupgro"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\\Program Files\\SUPERAntiSpyware\\SUPERAntiSpyware.exe"="SUPERAntiSpyware Application"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\\PROGRA~1\\Yahoo!\\Common\\UNYT_W~1.EXE"="Yahoo! Toolbar Uninstall Setup"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\\Program Files\\Yahoo!\\Common\\unyt.exe"="Yahoo! Toolbar Setup"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\ShellNoRoam\MUICache]
"C:\\DOCUME~1\\stephane\\LOCALS~1\\Temp\\~nsu.tmp\\Bu_.exe"="Yahoo! Toolbar Setup"
Je n'avais pas besoin du rapport de CCleaner, mais ce n'est pas grave ^^
J'attend par contre le rapport de toolbar S&D
J'attend par contre le rapport de toolbar S&D
Le rapport ToolBar
-----------\\ ToolBar S&D 1.2.9 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3500+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : stephane ( Administrator )
BOOT : Normal boot
Firewall : COMODO Firewall 3.9 (Activated)
C:\ (Local Disk) - NTFS - Total:232 Go (Free:149 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB) - FAT - Total:491 Mo (Free:0 Go)
K:\ (USB) - FAT - Total:483 Mo (Free:0 Go)
"C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 )
Option : [1] ( 30/09/2009|20:53 )
-----------\\ Recherche de Fichiers / Dossiers ...
[Service] ASKUpgrade
-----------\\ Extensions
(stephane) - {E9A1DEE0-C623-4439-8932-001E7D17607D} => ajtoolbar
(stephane) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="https://www.msn.com/fr-fr"
"Default_search_url"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Default_page_url"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Search bar"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Start Page"="https://www.msn.com/fr-fr"
"Search bar"="http://www.bing.com/spresults.aspx"
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\stephane\Mes documents\Ma musique\Gangsta Rap\Bloods-N-Crips - Mixtapes\Crips N Bloods - Tha Hood Mixtape Vol. 2\Crips N Bloods Part.2 - 04 - Crack Muzic (Feat.Skullz & Frank Nitti).mp3
C:\DOCUME~1\stephane\Mes documents\Ma musique\Gangsta Rap\Death Row - Discography\Death Row Records - The Soundatrck - Above The Rim\Above The Rim - 14 - Crack 'Em (O.F.T.B).mp3
C:\DOCUME~1\stephane\Mes documents\Ma musique\Gangsta Rap\Notorious B.I.G - Discography\1997 - Notorious B.I.G - Life After Death - Disc.II\Notorious B.I.G. - 05 - Ten Crack Commandments.mp3
C:\DOCUME~1\stephane\Mes documents\Ma musique\Gangsta Rap\Notorious B.I.G - Discography\Dj Drama & Cookin Soul - Notorious B.I.G Tribute\13 - Lil Cease & Cardan - Ten Crack Commandments.mp3
1 - "C:\ToolBar SD\TB_1.txt" - 30/09/2009|20:53 - Option : [1]
-----------\\ Fin du rapport a 20:53:48,79
-----------\\ ToolBar S&D 1.2.9 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3500+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : stephane ( Administrator )
BOOT : Normal boot
Firewall : COMODO Firewall 3.9 (Activated)
C:\ (Local Disk) - NTFS - Total:232 Go (Free:149 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB) - FAT - Total:491 Mo (Free:0 Go)
K:\ (USB) - FAT - Total:483 Mo (Free:0 Go)
"C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 )
Option : [1] ( 30/09/2009|20:53 )
-----------\\ Recherche de Fichiers / Dossiers ...
[Service] ASKUpgrade
-----------\\ Extensions
(stephane) - {E9A1DEE0-C623-4439-8932-001E7D17607D} => ajtoolbar
(stephane) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="https://www.msn.com/fr-fr"
"Default_search_url"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Default_page_url"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Search bar"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Start Page"="https://www.msn.com/fr-fr"
"Search bar"="http://www.bing.com/spresults.aspx"
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\stephane\Mes documents\Ma musique\Gangsta Rap\Bloods-N-Crips - Mixtapes\Crips N Bloods - Tha Hood Mixtape Vol. 2\Crips N Bloods Part.2 - 04 - Crack Muzic (Feat.Skullz & Frank Nitti).mp3
C:\DOCUME~1\stephane\Mes documents\Ma musique\Gangsta Rap\Death Row - Discography\Death Row Records - The Soundatrck - Above The Rim\Above The Rim - 14 - Crack 'Em (O.F.T.B).mp3
C:\DOCUME~1\stephane\Mes documents\Ma musique\Gangsta Rap\Notorious B.I.G - Discography\1997 - Notorious B.I.G - Life After Death - Disc.II\Notorious B.I.G. - 05 - Ten Crack Commandments.mp3
C:\DOCUME~1\stephane\Mes documents\Ma musique\Gangsta Rap\Notorious B.I.G - Discography\Dj Drama & Cookin Soul - Notorious B.I.G Tribute\13 - Lil Cease & Cardan - Ten Crack Commandments.mp3
1 - "C:\ToolBar SD\TB_1.txt" - 30/09/2009|20:53 - Option : [1]
-----------\\ Fin du rapport a 20:53:48,79
--- Suppression ---
[x] Relance Toolbar S&D et choisi l'option 2 ( Suppression ).
[x] Ne fait rien pendant la procédure.
[x] Copie/Colle le rapport dans ton prochain message.
------------------
Toolscleaner ---->
Afin de supprimer tout les logiciels qui ont été utilisés pour ta désinfection,
[x] Télécharge ToolsCleaner sur ton bureau à cette adresse : https://www.commentcamarche.net/telecharger/securite/22061-toolscleaner/
[x] Double-clique sur « Toolscleaner.exe »
[x] Clique sur "restauration" pour créer un point de restauration.
[x] Puis clique sur « recherche »
[x] Quand la recherche sera terminée, clique sur "suppression".
[x] A la fin (il y aura des indications dans le cadre en-dessous), clique sur "quitter" et poste le rapport qui se trouve dans C:\Tcleaner.txt
[x] Relance Toolbar S&D et choisi l'option 2 ( Suppression ).
[x] Ne fait rien pendant la procédure.
[x] Copie/Colle le rapport dans ton prochain message.
------------------
Toolscleaner ---->
Afin de supprimer tout les logiciels qui ont été utilisés pour ta désinfection,
[x] Télécharge ToolsCleaner sur ton bureau à cette adresse : https://www.commentcamarche.net/telecharger/securite/22061-toolscleaner/
[x] Double-clique sur « Toolscleaner.exe »
[x] Clique sur "restauration" pour créer un point de restauration.
[x] Puis clique sur « recherche »
[x] Quand la recherche sera terminée, clique sur "suppression".
[x] A la fin (il y aura des indications dans le cadre en-dessous), clique sur "quitter" et poste le rapport qui se trouve dans C:\Tcleaner.txt
-----------\\ ToolBar S&D 1.2.9 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3500+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : stephane ( Administrator )
BOOT : Normal boot
Firewall : COMODO Firewall 3.9 (Activated)
C:\ (Local Disk) - NTFS - Total:232 Go (Free:149 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB) - FAT - Total:491 Mo (Free:0 Go)
K:\ (USB) - FAT - Total:483 Mo (Free:0 Go)
"C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 )
Option : [2] ( 30/09/2009|20:59 )
-----------\\ SUPPRESSION
Supprime! - [Service] ASKUpgrade
-----------\\ Recherche de Fichiers / Dossiers ...
-----------\\ Extensions
(stephane) - {E9A1DEE0-C623-4439-8932-001E7D17607D} => ajtoolbar
(stephane) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="https://www.msn.com/fr-fr"
"Default_search_url"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Default_page_url"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Search bar"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Start Page"="https://www.msn.com/fr-fr/"
"Search bar"="http://www.bing.com/spresults.aspx"
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\stephane\Mes documents\Ma musique\Gangsta Rap\Bloods-N-Crips - Mixtapes\Crips N Bloods - Tha Hood Mixtape Vol. 2\Crips N Bloods Part.2 - 04 - Crack Muzic (Feat.Skullz & Frank Nitti).mp3
C:\DOCUME~1\stephane\Mes documents\Ma musique\Gangsta Rap\Death Row - Discography\Death Row Records - The Soundatrck - Above The Rim\Above The Rim - 14 - Crack 'Em (O.F.T.B).mp3
C:\DOCUME~1\stephane\Mes documents\Ma musique\Gangsta Rap\Notorious B.I.G - Discography\1997 - Notorious B.I.G - Life After Death - Disc.II\Notorious B.I.G. - 05 - Ten Crack Commandments.mp3
C:\DOCUME~1\stephane\Mes documents\Ma musique\Gangsta Rap\Notorious B.I.G - Discography\Dj Drama & Cookin Soul - Notorious B.I.G Tribute\13 - Lil Cease & Cardan - Ten Crack Commandments.mp3
1 - "C:\ToolBar SD\TB_1.txt" - 30/09/2009|20:53 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 30/09/2009|20:59 - Option : [2]
-----------\\ Fin du rapport a 20:59:28,96
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3500+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : stephane ( Administrator )
BOOT : Normal boot
Firewall : COMODO Firewall 3.9 (Activated)
C:\ (Local Disk) - NTFS - Total:232 Go (Free:149 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB) - FAT - Total:491 Mo (Free:0 Go)
K:\ (USB) - FAT - Total:483 Mo (Free:0 Go)
"C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 )
Option : [2] ( 30/09/2009|20:59 )
-----------\\ SUPPRESSION
Supprime! - [Service] ASKUpgrade
-----------\\ Recherche de Fichiers / Dossiers ...
-----------\\ Extensions
(stephane) - {E9A1DEE0-C623-4439-8932-001E7D17607D} => ajtoolbar
(stephane) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="https://www.msn.com/fr-fr"
"Default_search_url"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Default_page_url"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Search bar"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Start Page"="https://www.msn.com/fr-fr/"
"Search bar"="http://www.bing.com/spresults.aspx"
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\stephane\Mes documents\Ma musique\Gangsta Rap\Bloods-N-Crips - Mixtapes\Crips N Bloods - Tha Hood Mixtape Vol. 2\Crips N Bloods Part.2 - 04 - Crack Muzic (Feat.Skullz & Frank Nitti).mp3
C:\DOCUME~1\stephane\Mes documents\Ma musique\Gangsta Rap\Death Row - Discography\Death Row Records - The Soundatrck - Above The Rim\Above The Rim - 14 - Crack 'Em (O.F.T.B).mp3
C:\DOCUME~1\stephane\Mes documents\Ma musique\Gangsta Rap\Notorious B.I.G - Discography\1997 - Notorious B.I.G - Life After Death - Disc.II\Notorious B.I.G. - 05 - Ten Crack Commandments.mp3
C:\DOCUME~1\stephane\Mes documents\Ma musique\Gangsta Rap\Notorious B.I.G - Discography\Dj Drama & Cookin Soul - Notorious B.I.G Tribute\13 - Lil Cease & Cardan - Ten Crack Commandments.mp3
1 - "C:\ToolBar SD\TB_1.txt" - 30/09/2009|20:53 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 30/09/2009|20:59 - Option : [2]
-----------\\ Fin du rapport a 20:59:28,96
[ Rapport ToolsCleaner version 2.3.11 (par A.Rothstein & dj QUIOU) ]
--> Recherche:
C:\TB.txt: trouvé !
C:\FindyKill.txt: trouvé !
C:\Toolbar SD: trouvé !
C:\FindyKill: trouvé !
C:\Rsit: trouvé !
C:\Documents and Settings\stephane\Bureau\ToolBarSD.exe: trouvé !
C:\Documents and Settings\stephane\Bureau\hijackthis.log: trouvé !
C:\Documents and Settings\stephane\Bureau\Rsit.exe: trouvé !
C:\Documents and Settings\stephane\Bureau\Rsit: trouvé !
C:\Program Files\trend micro\HijackThis.exe: trouvé !
C:\Program Files\trend micro\hijackthis.log: trouvé !
---------------------------------
--> Suppression:
C:\Documents and Settings\stephane\Bureau\ToolBarSD.exe: supprimé !
C:\Program Files\trend micro\HijackThis.exe: supprimé !
C:\TB.txt: supprimé !
C:\FindyKill.txt: supprimé !
C:\Documents and Settings\stephane\Bureau\hijackthis.log: supprimé !
C:\Documents and Settings\stephane\Bureau\Rsit.exe: supprimé !
C:\Program Files\trend micro\hijackthis.log: supprimé !
C:\Toolbar SD: supprimé !
C:\FindyKill: supprimé !
C:\Rsit: supprimé !
C:\Documents and Settings\stephane\Bureau\Rsit: supprimé !
--> Recherche:
C:\TB.txt: trouvé !
C:\FindyKill.txt: trouvé !
C:\Toolbar SD: trouvé !
C:\FindyKill: trouvé !
C:\Rsit: trouvé !
C:\Documents and Settings\stephane\Bureau\ToolBarSD.exe: trouvé !
C:\Documents and Settings\stephane\Bureau\hijackthis.log: trouvé !
C:\Documents and Settings\stephane\Bureau\Rsit.exe: trouvé !
C:\Documents and Settings\stephane\Bureau\Rsit: trouvé !
C:\Program Files\trend micro\HijackThis.exe: trouvé !
C:\Program Files\trend micro\hijackthis.log: trouvé !
---------------------------------
--> Suppression:
C:\Documents and Settings\stephane\Bureau\ToolBarSD.exe: supprimé !
C:\Program Files\trend micro\HijackThis.exe: supprimé !
C:\TB.txt: supprimé !
C:\FindyKill.txt: supprimé !
C:\Documents and Settings\stephane\Bureau\hijackthis.log: supprimé !
C:\Documents and Settings\stephane\Bureau\Rsit.exe: supprimé !
C:\Program Files\trend micro\hijackthis.log: supprimé !
C:\Toolbar SD: supprimé !
C:\FindyKill: supprimé !
C:\Rsit: supprimé !
C:\Documents and Settings\stephane\Bureau\Rsit: supprimé !
