Sujet Précédent Sujet Suivant

Impossible d'ouvrir quoi que ce soit

Résolu/Fermé
boubou2b Messages postés 28 Date d'inscription dimanche 14 février 2010 Statut Membre Dernière intervention 20 février 2010 - 14 févr. 2010 à 09:07
benurrr Messages postés 9643 Date d'inscription samedi 24 mai 2008 Statut Contributeur sécurité Dernière intervention 11 janvier 2012 - 21 févr. 2010 à 00:40
Bonjour,
Tout d'abord , je doit vous dire que je suis novice. En plus je ne sait pas où mettre ce post.
J'ai un gros soucis (sinon je ne serai pas ici), je ne peux rien ouvrir à part naviguer sur internet avec explorer.
Même jouer aux cartes est impossible. Je peux télécharger mais pas possible de les ouvrir. J'ai débuté le tutoriel qui semblait correspondre à mon problème mais je n'ai pas franchi la premiere étape.
Si une personne charitable pouvait m'aider cela serait génial.
Merci de l'aide.
A voir également:

38 réponses

Précédent
  • 1
  • 2
Réponse 21 / 38
boubou2b Messages postés 28 Date d'inscription dimanche 14 février 2010 Statut Membre Dernière intervention 20 février 2010 3
19 févr. 2010 à 12:22
L'ordinateur a redemarrer et je n'étais pas devant, où peut on récuperer le rapport ?
Ou dois-je tout recommencer ?
Merci.
0
Réponse 22 / 38
benurrr Messages postés 9643 Date d'inscription samedi 24 mai 2008 Statut Contributeur sécurité Dernière intervention 11 janvier 2012 107
19 févr. 2010 à 12:25
dans le poste de travaille puis C:Kill'em.txt
0
Réponse 23 / 38
boubou2b Messages postés 28 Date d'inscription dimanche 14 février 2010 Statut Membre Dernière intervention 20 février 2010 3
19 févr. 2010 à 12:36
Je crois que c'est celui ci. Le rapport où je devais fixer des choses ou pas a disparu lui aussi (en fait, je ne sais pas où il se trouve).
Merci encore pour lr temps consacré.
List'em by g3n-h@ckm@n 1.2.5.2

User : aurelie (Administrateurs)
Update on 16/02/2010 by g3n-h@ckm@n ::::: 13.30
Start at: 02:29:57 | 13/01/2006
Contact : https://forums.commentcamarche.net/forum/virus-securite-7

Intel(R) Pentium(R) D CPU 3.00GHz
Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 2
Internet Explorer 8.0.6001.18702
Windows Firewall Status : Disabled
AV : Anti-virus firewall 9.10 9.10 [ Enabled | Updated ]
FW : Anti-virus firewall 9.10[ Enabled ]9.10

C:\ -> Disque fixe local | 90,57 Go (4,13 Go free) [ACER] | NTFS
D:\ -> Disque fixe local | 91,82 Go (18,48 Go free) [ACERDATA] | FAT32
E:\ -> Disque CD-ROM
G:\ -> Disque amovible
H:\ -> Disque amovible
I:\ -> Disque amovible
J:\ -> Disque amovible

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes running

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\Orange\Antivirus Firewall\Anti-Virus\fsgk32st.exe
C:\Program Files\Orange\Antivirus Firewall\Anti-Virus\FSGK32.EXE
C:\Program Files\Orange\Antivirus Firewall\Common\FSMA32.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Orange\Antivirus Firewall\Common\FSHDLL32.EXE
C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Acer\Empowering Technology\eRecovery\Monitor.exe
C:\Program Files\Acer\Acer eMode Management\AspireService.exe
C:\Program Files\Acer\Acer eConsole\MediaSync.exe
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
C:\Program Files\lg_fwupdate\fwupdate.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Orange\Antivirus Firewall\Common\FSM32.EXE
C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.BIN
C:\Program Files\Orange\Antivirus Firewall\ORSP Client\fsorsp.exe
C:\Program Files\Orange\Antivirus Firewall\FWES\Program\fsdfwd.exe
C:\Program Files\Orange\Antivirus Firewall\Anti-Virus\fssm32.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Orange\Antivirus Firewall\Anti-Virus\fsav32.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\List_Kill'em\List_Kill'em.scr
C:\WINDOWS\system32\cmd.exe
C:\Documents and Settings\aurelie\Local Settings\temp\5.tmp\pv.exe

======================
Keys "Run"
======================
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
LightScribe Control Panel REG_SZ C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe -hidden
MSMSGS REG_SZ "C:\Program Files\Messenger\msmsgs.exe" /background
ctfmon.exe REG_SZ C:\WINDOWS\system32\ctfmon.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
LaunchApp REG_SZ Alaunch
High Definition Audio Property Page Shortcut REG_SZ HDAShCut.exe
RTHDCPL REG_SZ RTHDCPL.EXE
ntiMUI REG_SZ c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
SunJavaUpdateSched REG_SZ "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
RemoteControl REG_SZ "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
IMJPMIG8.1 REG_SZ "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
MSPY2002 REG_SZ C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
PHIME2002ASync REG_SZ C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
PHIME2002A REG_SZ C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
eRecoveryService REG_SZ C:\Acer\Empowering Technology\eRecovery\Monitor.exe
NvCplDaemon REG_SZ RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
nwiz REG_SZ nwiz.exe /install
NvMediaCenter REG_SZ RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
AspireService REG_SZ C:\Program Files\Acer\Acer eMode Management\AspireService.exe
MediaSync REG_SZ C:\Program Files\Acer\Acer eConsole\MediaSync.exe
Adobe Reader Speed Launcher REG_SZ "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
NeroFilterCheck REG_SZ C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
LGODDFU REG_SZ "C:\Program Files\lg_fwupdate\fwupdate.exe" blrun
HP Software Update REG_SZ C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
QuickTime Task REG_SZ "C:\Program Files\QuickTime\qttask.exe" -atboottime
iTunesHelper REG_SZ "C:\Program Files\iTunes\iTunesHelper.exe"
AppleSyncNotifier REG_SZ C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
F-Secure Manager REG_SZ "C:\Program Files\Orange\Antivirus Firewall\Common\FSM32.EXE" /splash
F-Secure TNB REG_SZ "C:\Program Files\Orange\Antivirus Firewall\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]

=====================
Other Keys
=====================
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
dontdisplaylastusername REG_DWORD 0 (0x0)
legalnoticecaption REG_SZ
legalnoticetext REG_SZ
shutdownwithoutlogon REG_DWORD 1 (0x1)
undockwithoutlogon REG_DWORD 1 (0x1)
DisableRegistryTools REG_DWORD 0 (0x0)

===============
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
NoDriveTypeAutoRun REG_DWORD 323 (0x143)
NoDriveAutoRun REG_DWORD 67108863 (0x3ffffff)
NoDrives REG_DWORD 0 (0x0)

===============
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
HonorAutoRunSetting REG_DWORD 1 (0x1)
NoDriveAutoRun REG_DWORD 67108863 (0x3ffffff)
NoDriveTypeAutoRun REG_DWORD 323 (0x143)
NoDrives REG_DWORD 0 (0x0)

===============
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

===============
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
AutoRestartShell REG_DWORD 1 (0x1)
DefaultDomainName REG_SZ AURÉLIE
DefaultUserName REG_SZ aurelie
LegalNoticeCaption REG_SZ
LegalNoticeText REG_SZ
PowerdownAfterShutdown REG_SZ 0
ReportBootOk REG_SZ 1
Shell REG_SZ Explorer.exe
ShutdownWithoutLogon REG_SZ 0
System REG_SZ
Userinit REG_SZ C:\WINDOWS\system32\userinit.exe,
VmApplet REG_SZ rundll32 shell32,Control_RunDLL "sysdm.cpl"
SfcQuota REG_DWORD -1 (0xffffffff)
allocatecdroms REG_SZ 0
allocatedasd REG_SZ 0
allocatefloppies REG_SZ 0
cachedlogonscount REG_SZ 10
forceunlocklogon REG_DWORD 0 (0x0)
passwordexpirywarning REG_DWORD 14 (0xe)
scremoveoption REG_SZ 0
AllowMultipleTSSessions REG_DWORD 1 (0x1)
UIHost REG_EXPAND_SZ logonui.exe
LogonType REG_DWORD 1 (0x1)
Background REG_SZ 0 0 0
DebugServerCommand REG_SZ no
SFCDisable REG_DWORD 0 (0x0)
WinStationsDisabled REG_SZ 0
HibernationPreviouslyEnabled REG_DWORD 1 (0x1)
ShowLogonOptions REG_DWORD 0 (0x0)
AltDefaultUserName REG_SZ aurelie
AltDefaultDomainName REG_SZ AURÉLIE

===============
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\AtiExtEvent]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\crypt32chain]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\cryptnet]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\cscdll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\ScCertProp]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\Schedule]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\sclgntfy]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\SensLogn]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\termsrv]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\wlballoon]

===============
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
{AEB6717E-7E19-11d0-97EE-00C04FD91972} REG_SZ

===============
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
%windir%\system32\sessmgr.exe REG_SZ %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019
C:\Program Files\Acer\Acer eConsole\MediaSync.exe REG_SZ C:\Program Files\Acer\Acer eConsole\MediaSync.exe:LocalSubNet:Enabled:Media Synchoronizer
C:\Program Files\Acer\Acer eConsole\eConsole.exe REG_SZ C:\Program Files\Acer\Acer eConsole\eConsole.exe:LocalSubNet:Enabled:eConsole
C:\Program Files\Acer\Acer eConsole\MediaServerService.exe REG_SZ C:\Program Files\Acer\Acer eConsole\MediaServerService.exe:LocalSubNet:Enabled:Acer Media Server
C:\Program Files\ABBYY\FineReader 5.0 Sprint\Sprint.exe REG_SZ C:\Program Files\ABBYY\FineReader 5.0 Sprint\Sprint.exe:192.168.1.11/255.255.255.255:Enabled:ABBYY FineReader 5.0 Sprint Plus
C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE REG_SZ C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe
C:\Program Files\HP\Digital Imaging\bin\hposid01.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe
C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe
C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe
C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe
C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe
C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe:*:Enabled:hpqusgm.exe
C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe:*:Enabled:hpqusgh.exe
C:\Program Files\HP\HP Software Update\HPWUCli.exe REG_SZ C:\Program Files\HP\HP Software Update\HPWUCli.exe:*:Enabled:hpwucli.exe
C:\Program Files\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe REG_SZ C:\Program Files\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe:*:Enabled:smartwebprintexe.exe
C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe REG_SZ C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare
C:\Program Files\Bonjour\mDNSResponder.exe REG_SZ C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour
C:\Program Files\iTunes\iTunes.exe REG_SZ C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
%windir%\system32\sessmgr.exe REG_SZ %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe
C:\Program Files\HP\Digital Imaging\bin\hposid01.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe
C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe
C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe
C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe
C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe
C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe:*:Enabled:hpqusgm.exe
C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe:*:Enabled:hpqusgh.exe
C:\Program Files\HP\HP Software Update\HPWUCli.exe REG_SZ C:\Program Files\HP\HP Software Update\HPWUCli.exe:*:Enabled:hpwucli.exe
C:\Program Files\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe REG_SZ C:\Program Files\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe:*:Enabled:smartwebprintexe.exe
C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe REG_SZ C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare

===============
ActivX controls
===============
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{029FDBA6-3547-11D7-AA4C-0050BF051A00}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{02BF25D5-8C17-4B23-BC80-D3488ABDDC6B}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{104B0A37-AB99-4F06-8032-8BBDC3B77DDB}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{166B1BCA-3F9C-11CF-8075-444553540000}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{5D637FAD-E202-48D1-8F18-5B9C459BD1E3}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{62475759-9E84-458E-A1AB-5D2C442ADFDE}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{68C1822F-F5C7-4404-A73F-03C10E0E94DA}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{6EBC6744-5383-4213-AD5E-66434ECA1812}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{7530BFB8-7293-4D34-9923-61A11451AFC5}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{8AD9C840-044E-11D1-B3E9-00805F499D93}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{9191F686-7F0A-441D-8A98-2FE3AC1BD913}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{B79A53C0-1DAC-4636-BACE-FD086A7A79BF}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{B9F79165-A264-4C4A-A211-133A5E8D647F}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{D27CDB6E-AE6D-11CF-96B8-444553540000}

===============
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{26923b43-4d38-484f-9b9e-de460746276c}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{08B0E5C0-4FCB-11CF-AAA5-00401C608500}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10072CEC-8CC1-11D1-986E-00A0C955B42F}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{22d6f312-b0f6-11d0-94ab-0080c74c7e95}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{233C1507-6A77-46A4-9443-F871F945D258}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{283807B5-2C60-11D0-A31D-00AA00B92C03}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{2A202491-F00D-11cf-87CC-0020AFEECF20}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{36f8ec70-c29a-11d1-b5c7-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{3af36230-a269-11d1-b5bf-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{3bf42070-b3b1-11d1-b5c5-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{411EDCF7-755D-414E-A74B-3DCD6583F589}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{4278c270-a269-11d1-b5bf-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA848-CC51-11CF-AAFA-00AA00B6015C}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA855-CC51-11CF-AAFA-00AA00B6015F}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{45ea75a0-a269-11d1-b5bf-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{4f216970-c90c-11d1-b5c7-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{4f645220-306d-11d2-995d-00c04f98bbc9}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{5945c046-1e7d-11d1-bc44-00c04fd912be}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{5A8D6EE0-3E18-11D0-821E-444553540000}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{5fd399c0-a70a-11d1-9948-00c04f98bbc9}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{630b1da0-b465-11d1-9948-00c04f98bbc9}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{6fab99d0-bab8-11d1-994a-00c04f98bbc9}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{73fa19d0-2d75-11d2-995d-00c04f98bbc9}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{7790769C-0471-11d2-AF11-00C04FA35D02}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{89820200-ECBD-11cf-8B85-00AA005B4340}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{89820200-ECBD-11cf-8B85-00AA005B4383}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8b15971b-5355-4c82-8c07-7e181ea07608}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{9381D8F2-0288-11D0-9501-00AA00B911A5}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{94de52c8-2d59-4f1b-883e-79663d2d9a8c}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{9A394342-4A68-4EBA-85A6-55B559F4E700}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{ACC563BC-4266-43f0-B6ED-9D38C4202C7E}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{C9E9A340-D1F1-11D0-821E-444553540600}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{CC2A9BA0-3BDD-11D0-821E-444553540000}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{CDD7975E-60F8-41d5-8149-19E51D6F71D0}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{D27CDB6E-AE6D-11cf-96B8-444553540000}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{DAA94A2A-2A8D-4D3B-9DB8-56FBECED082D}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{de5aed00-a4bf-11d1-9948-00c04f98bbc9}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{E92B03AB-B707-11d2-9CBD-0000F87A369E}

==============
BHO :
======
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{0347C33E-8762-4905-BF09-768834316C61}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{2E03C0FD-4C48-43A7-9A54-00240C70FF16}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{C6867EB7-8350-4856-877F-93CF8AE3DC9C}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]

================
Internet Explorer :
================
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
Start Page REG_SZ https://www.msn.com/fr-fr/?ocid=iehp

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
Start Page REG_SZ https://www.orange.fr/portail

========
Services
========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services]

Ndisuio : 0x3 ( OK = 3 )
SharedAccess : 0x2 ( OK = 2 )
wuauserv : 0x2 ( OK = 2 )

=========
Atapi.sys
=========

%%%% HASHDEEP-1.0
%%%% size,md5,sha256,filename
## Invoked from: C:\Documents and Settings\aurelie\Local Settings\temp\5.tmp
## C:\> hashdeep C:\WINDOWS\System32\Drivers\atapi.sys
##
95360,cdfe4411a69c224bd1d11b2da92dac51,0e6b23a80f171550575bebc56f7500cd87a5cf03b2b9fdc49bc3de96282cd69d,C:\WINDOWS\System32\Drivers\atapi.sys


Sources
=======

C:\WINDOWS\ERDNT\cache\atapi.sys
C:\WINDOWS\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\atapi.sys
C:\WINDOWS\system32\drivers\atapi.sys

Référence :
==========

Win XP_32b : a64013e98426e1877cb653685c5c0009
Win XP_SP2_32b : CDFE4411A69C224BD1D11B2DA92DAC51
Win XP_SP3_32b : 9F3A2F5AA6875C72BF062C712CFA2674
Vista_32b : e03e8c99d15d0381e02743c36afc7c6f
Vista_SP1_32b : 2d9c903dc76a66813d350a562de40ed9
Vista_SP2_32b : 1F05B78AB91C9075565A9D8A4B880BC4
Vista_SP2_64b : 1898FAE8E07D97F2F6C2D5326C633FAC
Windows 7_32b : 80C40F7FDFC376E4C5FEEC28B41C119E
Windows 7_64b : 02062C0B390B7729EDC9E69C680A6F3C

=======
Drive :
=======

Défragmenteur de disque Windows
Copyright (c) 2001 Microsoft Corp. et Executive Software International Inc.

Rapport d'analyse
90,57 Go total, 4,13 Go libre (4%), 33% fragmenté (fragmentation du fichier 62%)

Vous devriez défragmenter ce volume.

¤¤¤¤¤¤¤¤¤¤ Files/folders :

Present !! : C:\Documents and Settings\All Users\Application Data\.zreglib
Present !! : C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
Present !! : C:\Program Files\BitLord
Present !! : C:\WINDOWS\mbr.exe
Present !! : C:\WINDOWS\SlantAdj.dll
Present !! : C:\Documents and Settings\aurelie\Application Data\pcouffin.inf
Present !! : C:\Documents and Settings\aurelie\Application Data\Microsoft\Clip Organizer\mstore10.mgc
Present !! : C:\Documents and Settings\aurelie\LOCAL Settings\Temp\preconfig.exe
Present !! : C:\Documents and Settings\aurelie\LOCAL Settings\Temp\fsprod.dll
Present !! : C:\Documents and Settings\aurelie\LOCAL Settings\Temp\fssfm.dll

¤¤¤¤¤¤¤¤¤¤ Keys :

Present !! : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{0E5CBF21-D15F-11D0-8301-00AA005B4383}
Present !! : HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDrives
Present !! : HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDrives
Present !! : HKEY_USERS\S-1-5-21-1352976129-4025786766-809395480-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDrives
Present !! : "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Install.exe"
Present !! : "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Setup.exe"
Present !! : "HKLM\Software\Trymedia Systems"
Present !! : HKCR\CLSID\{248dd896-bb45-11cf-9abc-0080c7e7b78d}
Present !! : HKCR\CLSID\{248dd897-bb45-11cf-9abc-0080c7e7b78d}
Present !! : HKCR\Interface\{248dd892-bb45-11cf-9abc-0080c7e7b78d}
Present !! : HKCR\Interface\{248dd893-bb45-11cf-9abc-0080c7e7b78d}
Present !! : HKCR\interface\{e342af55-b78a-4cd0-a2bb-da7f52d9d25e}
Present !! : HKCR\Interface\{e420a65f-9984-4b8c-9fa9-1ed69d3b0a13}
Present !! : HKCR\Interface\{E9C4CBEB-7BDF-47FF-8EDF-D72B50BB50EF}
Present !! : HKCR\Interface\{ea58c2ea-be26-49dd-9b9a-c8e4e5ca7791}
Present !! : HKCR\Interface\{eb9e5c1c-b1f9-4c2b-be8a-27d6446fdaf8}
Present !! : HKCR\Interface\{ec1a2105-5621-440f-987d-27ef428131d9}
Present !! : HKCR\interface\{ebab4a71-8c34-461a-b57d-dd041d439555}
Present !! : HKCR\interface\{edb1a56e-2224-4c79-a4bd-42a39c6e4608}
Present !! : HKCR\interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Present !! : HKCR\interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Present !! : HKCR\interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Present !! : HKCR\interface\{f06fea43-0cc3-4bf6-a85b-5efb1c07aa4b}
Present !! : HKCR\interface\{f171a44f-7af5-43e1-afed-edc826a1b0f5}
Present !! : HKCR\Interface\{f2f8c877-b06c-4b5e-95e7-aacfc9e8219d}
Present !! : HKCR\Interface\{f43ec88b-b6c8-4969-a763-e2bf55602cce}
Present !! : HKCR\interface\{f5ac8b35-5b15-4e8f-8046-43858973b495}
Present !! : HKCR\Interface\{f786cb18-3809-4e49-bc99-9a66da47db8b}
Present !! : HKCR\Interface\{f814be58-1bf9-4b50-829a-e889f86127ad}
Present !! : HKCR\Interface\{F8ACA5A0-060A-478A-8368-1407780D2251}
Present !! : HKCR\interface\{fc94a0f7-9c7c-4ae2-9106-5c212332b209}
Present !! : HKCR\Interface\{fca28ac5-c1e1-4d67-a5ae-c44d6c374d9f}
Present !! : HKCR\intermplug
Present !! : HKCR\internetexperienceenhancer.internetexperienceenhancer
Present !! : HKCR\KiweeIEToolbar.KiweeToolbar
Present !! : HKCR\KiweeIEToolbar.KiweeToolbar.1
Present !! : HKCR\KiweeIEToolbar.ToolbarInfo
Present !! : HKCR\KiweeIEToolbar.ToolbarInfo.1
Present !! : HKCR\kt_bho.KettleBho
Present !! : HKCR\MagicControl.MagicComponent
Present !! : HKCR\MagicControl.MagicComponent.1
Present !! : HKCR\mediagateway.installer
Present !! : HKCR\MediaPlayer.GraphicsUtils
Present !! : HKCR\MediaPlayer.GraphicsUtils.1
Present !! : HKCR\MgMediaPlayer.GifAnimator
Present !! : HKCR\MgMediaPlayer.GifAnimator.1
Present !! : HKCR\minibugtransporter.minibugtransporterx
Present !! : HKCR\minibugtransporter.minibugtransporterx.1
Present !! : HKCR\mslagent.3
Present !! : HKCR\mslagent.3.1
Present !! : HKCR\msram.tchongabho
Present !! : HKCR\MWSearch.cfgwr
Present !! : HKCR\MWSearch.cfgwr.1
Present !! : HKCR\MWSearch.StockBar
Present !! : HKCR\MWSearch.StockBar.1
Present !! : HKCR\MWSearch.tbactivator
Present !! : HKCR\MWSearch.tbactivator.1
Present !! : HKCR\Myglobalsearchbar.settingsplugin
Present !! : HKCR\Myglobalsearchbar.settingsplugin.1
Present !! : HKCR\Myglobalsearchbar.toolbarplugin
Present !! : HKCR\Myglobalsearchbar.toolbarplugin.1
Present !! : HKCR\MyQuickSearchToolBar.SettingsPlugin
Present !! : HKCR\MyQuickSearchToolBar.SettingsPlugin.1
Present !! : HKCR\Mysearch.popswatterbarbutton
Present !! : HKCR\Mysearch.popswatterbarbutton.1
Present !! : HKCR\Mysearch.popswattersettingscontrol
Present !! : HKCR\Mysearch.popswattersettingscontrol.1
Present !! : HKCR\Mysearchtoolbar.netscapeshutdown
Present !! : HKCR\Mysearchtoolbar.netscapeshutdown.1
Present !! : HKCR\Mysearchtoolbar.netscapestartup
Present !! : HKCR\Mysearchtoolbar.netscapestartup.1
Present !! : HKCR\Mysearchtoolbar.settingsplugin
Present !! : HKCR\Mysearchtoolbar.settingsplugin.1
Present !! : HKCR\MyWebSearch.ChatSessionPlugin
Present !! : HKCR\MyWebSearch.ChatSessionPlugin.1
Present !! : HKCR\MyWebSearch.HTMLPanel
Present !! : HKCR\MyWebSearch.HTMLPanel.1
Present !! : HKCR\MyWebSearch.OutlookAddin
Present !! : HKCR\MyWebSearch.OutlookAddin.1
Present !! : HKCR\MyWebSearch.PseudoTransparentPlugin
Present !! : HKCR\MyWebSearch.PseudoTransparentPlugin.1
Present !! : HKCR\MyWebSearchToolBar.SettingsPlugin
Present !! : HKCR\MyWebSearchToolBar.SettingsPlugin.1
Present !! : HKCR\MyWebSearchToolBar.ToolbarPlugin
Present !! : HKCR\MyWebSearchToolBar.ToolbarPlugin.1
Present !! : HKCR\NaviHelper.NaviHelperObject
Present !! : HKCR\NaviHelper.NaviHelperObject.1
Present !! : HKCR\NaviPromo.EGNaviScoring
Present !! : HKCR\NaviPromo.EGNaviScoring.1
Present !! : HKCR\NetPumper.AddUrl
Present !! : HKCR\NetPumperNNProxy.NetscapeInterface
Present !! : HKCR\oberontb.band
Present !! : HKCR\oberontb.band.1
Present !! : HKCR\oeactivexdll.desktopbuttonhandler
Present !! : HKCR\oeactivexdll.desktopbuttonhandler.1
Present !! : HKCR\oeactivexdll.desktopoeaddin1
Present !! : HKCR\oeactivexdll.desktopoeaddin1.1
Present !! : HKCR\OutlookAddin.Addin
Present !! : HKCR\OutlookAddin.Addin.1
Present !! : HKCR\P2ECOM.EGP2ECOM
Present !! : HKCR\parttimeb
Present !! : HKCR\popcaploader.popcaploaderctrl2
Present !! : HKCR\popcaploader.popcaploaderctrl2.1
Present !! : HKCR\rxresult.rxresultfilter
Present !! : HKCR\rxresult.rxresultfilter.1
Present !! : HKCR\saix.installercaller
Present !! : HKCR\saix.installercaller.1
Present !! : HKCR\screensavercontrol.screensaverinstaller
Present !! : HKCR\screensavercontrol.screensaverinstaller.1
Present !! : HKCR\SearchSettings.BHO
Present !! : HKCR\SearchSettings.BHO.1
Present !! : HKCR\seekmo.desktopflash
Present !! : HKCR\seekmo.desktopflash.1
Present !! : HKCR\seekmoax.clientdetector
Present !! : HKCR\seekmoax.clientdetector.1
Present !! : HKCR\seekmoax.userprofiles
Present !! : HKCR\seekmoax.userprofiles.1
Present !! : HKCR\shoppingreport.hbax
Present !! : HKCR\shoppingreport.hbax.1
Present !! : HKCR\shoppingreport.hbinfoband
Present !! : HKCR\shoppingreport.hbinfoband.1
Present !! : HKCR\shoppingreport.iebutton
Present !! : HKCR\shoppingreport.iebutton.1
Present !! : HKCR\shoppingreport.iebuttona
Present !! : HKCR\shoppingreport.iebuttona.1
Present !! : HKCR\shoppingreport.rprtctrl
Present !! : HKCR\shoppingreport.rprtctrl.1
Present !! : HKCR\SPEEDBIT1.SPEEDBIT1
Present !! : HKCR\SPEEDBIT1.SPEEDBIT1.3
Present !! : HKCR\srv.coreservices
Present !! : HKCR\srv.coreservices.1
Present !! : HKCR\sssinstaller.installer
Present !! : HKCR\sssinstaller.installer.1
Present !! : HKCR\sssinstaller.sinstaller
Present !! : HKCR\sssinstaller.sinstaller.1
Present !! : HKCR\sud_ext
Present !! : HKCR\SWEETIE.IEToolbar
Present !! : HKCR\SWEETIE.IEToolbar.1
Present !! : HKCR\SWEETIE.SWEETIE
Present !! : HKCR\SWEETIE.SWEETIE.1
Present !! : HKCR\SWEETIE.SWEETIE.3
Present !! : HKCR\SweetIM_URLSearchHook.ToolbarURLSearchHook
Present !! : HKCR\SweetIM_URLSearchHook.ToolbarURLSearchHook.1
Present !! : HKCR\swelladsforyou.swelladsforyou.1
Present !! : HKCR\SystemFileAssociations\Directory.Audio\shellex\ContextMenuHandlers\secure_del
Present !! : HKCR\SystemFileAssociations\Directory.Video\shellex\ContextMenuHandlers\secure_del
Present !! : HKCR\thebestadsforyou.thebestadsforyou
Present !! : HKCR\thebestadsforyou.thebestadsforyou.1
Present !! : HKCR\ToolBand.SWEETIE
Present !! : HKCR\ToolBand.SWEETIE.1
Present !! : HKCR\toolbar.htmlmenuui
Present !! : HKCR\toolbar.htmlmenuui.1
Present !! : HKCR\toolbar.toolbarctl
Present !! : HKCR\toolbar.toolbarctl.1
Present !! : HKCR\Toolbar3.SWEETIE
Present !! : HKCR\Toolbar3.SWEETIE.1
Present !! : HKCR\Torrent101
Present !! : HKCR\TorrentQ
Present !! : HKCR\TorrentSoftware
Present !! : HKCR\TypeLib\{04011C11-2F3B-44ed-977C-270CA669C6B2}
Present !! : HKCR\TypeLib\{0514c9b0-e4c6-4d6b-a3a6-b38bc280b115}
Present !! : HKCR\TypeLib\{06EC63CC-4823-4836-ABB8-AB5F3971FA5C}
Present !! : HKCR\TypeLib\{07B18EA0-A523-4961-B6BB-170DE4475CCA}
Present !! : HKCR\Typelib\{08755390-f46d-4d09-968c-3430166b3189}
Present !! : HKCR\Typelib\{087c4054-0a2b-4f35-b0db-bed3e21650f4}
Present !! : HKCR\Typelib\{0923208c-e259-4ed5-a778-cb607da350ad}
Present !! : HKCR\TypeLib\{0D26BC71-A633-4E71-AD31-EADC3A1B6A3A}
Present !! : HKCR\TypeLib\{0E594D22-ACE6-43A2-BCDA-BB7C65D3FE8C}
Present !! : HKCR\TypeLib\{0E677220-E309-4341-81BD-3CC3018BF5B3}
Present !! : HKCR\TypeLib\{10954590-2B3A-41EC-97BB-C95A5E646DA9}
Present !! : HKCR\TypeLib\{1145A909-A836-44B8-B03A-48D858B0F43E}
Present !! : HKCR\TypeLib\{1AE427B0-E3B7-4D2E-A6B9-36605B0F214E}
Present !! : HKCR\TypeLib\{1510d162-dace-de7d-0d0a-1556c8a81de9}
Present !! : HKCR\Typelib\{1D4DB7D0-6EC9-47A3-BD87-1E41684E07BB}
Present !! : HKCR\TypeLib\{1F445F82-42C0-46F3-9A2E-6ADB79046D41}
Present !! : HKCR\Typelib\{229d2451-a617-4b30-b5e8-8138694240cb}
Present !! : HKCR\TypeLib\{22c12739-c111-44c6-9bb7-f335c2a9be2a}
Present !! : HKCR\TypeLib\{2473BF20-CA0A-11DA-88DB-0050BF2938E1}
Present !! : HKCR\TypeLib\{248dd890-bb45-11cf-9abc-0080c7e7b78d}
Present !! : HKCR\Typelib\{259EEB17-79AA-44DF-8410-8E55F82A902A}
Present !! : HKCR\TypeLib\{2850bdc7-2330-4e31-9fa0-88268846539a}
Present !! : HKCR\TypeLib\{29D67D3C-509A-4544-903F-C8C1B8236554}
Present !! : HKCR\TypeLib\{310b6b01-d56c-a278-2f47-b8cf1066c079}
Present !! : HKCR\Typelib\{3160f356-e8c3-4de2-a698-92eeeb3d3400}
Present !! : HKCR\TypeLib\{37b85a20-692b-4205-9cad-2626e4993404}
Present !! : HKCR\Typelib\{3b8e549e-0c73-4aab-8939-5ea2ed102cc6}
Present !! : HKCR\Typelib\{3c2d2a1e-031f-4397-9614-87c932a848e0}
Present !! : HKCR\TypeLib\{3E720450-B472-4954-B7AA-33069EB53906}
Present !! : HKCR\TypeLib\{4509d3cc-b642-4745-b030-645b79522c6d}
Present !! : HKCR\Typelib\{45397063-d7d0-47c2-9508-26487608a298}
Present !! : HKCR\TypeLib\{478CAB91-9E28-11D4-97FF-0050047D51FB}
Present !! : HKCR\TypeLib\{497dddb6-6eee-4561-9621-b77dc82c1f84}
Present !! : HKCR\Typelib\{4cf5a3c1-07a2-4336-9b54-6870452ebde1}
Present !! : HKCR\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
Present !! : HKCR\Typelib\{52cde0e4-d73b-11dd-9b90-fcc056d89593}
Present !! : HKCR\Typelib\{5303e828-3a4c-11de-ac1c-f77f55d89593}
Present !! : HKCR\TypeLib\{5630B768-1C09-4105-9E03-E35985E36B0B}
Present !! : HKCR\TypeLib\{5A445F80-DAB5-4CD9-8A05-CD09AC145AA2}
Present !! : HKCR\Typelib\{58906392-79C4-497C-ACC6-6942B59F1A08}
Present !! : HKCR\TypeLib\{5BAD7FAE-81F0-4439-8C1A-3E8907998047}
Present !! : HKCR\Typelib\{6c5ba655-5cec-47bb-a6d3-82a4afe7da87}
Present !! : HKCR\Typelib\{710993A2-4F87-41D7-B6FE-F5A20368465F}
Present !! : HKCR\Typelib\{71e9cf40-af72-4b55-bd3f-1fea2a0eaea6}
Present !! : HKCR\Typelib\{71efe583-62fe-4419-9918-ca3b683f7b36}
Present !! : HKCR\Typelib\{74278296-0ec7-4f7a-ad55-eb7a2f35f311}
Present !! : HKCR\TypeLib\{7473D290-B7BB-4F24-AE82-7E2CE94BB6A9}
Present !! : HKCR\TypeLib\{7699AEF9-F83A-44FA-B374-AA02CEDF247D}
0
Réponse 24 / 38
benurrr Messages postés 9643 Date d'inscription samedi 24 mai 2008 Statut Contributeur sécurité Dernière intervention 11 janvier 2012 107
19 févr. 2010 à 12:43
y'a du monde c'est excellent on va pouvoir supprimer sa

mais ton rapport n'est pas complet repos te le en n'oubliant rien

pour cela quand tu ouvre ton rapport en haut tu a édition tu clique dessus et la tu fait sélectionner tous et tu reclic sur édition et tu fait copier tous et le colle içi

0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 38
boubou2b Messages postés 28 Date d'inscription dimanche 14 février 2010 Statut Membre Dernière intervention 20 février 2010 3
19 févr. 2010 à 12:48
Heu, je crois que c'est le même, je n'ai eu que celui-là ou alors mon ordinateur a redemarrer avant la fin.
Merci encore.
List'em by g3n-h@ckm@n 1.2.5.2

User : aurelie (Administrateurs)
Update on 16/02/2010 by g3n-h@ckm@n ::::: 13.30
Start at: 02:29:57 | 13/01/2006
Contact : https://forums.commentcamarche.net/forum/virus-securite-7

Intel(R) Pentium(R) D CPU 3.00GHz
Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 2
Internet Explorer 8.0.6001.18702
Windows Firewall Status : Disabled
AV : Anti-virus firewall 9.10 9.10 [ Enabled | Updated ]
FW : Anti-virus firewall 9.10[ Enabled ]9.10

C:\ -> Disque fixe local | 90,57 Go (4,13 Go free) [ACER] | NTFS
D:\ -> Disque fixe local | 91,82 Go (18,48 Go free) [ACERDATA] | FAT32
E:\ -> Disque CD-ROM
G:\ -> Disque amovible
H:\ -> Disque amovible
I:\ -> Disque amovible
J:\ -> Disque amovible

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes running

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\Orange\Antivirus Firewall\Anti-Virus\fsgk32st.exe
C:\Program Files\Orange\Antivirus Firewall\Anti-Virus\FSGK32.EXE
C:\Program Files\Orange\Antivirus Firewall\Common\FSMA32.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Orange\Antivirus Firewall\Common\FSHDLL32.EXE
C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Acer\Empowering Technology\eRecovery\Monitor.exe
C:\Program Files\Acer\Acer eMode Management\AspireService.exe
C:\Program Files\Acer\Acer eConsole\MediaSync.exe
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
C:\Program Files\lg_fwupdate\fwupdate.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Orange\Antivirus Firewall\Common\FSM32.EXE
C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.BIN
C:\Program Files\Orange\Antivirus Firewall\ORSP Client\fsorsp.exe
C:\Program Files\Orange\Antivirus Firewall\FWES\Program\fsdfwd.exe
C:\Program Files\Orange\Antivirus Firewall\Anti-Virus\fssm32.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Orange\Antivirus Firewall\Anti-Virus\fsav32.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\List_Kill'em\List_Kill'em.scr
C:\WINDOWS\system32\cmd.exe
C:\Documents and Settings\aurelie\Local Settings\temp\5.tmp\pv.exe

======================
Keys "Run"
======================
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
LightScribe Control Panel REG_SZ C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe -hidden
MSMSGS REG_SZ "C:\Program Files\Messenger\msmsgs.exe" /background
ctfmon.exe REG_SZ C:\WINDOWS\system32\ctfmon.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
LaunchApp REG_SZ Alaunch
High Definition Audio Property Page Shortcut REG_SZ HDAShCut.exe
RTHDCPL REG_SZ RTHDCPL.EXE
ntiMUI REG_SZ c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
SunJavaUpdateSched REG_SZ "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
RemoteControl REG_SZ "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
IMJPMIG8.1 REG_SZ "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
MSPY2002 REG_SZ C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
PHIME2002ASync REG_SZ C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
PHIME2002A REG_SZ C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
eRecoveryService REG_SZ C:\Acer\Empowering Technology\eRecovery\Monitor.exe
NvCplDaemon REG_SZ RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
nwiz REG_SZ nwiz.exe /install
NvMediaCenter REG_SZ RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
AspireService REG_SZ C:\Program Files\Acer\Acer eMode Management\AspireService.exe
MediaSync REG_SZ C:\Program Files\Acer\Acer eConsole\MediaSync.exe
Adobe Reader Speed Launcher REG_SZ "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
NeroFilterCheck REG_SZ C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
LGODDFU REG_SZ "C:\Program Files\lg_fwupdate\fwupdate.exe" blrun
HP Software Update REG_SZ C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
QuickTime Task REG_SZ "C:\Program Files\QuickTime\qttask.exe" -atboottime
iTunesHelper REG_SZ "C:\Program Files\iTunes\iTunesHelper.exe"
AppleSyncNotifier REG_SZ C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
F-Secure Manager REG_SZ "C:\Program Files\Orange\Antivirus Firewall\Common\FSM32.EXE" /splash
F-Secure TNB REG_SZ "C:\Program Files\Orange\Antivirus Firewall\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]

=====================
Other Keys
=====================
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
dontdisplaylastusername REG_DWORD 0 (0x0)
legalnoticecaption REG_SZ
legalnoticetext REG_SZ
shutdownwithoutlogon REG_DWORD 1 (0x1)
undockwithoutlogon REG_DWORD 1 (0x1)
DisableRegistryTools REG_DWORD 0 (0x0)

===============
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
NoDriveTypeAutoRun REG_DWORD 323 (0x143)
NoDriveAutoRun REG_DWORD 67108863 (0x3ffffff)
NoDrives REG_DWORD 0 (0x0)

===============
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
HonorAutoRunSetting REG_DWORD 1 (0x1)
NoDriveAutoRun REG_DWORD 67108863 (0x3ffffff)
NoDriveTypeAutoRun REG_DWORD 323 (0x143)
NoDrives REG_DWORD 0 (0x0)

===============
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

===============
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
AutoRestartShell REG_DWORD 1 (0x1)
DefaultDomainName REG_SZ AURÉLIE
DefaultUserName REG_SZ aurelie
LegalNoticeCaption REG_SZ
LegalNoticeText REG_SZ
PowerdownAfterShutdown REG_SZ 0
ReportBootOk REG_SZ 1
Shell REG_SZ Explorer.exe
ShutdownWithoutLogon REG_SZ 0
System REG_SZ
Userinit REG_SZ C:\WINDOWS\system32\userinit.exe,
VmApplet REG_SZ rundll32 shell32,Control_RunDLL "sysdm.cpl"
SfcQuota REG_DWORD -1 (0xffffffff)
allocatecdroms REG_SZ 0
allocatedasd REG_SZ 0
allocatefloppies REG_SZ 0
cachedlogonscount REG_SZ 10
forceunlocklogon REG_DWORD 0 (0x0)
passwordexpirywarning REG_DWORD 14 (0xe)
scremoveoption REG_SZ 0
AllowMultipleTSSessions REG_DWORD 1 (0x1)
UIHost REG_EXPAND_SZ logonui.exe
LogonType REG_DWORD 1 (0x1)
Background REG_SZ 0 0 0
DebugServerCommand REG_SZ no
SFCDisable REG_DWORD 0 (0x0)
WinStationsDisabled REG_SZ 0
HibernationPreviouslyEnabled REG_DWORD 1 (0x1)
ShowLogonOptions REG_DWORD 0 (0x0)
AltDefaultUserName REG_SZ aurelie
AltDefaultDomainName REG_SZ AURÉLIE

===============
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\AtiExtEvent]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\crypt32chain]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\cryptnet]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\cscdll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\ScCertProp]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\Schedule]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\sclgntfy]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\SensLogn]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\termsrv]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\wlballoon]

===============
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
{AEB6717E-7E19-11d0-97EE-00C04FD91972} REG_SZ

===============
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
%windir%\system32\sessmgr.exe REG_SZ %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019
C:\Program Files\Acer\Acer eConsole\MediaSync.exe REG_SZ C:\Program Files\Acer\Acer eConsole\MediaSync.exe:LocalSubNet:Enabled:Media Synchoronizer
C:\Program Files\Acer\Acer eConsole\eConsole.exe REG_SZ C:\Program Files\Acer\Acer eConsole\eConsole.exe:LocalSubNet:Enabled:eConsole
C:\Program Files\Acer\Acer eConsole\MediaServerService.exe REG_SZ C:\Program Files\Acer\Acer eConsole\MediaServerService.exe:LocalSubNet:Enabled:Acer Media Server
C:\Program Files\ABBYY\FineReader 5.0 Sprint\Sprint.exe REG_SZ C:\Program Files\ABBYY\FineReader 5.0 Sprint\Sprint.exe:192.168.1.11/255.255.255.255:Enabled:ABBYY FineReader 5.0 Sprint Plus
C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE REG_SZ C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe
C:\Program Files\HP\Digital Imaging\bin\hposid01.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe
C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe
C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe
C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe
C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe
C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe:*:Enabled:hpqusgm.exe
C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe:*:Enabled:hpqusgh.exe
C:\Program Files\HP\HP Software Update\HPWUCli.exe REG_SZ C:\Program Files\HP\HP Software Update\HPWUCli.exe:*:Enabled:hpwucli.exe
C:\Program Files\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe REG_SZ C:\Program Files\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe:*:Enabled:smartwebprintexe.exe
C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe REG_SZ C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare
C:\Program Files\Bonjour\mDNSResponder.exe REG_SZ C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour
C:\Program Files\iTunes\iTunes.exe REG_SZ C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
%windir%\system32\sessmgr.exe REG_SZ %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe
C:\Program Files\HP\Digital Imaging\bin\hposid01.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe
C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe
C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe
C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe
C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe
C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe:*:Enabled:hpqusgm.exe
C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe REG_SZ C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe:*:Enabled:hpqusgh.exe
C:\Program Files\HP\HP Software Update\HPWUCli.exe REG_SZ C:\Program Files\HP\HP Software Update\HPWUCli.exe:*:Enabled:hpwucli.exe
C:\Program Files\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe REG_SZ C:\Program Files\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe:*:Enabled:smartwebprintexe.exe
C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe REG_SZ C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare

===============
ActivX controls
===============
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{029FDBA6-3547-11D7-AA4C-0050BF051A00}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{02BF25D5-8C17-4B23-BC80-D3488ABDDC6B}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{104B0A37-AB99-4F06-8032-8BBDC3B77DDB}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{166B1BCA-3F9C-11CF-8075-444553540000}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{5D637FAD-E202-48D1-8F18-5B9C459BD1E3}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{62475759-9E84-458E-A1AB-5D2C442ADFDE}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{68C1822F-F5C7-4404-A73F-03C10E0E94DA}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{6EBC6744-5383-4213-AD5E-66434ECA1812}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{7530BFB8-7293-4D34-9923-61A11451AFC5}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{8AD9C840-044E-11D1-B3E9-00805F499D93}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{9191F686-7F0A-441D-8A98-2FE3AC1BD913}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{B79A53C0-1DAC-4636-BACE-FD086A7A79BF}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{B9F79165-A264-4C4A-A211-133A5E8D647F}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{D27CDB6E-AE6D-11CF-96B8-444553540000}

===============
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{26923b43-4d38-484f-9b9e-de460746276c}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{08B0E5C0-4FCB-11CF-AAA5-00401C608500}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10072CEC-8CC1-11D1-986E-00A0C955B42F}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{22d6f312-b0f6-11d0-94ab-0080c74c7e95}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{233C1507-6A77-46A4-9443-F871F945D258}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{283807B5-2C60-11D0-A31D-00AA00B92C03}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{2A202491-F00D-11cf-87CC-0020AFEECF20}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{36f8ec70-c29a-11d1-b5c7-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{3af36230-a269-11d1-b5bf-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{3bf42070-b3b1-11d1-b5c5-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{411EDCF7-755D-414E-A74B-3DCD6583F589}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{4278c270-a269-11d1-b5bf-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA848-CC51-11CF-AAFA-00AA00B6015C}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA855-CC51-11CF-AAFA-00AA00B6015F}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{45ea75a0-a269-11d1-b5bf-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{4f216970-c90c-11d1-b5c7-0000f8051515}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{4f645220-306d-11d2-995d-00c04f98bbc9}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{5945c046-1e7d-11d1-bc44-00c04fd912be}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{5A8D6EE0-3E18-11D0-821E-444553540000}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{5fd399c0-a70a-11d1-9948-00c04f98bbc9}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{630b1da0-b465-11d1-9948-00c04f98bbc9}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{6fab99d0-bab8-11d1-994a-00c04f98bbc9}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{73fa19d0-2d75-11d2-995d-00c04f98bbc9}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{7790769C-0471-11d2-AF11-00C04FA35D02}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{89820200-ECBD-11cf-8B85-00AA005B4340}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{89820200-ECBD-11cf-8B85-00AA005B4383}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8b15971b-5355-4c82-8c07-7e181ea07608}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{9381D8F2-0288-11D0-9501-00AA00B911A5}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{94de52c8-2d59-4f1b-883e-79663d2d9a8c}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{9A394342-4A68-4EBA-85A6-55B559F4E700}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{ACC563BC-4266-43f0-B6ED-9D38C4202C7E}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{C9E9A340-D1F1-11D0-821E-444553540600}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{CC2A9BA0-3BDD-11D0-821E-444553540000}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{CDD7975E-60F8-41d5-8149-19E51D6F71D0}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{D27CDB6E-AE6D-11cf-96B8-444553540000}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{DAA94A2A-2A8D-4D3B-9DB8-56FBECED082D}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{de5aed00-a4bf-11d1-9948-00c04f98bbc9}
HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{E92B03AB-B707-11d2-9CBD-0000F87A369E}

==============
BHO :
======
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{0347C33E-8762-4905-BF09-768834316C61}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{2E03C0FD-4C48-43A7-9A54-00240C70FF16}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{C6867EB7-8350-4856-877F-93CF8AE3DC9C}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]

================
Internet Explorer :
================
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
Start Page REG_SZ https://www.msn.com/fr-fr/?ocid=iehp

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
Start Page REG_SZ https://www.orange.fr/portail

========
Services
========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services]

Ndisuio : 0x3 ( OK = 3 )
SharedAccess : 0x2 ( OK = 2 )
wuauserv : 0x2 ( OK = 2 )

=========
Atapi.sys
=========

%%%% HASHDEEP-1.0
%%%% size,md5,sha256,filename
## Invoked from: C:\Documents and Settings\aurelie\Local Settings\temp\5.tmp
## C:\> hashdeep C:\WINDOWS\System32\Drivers\atapi.sys
##
95360,cdfe4411a69c224bd1d11b2da92dac51,0e6b23a80f171550575bebc56f7500cd87a5cf03b2b9fdc49bc3de96282cd69d,C:\WINDOWS\System32\Drivers\atapi.sys


Sources
=======

C:\WINDOWS\ERDNT\cache\atapi.sys
C:\WINDOWS\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\atapi.sys
C:\WINDOWS\system32\drivers\atapi.sys

Référence :
==========

Win XP_32b : a64013e98426e1877cb653685c5c0009
Win XP_SP2_32b : CDFE4411A69C224BD1D11B2DA92DAC51
Win XP_SP3_32b : 9F3A2F5AA6875C72BF062C712CFA2674
Vista_32b : e03e8c99d15d0381e02743c36afc7c6f
Vista_SP1_32b : 2d9c903dc76a66813d350a562de40ed9
Vista_SP2_32b : 1F05B78AB91C9075565A9D8A4B880BC4
Vista_SP2_64b : 1898FAE8E07D97F2F6C2D5326C633FAC
Windows 7_32b : 80C40F7FDFC376E4C5FEEC28B41C119E
Windows 7_64b : 02062C0B390B7729EDC9E69C680A6F3C

=======
Drive :
=======

Défragmenteur de disque Windows
Copyright (c) 2001 Microsoft Corp. et Executive Software International Inc.

Rapport d'analyse
90,57 Go total, 4,13 Go libre (4%), 33% fragmenté (fragmentation du fichier 62%)

Vous devriez défragmenter ce volume.

¤¤¤¤¤¤¤¤¤¤ Files/folders :

Present !! : C:\Documents and Settings\All Users\Application Data\.zreglib
Present !! : C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
Present !! : C:\Program Files\BitLord
Present !! : C:\WINDOWS\mbr.exe
Present !! : C:\WINDOWS\SlantAdj.dll
Present !! : C:\Documents and Settings\aurelie\Application Data\pcouffin.inf
Present !! : C:\Documents and Settings\aurelie\Application Data\Microsoft\Clip Organizer\mstore10.mgc
Present !! : C:\Documents and Settings\aurelie\LOCAL Settings\Temp\preconfig.exe
Present !! : C:\Documents and Settings\aurelie\LOCAL Settings\Temp\fsprod.dll
Present !! : C:\Documents and Settings\aurelie\LOCAL Settings\Temp\fssfm.dll

¤¤¤¤¤¤¤¤¤¤ Keys :

Present !! : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{0E5CBF21-D15F-11D0-8301-00AA005B4383}
Present !! : HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDrives
Present !! : HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDrives
Present !! : HKEY_USERS\S-1-5-21-1352976129-4025786766-809395480-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDrives
Present !! : "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Install.exe"
Present !! : "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Setup.exe"
Present !! : "HKLM\Software\Trymedia Systems"
Present !! : HKCR\CLSID\{248dd896-bb45-11cf-9abc-0080c7e7b78d}
Present !! : HKCR\CLSID\{248dd897-bb45-11cf-9abc-0080c7e7b78d}
Present !! : HKCR\Interface\{248dd892-bb45-11cf-9abc-0080c7e7b78d}
Present !! : HKCR\Interface\{248dd893-bb45-11cf-9abc-0080c7e7b78d}
Present !! : HKCR\interface\{e342af55-b78a-4cd0-a2bb-da7f52d9d25e}
Present !! : HKCR\Interface\{e420a65f-9984-4b8c-9fa9-1ed69d3b0a13}
Present !! : HKCR\Interface\{E9C4CBEB-7BDF-47FF-8EDF-D72B50BB50EF}
Present !! : HKCR\Interface\{ea58c2ea-be26-49dd-9b9a-c8e4e5ca7791}
Present !! : HKCR\Interface\{eb9e5c1c-b1f9-4c2b-be8a-27d6446fdaf8}
Present !! : HKCR\Interface\{ec1a2105-5621-440f-987d-27ef428131d9}
Present !! : HKCR\interface\{ebab4a71-8c34-461a-b57d-dd041d439555}
Present !! : HKCR\interface\{edb1a56e-2224-4c79-a4bd-42a39c6e4608}
Present !! : HKCR\interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Present !! : HKCR\interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Present !! : HKCR\interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Present !! : HKCR\interface\{f06fea43-0cc3-4bf6-a85b-5efb1c07aa4b}
Present !! : HKCR\interface\{f171a44f-7af5-43e1-afed-edc826a1b0f5}
Present !! : HKCR\Interface\{f2f8c877-b06c-4b5e-95e7-aacfc9e8219d}
Present !! : HKCR\Interface\{f43ec88b-b6c8-4969-a763-e2bf55602cce}
Present !! : HKCR\interface\{f5ac8b35-5b15-4e8f-8046-43858973b495}
Present !! : HKCR\Interface\{f786cb18-3809-4e49-bc99-9a66da47db8b}
Present !! : HKCR\Interface\{f814be58-1bf9-4b50-829a-e889f86127ad}
Present !! : HKCR\Interface\{F8ACA5A0-060A-478A-8368-1407780D2251}
Present !! : HKCR\interface\{fc94a0f7-9c7c-4ae2-9106-5c212332b209}
Present !! : HKCR\Interface\{fca28ac5-c1e1-4d67-a5ae-c44d6c374d9f}
Present !! : HKCR\intermplug
Present !! : HKCR\internetexperienceenhancer.internetexperienceenhancer
Present !! : HKCR\KiweeIEToolbar.KiweeToolbar
Present !! : HKCR\KiweeIEToolbar.KiweeToolbar.1
Present !! : HKCR\KiweeIEToolbar.ToolbarInfo
Present !! : HKCR\KiweeIEToolbar.ToolbarInfo.1
Present !! : HKCR\kt_bho.KettleBho
Present !! : HKCR\MagicControl.MagicComponent
Present !! : HKCR\MagicControl.MagicComponent.1
Present !! : HKCR\mediagateway.installer
Present !! : HKCR\MediaPlayer.GraphicsUtils
Present !! : HKCR\MediaPlayer.GraphicsUtils.1
Present !! : HKCR\MgMediaPlayer.GifAnimator
Present !! : HKCR\MgMediaPlayer.GifAnimator.1
Present !! : HKCR\minibugtransporter.minibugtransporterx
Present !! : HKCR\minibugtransporter.minibugtransporterx.1
Present !! : HKCR\mslagent.3
Present !! : HKCR\mslagent.3.1
Present !! : HKCR\msram.tchongabho
Present !! : HKCR\MWSearch.cfgwr
Present !! : HKCR\MWSearch.cfgwr.1
Present !! : HKCR\MWSearch.StockBar
Present !! : HKCR\MWSearch.StockBar.1
Present !! : HKCR\MWSearch.tbactivator
Present !! : HKCR\MWSearch.tbactivator.1
Present !! : HKCR\Myglobalsearchbar.settingsplugin
Present !! : HKCR\Myglobalsearchbar.settingsplugin.1
Present !! : HKCR\Myglobalsearchbar.toolbarplugin
Present !! : HKCR\Myglobalsearchbar.toolbarplugin.1
Present !! : HKCR\MyQuickSearchToolBar.SettingsPlugin
Present !! : HKCR\MyQuickSearchToolBar.SettingsPlugin.1
Present !! : HKCR\Mysearch.popswatterbarbutton
Present !! : HKCR\Mysearch.popswatterbarbutton.1
Present !! : HKCR\Mysearch.popswattersettingscontrol
Present !! : HKCR\Mysearch.popswattersettingscontrol.1
Present !! : HKCR\Mysearchtoolbar.netscapeshutdown
Present !! : HKCR\Mysearchtoolbar.netscapeshutdown.1
Present !! : HKCR\Mysearchtoolbar.netscapestartup
Present !! : HKCR\Mysearchtoolbar.netscapestartup.1
Present !! : HKCR\Mysearchtoolbar.settingsplugin
Present !! : HKCR\Mysearchtoolbar.settingsplugin.1
Present !! : HKCR\MyWebSearch.ChatSessionPlugin
Present !! : HKCR\MyWebSearch.ChatSessionPlugin.1
Present !! : HKCR\MyWebSearch.HTMLPanel
Present !! : HKCR\MyWebSearch.HTMLPanel.1
Present !! : HKCR\MyWebSearch.OutlookAddin
Present !! : HKCR\MyWebSearch.OutlookAddin.1
Present !! : HKCR\MyWebSearch.PseudoTransparentPlugin
Present !! : HKCR\MyWebSearch.PseudoTransparentPlugin.1
Present !! : HKCR\MyWebSearchToolBar.SettingsPlugin
Present !! : HKCR\MyWebSearchToolBar.SettingsPlugin.1
Present !! : HKCR\MyWebSearchToolBar.ToolbarPlugin
Present !! : HKCR\MyWebSearchToolBar.ToolbarPlugin.1
Present !! : HKCR\NaviHelper.NaviHelperObject
Present !! : HKCR\NaviHelper.NaviHelperObject.1
Present !! : HKCR\NaviPromo.EGNaviScoring
Present !! : HKCR\NaviPromo.EGNaviScoring.1
Present !! : HKCR\NetPumper.AddUrl
Present !! : HKCR\NetPumperNNProxy.NetscapeInterface
Present !! : HKCR\oberontb.band
Present !! : HKCR\oberontb.band.1
Present !! : HKCR\oeactivexdll.desktopbuttonhandler
Present !! : HKCR\oeactivexdll.desktopbuttonhandler.1
Present !! : HKCR\oeactivexdll.desktopoeaddin1
Present !! : HKCR\oeactivexdll.desktopoeaddin1.1
Present !! : HKCR\OutlookAddin.Addin
Present !! : HKCR\OutlookAddin.Addin.1
Present !! : HKCR\P2ECOM.EGP2ECOM
Present !! : HKCR\parttimeb
Present !! : HKCR\popcaploader.popcaploaderctrl2
Present !! : HKCR\popcaploader.popcaploaderctrl2.1
Present !! : HKCR\rxresult.rxresultfilter
Present !! : HKCR\rxresult.rxresultfilter.1
Present !! : HKCR\saix.installercaller
Present !! : HKCR\saix.installercaller.1
Present !! : HKCR\screensavercontrol.screensaverinstaller
Present !! : HKCR\screensavercontrol.screensaverinstaller.1
Present !! : HKCR\SearchSettings.BHO
Present !! : HKCR\SearchSettings.BHO.1
Present !! : HKCR\seekmo.desktopflash
Present !! : HKCR\seekmo.desktopflash.1
Present !! : HKCR\seekmoax.clientdetector
Present !! : HKCR\seekmoax.clientdetector.1
Present !! : HKCR\seekmoax.userprofiles
Present !! : HKCR\seekmoax.userprofiles.1
Present !! : HKCR\shoppingreport.hbax
Present !! : HKCR\shoppingreport.hbax.1
Present !! : HKCR\shoppingreport.hbinfoband
Present !! : HKCR\shoppingreport.hbinfoband.1
Present !! : HKCR\shoppingreport.iebutton
Present !! : HKCR\shoppingreport.iebutton.1
Present !! : HKCR\shoppingreport.iebuttona
Present !! : HKCR\shoppingreport.iebuttona.1
Present !! : HKCR\shoppingreport.rprtctrl
Present !! : HKCR\shoppingreport.rprtctrl.1
Present !! : HKCR\SPEEDBIT1.SPEEDBIT1
Present !! : HKCR\SPEEDBIT1.SPEEDBIT1.3
Present !! : HKCR\srv.coreservices
Present !! : HKCR\srv.coreservices.1
Present !! : HKCR\sssinstaller.installer
Present !! : HKCR\sssinstaller.installer.1
Present !! : HKCR\sssinstaller.sinstaller
Present !! : HKCR\sssinstaller.sinstaller.1
Present !! : HKCR\sud_ext
Present !! : HKCR\SWEETIE.IEToolbar
Present !! : HKCR\SWEETIE.IEToolbar.1
Present !! : HKCR\SWEETIE.SWEETIE
Present !! : HKCR\SWEETIE.SWEETIE.1
Present !! : HKCR\SWEETIE.SWEETIE.3
Present !! : HKCR\SweetIM_URLSearchHook.ToolbarURLSearchHook
Present !! : HKCR\SweetIM_URLSearchHook.ToolbarURLSearchHook.1
Present !! : HKCR\swelladsforyou.swelladsforyou.1
Present !! : HKCR\SystemFileAssociations\Directory.Audio\shellex\ContextMenuHandlers\secure_del
Present !! : HKCR\SystemFileAssociations\Directory.Video\shellex\ContextMenuHandlers\secure_del
Present !! : HKCR\thebestadsforyou.thebestadsforyou
Present !! : HKCR\thebestadsforyou.thebestadsforyou.1
Present !! : HKCR\ToolBand.SWEETIE
Present !! : HKCR\ToolBand.SWEETIE.1
Present !! : HKCR\toolbar.htmlmenuui
Present !! : HKCR\toolbar.htmlmenuui.1
Present !! : HKCR\toolbar.toolbarctl
Present !! : HKCR\toolbar.toolbarctl.1
Present !! : HKCR\Toolbar3.SWEETIE
Present !! : HKCR\Toolbar3.SWEETIE.1
Present !! : HKCR\Torrent101
Present !! : HKCR\TorrentQ
Present !! : HKCR\TorrentSoftware
Present !! : HKCR\TypeLib\{04011C11-2F3B-44ed-977C-270CA669C6B2}
Present !! : HKCR\TypeLib\{0514c9b0-e4c6-4d6b-a3a6-b38bc280b115}
Present !! : HKCR\TypeLib\{06EC63CC-4823-4836-ABB8-AB5F3971FA5C}
Present !! : HKCR\TypeLib\{07B18EA0-A523-4961-B6BB-170DE4475CCA}
Present !! : HKCR\Typelib\{08755390-f46d-4d09-968c-3430166b3189}
Present !! : HKCR\Typelib\{087c4054-0a2b-4f35-b0db-bed3e21650f4}
Present !! : HKCR\Typelib\{0923208c-e259-4ed5-a778-cb607da350ad}
Present !! : HKCR\TypeLib\{0D26BC71-A633-4E71-AD31-EADC3A1B6A3A}
Present !! : HKCR\TypeLib\{0E594D22-ACE6-43A2-BCDA-BB7C65D3FE8C}
Present !! : HKCR\TypeLib\{0E677220-E309-4341-81BD-3CC3018BF5B3}
Present !! : HKCR\TypeLib\{10954590-2B3A-41EC-97BB-C95A5E646DA9}
Present !! : HKCR\TypeLib\{1145A909-A836-44B8-B03A-48D858B0F43E}
Present !! : HKCR\TypeLib\{1AE427B0-E3B7-4D2E-A6B9-36605B0F214E}
Present !! : HKCR\TypeLib\{1510d162-dace-de7d-0d0a-1556c8a81de9}
Present !! : HKCR\Typelib\{1D4DB7D0-6EC9-47A3-BD87-1E41684E07BB}
Present !! : HKCR\TypeLib\{1F445F82-42C0-46F3-9A2E-6ADB79046D41}
Present !! : HKCR\Typelib\{229d2451-a617-4b30-b5e8-8138694240cb}
Present !! : HKCR\TypeLib\{22c12739-c111-44c6-9bb7-f335c2a9be2a}
Present !! : HKCR\TypeLib\{2473BF20-CA0A-11DA-88DB-0050BF2938E1}
Present !! : HKCR\TypeLib\{248dd890-bb45-11cf-9abc-0080c7e7b78d}
Present !! : HKCR\Typelib\{259EEB17-79AA-44DF-8410-8E55F82A902A}
Present !! : HKCR\TypeLib\{2850bdc7-2330-4e31-9fa0-88268846539a}
Present !! : HKCR\TypeLib\{29D67D3C-509A-4544-903F-C8C1B8236554}
Present !! : HKCR\TypeLib\{310b6b01-d56c-a278-2f47-b8cf1066c079}
Present !! : HKCR\Typelib\{3160f356-e8c3-4de2-a698-92eeeb3d3400}
Present !! : HKCR\TypeLib\{37b85a20-692b-4205-9cad-2626e4993404}
Present !! : HKCR\Typelib\{3b8e549e-0c73-4aab-8939-5ea2ed102cc6}
Present !! : HKCR\Typelib\{3c2d2a1e-031f-4397-9614-87c932a848e0}
Present !! : HKCR\TypeLib\{3E720450-B472-4954-B7AA-33069EB53906}
Present !! : HKCR\TypeLib\{4509d3cc-b642-4745-b030-645b79522c6d}
Present !! : HKCR\Typelib\{45397063-d7d0-47c2-9508-26487608a298}
Present !! : HKCR\TypeLib\{478CAB91-9E28-11D4-97FF-0050047D51FB}
Present !! : HKCR\TypeLib\{497dddb6-6eee-4561-9621-b77dc82c1f84}
Present !! : HKCR\Typelib\{4cf5a3c1-07a2-4336-9b54-6870452ebde1}
Present !! : HKCR\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
Present !! : HKCR\Typelib\{52cde0e4-d73b-11dd-9b90-fcc056d89593}
Present !! : HKCR\Typelib\{5303e828-3a4c-11de-ac1c-f77f55d89593}
Present !! : HKCR\TypeLib\{5630B768-1C09-4105-9E03-E35985E36B0B}
Present !! : HKCR\TypeLib\{5A445F80-DAB5-4CD9-8A05-CD09AC145AA2}
Present !! : HKCR\Typelib\{58906392-79C4-497C-ACC6-6942B59F1A08}
Present !! : HKCR\TypeLib\{5BAD7FAE-81F0-4439-8C1A-3E8907998047}
Present !! : HKCR\Typelib\{6c5ba655-5cec-47bb-a6d3-82a4afe7da87}
Present !! : HKCR\Typelib\{710993A2-4F87-41D7-B6FE-F5A20368465F}
Present !! : HKCR\Typelib\{71e9cf40-af72-4b55-bd3f-1fea2a0eaea6}
Present !! : HKCR\Typelib\{71efe583-62fe-4419-9918-ca3b683f7b36}
Present !! : HKCR\Typelib\{74278296-0ec7-4f7a-ad55-eb7a2f35f311}
Present !! : HKCR\TypeLib\{7473D290-B7BB-4F24-AE82-7E2CE94BB6A9}
Present !! : HKCR\TypeLib\{7699AEF9-F83A-44FA-B374-AA02CEDF247D}
0
Réponse 26 / 38
benurrr Messages postés 9643 Date d'inscription samedi 24 mai 2008 Statut Contributeur sécurité Dernière intervention 11 janvier 2012 107
19 févr. 2010 à 12:53
ok il est trop long c'est pour sa qu'il s'affiche pas en entier

alors fais ceci :

Clique sur ce lien :

http://www.cijoint.fr/

Clique sur Parcourir et cherche le fichier C:Kill'em.txt

Clique sur Ouvrir.

Clique sur "Cliquez ici pour déposer le fichier".

Un lien de cette forme :

http://www.cijoint.fr/cjlink.php?file=cj200905/cijSKAP5fU.txt

est ajouté dans la page.

Copie ce lien dans ta réponse.
0
Réponse 27 / 38
boubou2b Messages postés 28 Date d'inscription dimanche 14 février 2010 Statut Membre Dernière intervention 20 février 2010 3
19 févr. 2010 à 12:57
Merci
Voici l'operation demandée.
http://www.cijoint.fr/cjlink.php?file=cj201002/cijoe7txVi.txt
0
Réponse 28 / 38
benurrr Messages postés 9643 Date d'inscription samedi 24 mai 2008 Statut Contributeur sécurité Dernière intervention 11 janvier 2012 107
19 févr. 2010 à 13:00
toujours pas complet sa nous permettra de le raccourcir

▶ Relance List&Kill'em(soit en clic droit pour vista),avec le raccourci sur ton bureau.
mais cette fois-ci :

▶ choisis l'option 2 = Mode Suppression

laisse travailler l'outil.

en fin de scan un rapport s'ouvre

▶ colle le contenu dans ta réponse
0
Réponse 29 / 38
boubou2b Messages postés 28 Date d'inscription dimanche 14 février 2010 Statut Membre Dernière intervention 20 février 2010 3
19 févr. 2010 à 13:02
Ok, merci je lance l'opération.
0
Réponse 30 / 38
boubou2b Messages postés 28 Date d'inscription dimanche 14 février 2010 Statut Membre Dernière intervention 20 février 2010 3
19 févr. 2010 à 14:47
Voici le rapport demandé après suppression.
Cela était particulièrement long.
Merci.
Kill'em by g3n-h@ckm@n 1.2.5.2

User : aurelie (Administrateurs)
Update on 16/02/2010 by g3n-h@ckm@n ::::: 13.30
Start at: 13:04:11 | 19/02/2010
Contact : https://forums.commentcamarche.net/forum/virus-securite-7

Intel(R) Pentium(R) D CPU 3.00GHz
Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 2
Internet Explorer 8.0.6001.18702
Windows Firewall Status : Disabled
AV : Anti-virus firewall 9.10 9.10 [ Enabled | Updated ]
FW : Anti-virus firewall 9.10[ Enabled ]9.10

C:\ -> Disque fixe local | 90,57 Go (4,08 Go free) [ACER] | NTFS
D:\ -> Disque fixe local | 91,82 Go (18,48 Go free) [ACERDATA] | FAT32
E:\ -> Disque CD-ROM
G:\ -> Disque amovible
H:\ -> Disque amovible
I:\ -> Disque amovible
J:\ -> Disque amovible


¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes running

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\Orange\Antivirus Firewall\Anti-Virus\fsgk32st.exe
C:\Program Files\Orange\Antivirus Firewall\Common\FSMA32.EXE
C:\Program Files\Orange\Antivirus Firewall\Anti-Virus\FSGK32.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Orange\Antivirus Firewall\Common\FSHDLL32.EXE
C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Acer\Empowering Technology\eRecovery\Monitor.exe
C:\Program Files\Acer\Acer eMode Management\AspireService.exe
C:\Program Files\Acer\Acer eConsole\MediaSync.exe
C:\Program Files\lg_fwupdate\fwupdate.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Orange\Antivirus Firewall\Common\FSM32.EXE
C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.BIN
C:\Program Files\Orange\Antivirus Firewall\ORSP Client\fsorsp.exe
C:\Program Files\Orange\Antivirus Firewall\FWES\Program\fsdfwd.exe
C:\Program Files\Orange\Antivirus Firewall\Anti-Virus\fssm32.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files\Orange\Antivirus Firewall\Anti-Virus\fsav32.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\List_Kill'em\List_Kill'em.scr
C:\WINDOWS\system32\cmd.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Documents and Settings\aurelie\Local Settings\temp\C.tmp\pv.exe

Detections :
==========


¤¤¤¤¤¤¤¤¤¤ Files/folders :

Quarantined & Deleted !! : C:\Documents and Settings\All Users\Application Data\.zreglib
Quarantined & Deleted !! : C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
Quarantined & Deleted !! : C:\Program Files\BitLord
Quarantined & Deleted !! : C:\WINDOWS\mbr.exe
Quarantined & Deleted !! : C:\WINDOWS\SlantAdj.dll

Quarantined & Deleted !! : C:\Documents and Settings\aurelie\Application Data\pcouffin.inf
Quarantined & Deleted !! : C:\Documents and Settings\aurelie\Application Data\Microsoft\Clip Organizer\mstore10.mgc
Quarantined & Deleted !! : C:\Documents and Settings\aurelie\LOCAL Settings\Temp\preconfig.exe
Quarantined & Deleted !! : C:\Documents and Settings\aurelie\LOCAL Settings\Temp\fsprod.dll
Quarantined & Deleted !! : C:\Documents and Settings\aurelie\LOCAL Settings\Temp\fssfm.dll

==============
host file OK !
==============

========
Registry
========

Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{0E5CBF21-D15F-11D0-8301-00AA005B4383}
Deleted : HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDrives
Deleted : HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoDrives
Deleted : "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Install.exe"
Deleted : "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Setup.exe"
Deleted : "HKLM\Software\Trymedia Systems"
Deleted : HKCR\CLSID\{248dd896-bb45-11cf-9abc-0080c7e7b78d}
Deleted : HKCR\CLSID\{248dd897-bb45-11cf-9abc-0080c7e7b78d}
Deleted : HKCR\Interface\{248dd892-bb45-11cf-9abc-0080c7e7b78d}
Deleted : HKCR\Interface\{248dd893-bb45-11cf-9abc-0080c7e7b78d}
Deleted : HKCR\TypeLib\{248dd890-bb45-11cf-9abc-0080c7e7b78d}
========
Services
=========

Ndisuio : Start = 3
Ip6Fw : Start = 2
SharedAccess : Start = 2
wuauserv : Start = 2
wscsvc : Start = 2

============
Disk Cleaned
============

=================
anti-ver blaster : OK !!
=================

================
Prefetch cleaned
================



¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤( EOF )¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
0
Réponse 31 / 38
benurrr Messages postés 9643 Date d'inscription samedi 24 mai 2008 Statut Contributeur sécurité Dernière intervention 11 janvier 2012 107
19 févr. 2010 à 19:07
ok comment va ton pc
0
Réponse 32 / 38
boubou2b Messages postés 28 Date d'inscription dimanche 14 février 2010 Statut Membre Dernière intervention 20 février 2010 3
19 févr. 2010 à 19:44
Bonsoir,
Apparement il va bien, j'arrive à tout ouvrir comme avant son coup de calgon.
Mais il avait quoi en fait ?
Encore MERCI pour le temps consacré à résoudre mon problème.
0
Réponse 33 / 38
benurrr Messages postés 9643 Date d'inscription samedi 24 mai 2008 Statut Contributeur sécurité Dernière intervention 11 janvier 2012 107
19 févr. 2010 à 22:28
ta due ouvrir un fichier télécharger via p2p qui était piéger

pour nettoyer les fix qui ont servit


Ferme toutes les applications en cours, puis télécharge ToolsCleaner2 sur ton Bureau.
http://pc-system.fr/

Double clique sur ToolsCleaner2.exe >
puis Recherche
et sur Suppression
Note : ton bureau va disparaître, c'est normal. S'il n'apparaît pas à la fin du scan, fais la manip suivante :

CTRL+ALT+SUPP pour ouvrir le Gestionnaire des tâches.
Puis rends toi à l'onglet "Processus". Clique en haut à gauche sur Fichiers et choisis "Exécuter"

Tape explorer.exe et valide. Cela fera re-apparaître le Bureau

tu poste le rapport générer après suppression
0
Réponse 34 / 38
boubou2b Messages postés 28 Date d'inscription dimanche 14 février 2010 Statut Membre Dernière intervention 20 février 2010 3
20 févr. 2010 à 11:05
Bonjour,
Désolée ne pas avoir répondu avant. Voici le rapport demandé.
Encore et toujours MERCI pour l'aide apporté.
[ Rapport ToolsCleaner version 2.3.11 (par A.Rothstein & dj QUIOU) ]

--> Recherche:

C:\Combofix.txt: trouvé !
C:\cleannavi.txt: trouvé !
C:\rapport_clean.txt: trouvé !
C:\Combofix: trouvé !
C:\Qoobox: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: trouvé !
C:\Documents and Settings\aurelie\Bureau\HijackThis.lnk: trouvé !
C:\Documents and Settings\aurelie\Bureau\Navilog1.lnk: trouvé !
C:\Documents and Settings\aurelie\Bureau\ComboFix.exe: trouvé !
C:\Documents and Settings\aurelie\Bureau\HJTInstall.exe: trouvé !
C:\Documents and Settings\aurelie\Bureau\Rsit.exe: trouvé !
C:\Documents and Settings\aurelie\Local Settings\temp\5.tmp\catchme.exe: trouvé !
C:\Documents and Settings\aurelie\Local Settings\temp\5.tmp\mbr.exe: trouvé !
C:\Documents and Settings\aurelie\Local Settings\temp\7.tmp\catchme.exe: trouvé !
C:\Documents and Settings\aurelie\Local Settings\temp\7.tmp\mbr.exe: trouvé !
C:\Documents and Settings\aurelie\Local Settings\temp\9D.tmp\catchme.exe: trouvé !
C:\Documents and Settings\aurelie\Local Settings\temp\9D.tmp\mbr.exe: trouvé !
C:\Documents and Settings\aurelie\Local Settings\temp\C.tmp\catchme.exe: trouvé !
C:\Documents and Settings\aurelie\Local Settings\temp\C.tmp\mbr.exe: trouvé !
C:\Documents and Settings\aurelie\Menu Démarrer\Programmes\Navilog1: trouvé !
C:\Documents and Settings\aurelie\Mes documents\aurelfranc\Navilog1.exe: trouvé !
C:\Documents and Settings\aurelie\Mes documents\PcSetup\fixnavi.txt: trouvé !
C:\Documents and Settings\aurelie\Mes documents\PcSetup\cleannavi.txt: trouvé !
C:\Documents and Settings\aurelie\Mes documents\PcSetup\rapport_clean.txt: trouvé !
C:\Program Files\Navilog1: trouvé !
C:\Program Files\Hijackthis Version Française\hijackthis.log: trouvé !
C:\Program Files\Navilog1\Navilog1.bat: trouvé !
C:\Program Files\Trend Micro\HijackThis: trouvé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: trouvé !
C:\Program Files\Trend Micro\HijackThis\hijackthis.log: trouvé !
C:\Qoobox\Quarantine\catchme.log: trouvé !

---------------------------------
--> Suppression:

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: supprimé !
C:\Documents and Settings\aurelie\Bureau\HijackThis.lnk: supprimé !
C:\Documents and Settings\aurelie\Bureau\Navilog1.lnk: supprimé !
C:\Documents and Settings\aurelie\Bureau\ComboFix.exe: ERREUR DE SUPPRESSION !!
C:\Documents and Settings\aurelie\Bureau\HJTInstall.exe: supprimé !
C:\Documents and Settings\aurelie\Local Settings\temp\5.tmp\catchme.exe: supprimé !
C:\Documents and Settings\aurelie\Local Settings\temp\7.tmp\catchme.exe: supprimé !
C:\Documents and Settings\aurelie\Local Settings\temp\9D.tmp\catchme.exe: supprimé !
C:\Documents and Settings\aurelie\Local Settings\temp\C.tmp\catchme.exe: supprimé !
C:\Documents and Settings\aurelie\Mes documents\aurelfranc\Navilog1.exe: supprimé !
C:\Program Files\Navilog1\Navilog1.bat: supprimé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: supprimé !
C:\Combofix.txt: supprimé !
C:\cleannavi.txt: supprimé !
C:\rapport_clean.txt: supprimé !
C:\Documents and Settings\aurelie\Bureau\Rsit.exe: supprimé !
C:\Documents and Settings\aurelie\Local Settings\temp\5.tmp\mbr.exe: supprimé !
C:\Documents and Settings\aurelie\Local Settings\temp\7.tmp\mbr.exe: supprimé !
C:\Documents and Settings\aurelie\Local Settings\temp\9D.tmp\mbr.exe: supprimé !
C:\Documents and Settings\aurelie\Local Settings\temp\C.tmp\mbr.exe: supprimé !
C:\Documents and Settings\aurelie\Mes documents\PcSetup\fixnavi.txt: supprimé !
C:\Documents and Settings\aurelie\Mes documents\PcSetup\cleannavi.txt: supprimé !
C:\Documents and Settings\aurelie\Mes documents\PcSetup\rapport_clean.txt: supprimé !
C:\Program Files\Hijackthis Version Française\hijackthis.log: supprimé !
C:\Program Files\Trend Micro\HijackThis\hijackthis.log: supprimé !
C:\Qoobox\Quarantine\catchme.log: supprimé !
C:\Combofix: supprimé !
C:\Qoobox: supprimé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: supprimé !
C:\Documents and Settings\aurelie\Menu Démarrer\Programmes\Navilog1: supprimé !
C:\Program Files\Navilog1: supprimé !
C:\Program Files\Trend Micro\HijackThis: supprimé !
0
Réponse 35 / 38
boubou2b Messages postés 28 Date d'inscription dimanche 14 février 2010 Statut Membre Dernière intervention 20 février 2010 3
20 févr. 2010 à 11:45
Boujour,
J'ai fait ce qui etait demandée, je pense que le problème est résolu.
Encore MERCI pour tout.
Dois-je encore faire quelque chose ?
0
Réponse 36 / 38
benurrr Messages postés 9643 Date d'inscription samedi 24 mai 2008 Statut Contributeur sécurité Dernière intervention 11 janvier 2012 107
20 févr. 2010 à 21:17
tu a d'autre soucie ?
0
Réponse 37 / 38
boubou2b Messages postés 28 Date d'inscription dimanche 14 février 2010 Statut Membre Dernière intervention 20 février 2010 3
20 févr. 2010 à 22:10
Bonsoir,
Non, je n'ai plus de soucis avec l'ordi.
Je sais que je répète mais MERCI BEAUCOUP. C'est vraiment super de savoir que des gens sont là pour nous aider à résoudre nos problèmes.
Alors bonne soirée et je suppose que je peux mettre RESOLU ?
0
Réponse 38 / 38
benurrr Messages postés 9643 Date d'inscription samedi 24 mai 2008 Statut Contributeur sécurité Dernière intervention 11 janvier 2012 107
21 févr. 2010 à 00:40
yes content pour toi bonne soirée et bon surf
0

Discussions similaires

"Aucune application permettant d'ouvrir cette URL"
sidojaice -
JIP -

24 réponses
connection ok mais aucune page ne s'affiche
gandounet -
fabiennetitou -

10 réponses