Virus swizzor gen2

christ50190 Messages postés 3 Statut Membre -  
 chris50190 -
Bonjour, voila comment puis je faire pour enlever ce virus
swizzor gen 2
merci pour votre aide



A voir également:

86 réponses

Précédent
Réponse 21 / 86
chris50190 Messages postés 187 Statut Membre
 
donc je suis entrain de faire la suppression
par contre je n ai plus que le fond d ecran est ce normalsvp merci
0
Réponse 22 / 86
chris50190 Messages postés 187 Statut Membre
 
usbfix et bientot quitte
0
Réponse 23 / 86
chris50190 Messages postés 187 Statut Membre
 
ou dois je poster le rapport d usb fix svp merci
0
Réponse 24 / 86
chris50190 Messages postés 187 Statut Membre
 
bon c est fait je l ai poster la ou il m a dit
je suis entrain de fairelist kill em
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 86
chris50190
 
donc je n ai pas trouve kill em sur mon bureau j ai regarde dans c il est dans c mais pas de rapport
0
Réponse 26 / 86
chris50190
 
aidez moi svp merci
0
Réponse 27 / 86
Utilisateur anonyme
 
bonjour il faut copier le contenu des rapports ici
0
Réponse 28 / 86
chris50190
 
bonjour je ne trouve pas le dernier rapport merci
0
Réponse 29 / 86
Utilisateur anonyme
 
donne ceux que tu as
0
Réponse 30 / 86
chris50190
 
quand je clique sur le dossier kill'em il est vide
je n ai rien d autre
0
Réponse 31 / 86
Utilisateur anonyme
 
il me faut le rapport de adremover C:\AD-Report[Clean]1.txt
le rapport d'usbfix C:\Usbfix.txt
le rapport Kill'em.txt sur ton bureau
0
Réponse 32 / 86
chris50190
 
¤¤¤¤¤¤¤¤¤¤ List'em by g3n-h@ckm@n 2.1.1.0 ¤¤¤¤¤¤¤¤¤¤

User : moi (Administrateurs)
Update on 01/11/2010 by g3n-h@ckm@n ::::: 12.00
Start at: 23:47:17 | 01/11/2010

AMD Sempron(tm) Processor 3600+
Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 8.0.6001.18702
Windows Firewall Status : Enabled
AV : PC Tools AntiVirus 6.1.0.25 6.1.0.25 [ Enabled | Updated ]
AV : AntiVir Desktop 9.0.1.32 [ (!) Disabled | Updated ]
AV : ESET Smart Security 3.0 3.0 [ Enabled | (!) Outdated ]
FW : Pare-feu personnel d'ESET[ (!) Disabled ]3.0.669.0

C:\ -> Disque fixe local | 149,04 Go (106,46 Go free) | NTFS
D:\ -> Disque CD-ROM
E:\ -> Disque amovible
F:\ -> Disque amovible
G:\ -> Disque amovible
H:\ -> Disque amovible

¤¤¤¤¤ Sessions ¤¤¤¤¤

C:\Documents and settings\moi
C:\Users\Public

Boot: Normal

¤¤¤¤¤¤ Processes ------- Memory(Ko) ------- Priority ------ Command ------- Signer


C:\WINDOWS\System32\smss.exe ---- 196 Ko ---- Normal ---- \SystemRoot\System32\smss.exe ----
C:\WINDOWS\system32\csrss.exe ---- 1744 Ko ---- Normal ---- C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16 ----
C:\WINDOWS\system32\winlogon.exe ---- 9288 Ko ---- High ---- winlogon.exe ----
C:\WINDOWS\system32\services.exe ---- 2044 Ko ---- Normal ---- C:\WINDOWS\system32\services.exe ----
C:\WINDOWS\system32\lsass.exe ---- 2836 Ko ---- Normal ---- C:\WINDOWS\system32\lsass.exe ----
C:\WINDOWS\system32\svchost.exe ---- 1928 Ko ---- Normal ---- C:\WINDOWS\system32\svchost -k DcomLaunch ----
C:\WINDOWS\system32\svchost.exe ---- 1940 Ko ---- Normal ---- C:\WINDOWS\system32\svchost -k rpcss ----
C:\WINDOWS\System32\svchost.exe ---- 19776 Ko ---- Normal ---- C:\WINDOWS\System32\svchost.exe -k netsvcs ----
C:\WINDOWS\system32\svchost.exe ---- 1916 Ko ---- Normal ---- C:\WINDOWS\system32\svchost.exe -k NetworkService ----
C:\WINDOWS\system32\svchost.exe ---- 1596 Ko ---- Normal ---- C:\WINDOWS\system32\svchost.exe -k LocalService ----
C:\WINDOWS\system32\LEXBCES.EXE ---- 1128 Ko ---- Normal ---- C:\WINDOWS\system32\LEXBCES.EXE ----
C:\WINDOWS\system32\spoolsv.exe ---- 2896 Ko ---- Normal ---- C:\WINDOWS\system32\spoolsv.exe ----
C:\WINDOWS\system32\LEXPPS.EXE ---- 560 Ko ---- Normal ---- LEXPPS.EXE ----
C:\Program Files\Avira\AntiVir Desktop\sched.exe ---- 800 Ko ---- Normal ---- "C:\Program Files\Avira\AntiVir Desktop\sched.exe" ----
C:\WINDOWS\system32\svchost.exe ---- 1832 Ko ---- Normal ---- C:\WINDOWS\system32\svchost.exe -k LocalService ----
C:\WINDOWS\Explorer.EXE ---- 8324 Ko ---- Normal ---- C:\WINDOWS\Explorer.EXE ----
C:\Program Files\Avira\AntiVir Desktop\avguard.exe ---- 536 Ko ---- Normal ---- "C:\Program Files\Avira\AntiVir Desktop\avguard.exe" ----
C:\WINDOWS\system32\RUNDLL32.EXE ---- 452 Ko ---- Normal ---- "C:\WINDOWS\system32\RUNDLL32.EXE" C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit ----
C:\Program Files\ESET\ESET Smart Security\ekrn.exe ---- 4168 Ko ---- Normal ---- "C:\Program Files\ESET\ESET Smart Security\ekrn.exe" ---- ESET, spol. s r.o.
C:\WINDOWS\RTHDCPL.EXE ---- 1656 Ko ---- Normal ---- "C:\WINDOWS\RTHDCPL.EXE" ----
C:\WINDOWS\Eset_TrialReset_serv.exe ---- 408 Ko ---- Normal ---- C:\WINDOWS\Eset_TrialReset_serv.exe ----
C:\Program Files\ESET\ESET Smart Security\egui.exe ---- 1784 Ko ---- Normal ---- "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice ---- ESET, spol. s r.o.
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe ---- 148 Ko ---- Normal ---- "C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe" ----
C:\Program Files\Orange\Systray\SystrayApp.exe ---- 2336 Ko ---- Normal ---- "C:\Program Files\Orange\Systray\SystrayApp.exe" ----
C:\Program Files\Lexmark 2200 Series\lxbvbmgr.exe ---- 548 Ko ---- Normal ---- "C:\Program Files\Lexmark 2200 Series\lxbvbmgr.exe" ----
C:\WINDOWS\system32\svchost.exe ---- 4140 Ko ---- Normal ---- C:\WINDOWS\system32\svchost.exe -k hpdevmgmt ----
C:\Program Files\Java\jre6\bin\jqs.exe ---- 1372 Ko ---- Idle ---- "C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf" ---- Sun Microsystems, Inc.
C:\Program Files\CardDetector\HUAWEI\CardDetector.exe ---- 1216 Ko ---- Normal ---- "C:\Program Files\CardDetector\HUAWEI\CardDetector.exe" ----
C:\WINDOWS\vsnpstd.exe ---- 632 Ko ---- Normal ---- "C:\WINDOWS\vsnpstd.exe" ----
C:\Program Files\UVC Video Camera\UVCSti.exe ---- 588 Ko ---- Normal ---- "C:\Program Files\UVC Video Camera\UVCSti.exe" ----
C:\Program Files\Lexmark 2200 Series\lxbvbmon.exe ---- 944 Ko ---- Normal ---- "C:\Program Files\Lexmark 2200 Series\lxbvbmon.exe" ----
C:\Program Files\UVC Video Camera\EffectDir\UVCtray.exe ---- 1052 Ko ---- Normal ---- "C:\Program Files\UVC Video Camera\EffectDir\UVCtray.exe" ----
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE ---- 716 Ko ---- Normal ---- "C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE" ---- Microsoft Corporation
C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe ---- 240 Ko ---- Normal ---- "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe" ---- Sun Microsystems, Inc.
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe ---- 2892 Ko ---- Normal ---- "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min ----
C:\Program Files\PC Tools AntiVirus\PCTAV.exe ---- 800 Ko ---- Normal ---- "C:\Program Files\PC Tools AntiVirus\PCTAV.exe" /MONITORSCAN ---- PC Tools
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe ---- 712 Ko ---- Normal ---- "C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe" -Embedding ----
C:\WINDOWS\System32\svchost.exe ---- 376 Ko ---- Normal ---- C:\WINDOWS\System32\svchost.exe -k HPZ12 ----
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe ---- 504 Ko ---- Normal ---- "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" ---- Hewlett-Packard Company
C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe ---- 10928 Ko ---- Normal ---- "C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe" ---- PC Tools
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe ---- 816 Ko ---- Normal ---- "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" ---- Nero AG
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe ---- 1948 Ko ---- Normal ---- "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" ---- Google Inc
C:\Program Files\Skype\Phone\Skype.exe ---- 4076 Ko ---- Normal ---- "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized ---- Skype Technologies SA
C:\WINDOWS\system32\ctfmon.exe ---- 2680 Ko ---- Normal ---- "C:\WINDOWS\system32\ctfmon.exe" ----
C:\Program Files\Fichiers communs\PC Tools\sMonitor\StartManSvc.exe ---- 244 Ko ---- Normal ---- "C:\Program Files\Fichiers communs\PC Tools\sMonitor\StartManSvc.exe" ---- PC Tools
C:\WINDOWS\System32\svchost.exe ---- 360 Ko ---- Normal ---- C:\WINDOWS\System32\svchost.exe -k HPZ12 ----
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe ---- 364 Ko ---- Normal ---- "C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe" ---- Microsoft Corporation
C:\WINDOWS\system32\svchost.exe ---- 2168 Ko ---- Normal ---- C:\WINDOWS\system32\svchost.exe -k imgsvc ----
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe ---- 3464 Ko ---- Normal ---- "C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe" ---- Hewlett Packard
C:\Program Files\TechSmith\Snagit 9\Snagit32.exe ---- 1700 Ko ---- Normal ---- "C:\Program Files\TechSmith\Snagit 9\Snagit32.exe" ---- TechSmith Corporation
C:\Program Files\Translate Client\translateclient.exe ---- 6660 Ko ---- Normal ---- "C:\Program Files\Translate Client\translateclient.exe" /h ----
C:\Program Files\SAGEM WiFi manager\WLANUTL.exe ---- 1208 Ko ---- Normal ---- "C:\Program Files\SAGEM WiFi manager\WLANUTL.exe" ----
C:\Program Files\jetspeed\AUTOSTAR.EXE ---- 548 Ko ---- Normal ---- "C:\Program Files\jetspeed\AUTOSTAR.EXE" ----
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe ---- 1052 Ko ---- Normal ---- "C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe" ---- Nero AG
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe ---- 1092 Ko ---- Normal ---- "C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe" -Embedding ---- Nero AG
C:\WINDOWS\System32\alg.exe ---- 220 Ko ---- Normal ---- C:\WINDOWS\System32\alg.exe ----
C:\Program Files\TechSmith\Snagit 9\TSCHelp.exe ---- 536 Ko ---- Normal ---- "C:\Program Files\TechSmith\Snagit 9\TSCHelp.exe" ---- TechSmith Corporation
C:\Program Files\TechSmith\Snagit 9\SnagPriv.exe ---- 288 Ko ---- Normal ---- "C:\Program Files\TechSmith\Snagit 9\SnagPriv.exe" ---- TechSmith Corporation
C:\Program Files\Internet Explorer\iexplore.exe ---- 16048 Ko ---- Normal ---- "C:\Program Files\Internet Explorer\iexplore.exe" ---- Microsoft Corporation
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe ---- 1936 Ko ---- Normal ---- "C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe" -CtxID "#Hewlett-Packard#HP Deskjet F2400 series#1287765223" -Startup ----
C:\Program Files\Internet Explorer\iexplore.exe ---- 79996 Ko ---- Normal ---- "C:\Program Files\Internet Explorer\iexplore.exe" SCODEF:3320 CREDAT:14337 ---- Microsoft Corporation
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe ---- 404 Ko ---- Normal ---- "C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe" -Embedding ----
C:\Program Files\TechSmith\Snagit 9\snagiteditor.exe ---- 45572 Ko ---- Normal ---- "C:\Program Files\TechSmith\Snagit 9\snagiteditor.exe" /X ---- TechSmith Corporation
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe ---- 492 Ko ---- Normal ---- "C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe" -Embedding ----
C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe ---- 1972 Ko ---- Normal ---- "C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe" -Embedding ---- Hewlett-Packard Company
C:\DOCUME~1\moi\LOCALS~1\Temp\jre-6u22-windows-i586-iftw-rv.exe ---- 11652 Ko ---- Normal ---- C:\DOCUME~1\moi\LOCALS~1\Temp\jre-6u22-windows-i586-iftw-rv.exe /installmethod=jau SP1OFF=1 SP2OFF=1 SP3OFF=1 SP5OFF=1 SP6OFF=1 SP7OFF=1 SP9OFF=1 SP10OFF=1 MSDIR=ms5 SPWEB=http://javadl-esd.sun.com/update/1.6.0/sp-1.6.0_22-b04 ---- Sun Microsystems, Inc.
C:\Program Files\Internet Explorer\iexplore.exe ---- 84392 Ko ---- Normal ---- "C:\Program Files\Internet Explorer\iexplore.exe" SCODEF:3320 CREDAT:79883 ---- Microsoft Corporation
C:\Program Files\Internet Explorer\iexplore.exe ---- 13620 Ko ---- Normal ---- "C:\Program Files\Internet Explorer\iexplore.exe" SCODEF:3320 CREDAT:145469 ---- Microsoft Corporation
C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE ---- 2408 Ko ---- Normal ---- "C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE" ---- Microsoft Corporation
C:\WINDOWS\system32\cmd.exe ---- 3252 Ko ---- Normal ---- C:\WINDOWS\system32\cmd.exe /K List'em.bat ----
C:\WINDOWS\system32\wbem\wmiprvse.exe ---- 7244 Ko ---- Normal ---- C:\WINDOWS\system32\wbem\wmiprvse.exe ----
C:\Program Files\List_Kill'em\pv.exe ---- 4200 Ko ---- Normal ---- pv -o"%f ---- %m Ko ---- %p ---- %l ---- %s" ----


¤¤¤¤¤¤¤¤¤¤ Keys "Run" ¤¤¤¤¤¤¤¤¤¤

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} = "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
swg = "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
Skype = "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
ctfmon.exe = C:\WINDOWS\system32\ctfmon.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
NvCplDaemon = RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
nwiz = nwiz.exe /install
NvMediaCenter = RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
RTHDCPL = RTHDCPL.EXE
SkyTel = SkyTel.EXE
Alcmtr = ALCMTR.EXE
egui = "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
NeroFilterCheck = C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
SystrayORAHSS = "C:\Program Files\Orange\Systray\SystrayApp.exe"
ORAHSSSessionManager = C:\Program Files\Orange\SessionManager\SessionManager.exe
Lexmark 2200 Series = "C:\Program Files\Lexmark 2200 Series\lxbvbmgr.exe"
BEWINTERNET-FR-DMGP-V2SessionManager = "C:\Program Files\Orange\IEWInternet\SessionManager\SessionManager.exe"
CardDetectorHUAWEI = C:\Program Files\CardDetector\HUAWEI\CardDetector.exe
snpstd = C:\WINDOWS\vsnpstd.exe
UVCSti = "C:\Program Files\UVC Video Camera\UVCSti.exe"
RunUVC = "C:\Program Files\UVC Video Camera\EffectDir\UVCtray.exe"
QuickTime Task = "C:\Program Files\QuickTime\qttask.exe" -atboottime
SunJavaUpdateSched = "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe"
SiteVacuum = C:\Program Files\EasySearch\SiteVacuumClient.exe
avgnt = "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
PCTAVApp = "C:\Program Files\PC Tools AntiVirus\PCTAV.exe" /MONITORSCAN
Adobe Reader Speed Launcher = "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
Adobe ARM = "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
HP Software Update = C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]

¤¤¤¤¤¤¤¤¤¤ Other System Keys ¤¤¤¤¤¤¤¤¤¤

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
NoDriveTypeAutoRun = 145 (0x91)

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
HonorAutoRunSetting = 1 (0x1)

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
AppInit_DLLS =

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
Shell = Explorer.exe
Userinit = C:\WINDOWS\system32\userinit.exe,

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\Antiwpa]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\crypt32chain]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\cryptnet]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\cscdll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\dimsntfy]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\ScCertProp]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\Schedule]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\sclgntfy]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\SensLogn]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\termsrv]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\wlballoon]

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
{AEB6717E-7E19-11d0-97EE-00C04FD91972} =

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
%windir%\Network Diagnostic\xpnetdiag.exe = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000
%windir%\system32\sessmgr.exe = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019
C:\Program Files\Orange\Connectivity\ConnectivityManager.exe = C:\Program Files\Orange\Connectivity\ConnectivityManager.exe:*:enabled:CSS
C:\Program Files\LimeWire\LimeWire.exe = C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire
C:\Documents and Settings\moi\Bureau\LimeWire\LimeWire.exe = C:\Documents and Settings\moi\Bureau\LimeWire\LimeWire.exe:*:Enabled:LimeWire
C:\Program Files\Messenger\msmsgs.exe = C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger
C:\WINDOWS\system32\LEXPPS.EXE = C:\WINDOWS\system32\LEXPPS.EXE:*:Disabled:LEXPPS.EXE
C:\Program Files\Maxis\SimCity 3000 World Edition\Apps\Updater\UPDATER.EXE = C:\Program Files\Maxis\SimCity 3000 World Edition\Apps\Updater\UPDATER.EXE:*:Disabled:SC3UpdaterMFC
C:\Documents and Settings\Coraliie\Bureau\LimeWire\LimeWire.exe = C:\Documents and Settings\Coraliie\Bureau\LimeWire\LimeWire.exe:*:Enabled:LimeWire
C:\Documents and Settings\moi\Bureau\maman\LimeWire\LimeWire.exe = C:\Documents and Settings\moi\Bureau\maman\LimeWire\LimeWire.exe:*:Enabled:LimeWire
C:\Program Files\Orange\IEWInternet\Connectivity\ConnectivityManager.exe = C:\Program Files\Orange\IEWInternet\Connectivity\ConnectivityManager.exe:*:enabled:CSS
C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare
C:\Program Files\Skype\Phone\Skype.exe = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype
C:\Program Files\Njam\njam.exe = C:\Program Files\Njam\njam.exe:*:Disabled:njam
C:\Program Files\Windows Live\Messenger\wlcsdk.exe = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call
C:\Program Files\Windows Live\Messenger\msnmsgr.exe = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger
C:\Program Files\ma-config.com\maconfservice.exe = C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice
C:\Program Files\BitTorrent\bittorrent.exe = C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe = C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe
C:\Program Files\HP\Digital Imaging\bin\hposid01.exe = C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe
C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe = C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe
C:\Program Files\HP\Digital Imaging\bin\hpqcopy2.exe = C:\Program Files\HP\Digital Imaging\bin\hpqcopy2.exe:*:Enabled:hpqcopy2.exe
C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe = C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe
C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe = C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe
C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe = C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe = C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe = C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe
C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe = C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe:*:Enabled:hpqusgm.exe
C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe = C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe:*:Enabled:hpqusgh.exe
C:\Program Files\HP\HP Software Update\HPWUCli.exe = C:\Program Files\HP\HP Software Update\HPWUCli.exe:*:Enabled:hpwucli.exe
C:\Program Files\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe = C:\Program Files\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe:*:Enabled:smartwebprintexe.exe
C:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE = C:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE:*:Disabled:Microsoft Office Excel

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
%windir%\Network Diagnostic\xpnetdiag.exe = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000
%windir%\system32\sessmgr.exe = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019
C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare
C:\Program Files\Windows Live\Messenger\wlcsdk.exe = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call
C:\Program Files\Windows Live\Messenger\msnmsgr.exe = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe = C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe
C:\Program Files\HP\Digital Imaging\bin\hposid01.exe = C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe
C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe = C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe
C:\Program Files\HP\Digital Imaging\bin\hpqcopy2.exe = C:\Program Files\HP\Digital Imaging\bin\hpqcopy2.exe:*:Enabled:hpqcopy2.exe
C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe = C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe:*:Enabled:hpfccopy.exe
C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe = C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe
C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe = C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe = C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe = C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe
C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe = C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe:*:Enabled:hpqusgm.exe
C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe = C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe:*:Enabled:hpqusgh.exe
C:\Program Files\HP\HP Software Update\HPWUCli.exe = C:\Program Files\HP\HP Software Update\HPWUCli.exe:*:Enabled:hpwucli.exe
C:\Program Files\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe = C:\Program Files\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe:*:Enabled:smartwebprintexe.exe

¤¤¤¤¤¤¤¤¤¤ ActivX | COM ¤¤¤¤¤¤¤¤¤¤

[HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\CabBuilder]
[HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{02BF25D5-8C17-4B23-BC80-D3488ABDDC6B}]
[HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{166B1BCA-3F9C-11CF-8075-444553540000}]
[HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{20A60F0D-9AFA-4515-A0FD-83BD84642501}]
[HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{3107C2A8-9F0B-4404-A58B-21BD85268FBC}]
[HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{4DD20514-9520-40A7-9CD6-66883643A20B}]
[HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{50DC58D0-C870-4BE6-BC41-971ED2D5F022}]
[HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{5D6F45B3-9043-443D-A792-115447494D24}]
[HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{867E13F2-7F31-44FB-AC97-CD38E0DC46EF}]
[HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{8AD9C840-044E-11D1-B3E9-00805F499D93}]
[HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B}]
[HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{C3F79A2B-B9B4-4A66-B012-3EE46475B072}]
[HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}]
[HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}]
[HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{D0C0F75C-683A-4390-A791-1ACFD5599AB8}]
[HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}]
[HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{F5A7706B-B9C0-4C89-A715-7A0C6B05DD48}]

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{26923b43-4d38-484f-9b9e-de460746276c}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{03BC147E-F326-DBA3-C94E-B920778C19F4}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{08B0E5C0-4FCB-11CF-AAA5-00401C608500}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10072CEC-8CC1-11D1-986E-00A0C955B42F}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{233C1507-6A77-46A4-9443-F871F945D258}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{283807B5-2C60-11D0-A31D-00AA00B92C03}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{2A202491-F00D-11cf-87CC-0020AFEECF20}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{36f8ec70-c29a-11d1-b5c7-0000f8051515}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{3af36230-a269-11d1-b5bf-0000f8051515}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{3bf42070-b3b1-11d1-b5c5-0000f8051515}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{4278c270-a269-11d1-b5bf-0000f8051515}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{4370B83A-298F-7E38-0E89-F273B2E881DB}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA848-CC51-11CF-AAFA-00AA00B6015C}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA855-CC51-11CF-AAFA-00AA00B6015F}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{45ea75a0-a269-11d1-b5bf-0000f8051515}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{4f216970-c90c-11d1-b5c7-0000f8051515}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{4f645220-306d-11d2-995d-00c04f98bbc9}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{5A8D6EE0-3E18-11D0-821E-444553540000}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{5fd399c0-a70a-11d1-9948-00c04f98bbc9}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{630b1da0-b465-11d1-9948-00c04f98bbc9}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{6fab99d0-bab8-11d1-994a-00c04f98bbc9}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{73FA19D0-2D75-11D2-995D-00C04F98BBC9}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{9381D8F2-0288-11D0-9501-00AA00B911A5}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{ACC563BC-4266-43f0-B6ED-9D38C4202C7E}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{C9E9A340-D1F1-11D0-821E-444553540600}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{CC2A9BA0-3BDD-11D0-821E-444553540000}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{CDD7975E-60F8-41d5-8149-19E51D6F71D0}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{de5aed00-a4bf-11d1-9948-00c04f98bbc9}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{E92B03AB-B707-11d2-9CBD-0000F87A369E}]

¤¤¤¤¤¤¤¤¤¤ BHO ¤¤¤¤¤¤¤¤¤¤

[@ = ]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{00C6482D-C502-44C8-8409-FCE54AD9C208}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{01677B4B-0610-4814-94A0-5F570DD7A88F}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{0286A85D-CD62-43bb-B7A9-A87D1D027160}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{0347C33E-8762-4905-BF09-768834316C61}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{4daac69c-cba7-45e2-9bc8-1044483d3352}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]

¤¤¤¤¤¤¤¤¤¤ DNS ¤¤¤¤¤¤¤¤¤¤

HKLM\SYSTEM\CCS\Services\Tcpip\..\{58D04842-864A-4AC3-A585-A0BA562231DD}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\..\{58D04842-864A-4AC3-A585-A0BA562231DD}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS2\Services\Tcpip\..\{58D04842-864A-4AC3-A585-A0BA562231DD}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1


¤¤¤¤¤¤¤¤¤¤ Internet Explorer ¤¤¤¤¤¤¤¤¤¤

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
Start Page = https://www.msn.com/fr-fr/?ocid=iehp
Local Page = C:\WINDOWS\system32\blank.htm
Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
Start Page = https://www.google.fr/?gws_rd=ssl
Local Page = C:\WINDOWS\system32\blank.htm
Search Page = https://www.bing.com/?fdr=lc&toHttps=1&redig=FA6AD360E0BE4C719380F8C470A3D3A8

¤¤¤¤¤ Proxy Internet Explorer

[HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
ProxyHttp1.1 = 1 (0x1)
ProxyEnable = 0 (0x0)


¤¤¤¤¤¤¤¤¤¤ Proxy Firefox ¤¤¤¤¤¤¤¤¤¤


¤¤¤¤¤¤¤¤¤¤ TaskCache ¤¤¤¤¤¤¤¤¤¤


¤¤¤¤¤¤¤¤¤¤ IFEO ¤¤¤¤¤¤¤¤¤¤

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\apitrap.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\ASSTE.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\AVSTE.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\Cleanup.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\cqw32.exe]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\divx.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\divxdec.ax]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\DJSMAR00.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\DRMINST.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\enc98.EXE]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\EncodeDivXExt.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\EncryptPatchVer.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\front.exe]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\fullsoft.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\GBROWSER.DLL]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\htmlmarq.ocx]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\htmlmm.ocx]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\install.exe]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\ishscan.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\ISSTE.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\javai.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\jvm.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\jvm_g.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\main123w.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\mngreg32.exe]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\msci_uno.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\mscoree.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\mscorsvr.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\mscorwks.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\msjava.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\mso.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\NAVOPTRF.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\NeVideoFX.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\NPMLIC.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\NSWSTE.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\photohse.EXE]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\PMSTE.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\ppw32hlp.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\printhse.EXE]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\prwin8.EXE]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\ps80.EXE]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\psdmt.exe]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\qfinder.EXE]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\qpw.EXE]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\salwrap.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\setup.exe]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\setup32.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\sevinst.exe]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\symlcnet.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\tcore_ebook.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\TFDTCTT8.DLL]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\ua80.EXE]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\udtapi.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\ums.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\vb40032.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\vbe6.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\wpwin8.EXE]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\xlmlEN.dll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\xwsetup.EXE]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\Your Image File Name Here without a path]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\_INSTPGM.EXE]

¤¤¤¤¤¤¤¤¤¤ File Protection ¤¤¤¤¤¤¤¤¤¤

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Windows File Protection]

¤¤¤¤¤¤¤¤¤¤ Safemode ¤¤¤¤¤¤¤¤¤¤

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot : OK !!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal : OK !!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network : OK !!

¤¤¤¤¤¤¤¤¤¤ Atapi.sys ¤¤¤¤¤¤¤¤¤¤

[MD5.9f3a2f5aa6875c72bf062c712cfa2674] - C:\WINDOWS\system32\drivers\atapi.sys

¤¤¤¤¤ Reference

Win 2000_SP2 : ff953a8f08ca3f822127654375786bbe
Win 2000_SP4 : 8c718aa8c77041b3285d55a0ce980867
Win XP_32b : a64013e98426e1877cb653685c5c0009
Win XP_SP1_32b : 95b858761a00e1d4f81f79a0da019aca
Win XP_SP2_32b : CDFE4411A69C224BD1D11B2DA92DAC51
Win XP_SP3_32b : 9F3A2F5AA6875C72BF062C712CFA2674
Vista_32b : e03e8c99d15d0381e02743c36afc7c6f
Vista_SP1_32b : 2d9c903dc76a66813d350a562de40ed9
Vista_SP2_32b : 1F05B78AB91C9075565A9D8A4B880BC4
Vista_SP2_64b : 1898FAE8E07D97F2F6C2D5326C633FAC
Windows 7_32b : 338c86357871c167a96ab976519bf59e
Windows 7_64b : 02062C0B390B7729EDC9E69C680A6F3C

¤¤¤¤¤¤¤¤¤¤ Explorer ¤¤¤¤¤¤¤¤¤¤

[MD5.f2317622d29f9ff0f88aeecd5f60f0dd] - C:\WINDOWS\explorer.exe
[MD5.f2317622d29f9ff0f88aeecd5f60f0dd] - C:\WINDOWS\system32\dllcache\explorer.exe

¤¤¤¤¤¤¤¤¤¤ Winlogon ¤¤¤¤¤¤¤¤¤¤

[MD5.dd73d6b9f6b4cb630cf35b438b540174] - C:\WINDOWS\system32\winlogon.exe
[MD5.dd73d6b9f6b4cb630cf35b438b540174] - C:\WINDOWS\system32\dllcache\winlogon.exe

¤¤¤¤¤¤¤¤¤¤ Drive ¤¤¤¤¤¤¤¤¤¤

Défragmenteur de disque Windows
Copyright (c) 2001 Microsoft Corp. et Executive Software International Inc.

Rapport d'analyse
149 Go total, 107 Go libre (71%), 9% fragmenté (fragmentation du fichier 19%)

Il ne vous est pas nécessaire de défragmenter ce volume.

¤¤¤¤¤¤¤¤¤¤ Mountpoints2 ¤¤¤¤¤¤¤¤¤¤

HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2ddb2af6-722e-11de-a92f-001bb955a3f8}\shell\autorun
@ = &Exécution automatique
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2ddb2af6-722e-11de-a92f-001bb955a3f8}\shell\autorun\command
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2ddb2af6-722e-11de-a92f-001bb955a3f8}\shell\autorun\command
@ = E:\AutoRunCardDetector.exe
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{4a01f0aa-6c72-11de-a929-001bb955a3f8}\shell\autorun
@ = &Exécution automatique
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{4a01f0aa-6c72-11de-a929-001bb955a3f8}\shell\autorun\command
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{4a01f0aa-6c72-11de-a929-001bb955a3f8}\shell\autorun\command
@ = I:\AutoRunCardDetector.exe
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5b8caa15-0b09-11de-a8c3-001bb955a3f8}\shell\autorun
Extended =
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5b8caa15-0b09-11de-a8c3-001bb955a3f8}\shell\autorun\command
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5b8caa15-0b09-11de-a8c3-001bb955a3f8}\shell\autorun\command
@ = J:\setupSNK.exe
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9ccfb5f2-e439-11df-aac5-001bb955a3f8}\shell\autorun
Extended =
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9ccfb5f2-e439-11df-aac5-001bb955a3f8}\shell\autorun\command
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9ccfb5f2-e439-11df-aac5-001bb955a3f8}\shell\autorun\command
@ = I:\setupSNK.exe
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a8c73e3b-1036-11df-aa14-001bb955a3f8}\shell\autorun
Extended =
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a8c73e3b-1036-11df-aa14-001bb955a3f8}\shell\autorun\command
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a8c73e3b-1036-11df-aa14-001bb955a3f8}\shell\autorun\command
@ = setupSNK.exe

¤¤¤¤¤¤¤¤¤¤ First Scan ¤¤¤¤¤¤¤¤¤¤



¤¤¤¤¤¤¤¤¤¤ Registry ¤¤¤¤¤¤¤¤¤¤

[@ = ]
[HKEY_CURRENT_USER\software\3rd Eye Solutions]
[HKEY_CURRENT_USER\software\Adobe]
[HKEY_CURRENT_USER\software\Ahead]
[HKEY_CURRENT_USER\software\AppDataLow]
[HKEY_CURRENT_USER\software\Ask.com]
[HKEY_CURRENT_USER\software\AskSearchAsst]
[HKEY_CURRENT_USER\software\AskToolbar]
[HKEY_CURRENT_USER\software\Avanquest_FR]
[HKEY_CURRENT_USER\software\Avira]
[HKEY_CURRENT_USER\software\Big Fish Games]
[HKEY_CURRENT_USER\software\Binary Noise]
[HKEY_CURRENT_USER\software\BitTorrent]
[HKEY_CURRENT_USER\software\Boonty]
[HKEY_CURRENT_USER\software\Cam3820prp]
[HKEY_CURRENT_USER\software\Clients]
[HKEY_CURRENT_USER\software\Conduit]
[HKEY_CURRENT_USER\software\cybelsoft]
[HKEY_CURRENT_USER\software\Deirdra Kiai Productions]
[HKEY_CURRENT_USER\software\Dive Advanced]
[HKEY_CURRENT_USER\software\ESET]
[HKEY_CURRENT_USER\software\etoro]
[HKEY_CURRENT_USER\software\GameHouse]
[HKEY_CURRENT_USER\software\GameXzone]
[HKEY_CURRENT_USER\software\GoBit]
[HKEY_CURRENT_USER\software\GOG]
[HKEY_CURRENT_USER\software\Google]
[HKEY_CURRENT_USER\software\Hewlett-Packard]
[HKEY_CURRENT_USER\software\HookNetwork]
[HKEY_CURRENT_USER\software\HP]
[HKEY_CURRENT_USER\software\IM Providers]
[HKEY_CURRENT_USER\software\Intel]
[HKEY_CURRENT_USER\software\IZSoftware]
[HKEY_CURRENT_USER\software\JavaSoft]
[HKEY_CURRENT_USER\software\JEDI-VCL]
[HKEY_CURRENT_USER\software\JollyBear]
[HKEY_CURRENT_USER\software\KraiSoft]
[HKEY_CURRENT_USER\software\Lavalys]
[HKEY_CURRENT_USER\software\LexmarkPhoto]
[HKEY_CURRENT_USER\software\Local AppWizard-Generated Applications]
[HKEY_CURRENT_USER\software\Ludi]
[HKEY_CURRENT_USER\software\M&R Technologies]
[HKEY_CURRENT_USER\software\Macromedia]
[HKEY_CURRENT_USER\software\Magnet]
[HKEY_CURRENT_USER\software\Microsoft]
[HKEY_CURRENT_USER\software\MODE 1 MULTIMedia]
[HKEY_CURRENT_USER\software\Monitored]
[HKEY_CURRENT_USER\software\Mozilla]
[HKEY_CURRENT_USER\software\MozillaPlugins]
[HKEY_CURRENT_USER\software\Netscape]
[HKEY_CURRENT_USER\software\Nico Mak Computing]
[HKEY_CURRENT_USER\software\NVIDIA Corporation]
[HKEY_CURRENT_USER\software\NVIDIA nvCpl Container]
[HKEY_CURRENT_USER\software\ODBC]
[HKEY_CURRENT_USER\software\OXXOgames]
[HKEY_CURRENT_USER\software\Paint.NET]
[HKEY_CURRENT_USER\software\Patchou]
[HKEY_CURRENT_USER\software\PCTools]
[HKEY_CURRENT_USER\software\Piriform]
[HKEY_CURRENT_USER\software\Policies]
[HKEY_CURRENT_USER\software\PopCap]
[HKEY_CURRENT_USER\software\PriceGong]
[HKEY_CURRENT_USER\software\Realtek]
[HKEY_CURRENT_USER\software\SecuROM]
[HKEY_CURRENT_USER\software\settings]
[HKEY_CURRENT_USER\software\shockwave.com]
[HKEY_CURRENT_USER\software\Skype]
[HKEY_CURRENT_USER\software\Softonic]
[HKEY_CURRENT_USER\software\Softonic_France]
[HKEY_CURRENT_USER\software\Sysinternals]
[HKEY_CURRENT_USER\software\TechSmith]
[HKEY_CURRENT_USER\software\Trolltech]
[HKEY_CURRENT_USER\software\Twin Brothers]
[HKEY_CURRENT_USER\software\UVC Still Image Capture]
[HKEY_CURRENT_USER\software\UVCTray]
[HKEY_CURRENT_USER\software\VB and VBA Program Settings]
[HKEY_CURRENT_USER\software\WinRAR SFX]
[HKEY_CURRENT_USER\software\WinZip Computing]
[HKEY_CURRENT_USER\software\YahooPartnerToolbar]
[HKEY_CURRENT_USER\software\Zylom]
[HKEY_CURRENT_USER\software\Classes]

[@ = ]
[HKEY_LOCAL_MACHINE\software\3dPro Air Hockey]
[HKEY_LOCAL_MACHINE\software\Adobe]
[HKEY_LOCAL_MACHINE\software\Ahead]
[HKEY_LOCAL_MACHINE\software\alcorcamid]
[HKEY_LOCAL_MACHINE\software\AppDataLow]
[HKEY_LOCAL_MACHINE\software\Apple Computer, Inc.]
[HKEY_LOCAL_MACHINE\software\Atari]
[HKEY_LOCAL_MACHINE\software\Audible]
[HKEY_LOCAL_MACHINE\software\Avanquest_FR]
[HKEY_LOCAL_MACHINE\software\Avira]
[HKEY_LOCAL_MACHINE\software\AviSynth]
[HKEY_LOCAL_MACHINE\software\Big Fish Games]
[HKEY_LOCAL_MACHINE\software\Boonty]
[HKEY_LOCAL_MACHINE\software\C07ft5Y]
[HKEY_LOCAL_MACHINE\software\CamVendor]
[HKEY_LOCAL_MACHINE\software\Canvas Multi-Media]
[HKEY_LOCAL_MACHINE\software\Classes]
[HKEY_LOCAL_MACHINE\software\Clients]
[HKEY_LOCAL_MACHINE\software\Conduit]
[HKEY_LOCAL_MACHINE\software\cybelsoft]
[HKEY_LOCAL_MACHINE\software\DDV]
[HKEY_LOCAL_MACHINE\software\Digital River]
[HKEY_LOCAL_MACHINE\software\Dive Advanced]
[HKEY_LOCAL_MACHINE\software\Dofus 2]
[HKEY_LOCAL_MACHINE\software\ds-eMedia!]
[HKEY_LOCAL_MACHINE\software\e-game]
[HKEY_LOCAL_MACHINE\software\egame]
[HKEY_LOCAL_MACHINE\software\ESET]
[HKEY_LOCAL_MACHINE\software\etoro]
[HKEY_LOCAL_MACHINE\software\FRANCE TELECOM]
[HKEY_LOCAL_MACHINE\software\Freeciv-2.1.6-gtk2]
[HKEY_LOCAL_MACHINE\software\GamesBarSetup]
[HKEY_LOCAL_MACHINE\software\Gemplus]
[HKEY_LOCAL_MACHINE\software\gibcom]
[HKEY_LOCAL_MACHINE\software\GIMP_Back_Mode]
[HKEY_LOCAL_MACHINE\software\GoldSprinter]
[HKEY_LOCAL_MACHINE\software\Google]
[HKEY_LOCAL_MACHINE\software\Hewlett-Packard]
[HKEY_LOCAL_MACHINE\software\iktsoft]
[HKEY_LOCAL_MACHINE\software\InstallShield]
[HKEY_LOCAL_MACHINE\software\Intel]
[HKEY_LOCAL_MACHINE\software\IZSoftware]
[HKEY_LOCAL_MACHINE\software\JavaSoft]
[HKEY_LOCAL_MACHINE\software\JreMetrics]
[HKEY_LOCAL_MACHINE\software\Lexmark]
[HKEY_LOCAL_MACHINE\software\Licenses]
[HKEY_LOCAL_MACHINE\software\M&R Technologies, Inc.]
[HKEY_LOCAL_MACHINE\software\Macromedia]
[HKEY_LOCAL_MACHINE\software\Microsoft]
[HKEY_LOCAL_MACHINE\software\Mozilla]
[HKEY_LOCAL_MACHINE\software\mozilla.org]
[HKEY_LOCAL_MACHINE\software\MozillaPlugins]
[HKEY_LOCAL_MACHINE\software\MSI]
[HKEY_LOCAL_MACHINE\software\Nero]
[HKEY_LOCAL_MACHINE\software\Nico Mak Computing]
[HKEY_LOCAL_MACHINE\software\Norton]
[HKEY_LOCAL_MACHINE\software\NVIDIA Corporation]
[HKEY_LOCAL_MACHINE\software\ODBC]
[HKEY_LOCAL_MACHINE\software\Paint.NET]
[HKEY_LOCAL_MACHINE\software\Patchou]
[HKEY_LOCAL_MACHINE\software\PCTools]
[HKEY_LOCAL_MACHINE\software\PhotoFiltre]
[HKEY_LOCAL_MACHINE\software\Piriform]
[HKEY_LOCAL_MACHINE\software\Policies]
[HKEY_LOCAL_MACHINE\software\Program Groups]
[HKEY_LOCAL_MACHINE\software\Python]
[HKEY_LOCAL_MACHINE\software\Rapture Technologies, Inc.]
[HKEY_LOCAL_MACHINE\software\Realtek]
[HKEY_LOCAL_MACHINE\software\recfree.com]
[HKEY_LOCAL_MACHINE\software\RedKawa]
[HKEY_LOCAL_MACHINE\software\ReflexiveArcade]
[HKEY_LOCAL_MACHINE\software\RegisteredApplications]
[HKEY_LOCAL_MACHINE\software\Sagem]
[HKEY_LOCAL_MACHINE\software\Schlumberger]
[HKEY_LOCAL_MACHINE\software\Secure]
[HKEY_LOCAL_MACHINE\software\SECURITOO]
[HKEY_LOCAL_MACHINE\software\SEGA]
[HKEY_LOCAL_MACHINE\software\Skype]
[HKEY_LOCAL_MACHINE\software\Softonic_France]
[HKEY_LOCAL_MACHINE\software\Sonix]
[HKEY_LOCAL_MACHINE\software\Swearware]
[HKEY_LOCAL_MACHINE\software\Symantec]
[HKEY_LOCAL_MACHINE\software\TechSmith]
[HKEY_LOCAL_MACHINE\software\Toogame]
[HKEY_LOCAL_MACHINE\software\TQ566808]
[HKEY_LOCAL_MACHINE\software\TrendMicro]
[HKEY_LOCAL_MACHINE\software\Trymedia Systems]
[HKEY_LOCAL_MACHINE\software\Twin Brothers]
[HKEY_LOCAL_MACHINE\software\Uniblue]
[HKEY_LOCAL_MACHINE\software\VideoConverterApp]
[HKEY_LOCAL_MACHINE\software\Wiering Software]
[HKEY_LOCAL_MACHINE\software\Windows]
[HKEY_LOCAL_MACHINE\software\Windows 3.1 Migration Status]
[HKEY_LOCAL_MACHINE\software\X-AVCSD]
[HKEY_LOCAL_MACHINE\software\XnView]
[HKEY_LOCAL_MACHINE\software\Z-Com, Inc.]

¤¤¤¤¤¤¤¤¤¤ Files/folders ¤¤¤¤¤¤¤¤¤¤

Present !! : C:\Program Files\AGI
Present !! : C:\Program Files\Ask.com
Present !! : C:\Program Files\Circle Development
Present !! : C:\Program Files\EasySearch
Present !! : C:\Program Files\GamesBar
Present !! : C:\WINDOWS\SET3.tmp
Present !! : C:\WINDOWS\SET4.tmp
Present !! : C:\WINDOWS\SET8.tmp
Present !! : C:\WINDOWS\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Present !! : C:\WINDOWS\system32\AbaleZip.dll
Present !! : C:\WINDOWS\system32\dmscript32.dll
Present !! : C:\WINDOWS\System32\drivers\etc\hosts.msn
Present !! : C:\WINDOWS\System32\GroupPolicy000.dat
Present !! : C:\WINDOWS\System32\SET2558.tmp
Present !! : C:\WINDOWS\System32\SET2559.tmp
Present !! : C:\WINDOWS\System32\SET255B.tmp
Present !! : C:\WINDOWS\System32\SET2567.tmp
Present !! : C:\WINDOWS\System32\SET2569.tmp
Present !! : C:\WINDOWS\Temp\Cab37.tmp
Present !! : C:\WINDOWS\Temp\GUR1.tmp
Present !! : C:\WINDOWS\Temp\GUR2.tmp
Present !! : C:\WINDOWS\Temp\GUR2B.tmp
Present !! : C:\WINDOWS\Temp\GUR3.tmp
Present !! : C:\WINDOWS\Temp\GUR4.tmp
Present !! : C:\WINDOWS\Temp\GUR5.tmp
Present !! : C:\WINDOWS\Temp\GUR6.tmp
Present !! : C:\WINDOWS\Temp\GUR7.tmp
Present !! : C:\WINDOWS\Temp\GUR8.tmp
Present !! : C:\WINDOWS\Temp\GUR9.tmp
Present !! : C:\WINDOWS\Temp\GURA.tmp
Present !! : C:\WINDOWS\Temp\GURB.tmp
Present !! : C:\WINDOWS\Temp\GURC.tmp
Present !! : C:\WINDOWS\Temp\HTT1722.tmp
Present !! : C:\WINDOWS\Temp\HTT193.tmp
Present !! : C:\WINDOWS\Temp\HTT1BF.tmp
Present !! : C:\WINDOWS\Temp\HTT1C6.tmp
Present !! : C:\WINDOWS\Temp\HTT1D04.tmp
Present !! : C:\WINDOWS\Temp\HTT1F6.tmp
Present !! : C:\WINDOWS\Temp\HTT2C30.tmp
Present !! : C:\WINDOWS\Temp\HTT2C31.tmp
Present !! : C:\WINDOWS\Temp\HTT2FC.tmp
Present !! : C:\WINDOWS\Temp\HTT302.tmp
Present !! : C:\WINDOWS\Temp\HTT3D0C.tmp
Present !! : C:\WINDOWS\Temp\HTT3E19.tmp
Present !! : C:\WINDOWS\Temp\HTT3E1B.tmp
Present !! : C:\WINDOWS\Temp\HTT47F4.tmp
Present !! : C:\WINDOWS\Temp\HTT4823.tmp
Present !! : C:\WINDOWS\Temp\HTT5967.tmp
Present !! : C:\WINDOWS\Temp\HTT6957.tmp
Present !! : C:\WINDOWS\Temp\HTT82E4.tmp
Present !! : C:\WINDOWS\Temp\HTT82E6.tmp
Present !! : C:\WINDOWS\Temp\HTT82E7.tmp
Present !! : C:\WINDOWS\Temp\HTT8306.tmp
Present !! : C:\WINDOWS\Temp\HTT8307.tmp
Present !! : C:\WINDOWS\Temp\HTT830C.tmp
Present !! : C:\WINDOWS\Temp\HTT871.tmp
Present !! : C:\WINDOWS\Temp\HTT968.tmp
Present !! : C:\WINDOWS\Temp\HTT9F8.tmp
Present !! : C:\WINDOWS\Temp\HTTA4D9.tmp
Present !! : C:\WINDOWS\Temp\HTTA4DA.tmp
Present !! : C:\WINDOWS\Temp\HTTA4DC.tmp
Present !! : C:\WINDOWS\Temp\HTTBAC.tmp
Present !! : C:\WINDOWS\Temp\HTTBAD.tmp
Present !! : C:\WINDOWS\Temp\HTTC6.tmp
Present !! : C:\WINDOWS\Temp\HTTDD2.tmp
Present !! : C:\WINDOWS\Temp\IMTA5.tmp
Present !! : C:\WINDOWS\Temp\JET49A6.tmp
Present !! : C:\WINDOWS\Temp\JETC44A.tmp
Present !! : C:\WINDOWS\Temp\OHRCLINE.TMP
Present !! : C:\WINDOWS\Temp\SEP27.tmp
Present !! : C:\WINDOWS\Temp\SEPB.tmp
Present !! : C:\WINDOWS\Temp\~DF696C.tmp
Present !! : C:\WINDOWS\Temp\~DFE8EC.tmp
Present !! : C:\Documents and Settings\moi\Application Data\app
Present !! : C:\Documents and Settings\moi\Application Data\PriceGong
Present !! : C:\Documents and Settings\moi\Local Settings\Temp\VP6.reg
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\8BD54F3E-DD19-4a69-93D8-5C6A5BBBE20E.exe
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\AdobeAIRInstaller.exe
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\AskInstallChecker.exe
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\AutoRun.exe
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\Avanquest_FR.exe
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\B33C11F5-3A11-4f1e-85E4-C3CABE52C369.exe
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\blockcad.exe
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\CDSFUNST.EXE
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\eauninstall.exe
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\etoro.EXE
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\eToroSetup.exe
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\First15.exe
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\FP_PL_MSI_INSTALLER.exe
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\GoogleToolbar.exe
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\igraal.exe
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\jre-6u15-windows-i586-iftw.exe
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\jre-6u17-windows-i586-iftw-rv.exe
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\jre-6u20-windows-i586-iftw-rv.exe
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\jre-6u21-windows-i586-iftw-rv.exe
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\jre-6u22-windows-i586-iftw-rv.exe
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\kiwee_toolbar_installer.exe
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\lsnfier.exe
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\Mathenpoche-Niveau-3e.exe
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\Mathenpoche-Niveau-4e.exe
Present !! : C:\Documents and Settings\moi\LOCAL Settings\Temp\Messenger_Plus_Li
0
Réponse 33 / 86
chris50190
 
############################## | UsbFix 7.034 | [Suppression]

Utilisateur: moi (Administrateur) # MOI-2B18DAFAA1D [ ]
Mis à jour le 25/10/10 par El Desaparecido / C_XX
Lancé à 18:28:49 | 02/11/2010
Site Web: http://www.teamxscript.org
Contact: eldesaparecido@teamxscript.org

CPU: AMD Sempron(tm) Processor 3600+
Microsoft Windows XP Édition familiale (5.1.2600 32-Bit) # Service Pack 3
Internet Explorer 8.0.6001.18702

Pare-feu Windows: Désactivé /!\
Antivirus: PC Tools AntiVirus 6.1.0.25 6.1.0.25 [Enabled | Updated]
Antivirus: AntiVir Desktop 9.0.1.32 [Enabled | Updated]
Antivirus: ESET Smart Security 3.0 3.0 [Enabled | (!) Outdated]
Firewall: Pare-feu personnel d'ESET 3.0.669.0 [(!) Disabled]
RAM -> 958 Mo
C:\ (%systemdrive%) -> Disque fixe # 149 Go (107 Go libre(s) - 72%) [] # NTFS
D:\ -> CD-ROM

################## | Éléments infectieux |


Supprimé! C:\DOCUME~1\moi\LOCALS~1\Temp\IXP000.TMP
Supprimé! C:\DOCUME~1\moi\LOCALS~1\Temp\IXP001.TMP
Supprimé! C:\DOCUME~1\moi\LOCALS~1\Temp\IXP002.TMP
Supprimé! C:\Recycler\S-1-5-21-436374069-1788223648-1606980848-1004
Supprimé! C:\Recycler\S-1-5-21-436374069-1788223648-1606980848-1006
Supprimé! C:\Recycler\S-1-5-21-436374069-1788223648-1606980848-1007

################## | Registre |


################## | Mountpoints2 |

Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{2ddb2af6-722e-11de-a92f-001bb955a3f8}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{4a01f0aa-6c72-11de-a929-001bb955a3f8}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{5b8caa15-0b09-11de-a8c3-001bb955a3f8}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{9ccfb5f2-e439-11df-aac5-001bb955a3f8}

################## | Listing |

[07/08/2009 - 02:03:46 | D ] C:\2704a3d79b2b6536f8f557bbb9eb71c7
[05/05/2010 - 20:23:04 | D ] C:\5 Days a Stranger
[05/05/2010 - 20:27:10 | D ] C:\7 Days a Skeptic
[02/11/2010 - 13:39:44 | N | 10798] C:\Ad-Report-CLEAN[1].txt
[10/06/2009 - 21:30:59 | D ] C:\Another Jongg
[07/03/2009 - 00:43:19 | N | 0] C:\AUTOEXEC.BAT
[02/07/2009 - 20:27:25 | D ] C:\BieberSoft
[07/03/2009 - 00:37:52 | N | 216] C:\boot.ini
[14/04/2008 - 13:00:00 | N | 4952] C:\Bootfont.bin
[09/04/2009 - 12:23:05 | D ] C:\Carrion
[04/04/2010 - 17:03:52 | D ] C:\Chuckie_Egg(2)
[07/03/2009 - 00:43:19 | N | 0] C:\CONFIG.SYS
[18/06/2009 - 08:53:00 | D ] C:\Cookie Cruncher
[18/06/2009 - 18:59:48 | D ] C:\CVERITE
[11/06/2010 - 17:15:22 | D ] C:\d8941a1ca6db626841
[17/06/2009 - 10:40:55 | D ] C:\DiveAdvanced
[18/10/2009 - 06:56:10 | D ] C:\Documents and Settings
[20/07/2009 - 11:46:05 | D ] C:\Fast Lap 98
[18/06/2009 - 19:05:04 | D ] C:\Files4Fun
[06/06/2009 - 15:43:56 | D ] C:\games
[20/07/2009 - 12:24:20 | D ] C:\GeneRally
[15/03/2009 - 09:21:01 | N | 1137769] C:\GTB.cab
[07/03/2010 - 22:39:17 | N | 304152] C:\img1-001.raw
[13/12/2009 - 21:47:18 | N | 230424] C:\img1-002.raw
[08/01/2010 - 22:47:03 | N | 230424] C:\img1-003.raw
[07/03/2009 - 00:43:19 | N | 0] C:\IO.SYS
[13/07/2009 - 22:10:01 | D ] C:\keke
[01/11/2010 - 23:47:07 | D ] C:\Kill'em
[11/06/2009 - 06:50:58 | D ] C:\Legend Cave
[02/11/2010 - 09:25:35 | N | 84924] C:\List'em.txt
[17/09/2009 - 16:35:58 | N | 0] C:\logwmemory.bin
[01/11/2010 - 15:44:43 | D ] C:\Lop SD
[01/11/2010 - 15:44:43 | N | 20771] C:\lopR.txt
[29/04/2009 - 16:00:51 | D ] C:\Lxk2200
[11/07/2009 - 09:23:25 | D ] C:\MORDOR
[20/07/2009 - 14:22:58 | D ] C:\Mortar Mayhem
[07/03/2009 - 00:43:19 | N | 0] C:\MSDOS.SYS
[06/03/2009 - 15:10:17 | RHD ] C:\MSOCache
[05/05/2010 - 20:30:01 | D ] C:\neverball
[14/04/2008 - 13:00:00 | N | 47564] C:\NTDETECT.COM
[14/04/2008 - 13:00:00 | N | 252240] C:\ntldr
[09/05/2008 - 16:16:09 | D ] C:\office2003
[03/09/2009 - 13:09:37 | D ] C:\Olltwit
[29/02/2004 - 16:44:34 | N | 52576] C:\orange.bmp
[02/11/2010 - 17:55:10 | ASH | 780140544] C:\pagefile.sys
[11/07/2009 - 20:45:39 | D ] C:\Pigeons in the Park
[11/02/2010 - 20:44:20 | N | 41944] C:\playground.log
[02/11/2010 - 13:38:45 | D ] C:\Program Files
[02/04/2010 - 12:17:29 | D ] C:\Qoobox
[02/11/2010 - 18:35:47 | SHD ] C:\RECYCLER
[17/05/2009 - 13:26:06 | N | 159] C:\Setup.log
[17/07/2009 - 19:47:13 | D ] C:\SLIME BOMB
[20/07/2009 - 12:19:05 | D ] C:\Stunt Car Racer
[07/03/2009 - 00:48:04 | SHD ] C:\System Volume Information
[11/06/2009 - 09:44:28 | D ] C:\Take Two
[20/07/2009 - 12:47:12 | D ] C:\temp
[26/06/2009 - 16:22:33 | D ] C:\TLCWIN
[02/11/2010 - 18:35:47 | D ] C:\UsbFix
[02/11/2010 - 18:35:49 | A | 4502] C:\UsbFix.txt
[24/07/2009 - 00:25:51 | D ] C:\users
[23/10/2010 - 14:54:36 | D ] C:\WINDOWS
[20/07/2009 - 12:19:23 | N | 190] C:\xracer.sav

################## | Vaccin |

C:\Autorun.inf -> Dossier créé par UsbFix (El Desaparecido & C_XX)

################## | Upload |

Veuillez envoyer le fichier: C:\UsbFix_Upload_Me_MOI-2B18DAFAA1D.zip
http://www.teamxscript.org/Sample/Upload.php
Merci de votre contribution.

################## | E.O.F |
0
Réponse 34 / 86
chris50190
 
======= RAPPORT D'AD-REMOVER 2.0.0.2,B | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 25/10/10 à 11:40
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 13:36:38 le 02/11/2010, Mode normal

Microsoft Windows XP Édition familiale Service Pack 3 (X86)
moi@MOI-2B18DAFAA1D ( )

============== ACTION(S) ==============


Fichier supprimé: C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job
Dossier supprimé: C:\Documents and Settings\moi\Application Data\Mozilla\FireFox\Profiles\vrs793ya.default\extensions\toolbar@ask.com
Fichier supprimé: C:\Documents and Settings\moi\Application Data\Mozilla\FireFox\Profiles\vrs793ya.default\prefs.js.ask.bak
Fichier supprimé: C:\Documents and Settings\moi\Application Data\Mozilla\FireFox\Profiles\vrs793ya.default\searchplugins\ask.uk.xml
Fichier supprimé: C:\Documents and Settings\moi\Application Data\Mozilla\FireFox\Profiles\vrs793ya.default\searchplugins\askcom.xml
Dossier supprimé: C:\Documents and Settings\moi\Menu Démarrer\Programmes\Ask Search Assistant
Dossier supprimé: C:\Program Files\Ask Search Assistant
Dossier supprimé: C:\Program Files\Ask.com
Dossier supprimé: C:\Documents and Settings\moi\Local Settings\Application Data\AskToolbar
Dossier supprimé: C:\Documents and Settings\moi\Local Settings\Application Data\Conduit
Dossier supprimé: C:\Program Files\Conduit
Dossier supprimé: C:\Program Files\EasySearch
Dossier supprimé: C:\Documents and Settings\moi\Menu Démarrer\Programmes\Eurobarre
Dossier supprimé: C:\Program Files\Eurobarre
Dossier supprimé: C:\Program Files\GamesBar
Dossier supprimé: C:\Documents and Settings\moi\Application Data\PriceGong
Dossier supprimé: C:\Documents and Settings\All Users\Application Data\Trymedia
Dossier supprimé: C:\Program Files\AGI

(!) -- Fichiers temporaires supprimés.


-- Fichier ouvert: C:\Documents and Settings\moi\Application Data\Mozilla\FireFox\Profiles\vrs793ya.default\Prefs.js --
Ligne supprimée:
Ligne supprimée:
Ligne supprimée: user_pref("browser.search.defaultengine", "Ask.com");
Ligne supprimée: user_pref("browser.search.defaultenginename", "Ask.com");
Ligne supprimée: user_pref("browser.search.order.1", "Ask.com");
Ligne supprimée: user_pref("browser.search.selectedEngine", "Ask.com");
Ligne supprimée: user_pref("extensions.asktb.cbid", "GX");
Ligne supprimée: user_pref("extensions.asktb.default-channel-url-mask", "hxxp://fr.ask.com/web?q={query}&qsrc={qsrc}&...
Ligne supprimée: user_pref("extensions.asktb.first-launch-url", "hxxp://cid-be3149e6b918e8ca.profile.live.com/connect...
Ligne supprimée: user_pref("extensions.asktb.first-restart-after-config-update", true);
Ligne supprimée: user_pref("extensions.asktb.fresh-install", false);
Ligne supprimée: user_pref("extensions.asktb.l", "dis");
Ligne supprimée: user_pref("extensions.asktb.last-config-req", "1287771287910");
Ligne supprimée: user_pref("extensions.asktb.locale", "fr_FR");
Ligne supprimée: user_pref("extensions.asktb.o", "15443");
Ligne supprimée: user_pref("extensions.asktb.overlay-reloaded-using-restart", true);
Ligne supprimée: user_pref("extensions.asktb.qsrc", "2871");
Ligne supprimée: user_pref("extensions.asktb.r", "2");
Ligne supprimée: user_pref("extensions.asktb.search-suggestions-enabled", true);
Ligne supprimée: user_pref("extensions.enabledItems", "toolbar@ask.com:3.9.1.14019,jqs@sun.com:1.0,{20a82645-c095-46e...
Ligne supprimée: user_pref("keyword.URL", "hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=BT5&o=15443&locale=f...
-- Fichier Fermé --


Clé supprimée: HKLM\Software\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Clé supprimée: HKLM\Software\Classes\CLSID\{4260e0cc-0f75-462e-88a3-1e05c248bf4c}
Clé supprimée: HKLM\Software\Classes\AppID\{E142D053-7023-4B33-AF22-91F14202142D}
Clé supprimée: HKLM\Software\Classes\CLSID\{47C6C527-6204-4F91-849D-66E234DEE015}
Clé supprimée: HKLM\Software\Classes\CLSID\{9461b922-3c5a-11d2-bf8b-00c04fb93661}
Clé supprimée: HKLM\Software\Classes\CLSID\{B791A095-A4AC-4312-8894-5B7E8FF5B3CD}
Clé supprimée: HKLM\Software\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Clé supprimée: HKLM\Software\Classes\Interface\{115CCBAE-27B0-47C3-BA42-BAB708424393}
Clé supprimée: HKLM\Software\Classes\Interface\{48C9E279-C48C-48C1-9AFC-E4E9E5E5E350}
Clé supprimée: HKLM\Software\Classes\Interface\{5106ED5C-7245-4F5A-ABCA-67B0C15333D2}
Clé supprimée: HKLM\Software\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Clé supprimée: HKLM\Software\Classes\Interface\{8203FEE5-918A-43C5-BFE0-34B4159FD2E4}
Clé supprimée: HKLM\Software\Classes\Interface\{83369246-C6EF-4138-982A-664A62B463E4}
Clé supprimée: HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Clé supprimée: HKLM\Software\Classes\Interface\{956999E9-A0BE-48C9-9BCC-5A7D3E31BF97}
Clé supprimée: HKLM\Software\Classes\Interface\{99E0EEE5-14C5-46D3-878B-7DA2663E1A92}
Clé supprimée: HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Clé supprimée: HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Clé supprimée: HKLM\Software\Classes\TypeLib\{39CAFD20-BAFF-454D-A94C-7115710AE6E3}
Clé supprimée: HKLM\Software\Classes\TypeLib\{ECA4E801-17AE-4863-9F5C-AF4047AABEE0}
Clé supprimée: HKLM\Software\Classes\BHO.HelperObject
Clé supprimée: HKLM\Software\Classes\BHO.HelperObject.1
Clé supprimée: HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd
Clé supprimée: HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd.1
Clé supprimée: HKLM\Software\Classes\SuperSearch.BHOBridge
Clé supprimée: HKLM\Software\Classes\SuperSearch.BHOBridge.1
Clé supprimée: HKLM\Software\Classes\SuperSearch.SuperSearchFirefoxMgr
Clé supprimée: HKLM\Software\Classes\SuperSearch.SuperSearchFirefoxMgr.1
Clé supprimée: HKLM\Software\Classes\Toolbar.CT2124320
Clé supprimée: HKLM\Software\Classes\Toolbar.CT2542115
Clé supprimée: HKLM\Software\Classes\TOOLBAR.ToolbarCtrl.1
Clé supprimée: HKLM\Software\Classes\AppID\GenericAskToolbar.DLL
Clé supprimée: HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Clé supprimée: HKLM\Software\Conduit
Clé supprimée: HKLM\Software\GamesBarSetup
Clé supprimée: HKLM\Software\RecFree.com
Clé supprimée: HKLM\Software\Trymedia Systems
Clé supprimée: HKCU\Software\Ask.com
Clé supprimée: HKCU\Software\AskSearchAsst
Clé supprimée: HKCU\Software\AskToolbar
Clé supprimée: HKCU\Software\Binary Noise\mPlayer\kiwee_toolbar_installer.exe
Clé supprimée: HKCU\Software\Conduit
Clé supprimée: HKCU\Software\PopCap
Clé supprimée: HKCU\Software\PriceGong
Clé supprimée: HKCU\Software\VB and VBA Program Settings\eurobarre
Clé supprimée: HKCU\Software\AppDataLow\AskBarDis
Clé supprimée: HKCU\Software\AppDataLow\AskHomePage
Clé supprimée: HKCU\Software\AppDataLow\AskToolbarInfo
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Ask Search Assistant
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Eurobarre
Clé supprimée: HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Ask.com Search Assistant
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Clé supprimée: HKLM\Software\Microsoft\Code Store Database\Distribution Units\CabBuilder

Valeur supprimée: HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks|{00000000-6E41-4FD3-8538-502F5495E5FC}
Valeur supprimée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{D4027C7F-154A-4066-A1AD-4243D8127440}
Valeur supprimée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440}


============== SCAN ADDITIONNEL ==============

** Mozilla Firefox Version [3.6.10 (fr)] **

-- C:\Documents and Settings\moi\Application Data\Mozilla\FireFox\Profiles\vrs793ya.default\Prefs.js --
browser.download.lastDir, C:\\Documents and Settings\\moi\\Mes documents\\Mes images\\keke
browser.startup.homepage, hxxp://www.plusnetwork.com
browser.startup.homepage_override.mstone, rv:1.9.2.10

========================================

** Internet Explorer Version [8.0.6001.18702] **

[HKCU\Software\Microsoft\Internet Explorer\Main]
AutoHide: no
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Do404Search: 0x01000000
Enable Browser Extensions: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Show_ToolBar: yes
Start Page: hxxp://fr.msn.com/
Use Search Asst: no

[HKLM\Software\Microsoft\Internet Explorer\Main]
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Delete_Temp_Files_On_Exit: yes
Local Page: C:\WINDOWS\system32\blank.htm
Search bar: hxxp://search.msn.com/spbasic.htm
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start Page: hxxp://fr.msn.com/

[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]
Tabs: res://ieframe.dll/tabswelcome.htm
Blank: res://mshtml.dll/blank.htm

========================================

C:\Program Files\Ad-Remover\Quarantine: 877 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 13 Fichier(s)

C:\Ad-Report-CLEAN[1].txt - 02/11/2010 (10667 Octet(s))

Fin à: 13:39:43, 02/11/2010

============== E.O.F ==============
voila
0
Réponse 35 / 86
Utilisateur anonyme
 
https://forums.commentcamarche.net/forum/affich-19688682-virus-swizzor-gen2?page=2#33
0
Réponse 36 / 86
chris50190
 
donc qu est ce que je dois faire svp merci
0
Réponse 37 / 86
Utilisateur anonyme
 
il manque le rapport Clean de List_kill'em
0
Réponse 38 / 86
chris50190
 
je cherche mais je ne le trouve pas svp merci
0
Réponse 39 / 86
Utilisateur anonyme
 
tu as bien fait l'option clean au moins ?
0
Réponse 40 / 86
chris50190
 
oui je l ai fait
0

Discussions similaires

Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
Désinstaller Softonic
Diguimette -
lilidurhone -

5 réponses
Message Apple virus !!
Souclik67 -
MPMP10 -

3 réponses
virus Artemis!
mabiche37 -
Malekal_morte- -

14 réponses