Virus sonore

Résolu
Chris -  
khaoula1305 Messages postés 2 Date d'inscription   Statut Membre Dernière intervention   -
Bonjour,

Je suis novice et débutante sur les forums.
Pouvez-vous m'aider.
Je m'explique : depuis hier, j'ai un virus sonore et je n'arrive pas à m'en sortir.
J'ai déjà vu avec Avast mais ça continue.

Voici mon log.
En espérant que vous trouverez la solution pour me débarrasser de ce problème.
Merci.

Chris

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:02:31, on 20/09/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18943)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe
C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe
C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
C:\Program Files\Hewlett-Packard\Media\TV\TVAgent.exe
C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\OpenOffice.org 2.4\program\soffice.exe
C:\Program Files\OpenOffice.org 2.4\program\soffice.BIN
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Notepad++\notepad++.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Users\krys\Downloads\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/...
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/...
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [DVDAgent] "C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe"
O4 - HKLM\..\Run: [TSMAgent] "C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe"
O4 - HKLM\..\Run: [CLMLServer for HP TouchSmart] "C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe"
O4 - HKLM\..\Run: [TVAgent] "C:\Program Files\Hewlett-Packard\Media\TV\TVAgent.exe"
O4 - HKLM\..\Run: [UCam_Menu] "C:\Program Files\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Hewlett-Packard\Media\Webcam" update "Software\Hewlett-Packard\Media\Webcam"
O4 - HKLM\..\Run: [SmartMenu] %ProgramFiles%\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [UpdatePSTShortCut] "C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [UpdateP2GoShortCut] "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [UpdatePDIRShortCut] "C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\PowerDirector" UpdateWithCreateOnce "SOFTWARE\CyberLink\PowerDirector\7.0"
O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SysTrayApp] %ProgramFiles%\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [Adobe_ID0ENQBO] C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [HPAdvisor] C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe autorun=AUTORUN
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - Startup: OneNote 2007 - Capture d'écran et lancement.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Startup: OpenOffice.org 2.4.lnk = C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Ajouter la cible du lien à un fichier PDF existant - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Ajouter à un fichier PDF existant - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir au format Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien au format Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O13 - Gopher Prefix:
O16 - DPF: {3D3B42C2-11BF-4732-A304-A01384B70D68} (UploadListView Class) - http://picasaweb.google.com/s/v/56.44/uploader2.cab
O23 - Service: Adobe Version Cue CS4 - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_52c73ccb\aestsrv.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Corporation - C:\Windows\system32\Hpservice.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: Norton Internet Security - Unknown owner - C:\Program Files\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe (file missing)
O23 - Service: Recovery Service for Windows - Unknown owner - C:\Program Files\SMINST\BLService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_52c73ccb\STacSV.exe
O23 - Service: TV Background Capture Service (TVBCS) (TVCapSvc) - Unknown owner - C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe
O23 - Service: TV Task Scheduler (TVTS) (TVSched) - Unknown owner - C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe
O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe
O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe
A voir également:

2 réponses

Réponse 1 / 2
Utilisateur anonyme
 
Bonjour

On va faire une analyse plus approfondie de ton systéme.


* Télécharge ftp://zebulon.fr/ZHPDiag.exe ZHPDiag ( de Nicolas coolman ).
ou
http://www.premiumorange.com/zeb-help-process/zhpdiag.html (En bas de page).
/!\Utilisateurs de Vista et Windows 7 : Clique droit sur le logo de ZHPDiag.exe, " exécuter en tant qu'Administrateur /!\
* Laisse toi guider lors de l'installation
* Il se lancera automatiquement à la fin de l'installation
* Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
* Héberge le rapport ZHPDiag.txt sur le site cijoint.fr, puis copie/colle le lien fournit dans ta prochaine réponse sur le forum
0
Chris
 
Merci beaucoup pour ton aide.
Mon problème est résolu et je te remercie d'être intervenu aussi rapidement.
0
Chris
 
Merci beaucoup pour ton aide.
Mon problème est résolu et je te remercie d'être intervenu aussi rapidement.
Merci
0
Réponse 2 / 2
khaoula1305 Messages postés 2 Date d'inscription   Statut Membre Dernière intervention  
 
Bonjour
Moi aussi je me suis trouvée dans la même situation avec un virus sonore qui se répète tout le temps (sans arrêt). J'ai télécharger le ZHPDiag et j'ai suivi toutes les directives et voilà le lien du rapport après son hébergement sur le site cijoint.fr : https://www.cjoint.com/?BJfv3jlefwK

Le rapport :

Rapport de ZHPDiag v1.27.1421 par Nicolas Coolman, Update du 16/12/2010
Run by Administrateur at 05/10/2012 20:44:00
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Contact : nicolascoolman@yahoo.fr

---\\ Web Browser
MSIE: Internet Explorer v7.0.5730.13
MFIE: Mozilla Firefox 11.0 v11.0
GCIE: Google Chrome v22.0.1229.79 (Defaut)

---\\ System Information
Windows XP Professional Service Pack 3 (Build 2600)
Processor: x86 Family 6 Model 23 Stepping 10, GenuineIntel
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3000.9 MB (51% free)
System drive C: has 59 GB (47%) free of 122 GB

---\\ Logged in mode
Computer Name: CSI-EB5D27A633C
User Name: Administrateur
All Users Names: SUPPORT_388945a0, HelpAssistant, ASPNET, Administrateur,
Unselected Option: O1,O45,O61,O62,O65,O82
Logged in as Administrator

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 59 Go of 122 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 37 Go of 111 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ CD-ROM drive (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Free 1 Go of 4 Go)
H:\ Floppy drive, Flash card reader, USB Key (Free 1 Go of 2 Go)


---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: Modified
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: Modified
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: Modified
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK


---\\ Recherche particulière de fichiers génériques
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.14/04/2008 15:00:00.) -- C:\Windows\Explorer.exe [1037824]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.14/04/2008 15:00:00.) -- C:\Windows\System32\Winlogon.exe [512000]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 10:40:32.) -- C:\Windows\System32\drivers\atapi.sys [96512]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.14/04/2008 15:00:00.) -- C:\Windows\System32\drivers\ntfs.sys [574976]


---\\ Processus lancés
[MD5.ADD26462FD83CEF5A7C0038E5AA8AAEF] - (.Atheros - ACS.) -- C:\WINDOWS\system32\acs.exe [475220]
[MD5.A5BCBAF0477C4869B67E0195AEA4A9CD] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [136360]
[MD5.3CCE4AFA4AACDB28E01A148394212186] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [269480]
[MD5.CDE000884FD7BAF0C1FDFE029B0891DE] - (.Avira GmbH - AntiVir shadow copy service.) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe [76968]
[MD5.AE5A69F44C1F97EDC83237FC0B29B6FB] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files\Google\Update\1.3.21.123\GoogleCrashHandler.exe [212432]
[MD5.69BE9EE39580CFB20305E2D5BE561D27] - (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe [141336]
[MD5.B795E09C2DBE6FC20974A80A6024195D] - (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe [173592]
[MD5.536FF12CF5BEDC289867DE33CEB9C18C] - (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe [141848]
[MD5.07C8F6C421FF41078FC326E82D7B168E] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1434920]
[MD5.4B64F59D9B7E8E51ED5F9403DA6B0CFE] - (.Atheros Communications, Inc. - Atheros Client Utility.) -- C:\Program Files\Atheros\ACU.exe [450648]
[MD5.2BAD84B393AF47006D80BA2F03B18029] - (.Macrovision Corporation - InstallShield Update Service Update Manager.) -- C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe [213936]
[MD5.1C5492CAF346EEFD66DAA7164C8D8D8B] - (.Nullsoft, Inc. - Winamp Agent.) -- C:\Program Files\Winamp\winampa.exe [37888]
[MD5.CF0AEEE7BC550E5867B36572562C1965] - (.iMesh, Inc - Data Manager.) -- C:\PROGRA~1\WI9130~1\DataMngr\DataMngrUI.exe [796608]
[MD5.E992A05B335B35586AFB5149D0D0439A] - (.Intel Corporation - igfxsrvc Module.) -- C:\WINDOWS\system32\igfxsrvc.exe [250904]
[MD5.31B522014FC560C122CDFA72D47CA940] - (.Ask - Ask Updater.) -- C:\Program Files\Ask.com\Updater\Updater.exe [1391272]
[MD5.4EB0C6C3EF4D8885CF2B5D0062F31E44] - (.Pas de propriétaire - DivX Update.) -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1259376]
[MD5.3B97D60483711F491E12799CECD424FC] - (.Blabbers Communications LTD - Browser Companion Helper.) -- C:\Program Files\BrowserCompanion\BCHelper.exe [187696]
[MD5.8E53B67FA3816E854B07C5DC66E10730] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\program files\real\realplayer\update\realsched.exe [296056]
[MD5.A40432BB46793F3A2AD42E6D23A8290F] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [252136]
[MD5.34086F1DBB4065047EA3671CB70505CC] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [421776]
[MD5.F401929EE0CC92BFE7F15161CA535383] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe [55184]
[MD5.93AD0B78C7357A05F50E594EC7C22300] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\rundll32.exe [33792]
[MD5.B8DA797CEA896C42F5BAD9E08E21AF9F] - (.SFX TEAM - SuperCopier 2 (explorer file copy replaceme.) -- C:\Program Files\SuperCopier2\SuperCopier2.exe [1052672]
[MD5.DB5BEA73EDAF19AC68B2C0FAD0F92B1A] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [390504]
[MD5.3A86FDE95F09EC88A5ECDDBF52C18283] - (.OLYMPUS IMAGING CORP. - resident module.) -- C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe [95536]
[MD5.A1509BA3A5FDC5366146E92B3D130EB5] - (.Oracle Corporation - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre7\bin\jqs.exe [161664]
[MD5.94EE59C8250982EE8E0A0DB8DBE6E1BE] - (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\PROGRA~1\Druide\Antidote\Gestionnaire Antidote.exe [536576]
[MD5.A07E8935CC8DCE6DB787DC99129CA17C] - (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe [1305408]
[MD5.7CF1B716372B89568AE4C0FE769F5869] - (.Microsoft Corporation - Machine Debug Manager.) -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\mdm.exe [335872]
[MD5.CBEC06E32D0AC9C3D0A9199EDC1FB959] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe [17418928]
[MD5.B05640AC812FCCB488328DF34E7F663A] - (.Microsoft Corporation - SQL Server Windows NT.) -- c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [43010392]
[MD5.D358E077A0A05D9B12DA22D137EE8464] - (.Microsoft Corp. - Microsoft SeaPort Search Enhancement Broker.) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [226656]
[MD5.637A0F23F9012358E92E6F99835494D1] - (.Microsoft Corporation - SQL Server VSS Writer.) -- c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [98840]
[MD5.7AFB7C14057050AE57F225587A1CA8A8] - (.EasyBits Software AS - Game Organizer.) -- C:\Documents and Settings\All Users\Application Data\GameXN\GameXNGO.exe [347008]
[MD5.7B391EF2278A44B6D82446086550C25B] - (.Pas de propriétaire - Pas de description.) -- C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\acromexnsw.exe [331776]
[MD5.126FF9C777A111EDB8A5DF3FEC2B344E] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\FK_Monitor\freeklogger.exe [794624]
[MD5.3886EC1A39667F30E5A6797E2DD54062] - (.Broadcom Corporation. - Bluetooth Tray Application.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [603488]
[MD5.ABC2C67DFD48930F846934B907C3D606] - (.OpenOffice.org - OpenOffice.org 3.2.) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe [7424000]
[MD5.15D982E21248E9BE337D9B40247AF30E] - (.OpenOffice.org - OpenOffice.org 3.2.) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin [7418368]
[MD5.80349CB09DDC2F99E16D0F8919E2DCA3] - (.Broadcom Corporation. - Bluetooth Support Server.) -- C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [349528]
[MD5.E6BE7A41A28D8F2DB174957454D32448] - (.Apple Inc. - iPodService Module (32-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [821648]
[MD5.20A098A4D12E49342228D3AFE98EAFDF] - (.Microsoft Corporation - Windows Live Toolbar User Elevation Helper.) -- C:\Program Files\Windows Live\Toolbar\wltuser.exe [223584]
[MD5.798A9E6828997EEF4517ADA8A2259831] - (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\wmiprvse.exe [227840]
[MD5.B6E13F9C120C776A89D783E26D6C15C5] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [634648]
[MD5.2E0B0A051FFAA86E358465BB0880D453] - (.Microsoft Corporation - Windows Update.) -- C:\WINDOWS\system32\wuauclt.exe [53784]
[MD5.5132FB1B120FB3FB5442008422FFEF4D] - (.Avira GmbH - Antivirus Control Center.) -- C:\Program Files\Avira\AntiVir Desktop\avcenter.exe [400040]
[MD5.01CA6E9F4E6E8B2DBE0D365CCAA312C1] - (.Avira GmbH - On-Demand Scanner.) -- C:\Program Files\Avira\AntiVir Desktop\avscan.exe [484008]
[MD5.0DAD93BB0FECF5016AE3C06CBB0A873B] - (.Microsoft Corporation - COM Surrogate.) -- C:\WINDOWS\system32\dllhost.exe [5120]
[MD5.8648D670AE0D95C95E7BBB5B80661796] - (.Microsoft Corporation - MS DTC console program.) -- C:\WINDOWS\system32\msdtc.exe [6144]
[MD5.388AE59FE75F1B959DFA0900923C61BB] - (.Skype Technologies S.A. - Skype C2C Service.) -- C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000]
[MD5.33B356DDBCEE822411EBEA7B2EEA14B4] - (.Bloodshed Software - Dev-C++ IDE.) -- C:\Dev-Cpp\devcpp.exe [964096]
[MD5.6194CC4A71F51CF3E815252BB43AAC28] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1239064]
[MD5.158F8E46AB4809937F8800058374E797] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\WinRAR\WinRAR.exe [1038336]
[MD5.5A4DA252B2C0550AB83D129C02CF6C19] - (.Microsoft Corporation - Service de cliché instantané de volumes Mic.) -- C:\WINDOWS\System32\vssvc.exe [295424]
[MD5.806A8E35707BEA615B209001E544F0F0] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [620544]


---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2)
P2 - FPN:Firefox Plugin Navigator . (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFFICE.DLL
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.4.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.Tracker Software Products Ltd. - PDF-XChange Viewer Netscape Gecko Plugin.) -- C:\Program Files\Mozilla Firefox\Plugins\npPDFXCviewNPPlugin.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Mozilla Firefox\Plugins\nppl3260.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealJukebox Netscape Plugin.) -- C:\Program Files\Mozilla Firefox\Plugins\nprjplug.dll
P2 - FPN:Firefox Plugin Navigator . (.RealPlayer - RealPlayer Download Plugin.) -- C:\Program Files\Mozilla Firefox\Plugins\nprpplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Nullsoft, Inc. - Winamp Application Detector.) -- C:\Program Files\Mozilla Firefox\Plugins\npwachk.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX, LLC - DivX Plus Web Player version 2.2.0.52.) -- C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
P2 - FPN: [HKLM] [@divx.com/DivX VOD Helper,version=1.0.0] - (.DivX, LLC. - DivX VOD Helper Plug-in.) -- C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
P2 - FPN: [HKLM] [@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf] - (.Tracker Software Products Ltd. - PDF-XChange Viewer Netscape Gecko Plugin.) -- C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Oracle Corporation - Next Generation Java Plug-in 10.0.0 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.3] - (.Microsoft Corp. - Office Live Update v1.3.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8117.0416] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@movenetworks.com/Quantum Media Player] - (.Move Networks - npmnqmp 989898989877.) -- C:\Documents and Settings\Administrateur\Application Data\Move Networks\plugins\npqmp071700000016.dll
P2 - FPN: [HKLM] [@real.com/nppl3260;version=15.0.4.53] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- c:\program files\real\realplayer\Netscape6\nppl3260.dll
P2 - FPN: [HKLM] [@real.com/nprjplug;version=15.0.4.53] - (.RealNetworks, Inc. - RealJukebox Netscape Plugin.) -- c:\program files\real\realplayer\Netscape6\nprjplug.dll
P2 - FPN: [HKLM] [@real.com/nprpchromebrowserrecordext;version=15.0.4.53] - (.RealNetworks, Inc. - RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In.) -- C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
P2 - FPN: [HKLM] [@real.com/nprphtml5videoshim;version=15.0.4.53] - (.RealNetworks, Inc. - RealPlayer(tm) HTML5VideoShim Plug-In.) -- C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
P2 - FPN: [HKLM] [@real.com/nprpplugin;version=15.0.4.53] - (.RealPlayer - RealPlayer Download Plugin.) -- c:\program files\real\realplayer\Netscape6\nprpplugin.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf] - (.Tracker Software Products Ltd. - PDF-XChange Viewer Netscape Gecko Plugin.) -- C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.4.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
P2 - FPN: [HKCU] [@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf] - (.Tracker Software Products Ltd. - PDF-XChange Viewer Netscape Gecko Plugin.) -- C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
P2 - FPN: [HKCU] [@facebook.com/FBPlugin,version=1.0.3] - (.Pas de propriétaire - Provides additional functionality on Facebook. See <a href="http://www.) -- C:\Documents and Settings\Administrateur\Application Data\Facebook\npfbplugin_1_0_3.dll
P2 - FPN: [HKCU] [@movenetworks.com/Quantum Media Player] - (.Move Networks - npmnqmp 989898989877.) -- C:\Documents and Settings\Administrateur\Application Data\Move Networks\plugins\npqmp071700000016.dll
P2 - FPN: [HKCU] [@Skype Limited.com/Facebook Video Calling Plugin] - (.Skype Limited - Facebook Video Calling Plugin.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Facebook\Video\Skype\npFacebookVideoCalling.dll
P2 - FPN: [HKCU] [@talk.google.com/GoogleTalkPlugin] - (.Google - Version 3.8.1.9672.) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\plugins\npgoogletalk.dll
P2 - FPN: [HKCU] [@talk.google.com/O3DPlugin] - (.Pas de propriétaire - Google Talk Plugin Video Accelerator version:0.1.44.21.) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\plugins\npgtpo3dautoplugin.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Update\1.3.21.123\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Update\1.3.21.123\npGoogleUpdate3.dll
M0 - MFSP: prefs.js [Administrateur - t3i2mr5p.default] https://en.softonic.com
M2 - MFEP: prefs.js [Administrateur - t3i2mr5p.default\bbrs_002@blabbers.com] [] Browser Companion Helper v1.0.5 (.Ginyas.)
M2 - MFEP: prefs.js [Administrateur - t3i2mr5p.default\DTToolbar@toolbarnet.com] [] DAEMON Tools Toolbar v1.0.5 (.DT Soft Ltd..)
M2 - MFEP: prefs.js [Administrateur - t3i2mr5p.default\ffxtlbr@babylon.com] [] Babylon v1.1.9 (.Babylon.)
M2 - MFEP: prefs.js [Administrateur - t3i2mr5p.default\ffxtlbra@softonic.com] [] softonic.com v1.6.0 (.softonic.com.)
M2 - MFEP: prefs.js [Administrateur - t3i2mr5p.default\firefox@bandoo.com] [] Bandoo for Firefox v5.0 (.softonic.com.)
M2 - MFEP: prefs.js [Administrateur - t3i2mr5p.default\personas@christopher.beard] [personas] Personas v1.6.2 (.Chris Beard.)
M2 - MFEP: prefs.js [Administrateur - t3i2mr5p.default\toolbar@ask.com] [] Ask Toolbar v1.6.2 (.Ask.com.)
M2 - MFEP: prefs.js [Administrateur - t3i2mr5p.default\{0b38152b-1b20-484d-a11f-5e04a9b0661f}] [] Winamp Toolbar v5.6.12.1 (.AOL LLC.)
M2 - MFEP: prefs.js [Administrateur - t3i2mr5p.default\{7FF99715-3016-4381-84CE-E4E4C9673020}] [] Searchqu Toolbar v1.0 (.Discordia Ltd. Portions copyright © Visicom Media. Dynamic Toolbar..)
M2 - MFEP: prefs.js [Administrateur - t3i2mr5p.default\{ada4b710-8346-4b82-8199-5de2b400a6ae}] [] ReminderFox v2.0.1 (.Tom Mutdosch and Daniel Lee.)
M2 - MFEP: prefs.js [Administrateur - t3i2mr5p.default\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}] [] Vgrabber Community Toolbar v3.15.1.0 (.Conduit Ltd..)


---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
G0 - GCSP: Preference [User Data\Default][HomePage] https://www.google.ca/?gws_rd=ssl
"version": "0.0.0.126"
"aandpgohbohmlknpjbblpmoladhoochg": {
"abciiempgohamehppammbkhkicmkgkob": {
"abfclfmhaemoockhhinpplncjehfpdbd": {
"acmpfcamncegnhjdeiodgilikjafcamg": {
"aebfkgcamgnimcbnbiopgdakknjgggnm": {
"aemcjbfajnnmhblifaejadoecfoaebld": {
"afenhmponmfmdmbmccbmglppcmjhmhmh": {
"aglmapjbjphdidmnileogpjkgpdoliep": {
"agmhonoepgcnakccfpidhjehlocaeaaj": {
"ahfgeienlihckogmohjhadlkjgocpleb": {
"ahjfgnikolodijnpakeknpilnemojlhc": {
"aieglpnmmhleoenpbmfaffppfomgjmba": {
"aifmjmboebdkdelpjenakhaodgneempp": {
"alcbnnpmipohgdllkkglhkbncijplago": {
"aldalonecchncedclgcndcndgilaclnk": {
"aljdncnajablgppdcfbehhmidlmbndda": {
"amfgdngndpfldigimkcindjalokfnmem": {
"amoobcjlpgloocplpikcldcpjjdnoeii": {
"anmjpohfnlopdfaojooicpemopnliimn": {
"apdmgffkfhjfeejmbjidennfjdkmmmbl": {
"aphncaagnlabkeipnbbicmcahnamibgb": {
"bcddmcejgphfgofbpoocakaeapfomlek": {
"beeidigicffecnkbanlfnmaplmkafdje": {
"name": "SocialReviver",
"version": "3.14"
"state": 1
"benclngoadbppljglhphhnfknoppmjoa": {
"bhdkpmneahdelgdgfhddianklldfoell": {
"bilgncckogfgfipdlejkffnbkgjkmflh": {
"bioeopenmokdgbekbgpgnacecjmpckbb": {
"bjihddggcgnblgojnmhpnngonofbnkaj": {
"bkhafliomebnpccanacmlfaemgfiofko": {
"bkkchglolnigbfncnbnnbhhempjkdpkf": {
"bkplhcigeaiiliajeehehiikokgocbhb": {
"bldgnkigdcpgnbfehgbameigoohecdfl": {
"blpcfgokakmgnkcojhhkbfbldkacnbeo": {
"name": "YouTube",
"version": "4.2.5"
"state": 1
"bndahdijlcnncjbpammoedeapmlobllc": {
"bnffnggkphadlnoopcoakdnkellnifjp": {
"boaoagnmpennjoigkkmnjhecapibhfko": {
"boclfockfmgcppbajihcgajhpggaakgl": {
"bodddioamolcibagionmmobehnbhiakf": {
"name": "Browser Companion Helper",
"version": "1.0.5"
"state": 0
"bokkificjhapflinbdejegngffgkcgfe": {
"caphkimknlmnhpjoneddiaakmcaajagb": {
"cbbbpmlnlpnjojeplppgeilanlihoojg": {
"cbbjhegipokkofhhicbckicchjpcpeni": {
"cdogaeccgljmkecjmoedambgiekkllij": {
"cekdjgnecpoooikhmceokdhojckkkhmh": {
"cepfogmgfkddnllaopgknbdfkceejmhk": {
"cfbdodejdeejbkffcmiaknpmojjeibpn": {
"cgnkbnaiipmfbakpmhllalggoepniemh": {
"cihlkpohodpdkdnfalhdkhhlhmhffmbe": {
"cjhklhdjonhcohlacgggcbklpnldleck": {
"cjohbbapkbkkhpohinffggbphnhoblea": {
"ckckpgefkpjfopjppjfcikppehdhceah": {
"ckphhghhpjbfddcgkpfbelfeojcciglo": {
"clapnamcglekekmamicmbahkghdcjaeh": {
"cmjphjljejnfgdbkdgdlclaabimpknna": {
"cmlokmkdolieoaoddlfhaidnlmiadhik": {
"coajchbkdbfhmhbgcjepiofllfjjcpfp": {
"coobgpohoikkiipiblmjeljniedjpjpf": {
"version": "0.0.0.19"
"state": 1
"copjbedljgpkaakkmbhgkpoaadeahido": {
"cpiiakoibaohkfoaijaigdnocfolnmll": {
"dadcalgappognjbjpalfophhcfakoeac": {
"danapgfidmepmcfbjjacceiaiiioieio": {
"dbanhghadfmjndnjmmejdgfdmgidlbpm": {
"dbiblcmlcgdjjbdpbmbcpineegngkiip": {
"dbmdicehacbaohlockjgdglcobimmjkh": {
"dejippphmhbpgckbhdidnjmdcpfccbaj": {
"dfafokiagoiocidlpglcanjkcdbdnioi": {
"dfoegfajplmijblljfancdapbdaopebb": {
"dgaehaeahdegbdlenicbmkbakhdgoeml": {
"dgcfmgdfbfbgcpbendbhbkfjppboebed": {
"dgkemngdheppgohkjjelnkjmdeimmfml": {
"dhkplhfnhceodhffomolpfigojocbpcb": {
"name": "Babylon Translator",
"version": "1.7"
"state": 0
"diinokaoicgobepmadnmedlhdfnpehcj": {
"dinhjcapnfbffhiihdlnbdfjdjjfhcbk": {
"djnahdkbfgnhgpakidinfonfcjbagkgp": {
"dlobhinihbmedmheccecfnkcadpehmbf": {
"dmhjdbigobajgnfoabodjgmcdgoeoljm": {
"dmkdhgkknhnfpdjeicefnpmhcpbimden": {
"dnemhlkdpajbbniphgkgceplmnkfnhfo": {
"doneghboglgnflpdicnkaojmmljgejkj": {
"dpgenihgggagjjggfocjceeobjkadcbc": {
"dpmloehicimdjkibmobhmpgdndgbcced": {
"ebdcdchjcndpjhehacedepnggfdbfkpn": {
"echngajnlpjeacbanjejlhcajjfoedcc": {
"edmnikahahfkfilbbjbdoiabnghbkmjc": {
"efbeabpbbkahnnjalakldjfhljboclkf": {
"efhjelcghjkfigiagdfbfilndaffpmdj": {
"efnaljpgehfilpmkhobibbjceeeondmn": {
"egljdhfnbjahogjahnigfnbpidlmdagi": {
"ehgoiaffgjoinpkllmmnikghgpghnabc": {
"ehmjnpjodmgeocfphkjjnheiheehcoid": {
"ehomcoocpagnlcakcbecdaknmacmedld": {
"eihjeehdobnpkonebmpanonopghepfle": {
"eijbdinddjecmebnlienfoijpjjobkjh": {
"ejijgghlncnaphklndknkbkclebfboca": {
"ejlekamipdcfcfpgfepjmklllbpeecaj": {
"elcaigjcaijbfpjngaekbblphmfjdhfo": {
"eofejpelggimkodeojpeojnbijgiglgh": {
"eopmhecjnginkckggjmhombbopmkjpam": {
"epbmnbdplhcomkedpjfceakddnbgfjmf": {
"fafoohpbicgbcejffcplajonhhooddle": {
"fbhiehmngojjcmljddjmgpmcockbccmo": {
"fcfepemfihgibdacjlnlecebknaaepmj": {
"ffgfbfakpcnngelphjnppokmoicdollk": {
"fhlkffpjoajppmhcakbkjndbjfljccpi": {
"fiapkdjniadkodmdibdnchoifkpfoiid": {
"fibgploapkhokkbncddlkcmbmiengcfp": {
"fihepkmlkmciffbhijldnpmifhbkiinp": {
"fjjeecfjmgfnleghoellhldedkaocjfc": {
"fleljamdchegbjeiipbnmiebnhgheeld": {
"flmmgcfcpbfddenepkfmgfpbaceolcoe": {
"fmcccidacjgnfiafddkngmeolkoiihil": {
"fmonlemffgbabjifjfaoamdflijecdbk": {
"fngolbdmkneakeaoiieafkilnogbocda": {
"fnhcgnmfccojojojacgeiaaeacefdohb": {
"fnkaadkanmfgpfbmdcllhjdgmdbgljpi": {
"fnnmbghphdnmmjdapccfobgjemjadeli": {
"fnoadkjdjfgafomgmablhmffooijcfbn": {
"foenbafkkmajnmfnlcmejonkfaipdmme": {
"fommcgokigkhmnhlhlkckfjhefnmfohd": {
"fpbippbofbmgmbojjmgfcifpmdaelcmd": {
"fpmajanjndhgpifbcbnklbiehgnpkgmf": {
"fpoajjnnpmledpmohlgpgbmlhbgkgahg": {
"gaicmfjflflabagobdiodejfpjikheeo": {
"gandihaiobadcggbfkhpbkocmiemjlnf": {
"gbenikfjhilhpgagllmfgggdjaflbmbi": {
"gdggdkkjecogagaffaemnbfmllcoihjp": {
"gekkhpjigmckhgmgngadbeknekgpgolb": {
"ghgphbmpcfgkfneodjpbdanmdoemklio": {
"ghmaokcegalalefnhlfcnjhnpdbanjkj": {
"gifglngcdbggmlgkcombebegdaoknkho": {
"gjkbghdignnlcknknflbigpammebiolo": {
"gkjeccpmibljcfpfapfljciimedljpnm": {
"gkjmgdpdndoaiholejnmdbbpdaafahmm": {
"gmghjgfdialcnhadahmjefeflgnhcjeb": {
"gnapdhmknipknfmhhnhdmhakdfhgeing": {
"gncfgndgeoddelbfhlndhljnecoednaa": {
"gngmkbiihflpghldjnbpemaicedhdddk": {
"gobjcjhhebpjbmjdgmejhebbleadnceo": {
"gplgjmecjpbfcdikpbicknafcnfcidek": {
"hbaajkahagmlkdekmbdabikbopdgpaac": {
"hbdhabpmbbanaopgkbaondabkkepjfaf": {
"hbmlheccjkodhfejcmblndjodllmnlnl": {
"hcapokajkngndbglnfglpfdpoeidmpha": {
"hcpndbchnlgojmnijaldkicigmihmdca": {
"hdijkiondgomjpehfhopomicjbiodmcm": {
"hdnbmmfjbblajkjkcaeofolgfnljpnim": {
"hecijapnccjhonbmacmkmffooodfokoo": {
"hefmoncdemhjembgbnkgglhlookbipdc": {
"hfjpjodbolkmheaehcnmfhjakjileoof": {
"hfpfbhnmbbigpmoodjemilggabklpopj": {
"hgbaomphocgmdpmiohjclchaaljpaelp": {
"hgboiaecclcbjphldpbgfgggcbihmnai": {
"hgjgaeknhmidehalnmokomhpfhbfmpcm": {
"hhfffemhgkginfafaoapljdllodppana": {
"hhfiljkpjapjjphcocclhhaldpfkkjbi": {
"hhjmkijkgojfifipdgmiemghfikbohcm": {
"hhlgbfcfbkhlmajakkcjippgpcmejkko": {
"hilncbjbdpnfepdidfchmdclhpnlegpj": {
"hjkhligcnpfjhjlapmejaiaiigibofif": {
"hkbgccpdcpbdckohbknjlamamelcnlki": {
"hkjcejgfmaanpncnpoidgbhoikcaeepd": {
"hkjfdgjkgpbbdmadbglcgljjjddkcdha": {
"hmmoglffhpmacaacfbbmbbkcbdkjphnc": {
"hnbcdmfeoldeppcbnnjmjkdofohaljbn": {
"hncomkjbbkchfjelocejkbbflmjhlhfp": {
"hnipgljcblpgnnojcfldehpeknhakbgj": {
"hnkcpoijaeegompjgbjjhkdmljldaccg": {
"hnnebfeppcbhhbhiifeaajgcjnkljlld": {
"hnonhhpgjnjcjfbkjdpfbkfpaodcmncb": {
"hpcdoodjfcmpcpkeendjnjkeinimhkih": {
"hpibmhghjndideebpackbdlpncgkcppp": {
"iablioliielnhdianpbiijaoncbmfend": {
"iccblehkchfmjgfafjcpjlkjcponhdhl": {
"icihfeaofpcfehanhbnjigdlpfahjlee": {
"iemfpgbdjfoihicbocpbjppipdbfimeh": {
"ifbkndkaolfbjjhnnhfmkbkoclpdkpli": {
"ifeijfpkjckedpclgncedmgdiaoeahmk": {
"igaajdmlejbjcbmpmnigopikfdaccdcm": {
"igbaoknfddliiaoimhehfbkfekpmmfll": {
"igghanohiioehififjoalfkdoicafjof": {
"ihnembcpodnfgkafmiojebccomjekopm": {
"iiiinekimabooeihccihfopoadcaaphn": {
"ijecjbcgpblkacpijljpaienknanaloa": {
"ijenlpgidnapbndonoinbkhekgjonojg": {


---\\ Internet Explorer, Démarrage,Recherche,URSearchHook (R0,R1,R3)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?babsrc=HP_Prot
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = ${SEARCH_URL_IE7}
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} . (.Ask - Ask Toolbar.) (5.14.1.20007) -- C:\Program Files\Ask.com\GenericAskToolbar.dll
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (7.00.6000.17098 (vista_gdr.110420-1745)) -- C:\WINDOWS\system32\ieframe.dll
R3 - URLSearchHook: kazem alsaher Toolbar - {42d185e8-0a81-4c5b-a2af-70b56df91d13} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files\kazem_alsaher\prxtbkaz2.dll
R3 - URLSearchHook: ST_France Toolbar - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files\Softonic_France\prxtbSof0.dll
R3 - URLSearchHook: radiokazem Toolbar - {a25e60d2-2866-4777-908b-a9f26d2a0dbd} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files\radiokazem\prxtbrad0.dll
R3 - URLSearchHook: Vgrabber Toolbar - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files\Vgrabber\prxtbVgra.dll


---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=c:\windows\system32\userinit.exe,C:\WINDOWS\system32\MPK\mpk.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"


---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: script helper for ie - {00cbb66b-1d3b-46d3-9577-323a336acb50} . (.Pas de propriétaire - Browser Companion Helper plug-in.) -- C:\Program Files\BrowserCompanion\jsloader.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} . (.Babylon BHO - Pas de description.) -- C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} . (.RealPlayer - RealPlayer Download and Record Plugin.) -- C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: kazem alsaher - {42d185e8-0a81-4c5b-a2af-70b56df91d13} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\kazem_alsaher\prxtbkaz2.dll
O2 - BHO: ST_France - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Softonic_France\prxtbSof0.dll
O2 - BHO: Update Timer - {963B125B-8B21-49A2-A3A8-E37092276531} . (.Pas de propriétaire - Browser Companion Helper Verifier.) -- C:\Program Files\BrowserCompanion\updatebhoWin32.dll
O2 - BHO: radiokazem - {a25e60d2-2866-4777-908b-a9f26d2a0dbd} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\radiokazem\prxtbrad0.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Skype Technologies S.A. - Skype Click to Call for Internet Explorer.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Vgrabber - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vgrabber\prxtbVgra.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll


---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: SYSTRAN Toolbar - {95daa571-4def-4a6d-97d8-98a346672a24} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\System32\mscoree.dll
O3 - Toolbar: Searchqu Toolbar - {7FF99715-3016-4381-84CE-E4E4C9673020} . (.Pas de propriétaire - Searchqu Toolbar Link Library.) -- C:\Program Files\Windows Searchqu Toolbar\ToolBar\SearchquDx.dll
O3 - Toolbar: kazem alsaher Toolbar - {42d185e8-0a81-4c5b-a2af-70b56df91d13} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\kazem_alsaher\prxtbkaz2.dll
O3 - Toolbar: ST_France Toolbar - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Softonic_France\prxtbSof0.dll
O3 - Toolbar: radiokazem Toolbar - {a25e60d2-2866-4777-908b-a9f26d2a0dbd} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\radiokazem\prxtbrad0.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask - Ask Toolbar.) -- C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} . (.Pas de propriétaire - ToolBand Module.) -- C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: Vgrabber Toolbar - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vgrabber\prxtbVgra.dll
O3 - Toolbar: Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} . (.Babylon Ltd. - Pas de description.) -- C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll


---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Run: [ACU] . (.Atheros Communications, Inc. - Atheros Client Utility.) -- C:\Program Files\Atheros\ACU.exe
O4 - HKLM\..\Run: [OM2_Monitor] . (.OLYMPUS IMAGING CORP. - resident module - First Starter.) -- C:\Program Files\OLYMPUS\OLYMPUS Master 2\FirstStart.exe
O4 - HKLM\..\Run: [FrameWorkService] Clé orpheline
O4 - HKLM\..\Run: [ISUSPM] . (.Macrovision Corporation - InstallShield Update Service Update Manager.) -- C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe
O4 - HKLM\..\Run: [WinampAgent] . (.Nullsoft, Inc. - Winamp Agent.) -- C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [DataMngr] . (.iMesh, Inc - Data Manager.) -- C:\PROGRA~1\WI9130~1\DataMngr\DataMngrUI.exe
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files\Fichiers communs\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKLM\..\Run: [ApnUpdater] . (.Ask - Ask Updater.) -- C:\Program Files\Ask.com\Updater\Updater.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [DivXUpdate] . (.Pas de propriétaire - DivX Update.) -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
O4 - HKLM\..\Run: [Browser companion helper] . (.Blabbers Communications LTD - Browser Companion Helper.) -- C:\Program Files\BrowserCompanion\BCHelper.exe
O4 - HKLM\..\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\program files\real\realplayer\update\realsched.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Fichiers communs\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [svietp] . (.Ray Hinchliffe - System Information Viewer Resource DLL.) -- C:\Documents and Settings\Administrateur\Application Data\svietp.dll
O4 - HKLM\..\Run: [nedprs] . (.Pas de propriétaire - CmiRemoveDriver MFC Application.) -- C:\Documents and Settings\Administrateur\Application Data\nedprs.dll
O4 - HKCU\..\Run: [SuperCopier2.exe] . (.SFX TEAM - SuperCopier 2 (explorer file copy replaceme.) -- C:\Program Files\SuperCopier2\SuperCopier2.exe
O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O4 - HKCU\..\Run: [OM2_Monitor] . (.OLYMPUS IMAGING CORP. - resident module.) -- C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe
O4 - HKCU\..\Run: [FrameWorkService] Clé orpheline
O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\PROGRA~1\Druide\Antidote\Gestionnaire Antidote.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
O4 - HKCU\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O4 - HKCU\..\Run: [GameXN GO] . (.EasyBits Software AS - Game Organizer.) -- C:\Documents and Settings\All Users\Application Data\GameXN\GameXNGO.exe
O4 - HKCU\..\Run: [Microsoft Updater] . (.Pas de propriétaire - Pas de description.) -- C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\acromexnsw.exe
O4 - HKCU\..\Run: [freeklogger.exe] . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\FK_Monitor\freeklogger.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-21-1177238915-261903793-2147114589-500\..\Run: [SuperCopier2.exe] . (.SFX TEAM - SuperCopier 2 (explorer file copy replaceme.) -- C:\Program Files\SuperCopier2\SuperCopier2.exe
O4 - HKUS\S-1-5-21-1177238915-261903793-2147114589-500\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-1177238915-261903793-2147114589-500\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-21-1177238915-261903793-2147114589-500\..\Run: [OM2_Monitor] . (.OLYMPUS IMAGING CORP. - resident module.) -- C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe
O4 - HKUS\S-1-5-21-1177238915-261903793-2147114589-500\..\Run: [FrameWorkService] Clé orpheline
O4 - HKUS\S-1-5-21-1177238915-261903793-2147114589-500\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\PROGRA~1\Druide\Antidote\Gestionnaire Antidote.exe
O4 - HKUS\S-1-5-21-1177238915-261903793-2147114589-500\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
O4 - HKUS\S-1-5-21-1177238915-261903793-2147114589-500\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe
O4 - HKUS\S-1-5-21-1177238915-261903793-2147114589-500\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
O4 - HKUS\S-1-5-21-1177238915-261903793-2147114589-500\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-1177238915-261903793-2147114589-500\..\Run: [GameXN GO] . (.EasyBits Software AS - Game Organizer.) -- C:\Documents and Settings\All Users\Application Data\GameXN\GameXNGO.exe
O4 - HKUS\S-1-5-21-1177238915-261903793-2147114589-500\..\Run: [Microsoft Updater] . (.Pas de propriétaire - Pas de description.) -- C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\acromexnsw.exe
O4 - HKUS\S-1-5-21-1177238915-261903793-2147114589-500\..\Run: [freeklogger.exe] . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\FK_Monitor\freeklogger.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] Clé orpheline
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_3] rundll32 advpack.dll
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] Clé orpheline
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_3] rundll32 advpack.dll
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_2] Clé orpheline
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_3] rundll32 advpack.dll
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_2] Clé orpheline
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_3] rundll32 advpack.dll
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\BTTray.lnk . (.Broadcom Corporation..) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\Démarrage\OpenOffice.org 3.2.lnk . (.Pas de propriétaire.) -- C:\Program Files\OpenOffice.org 3\program\quickstart.exe


---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Help.lnk . (.Pas de propriétaire.) -- C:\Program Files\Adobe\Adobe Help\Adobe Help.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader X.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Audacity.lnk . (.Pas de propriétaire.) -- C:\Program Files\Audacity\audacity.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\eMule.lnk . (.http://emulemorph.sourceforge.net.) -- C:\Program Files\emule\eMule.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Favoris Bluetooth.lnk - Clé orpheline
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Readon TV Movie Radio Player.lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{03840E8D-A75E-4C49-ADFC-09A867C7F943}\_A290953C7595C4E6A1FDBA.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Visionneuse Microsoft PowerPoint .lnk . (.Pas de propriétaire.) -- C:\WINDOWS\Installer\{95140000-00AF-040C-0000-0000000FF1CE}\ppvwicon.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Live Messenger (2).lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Live Messenger (3).lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Live Messenger.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\Foxit Reader.lnk . (.Pas de propriétaire.) -- C:\Program Files\Foxit Software\Foxit Reader\Foxit Reader.exe
O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\IEXPLORE.EXE
O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\Jouer (GameXN).lnk . (.EasyBits Software AS.) -- C:\Documents and Settings\All Users\Application Data\GameXN\GameXNGO.exe
O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\Readon TV Movie Radio Player.lnk . (.Pas de propriétaire.) -- C:\Documents and Settings\Administrateur\Application Data\Microsoft\Installer\{80074966-5231-428D-9AE7-B7D5D2DC3246}\_45E5F1A4BC29289B0B1E70.exe
O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\WebPlayerV2.lnk . (.Pas de propriétaire.) -- C:\Documents and Settings\Administrateur\Application Data\Microsoft\Installer\{7D41BC10-F03E-41EB-8E2D-B7006948332F}\_ADF352EEE65CC9B6695365.exe
O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe


---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: &Download by Orbit . (.Orbitdownloader.com - Orbitmxt.) -- C:\Program Files\Orbitdownloader\orbitmxt.dll
O8 - Extra context menu item: &Grab video by Orbit . (.Orbitdownloader.com - Orbitmxt.) -- C:\Program Files\Orbitdownloader\orbitmxt.dll
O8 - Extra context menu item: Consulter les dictionnaires (SYSTRAN) . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\SYSTRAN\6\GUIres.dll
O8 - Extra context menu item: Do&wnload selected by Orbit . (.Orbitdownloader.com - Orbitmxt.) -- C:\Program Files\Orbitdownloader\orbitmxt.dll
O8 - Extra context menu item: Down&load all by Orbit . (.Orbitdownloader.com - Orbitmxt.) -- C:\Program Files\Orbitdownloader\orbitmxt.dll
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~2\Office12\EXCEL.exe
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Envoyer à Bluetooth . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Traduire (SYSTRAN) . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\SYSTRAN\6\GUIres.dll


---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\icon.ico
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~2\Office12\REFBARH.ICO
O9 - Extra 'Tools' menuitem: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} . (.not file.) - (.not file.)
O9 - Extra button: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\WIDCOMM\Bluetooth Software\bt_hot_icon.ico
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.not file.) - (.not file.)


---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - Broken Internet access because of LSP provider (.not file.) -- mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll


---\\ Onglet supplémentaire dans les options avancées d'Internet Explorer (O11)
O11 - Options group: [java_sun] Java (Sun). (.Oracle Corporation - Java(TM) Deployment Library .) - C:\Program Files\Java\jre7\bin\deploy.dll


---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} () - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab


---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{98D11A5C-F9E4-46FE-9796-405E3CDD5A03}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{98D11A5C-F9E4-46FE-9796-405E3CDD5A03}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{98D11A5C-F9E4-46FE-9796-405E3CDD5A03}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{98D11A5C-F9E4-46FE-9796-405E3CDD5A03}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CS1\Services\Tcpip\..\{98D11A5C-F9E4-46FE-9796-405E3CDD5A03}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CS2\Services\Tcpip\..\{98D11A5C-F9E4-46FE-9796-405E3CDD5A03}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1


---\\ Protocole additionnel et piratage de protocole (O18)
O18 - Handler: base64 - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} . (.Blabbers Communications Ltd - Blabbers data protacol for IE w/c.) -- C:\Program Files\BrowserCompanion\tdataprotocol.dll
O18 - Handler: chrome - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} . (.Blabbers Communications Ltd - Blabbers data protacol for IE w/c.) -- C:\Program Files\BrowserCompanion\tdataprotocol.dll
O18 - Handler: prox - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} . (.Blabbers Communications Ltd - Blabbers data protacol for IE w/c.) -- C:\Program Files\BrowserCompanion\tdataprotocol.dll
O18 - Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} . (.Skype Technologies S.A. - Skype Click to Call for Internet Explorer.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL


---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: Antiwpa . (.Pas de propriétaire - AntiWPA3 for X86.) -- C:\Windows\System32\antiwpa.dll
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll
O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll


---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.iMesh, Inc - Data Manager.) - c:\progra~1\wi9130~1\datamngr\datamngr.dll


---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Pas de propriétaire - Pas de description.) -- C:\RECYCLER\S-1-5-21-1177238915-261903793-2147114589-500\$aac8fa56302402ce78739dac9de4a7b4\n.
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll


---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll


---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (ACS) . (.Atheros - ACS.) - C:\WINDOWS\system32\acs.exe
O23 - Service: (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: (gupdate) . (.Google Inc. - Programme d'
0

Discussions similaires

Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
message de postmaster incessant !
wasap -
wasap -

9 réponses
Désinstaller Softonic
Diguimette -
lilidurhone -

5 réponses
Message Apple virus !!
Souclik67 -
MPMP10 -

3 réponses
4 virus en raison d’un porno ????
valou -
Bello040420 -

9 réponses