Virus win32:pup-gen

Résolu/Fermé
macal83 Messages postés 25 Date d'inscription mercredi 4 mai 2011 Statut Membre Dernière intervention 20 mai 2011 - 4 mai 2011 à 13:39
 Malekal_morte- - 17 mai 2014 à 13:57
Bonjour,
J'ai besoin de votre aide car apès un scan avant démarage de mon ordinateur,voici ce qu'il apparait:

3/05/2011 17:18
Analyse de C:\Windows

Fichier C:\Windows\Installer\738de.msi|>Binary.rkverify.exe est infecté par Win32:Relevant-P [PUP], Réparer: Erreur 42060 {Le fichier n'a pas été réparé.}, Mettre en quarantaine: Erreur 42111 {L'opération n'est pas supportée pour ce type d'archive.}
Fichier C:\Windows\Installer\738de.msi|>Binary.ResutlUrlWD1.exe est infecté par Win32:PUP-gen [PUP], Réparer: Erreur 42060 {Le fichier n'a pas été réparé.}, Mettre en quarantaine: Erreur 42111 {L'opération n'est pas supportée pour ce type d'archive.}
Nombre de dossiers parcourus : 20399
Nombre de fichiers analysés : 297742
Nombre de fichiers infectés : 2
Et donc je ne sais pas du tout comment m'en débarasser c'est pour cela que je fais appel à des cracks en informatique afin que vous puissiez m'aider.
Merci d'avance à tous ceux qui pourront se pencher sur mon cas
N'hesitez pas à faire appel à moi pour de plus amples informations

45 réponses

maxou45 Messages postés 252 Date d'inscription mercredi 15 décembre 2010 Statut Membre Dernière intervention 22 août 2013 29
4 mai 2011 à 19:47
Salut
Utilise ce logiciel de diagnostic :

* Télécharge https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html (de Nicolas Coolman)
* Laisse toi guider lors de l'installation (pense à cocher la case pour créer un raccourci sur le Bureau)
* Il se lancera automatiquement à la fin de l'installation
* Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
* Héberge le rapport ZHPDiag.txt sur http://www.cijoint.fr , puis copie/colle le lien fourni dans ta prochaine réponse sur le forum
1
macal83 Messages postés 25 Date d'inscription mercredi 4 mai 2011 Statut Membre Dernière intervention 20 mai 2011
4 mai 2011 à 20:21
voici le rapport et encore merci de t'interesser à mon cas
http://www.cijoint.fr/cjlink.php?file=cj201105/cijbiesZGy.txt
0
maxou45 Messages postés 252 Date d'inscription mercredi 15 décembre 2010 Statut Membre Dernière intervention 22 août 2013 29
4 mai 2011 à 20:46
J'ai rarement vu un PC autant infecté que le tien
nous allons essayer de résoudre ton problème.

Attentions, voici quelques règles avant la désinfection
* Les helpers ici sont tous bénévoles et ils peuvent traiter plusieurs sujets , patienter si une réponse se fait trop attendre.
* Même si le PC va mieux, il est important de suivre la procédure jusqu'au bout!... il pourrait rester des infections!
* Cette désinfection peut être longue, et s'étaler sur plusieurs jours
Ne rien télécharger durant celle-ci , hormis les outils demandé par le Helper
* Si tu as l'intention de "formater" ton PC, dis le tout de suite, ça nous évitera de perdre notre temps

Avant de commencer, j'ai besoin de quelques informations sur ton système.
Fais ce qui suit :
* Démarrer
* executer
* tape cmd
* Valide par OK

* Dans la fenêtre cmd, copie / colle cette commande: slmgr /dli (avec un espace entre slmgr et /dli)

* Valide par Entrée.
* Patiente quelques secondes.
Un message va apparaître donnant les infos de ton système
* Fait une capture d'écran de cette fenêtre et joints la dans ta prochaine réponse.

.................... bonne désinfection.....................................
0
macal83 Messages postés 25 Date d'inscription mercredi 4 mai 2011 Statut Membre Dernière intervention 20 mai 2011
4 mai 2011 à 22:06
Bonsoir,
Je suis super inquiet de ce que tu viens de me dire,j'espère que tu pourras y faire quelque chose.Voici le résultat:
http://www.cijoint.fr/cjlink.php?file=cj201105/cijBlUX1yu.doc
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
4 mai 2011 à 22:41
slt pour avancer . Dsur un ordinateur il ne faut installer q un seul antivirus . Donc desinstalle avast ou antivir . Puis colle un rapport de nettoyage avec le logiciel ad aware . A plus
0
macal83 Messages postés 25 Date d'inscription mercredi 4 mai 2011 Statut Membre Dernière intervention 20 mai 2011
5 mai 2011 à 07:12
Bonjour,
Apres desinstalation d antivir,voici le rapport ad aware
http://www.cijoint.fr/cjlink.php?file=cj201105/cijvItdwpO.txt
Merci de ton aide
0
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
5 mai 2011 à 09:42
pardon je voulais parler de ad remover et non ad aware


ad remover ici: ad remover


tu peux désinstaller ad aware

a plus
0
macal83 Messages postés 25 Date d'inscription mercredi 4 mai 2011 Statut Membre Dernière intervention 20 mai 2011
5 mai 2011 à 10:37
C'est pas grave !Surtout merci pour le temps que tu m'accorde!Donc voici le résultat:
http://www.cijoint.fr/cjlink.php?file=cj201105/cijuOBOZrK.txt
0
maxou45 Messages postés 252 Date d'inscription mercredi 15 décembre 2010 Statut Membre Dernière intervention 22 août 2013 29
5 mai 2011 à 11:18
Relance Ad-remover.exe, par un double-clique sur l'icône Ad-remover située sur ton Bureau.
Sous Vista et Windows 7 : il faut lancer le fichier par clic-droit -> Exécuter en tant qu'administrateur

Sur la page, clique sur le bouton «Nettoyer»

Laisse travailler l'outil

A la fin du scan, il est possible que AD-Remover te demande de redémarrer ton PC, clique sur le bouton Oui. Si ton PC ne redémarre pas, fais le toi même.

Le rapport est situé C:\Ad-reportClean[X].Txt où X est un numéro.

Ouvre-le

Sélectionne le contenu

Puis copie le tout avec les touches clavier : ctrl+c

Poste ton résultat dans ta prochaine réponse en utilisant les touches clavier : ctrl+v (coller)
0
macal83 Messages postés 25 Date d'inscription mercredi 4 mai 2011 Statut Membre Dernière intervention 20 mai 2011
5 mai 2011 à 11:29
voici le résultat:
======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files (x86)\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 11:20:16 le 05/05/2011, Mode normal

Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X64)
Macal83@MACAL83-PC (Packard Bell ixtreme M3720)

============== ACTION(S) ==============


Dossier supprimé: C:\Users\Macal83\AppData\Roaming\Mozilla\FireFox\Profiles\wlocfe6k.default\conduit
Dossier supprimé: C:\Users\Macal83\AppData\Local\Conduit
Dossier supprimé: C:\Users\Macal83\AppData\LocalLow\Conduit
Dossier supprimé: C:\Program Files (x86)\Conduit
Dossier supprimé: C:\Users\Macal83\AppData\Local\ConduitEngine
Dossier supprimé: C:\Users\Macal83\AppData\LocalLow\ConduitEngine
Dossier supprimé: C:\Program Files (x86)\ConduitEngine
Dossier supprimé: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileSubmit
Dossier supprimé: C:\Program Files (x86)\FileSubmit

(!) -- Fichiers temporaires supprimés.


-- Fichier ouvert: C:\Users\Macal83\AppData\Roaming\Mozilla\FireFox\Profiles\wlocfe6k.default\Prefs.js --
Ligne supprimée: user_pref("CT2504091.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TER...
Ligne supprimée: user_pref("CT2504091.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT250...
Ligne supprimée: user_pref("CT2724386.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TER...
Ligne supprimée: user_pref("CT2724386.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT272...
Ligne supprimée: user_pref("CT2724386.ct2724431.SearchEngine", "Recherche||hxxp://search.conduit.com/Results.aspx?q=U...
Ligne supprimée: user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://slirsredirect.search.aol.com/slir...
Ligne supprimée: user_pref("CommunityToolbar.ToolbarsList", "CT2504091,CT2724386");
Ligne supprimée: user_pref("CommunityToolbar.ToolbarsList2", "CT2504091,CT2724386");
Ligne supprimée: user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Sat Jan 15 2011 18:52:06 GMT+0100");
-- Fichier Fermé --


Clé supprimée: HKLM\Software\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé supprimée: HKLM\Software\Classes\CLSID\{D337866A-DBD7-49C7-B821-FD3E72E70511}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D337866A-DBD7-49C7-B821-FD3E72E70511}
Clé supprimée: HKLM\Software\Classes\CLSID\{D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0}
Clé supprimée: HKLM\Software\Classes\CLSID\{D45CAACD-C9C1-4648-BDD0-7F8CB96D79DE}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D45CAACD-C9C1-4648-BDD0-7F8CB96D79DE}
Clé supprimée: HKLM\Software\Classes\Interface\{DB885111-F39F-4D88-9EE5-C88460B6DF7B}
Clé supprimée: HKLM\Software\Classes\ASAPCom.ASAPClass
Clé supprimée: HKLM\Software\Classes\ASAPCom.ASAPClass.1
Clé supprimée: HKLM\Software\Classes\ASAPCom.ASAPEnvelope
Clé supprimée: HKLM\Software\Classes\ASAPCom.ASAPEnvelope.1
Clé supprimée: HKLM\Software\Classes\ASAPCom.ASAPMain
Clé supprimée: HKLM\Software\Classes\ASAPCom.ASAPMain.1
Clé supprimée: HKLM\Software\Classes\ASAPCom.ASAPMessage
Clé supprimée: HKLM\Software\Classes\ASAPCom.ASAPMessage.1
Clé supprimée: HKLM\Software\Classes\ASAPCom.ASAPRecipients
Clé supprimée: HKLM\Software\Classes\ASAPCom.ASAPRecipients.1
Clé supprimée: HKLM\Software\Classes\Conduit.Engine
Clé supprimée: HKLM\Software\Classes\Toolbar.CT2504091
Clé supprimée: HKLM\Software\Classes\Toolbar.CT2542115
Clé supprimée: HKLM\Software\Classes\Toolbar.CT2724386
Clé supprimée: HKLM\Software\Conduit
Clé supprimée: HKLM\Software\conduitEngine
Clé supprimée: HKLM\Software\OpenCandy NSIS SDK
Clé supprimée: HKCU\Software\Conduit
Clé supprimée: HKCU\Software\conduitEngine
Clé supprimée: HKCU\Software\AppDataLow\HavingFunOnline
Clé supprimée: HKCU\Software\AppDataLow\Toolbar
Clé supprimée: HKCU\Software\AppDataLow\Software\Conduit
Clé supprimée: HKCU\Software\AppDataLow\Software\conduitEngine
Clé supprimée: HKCU\Software\AppDataLow\Software\Toolbar
Clé supprimée: HKLM\Software\Messenger Plus!\OpenCandy
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3903B343-01B4-40F1-A5BB-C32284BB8343}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A50DFB76-AF8D-4017-A91B-1722873AC20E}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine

Valeur supprimée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{30F9B915-B755-4826-820B-08FBA6BD249D}
Valeur supprimée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{30F9B915-B755-4826-820B-08FBA6BD249D}


============== SCAN ADDITIONNEL ==============

**** Mozilla Firefox Version [3.6 (fr)] ****

Plugins\NPDFusionWebFirefox.dll (Total Immersion)
HKLM_MozillaPlugins\@t-immersion.com/DFusionHomeWebPlugIn (x)
Searchplugins\flvtube.xml (?)
Extensions\flvtube@flvtube.com (FLVTube Toolbar)

-- C:\Users\Macal83\AppData\Roaming\Mozilla\FireFox\Profiles\wlocfe6k.default --
Extensions\DTToolbar@toolbarnet.com (DAEMON Tools Toolbar)
Extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f} (Winamp Toolbar)
Extensions\{ba14329e-9550-4989-b3f2-9732e92d17cc} (Vuze Remote Toolbar)
Extensions\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} (IncrediMail MediaBar 2 Toolbar)
Searchplugins\MyStart Search.xml (?)
Searchplugins\winamp-search.xml (?)
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.defaulturl, hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinamp...
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2
Prefs.js - keyword.URL, hxxp://mystart.incredimail.com/?loc=ff_address_bar&a=6d9AbPnFGr&search=
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.startup.homepage, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_homepage&prt=flvtubetb04ff&clid=d76946645f9d46278...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.startup.homepage, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_homepage&prt=flvtubetb04ff&clid=d76946645f9d46278...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.startup.homepage, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_homepage&prt=flvtubetb04ff&clid=d76946645f9d46278...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.startup.homepage, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_homepage&prt=flvtubetb04ff&clid=d76946645f9d46278...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.startup.homepage, hxxp://mystart.incredimail.com/mb57
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.startup.homepage, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_homepage&prt=flvtubetb04ff&clid=d76946645f9d46278...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.startup.homepage, hxxp://mystart.incredimail.com/mb57
Prefs.js - browser.startup.homepage, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_homepage&prt=flvtubetb04ff&clid=d76946645f9d46278...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.startup.homepage, hxxp://mystart.incredimail.com/mb57
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.startup.homepage, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_homepage&prt=flvtubetb04ff&clid=d76946645f9d46278...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.startup.homepage, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_homepage&prt=flvtubetb04ff&clid=d76946645f9d46278...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.startup.homepage, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_homepage&prt=flvtubetb04ff&clid=d76946645f9d46278...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.startup.homepage, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_homepage&prt=flvtubetb04ff&clid=d76946645f9d46278...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.startup.homepage, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_homepage&prt=flvtubetb04ff&clid=d76946645f9d46278...
Prefs.js - browser.startup.homepage, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_homepage&prt=flvtubetb04ff&clid=d76946645f9d46278...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.startup.homepage, hxxp://mystart.incredimail.com/mb57
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.startup.homepage, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_homepage&prt=flvtubetb04ff&clid=d76946645f9d46278...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.startup.homepage, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_homepage&prt=flvtubetb04ff&clid=d76946645f9d46278...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.startup.homepage, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_homepage&prt=flvtubetb04ff&clid=d76946645f9d46278...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.startup.homepage, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_homepage&prt=flvtubetb04ff&clid=d76946645f9d46278...
Prefs.js - browser.search.defaultenginename, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngine, Yahoo-FlvTube
Prefs.js - browser.search.selectedEngineURL, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_results&prt=flvtubetb01ff&clid=d76946645f...
Prefs.js - browser.startup.homepage, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_homepage&prt=flvtubetb04ff&clid=d76946645f9d46278...
Prefs.js - browser.startup.homepage, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_homepage&prt=flvtubetb04ff&clid=d76946645f9d46278...
Prefs.js - browser.startup.homepage, hxxp://flvtubesearch.co/?tmp=toolbar_FLVTube_homepage&prt=flvtubetb04ff&clid=d76946645f9d46278...

========================================

**** Internet Explorer Version [9.0.8112.16421] ****

HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKCU_URLSearchHooks|{ba14329e-9550-4989-b3f2-9732e92d17cc} - "Vuze Remote Toolbar" (C:\Program Files (x86)\Vuze_Remote\tbVuze.dll)
HKCU_URLSearchHooks|{4daac69c-cba7-45e2-9bc8-1044483d3352} - "Softonic_France Toolbar" (C:\Program Files (x86)\Softonic_France\tbSoft.dll)
HKCU_URLSearchHooks|{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} (x)
HKLM_URLSearchHooks|{ba14329e-9550-4989-b3f2-9732e92d17cc} - "Vuze Remote Toolbar" (C:\Program Files (x86)\Vuze_Remote\tbVuze.dll)
HKLM_URLSearchHooks|{4daac69c-cba7-45e2-9bc8-1044483d3352} - "Softonic_France Toolbar" (C:\Program Files (x86)\Softonic_France\tbSoft.dll)
HKLM_URLSearchHooks|{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} (x)
HKCU_SearchScopes\{12B7E1B2-A349-467C-8BCA-24CC04E696FC} - "Yahoo-FlvTube" (hxxp://flvtubesearch.co/?tmp=toolbar_FlvTube_results&prt=flvtubetb01ie&Keywords=...)
HKCU_Toolbar\WebBrowser|{BA14329E-9550-4989-B3F2-9732E92D17CC} (C:\Program Files (x86)\Vuze_Remote\tbVuze.dll)
HKCU_Toolbar\WebBrowser|{4DAAC69C-CBA7-45E2-9BC8-1044483D3352} (C:\Program Files (x86)\Softonic_France\tbSoft.dll)
HKCU_Toolbar\WebBrowser|{32099AAC-C132-4136-9E9A-4E364A424E17} (C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll)
HKCU_Toolbar\WebBrowser|{851552F5-B878-4B03-904F-2AD6A4CC8994} (x)
HKLM_Toolbar|{ba14329e-9550-4989-b3f2-9732e92d17cc} (C:\Program Files (x86)\Vuze_Remote\tbVuze.dll)
HKLM_Toolbar|{4daac69c-cba7-45e2-9bc8-1044483d3352} (C:\Program Files (x86)\Softonic_France\tbSoft.dll)
HKLM_Toolbar|{32099AAC-C132-4136-9E9A-4E364A424E17} (C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll)
HKLM_Toolbar|{851552F5-B878-4b03-904F-2AD6A4CC8994} (x)
HKLM_Toolbar|{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} (x)
HKCU_ElevationPolicy\{30E4B230-AC56-4D52-B19E-36E2C3A2804D} - C:\Users\Macal83\AppData\Local\Hook Network\Raccourcis Internet Explorer 9\2.0.0.1\IE9PinnedSitesHelper.exe (Hook Network)
HKLM_ElevationPolicy\c9c43f82-b467-4ce9-b643-e3dd90d106c0 - C:\Program Files (x86)\Vuze_Remote\Vuze_RemoteToolbarHelper.exe (?)
HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x)
HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x)
HKLM_ElevationPolicy\{0ac0aaad-8193-4552-b112-a018bfedf93d} - C:\Windows\Downloaded Program Files\LMIBroker.exe (LogMeIn, Inc.)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{A6E2003F-95C5-4591-BA9A-0093080FDB5C} - C:\Program Files (x86)\Common Files\Oberon Media\OberonBroker\1.0.0.63\OberonBroker.exe (?)
HKLM_ElevationPolicy\{b3f1cac4-7277-4330-966a-6186dc8243f8} - C:\Windows\Downloaded Program Files\LMIProxyHelper.exe (?)
HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x)
HKLM_ElevationPolicy\{C9BDBBC1-2B4F-4669-BB5A-51C8D1770C1A} - C:\Windows\Downloaded Program Files\LMIGuardian.exe (LogMeIn, Inc.)
HKLM_Extensions\{2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - "@C:\Windows\WindowsMobile\INetRepl.dll,-222" (C:\Windows\WindowsMobile\INetRepl.dll,210)
HKLM_Extensions\{2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - "?" (?)
BHO\{4daac69c-cba7-45e2-9bc8-1044483d3352} - "Softonic_France Toolbar" (C:\Program Files (x86)\Softonic_France\tbSoft.dll)
BHO\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - "Search Helper" (C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll)
BHO\{ba14329e-9550-4989-b3f2-9732e92d17cc} - "Vuze Remote Toolbar" (C:\Program Files (x86)\Vuze_Remote\tbVuze.dll)

========================================

C:\Program Files (x86)\Ad-Remover\Quarantine: 71 Fichier(s)
C:\Program Files (x86)\Ad-Remover\Backup: 16 Fichier(s)

C:\Ad-Report-CLEAN[1].txt - 05/05/2011 11:20:34 (54688 Octet(s))
C:\Ad-Report-SCAN[1].txt - 05/05/2011 10:32:03 (56115 Octet(s))

Fin à: 11:21:46, 05/05/2011

============== E.O.F ==============
0
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
5 mai 2011 à 11:41
ok remets un rapport zhpdiag et un rapport avec le logiciel qui trouvait les infections . Et dis nous comment va ton pc .
0
macal83 Messages postés 25 Date d'inscription mercredi 4 mai 2011 Statut Membre Dernière intervention 20 mai 2011
5 mai 2011 à 11:56
Voici le rapport de zhpdiag, je posterai le rapport d'avast desuite après la fin de l'analyse
Rapport de ZHPDiag v1.27.194 par Nicolas Coolman, Update du 02/05/2011
Run by Macal83 at 05/05/2011 11:48:59
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421 (Defaut)
MFIE: Mozilla Firefox v3.6 (fr)
GCIE: Google Chrome v11.0.696.60

---\\ System Information
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4095 MB (57% free)
System Restore: Activé (Enable)
System drive C: has 219 GB (47%) free of 458 GB

---\\ Logged in mode
Computer Name: MACAL83-PC
User Name: Macal83
All Users Names: Macal83, HomeGroupUser$, Administrateur,
Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator

---\\ Environnement Variables
%AppData%=
%LocalAppData%=
%StartMenu%=

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 219 Go of 458 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 201 Go of 458 Go)
E:\ Hard drive, Flash drive, Thumb drive (Free 298 Go of 459 Go)
F:\ CD-ROM drive (Not Inserted)
G:\ CD-ROM drive (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
J:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
K:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
L:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
M:\ CD-ROM drive (Free 0 Go of 1 Go)
N:\ CD-ROM drive (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 02:14:45.) -- C:\Windows\system32\Wininit.exe [96256]
[MD5.A1236375B74EA63C75657D564890C436] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.06/04/2011 17:49:00.) -- C:\Windows\system32\wininet.dll [1126912]



---\\ Processus lancés
[MD5.7DE0794DCFC80FF16B0A68D74515B267] - (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe [353736]
[MD5.F34E7705751BB413283434697BF8E55D] - (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [357696]
[MD5.89F7C30A91E5581BDF14C62AB46A2B2D] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe [255536]
[MD5.A15D8769FED97AC3290C480A3588DA96] - (.3M - Post-it(R) Software Notes: System.) -- C:\Program Files (x86)\3M\PSNotes\psn.exe [675840]
[MD5.9E30189C814095FE0293E39AD08EF943] - (.Syntek Ltd. - Syntek Monitor Application.) -- C:\Windows\STK02N\STK02NM.exe [163840]
[MD5.A16852B04C0A5654B0B8DFD5E1A25718] - (.MagicISO, Inc. - MagicISO Virtual CD/DVD Manager.) -- C:\Program Files (x86)\MagicDisc\MagicDisc.exe [576000]
[MD5.0BE13F154A699E072BBAC50F04ABE773] - (.Zecter Inc. - ZumoCast.) -- C:\Program Files (x86)\Zecter\ZumoCast\ZumoCast.exe [179384]
[MD5.22107F2015729D8A8943BBE13B091BD0] - (.IOI - ButtonMonitor.) -- C:\Program Files (x86)\Packard Bell Photo Frame\ButtonMonitor.exe [124416]
[MD5.0E92A0FB9D0C9C9E60B6CE34B1078337] - (.3M - Post-it(R) Software Notes: GiveNote.) -- C:\PROGRA~2\3M\PSNotes\PSNGive.exe [65536]
[MD5.F018E866BBF4A54DE48E2CFB1411EF27] - (.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe [255432]
[MD5.B20642DEC547A226E6E0C6308483E9CC] - (.IncrediMail, Ltd. - HiYo - IncrediMail Ltd Messenger plugin.) -- C:\Program Files (x86)\HiYo\Bin\HiYo.exe [238960]
[MD5.98D1E0D79612EDB5AE2C3B6F6E6D23AD] - (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10p_ActiveX.exe [235168]
[MD5.C337B8A121F62B330A01D1308AF3394F] - (.Microsoft Corporation - Windows Live Messenger Companion User Eleva.) -- C:\Program Files (x86)\Windows Live\Companion\companionuser.exe [54656]
[MD5.904E13BA41AF2E353A32CF351CA53639] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe [748336]
[MD5.88C44CA9A052AEAEC0C91A57CE5AB41A] - (.Google Inc. - Google Toolbar Broker.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe [304304]
[MD5.1E4F42B32DE1A00D1A8666C658F186E0] - (.IncrediMail, Ltd. - IncrediMail Notifier.) -- C:\Program Files (x86)\IncrediMail\Bin\ImNotfy.exe [259528]
[MD5.5D3EB549B1299390D5399D8A10644826] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [645120]



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M3 - MFPP: Plugins - [Macal83] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Macal83] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Macal83] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Macal83] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\flvtube.xml
M3 - MFPP: Plugins - [Macal83] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Macal83] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Macal83] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.Total Immersion - D'Fusion @Home Web Plug-In (2.20.10609.0).) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\NPDFusionWebFirefox.dll
P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npnul32.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\NPOFF12.DLL
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.0.1.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin7.dll



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
G0 - GCSP: Preference [User Data\Default][HomePage] https://www.google.com/?gws_rd=ssl



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com
R0 - HKUS\S-1-5-21-3975523817-3354520755-2443883617-1001\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Vuze Remote Toolbar [64Bits] - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) (5, 3, 5, 4) -- C:\Program Files (x86)\Vuze_Remote\tbVuze.dll
R3 - URLSearchHook: Softonic_France Toolbar [64Bits] - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Conduit Ltd. - Conduit Toolbar.) (5, 3, 4, 2) -- C:\Program Files (x86)\Softonic_France\tbSoft.dll
R3 - URLSearchHook: (no name) [64Bits] - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} Clé orpheline
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll



---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
O2 - BHO: Google Toolbar Notifier BHO [64Bits] - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.6.6209.1142\swg64.dll



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: DAEMON Tools Toolbar [64Bits] - {32099AAC-C132-4136-9E9A-4E364A424E17} . (.Pas de propriétaire - ToolBand Module.) -- C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll
O3 - Toolbar: Google Toolbar [64Bits] - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll



---\\ ---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [NvCplDaemon] C:\Windows\system32\NvCpl.dll (.not file.)
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKLM\..\Run: [Skytel] . (.Realtek Semiconductor Corp. - Realtek Voice Manager.) -- C:\Program Files\Realtek\Audio\HDA\Skytel.exe
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- C:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKLM\..\Run: [Windows Mobile Device Center] . (.Microsoft Corporation - Gestionnaire pour appareils Windows Mobile.) -- C:\Windows\WindowsMobile\wmdc.exe
O4 - HKCU\..\Run: [IncrediMail] . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\bin\IncMail.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O4 - HKCU\..\Run: [AdobeBridge] . (.Adobe Systems, Inc. - Adobe Bridge.) -- C:\Program Files (x86)\Adobe\Adobe Bridge CS4\Bridge.exe
O4 - HKCU\..\Run: [ZumoCast] . (...) -- C:\Program Files (x86)\Zecter\ZumoCast\ZumoLauncher.lnk
O4 - HKCU\..\Run: [EADM] . (.Electronic Arts - EADMUI.) -- C:\Program Files (x86)\Electronic Arts\EADM\EADMUI\EADMUI.exe
O4 - HKLM\..\Wow6432Node\Run: [Packard Bell Photo Frame] . (.IOI - ButtonMonitor.) -- C:\Program Files (x86)\Packard Bell Photo Frame\ButtonMonitor.exe
O4 - HKLM\..\Wow6432Node\Run: [NortonOnlineBackupReminder] . (.Symantec Corporation - Norton Online Backup Service.) -- C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS4ServiceManager] . (.Adobe Systems Incorporated - Adobe CS4 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe
O4 - HKLM\..\Wow6432Node\Run: [WinampAgent] . (.Nullsoft - Winamp Agent.) -- C:\Program Files (x86)\Winamp\winampa.exe
O4 - HKLM\..\Wow6432Node\Run: [B2C_AGENT] . (.LG Electronics - B2C NotiAgent MFC ?? ????.) -- C:\ProgramData\LGMOBILEAX\B2C_Client\B2CNotiAgent.exe
O4 - HKLM\..\Wow6432Node\Run: [Hiyo] . (.IncrediMail, Ltd. - HiYo - IncrediMail Ltd Messenger plugin.) -- C:\Program Files (x86)\HiYo\bin\HiYo.exe
O4 - HKLM\..\Wow6432Node\Run: [AppleSyncNotifier] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-3975523817-3354520755-2443883617-1001\..\Run: [IncrediMail] . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\bin\IncMail.exe
O4 - HKUS\S-1-5-21-3975523817-3354520755-2443883617-1001\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-3975523817-3354520755-2443883617-1001\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O4 - HKUS\S-1-5-21-3975523817-3354520755-2443883617-1001\..\Run: [AdobeBridge] . (.Adobe Systems, Inc. - Adobe Bridge.) -- C:\Program Files (x86)\Adobe\Adobe Bridge CS4\Bridge.exe
O4 - HKUS\S-1-5-21-3975523817-3354520755-2443883617-1001\..\Run: [ZumoCast] . (...) -- C:\Program Files (x86)\Zecter\ZumoCast\ZumoLauncher.lnk
O4 - HKUS\S-1-5-21-3975523817-3354520755-2443883617-1001\..\Run: [EADM] . (.Electronic Arts - EADMUI.) -- C:\Program Files (x86)\Electronic Arts\EADM\EADMUI\EADMUI.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)
O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk . (.McAfee, Inc..) -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe
O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Post-it® Software Notes.lnk . (.3M.) -- C:\Program Files (x86)\3M\PSNotes\psn.exe
O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\STK02N 2.4 PNP Monitor.lnk . (.Syntek Ltd..) -- C:\Windows\STK02N\STK02NM.exe
O4 - Global Startup: C:\Users\Macal83\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk . (.MagicISO, Inc..) -- C:\Program Files (x86)\MagicDisc\MagicDisc.exe
O4 - Global Startup: C:\Users\Macal83\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Notification de cadeaux MSN.lnk . (...) -- C:\Users\Macal83\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe (.not file.)



---\\ ---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Macal83\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Macal83\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Macal83\Desktop\AD-R.lnk . (...) -- C:\Program Files (x86)\Ad-Remover\main.exe
O4 - Global Startup: C:\Users\Macal83\Desktop\Art of Murder - Les cartes de la destinée.lnk . (...) -- C:\Program Files (x86)\City Interactive\Art of Murder - Les cartes de la destinée\game.exe
O4 - Global Startup: C:\Users\Macal83\Desktop\CNSXtra.exe - Raccourci.lnk . (.Great Notions.) -- C:\GN\CNSXtra\CNSXtra.exe
O4 - Global Startup: C:\Users\Macal83\Desktop\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Macal83\Desktop\Mes images - Raccourci.lnk . (...) -- E:\Pictures\Pictures
O4 - Global Startup: C:\Users\Macal83\Desktop\storex.lnk . (...) -- D:\Users\Macal83\Desktop\STOREX\Mes images
O4 - Global Startup: C:\Users\Macal83\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Ad-Aware.lnk . (.Lavasoft Limited.) -- C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-Aware.exe
O4 - Global Startup: C:\Users\Macal83\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk . (...) -- C:\Windows\Installer\{6C1E7AA1-44E9-446D-AAB2-0DE6D9EFEAB1}\SafariIco.exe
O4 - Global Startup: C:\Users\Macal83\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\Macal83\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ImgBurn.lnk . (.LIGHTNING UK!.) -- C:\Program Files (x86)\ImgBurn\ImgBurn.exe
O4 - Global Startup: C:\Users\Macal83\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\IncrediMail 2.0.lnk . (.IncrediMail, Ltd..) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
O4 - Global Startup: C:\Users\Macal83\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Macal83\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Pinnacle Studio 12.lnk . (.Pinnacle Systems.) -- C:\Program Files (x86)\Pinnacle\Studio 12\Programs\Studio.exe
O4 - Global Startup: C:\Users\Macal83\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk . (.Vuze Inc..) -- C:\Program Files (x86)\Vuze\Azureus.exe
O4 - Global Startup: C:\Users\Macal83\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Winamp.lnk . (.Nullsoft.) -- C:\Program Files (x86)\Winamp\winamp.exe
O4 - Global Startup: C:\Users\Macal83\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Xilisoft Créateur Sonnerie iPhone.lnk . (...) -- C:\Program Files (x86)\Xilisoft\iPhone Ringtone Maker\iphoneringtone.exe



---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: E&xport to Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~2\MICROS~1\Office12\EXCEL.exe
O8 - Extra context menu item: Google Sidewiki... . (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{265C8E6E-DBE0-485B-9D81-FBD4A62D2644}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CCS\Services\Tcpip\..\{9D0728EE-B01C-4F34-94FA-E6049787F10D}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{265C8E6E-DBE0-485B-9D81-FBD4A62D2644}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{9D0728EE-B01C-4F34-94FA-E6049787F10D}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS2\Services\Tcpip\..\{265C8E6E-DBE0-485B-9D81-FBD4A62D2644}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS2\Services\Tcpip\..\{9D0728EE-B01C-4F34-94FA-E6049787F10D}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (ACDaemon) . (.ArcSoft Inc. - ArcSoft Connect Service.) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: (AdobeActiveFileMonitor7.0) . (.Adobe Systems Incorporated - Adobe Photoshop Elements 7.0 (component).) - c:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
O23 - Service: C:\Windows\system32\Alg.exe (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe
O23 - Service: (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: (Crypkey License) . (...) - crypserv.exe
O23 - Service: (FirebirdServerMAGIXInstance) . (.MAGIX® - Firebird SQL Server - MAGIX Edition.) - C:\MAGIX\Common\Database\bin\fbserver.exe
O23 - Service: (FLEXnet Licensing Service) . (.Acresso Software Inc. - Activation Licensing Service.) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: (FLEXnet Licensing Service 64) . (.Acresso Software Inc. - Activation Licensing Service.) - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: (Greg_Service) . (.Acer Incorporated - Global Registration Service.) - C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: (gupdatem) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: (gusvc) . (.Google - gusvc.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: (iPod Service) . (.Apple Inc. - iPodService Module (64-bit).) - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: (jswpsapi) . (...) - C:\Program Files (x86)\NETGEAR\WN111v2\jswpsapi.exe
O23 - Service: (Lavasoft Ad-Aware Service) . (.Lavasoft Limited - Ad-Aware Service Application.) - C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: (McComponentHostService) . (.McAfee, Inc. - Component Host Service.) - C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
O23 - Service: Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) . (.Nero AG - Nero BackItUp.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 186.1.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Windows\SysWOW64\nvSCPAPISvr.exe
O23 - Service: (Updater Service) . (.Acer - Acer Update Service.) - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
O23 - Service: (wlidsvc) . (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.exe



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Norton Security Scan for Macal83.job
[MD5.FCA0C503A48643730086FD8ACCA8A527] [APT] [Ad-Aware Update (Weekly)] (.Lavasoft Limited.) -- C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
[MD5.A7810B302294793DE88542AAE177D1B1] [APT] [ArcSoft Connect Daemon] (.ArcSoft Inc..) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.B4725170B546863C09583E40E6E7BCED] [APT] [HPCustParticipation HP Photosmart Plus B210 series] (.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\HPCustPartic.exe
[MD5.2E5212A0BFB98FE0167C92C76C87AFE3] [APT] [Java Update Scheduler] (.Sun Microsystems, Inc..) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
[MD5.EF6C857E9758308C577FB5CB208B7922] [APT] [Norton Security Scan for Macal83] (.Symantec Corporation.) -- C:\Program Files (x86)\Norton Security Scan\Norton Security Scan\Engine\2.7.3.34\Nss.exe
[MD5.BAD6BEA0DE1F69C82BDB74378CE0C20A] [APT] [Programme de mise ... jour en ligne de Adobe] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[MD5.4D83DC461F8F4370274CF6E9AC9A34F4] [APT] [Programme de mise ... jour en ligne de HP.] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
[MD5.2BCB5C0FF8B651A35D69FA8EE6A1502D] [APT] [{024B03C5-8034-4677-AC4F-A29E304EE3E8}] (.Marcelo Bona Boff.) -- C:\Windows\suinsta4001.exe
[MD5.00000000000000000000000000000000] [APT] [{136F5184-68A1-4E9A-8748-8BDDF1B537D2}] (.Pas de propriétaire.) -- C:\Users\Macal83\Documents\Vuze Downloads\kapersky pure+resetter\Resetter 2.3.exe (.not file.)
[MD5.92B476DD52794881A4B91A5529C2706B] [APT] [{33EBAF48-899D-46A2-A641-0ED7710EE5F4}] (.Pas de propriétaire.) -- C:\Program Files\AVAST Software\Avast\aswRundll.exe
[MD5.00000000000000000000000000000000] [APT] [{4DE7B7FC-6192-4CC8-BD8D-4BF4AB6134B7}] (.Pas de propriétaire.) -- C:\Users\Macal83\Documents\Vuze Downloads\kapersky pure+resetter\Resetter 2.3.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{5F85C5F3-0A5F-4339-8B23-693E99051EA2}] (.Pas de propriétaire.) -- C:\Program FilesDisney Interactive\Disney Peter Pan Aventures au Pays Imaginaire\PPA.exe (.not file.)
[MD5.32557F5071B6A2AA882C422C2825EA88] [APT] [{6704D668-DDC4-4F82-B6F5-4FA35B87FD43}] (.Macrovision Corporation.) -- C:\Program Files (x86)\InstallShield Installation Information\{1C0E9C6B-D4D5-4D3C-8A10-F10A3E7BEEA5}\setupmk.exe
[MD5.00000000000000000000000000000000] [APT] [{68B05505-560A-4F83-9A88-6DAE2E909840}] (.Pas de propriétaire.) -- C:\Users\Macal83\Documents\Vuze Downloads\kapersky pure+resetter\Resetter 2.3.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{6FFF48CA-A0EB-4222-A1BD-F36FCDE879C4}] (.Pas de propriétaire.) -- F:\setup.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{B7F7B49F-BFDC-4819-952E-04976DA5D12A}] (.Pas de propriétaire.) -- C:\Users\Macal83\Documents\Vuze Downloads\kapersky pure+resetter\Resetter 2.3.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{D3F622EA-5ACB-46F4-B389-58810F476E7A}] (.Pas de propriétaire.) -- C:\Users\Macal83\Documents\winamp5572_full_emusic-7plus_fr-fr.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{DA5ECE0D-3026-42FF-B512-76A1DD3B2FFC}] (.Pas de propriétaire.) -- M:\Utilitaires\COUTURE\Embroidery Husqvarna 3D Vip Digitizing Plus Vs7.1\Vip Digitizing Plus vs6.1\setup.exes6.1 (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{DA8899BE-40B5-4041-B188-7DB65AE6DA64}] (.Pas de propriétaire.) -- C:\Users\Macal83\Documents\Vuze Downloads\kapersky pure+resetter\Resetter 2.3.exe (.not file.)
[MD5.7B43567B4C32AD7ADED537CD3B1342B9] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
[MD5.7F59E4F51DA9C9C6B29B881D8DD92400] [APT] [Burn Notification] (.Acer.) -- C:\Program Files\Packard Bell\Packard Bell Recovery Management\NotificationCenter\Notification.exe



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (acedrv07) . (...) - C:\Windows\system32\drivers\acedrv07.sys
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (JSWPSLWF) . (.Atheros Communications, Inc. - Atheros Security NDIS 6.0 Filter Driver.) - C:\Windows\System32\DRIVERS\jswpslwfx.sys
O41 - Driver: (MpFilter) . (.Microsoft Corporation - Microsoft antimalware file system filter dr.) - C:\Windows\System32\DRIVERS\MpFilter.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: (NetworkX) . (...) - C:\Windows\system32\ckldrv.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (VWiFiFlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys



---\\ Logiciels installés (O42)
O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}
O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}
O42 - Logiciel: 7-Zip 9.20 - (.Pas de propriétaire.) [HKLM][64Bits] -- 7-Zip
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: Ad-Aware - (.Lavasoft.) [HKLM][64Bits] -- {DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Adobe Anchor Service CS4 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {1618734A-3957-4ADD-8199-F973763109A8}
O42 - Logiciel: Adobe Anchor Service x64 CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {887797BF-37A5-4199-B0C9-0D38D6196E9A}
O42 - Logiciel: Adobe Bridge CS4 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {83877DB1-8B77-45BC-AB43-2BAC22E093E0}
O42 - Logiciel: Adobe CMaps CS4 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {94D398EB-D2FD-4FD1-B8C4-592635E8A191}
O42 - Logiciel: Adobe CMaps x64 CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {90BA8112-80B3-4617-A3C1-BD2771B60F74}
O42 - Logiciel: Adobe CSI CS4 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0F723FC1-7606-4867-866C-CE80AD292DAF}
O42 - Logiciel: Adobe CSI CS4 x64 - (.Adobe Systems Incorporated.) [HKLM] -- {8DAA31EB-6830-4006-A99F-4DF8AB24714F}
O42 - Logiciel: Adobe Color - Photoshop Specific CS4 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {3D2C9DE6-9ADE-4252-A241-E43723B0CE02}
O42 - Logiciel: Adobe Color EU Recommended Settings CS4 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0DC0E85F-36E4-463B-B3EA-4CD8ED2222A1}
O42 - Logiciel: Adobe Color JA Extra Settings CS4 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0D6013AB-A0C7-41DC-973C-E93129C9A29F}
O42 - Logiciel: Adobe Color NA Extra Settings CS4 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {098A2A49-7CF3-4F08-A38D-FB879117152A}
O42 - Logiciel: Adobe Color Video Profiles CS CS4 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {63C24A08-70F3-4C8E-B9FB-9F21A903801D}
O42 - Logiciel: Adobe Default Language CS4 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {C52E3EC1-048C-45E1-8D53-10B0C6509683}
O42 - Logiciel: Adobe Device Central CS4 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {67F0E67A-8E93-4C2C-B29D-47C48262738A}
O42 - Logiciel: Adobe Drive CS4 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {16E16F01-2E2D-4248-A42F-76261C147B6C}
O42 - Logiciel: Adobe Drive CS4 x64 - (.Adobe Systems Incorporated.) [HKLM] -- {A3454894-144A-4D80-B605-C128FE0D7329}
O42 - Logiciel: Adobe ExtendScript Toolkit CS4 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {F8EF2B3F-C345-4F20-8FE4-791A20333CD5}
O42 - Logiciel: Adobe Extension Manager CS4 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {054EFA56-2AC1-48F4-A883-0AB89874B972}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Fonts All - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}
O42 - Logiciel: Adobe Fonts All x64 - (.Adobe Systems Incorporated.) [HKLM] -- {6631325A-9B1B-4EE7-8E64-8CC4A6F10643}
O42 - Logiciel: Adobe Linguistics CS4 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {931AB7EA-3656-4BB7-864D-022B09E3DD67}
O42 - Logiciel: Adobe Linguistics CS4 x64 - (.Adobe Systems Incorporated.) [HKLM] -- {8875A1C0-6308-4790-8CF6-D34E89880052}
O42 - Logiciel: Adobe Media Player - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Adobe Media Player - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {39F6E2B4-CFE8-C30A-66E8-489651F0F34C}
O42 - Logiciel: Adobe Output Module - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {BB4E33EC-8181-4685-96F7-8554293DEC6A}
O42 - Logiciel: Adobe PDF Library Files CS4 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {F93C84A6-0DC6-42AF-89FA-776F7C377353}
O42 - Logiciel: Adobe PDF Library Files x64 CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {DFFABE78-8173-4E97-9C5C-22FB26192FC5}
O42 - Logiciel: Adobe Photoshop CS4 (64 Bit) - (.Adobe Systems Incorporated.) [HKLM] -- {D40172D6-CE2D-4B72-BF5F-26A04A900B7B}
O42 - Logiciel: Adobe Photoshop CS4 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe_faf656ef605427ee2f42989c3ad31b8
O42 - Logiciel: Adobe Photoshop CS4 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}
O42 - Logiciel: Adobe Photoshop CS4 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {E4848436-0345-47E2-B648-8B522FCDA623}
O42 - Logiciel: Adobe Photoshop CS4 Support - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {63E5CDBF-8214-4F03-84F8-CD3CE48639AD}
O42 - Logiciel: Adobe Photoshop Elements 7.0 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Photoshop Elements 7
O42 - Logiciel: Adobe Photoshop Elements 7.0 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {5511C07D-A83C-45AD-92B6-42DF99729A3C}
O42 - Logiciel: Adobe Photoshop Elements 7.0 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {CB6075D9-F912-40AE-BEA6-E590DA24F16B}
O42 - Logiciel: Adobe Reader X (10.0.1) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AA0000000001}
O42 - Logiciel: Adobe Search for Help - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {F0E64E2E-3A60-40D8-A55D-92F6831875DA}
O42 - Logiciel: Adobe Service Manager Extension - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {4943EFF5-229F-435D-BEA9-BE3CAEA783A7}
O42 - Logiciel: Adobe Setup - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}
O42 - Logiciel: Adobe Shockwave Player 11.5 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player
O42 - Logiciel: Adobe Type Support CS4 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {820D3F45-F6EE-4AAF-81EF-CE21FF21D230}
O42 - Logiciel: Adobe Type Support x64 CS4 - (.Adobe Systems Incorporated.) [HKLM] -- {8C8D673B-20FB-43E6-BCB7-9B3F78F2E762}
O42 - Logiciel: Adobe Update Manager CS4 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {05308C4E-7285-4066-BAE3-6B50DA6ED755}
O42 - Logiciel: Adobe WinSoft Linguistics Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}
O42 - Logiciel: Adobe WinSoft Linguistics Plugin x64 - (.Adobe Systems Incorporated.) [HKLM] -- {295CFB7C-A57E-4313-93E7-68E7CE1D0332}
O42 - Logiciel: Adobe XMP Panels CS4 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {3A4E8896-C2E7-4084-A4A4-B8FD1894E739}
O42 - Logiciel: AdobeColorCommonSetCMYK - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {68243FF8-83CA-466B-B2B8-9F99DA5479C4}
O42 - Logiciel: AdobeColorCommonSetRGB - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {16E6D2C1-7C90-4309-8EC4-D2212690AAA4}
O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM][64Bits] -- {b2ec4a38-b545-4a00-8214-13fe0e915e6d}
O42 - Logiciel: Alice Greenfingers - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112920767}
O42 - Logiciel: Amazonia - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11273477}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {2DC94AFD-A6E2-4AB4-9132-4A3F8E07B386}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {853A4763-6643-4604-8D64-28BDD8925F4C}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {E5C95CA5-4565-4B9D-97ED-05088D775614}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033}
O42 - Logiciel: ArcSoft PhotoImpression 6 - (.ArcSoft.) [HKLM][64Bits] -- {063E409E-3D7C-4A4A-95AB-2F124B9224B3}
O42 - Logiciel: Art of Murder: Les cartes de la destinée - (.City Interactive.) [HKLM][64Bits] -- Art of Murder 3/FR-French_is1
O42 - Logiciel: Belkin N Wireless USB Adapter Setup - (.Belkin.) [HKLM][64Bits] -- {4EE9A620-46A0-4BCF-82AC-950D2BBED982}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {E4F5E48E-7155-4CF9-88CD-7F377EC9AC54}
O42 - Logiciel: Boris Graffiti - (.Boris FX, Inc..) [HKLM][64Bits] -- {262BF2CD-601D-4F43-919C-4B00B1D1F338}
O42 - Logiciel: BuzzXplore v2 - (.Buzz Tools, Inc..) [HKLM][64Bits] -- BuzzXplore v2
O42 - Logiciel: CANAL+ pour Windows Media Center - (.Microsoft Corporation.) [HKLM][64Bits] -- {E2A6B1A0-C1E3-4311-BF86-EAF18841FD67}
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {4D6873BC-73C0-487D-A4B4-BA78D9EF465C}
O42 - Logiciel: Chicken Invaders 2 - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110209593}
O42 - Logiciel: Click 'N Stitch Xtra - (.Great Notions.) [HKCU] -- InstallShield_{1A6A40A5-9B3C-4F32-9C0D-9FC0CB54D94A}
O42 - Logiciel: Complément Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}
O42 - Logiciel: Connect - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {B29AD377-CC12-490A-A480-1452337C618D}
O42 - Logiciel: Contrôle ActiveX Windows Live Mesh pour connexions à distance - (.Microsoft Corporation.) [HKLM][64Bits] -- {55D003F4-9599-44BF-BA9E-95D060730DD3}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DAEMON Tools Toolbar - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Toolbar
O42 - Logiciel: Dairy Dash - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115053100}
O42 - Logiciel: DesktopEarth - (.CodeFromThe70s.org.) [HKLM][64Bits] -- {DBA5E973-660D-4CBE-A469-F5C37FBF0CE4}
O42 - Logiciel: Disney Dessinez, c'est Disney 2 - (.Pas de propriétaire.) [HKLM][64Bits] -- DMA2
O42 - Logiciel: Disney Magic Artist featuring Ulead DVD PictureShow - (.Ulead Systems, Inc..) [HKLM][64Bits] -- {A9212616-FCA2-4173-BD99-5C741EB3A068}
O42 - Logiciel: Disney Print Creations: Movie Collection software - (.Pas de propriétaire.) [HKLM][64Bits] -- Disney Print Creations Movie Collection
O42 - Logiciel: Dream Day First Home - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}
O42 - Logiciel: EA Download Manager - (.Electronic Arts, Inc..) [HKLM][64Bits] -- EADM
O42 - Logiciel: Emergency 2012 - (.Quadriga Games GmbH.) [HKLM][64Bits] -- Emergency 2012
O42 - Logiciel: Emergency 4 - (.Pas de propriétaire.) [HKLM][64Bits] -- {80AE0E0A-5579-4015-9C1A-35F2F2CE5673}
O42 - Logiciel: Farm Frenzy 2 - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11531173}
O42 - Logiciel: Firebird SQL Server - MAGIX Edition (F) - (.MAGIX AG.) [HKLM][64Bits] -- Firebird SQL Server F
O42 - Logiciel: FlvTube Toolbar - (.Pas de propriétaire.) [HKLM][64Bits] -- FlvTube Toolbar
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {488F0347-C4A7-4374-91A7-30818BEDA710}
O42 - Logiciel: Garmin City Navigator Europe NT 2011.30 Update - (.Garmin Ltd or its subsidiaries.) [HKLM][64Bits] -- {CA70204D-9437-4646-942E-8172F62F96AD}
O42 - Logiciel: Garmin USB Drivers - (.Garmin Ltd or its subsidiaries.) [HKLM][64Bits] -- {510D2239-6C2E-457B-9590-485EC552D94D}
O42 - Logiciel: Garmin WebUpdater - (.Garmin Ltd or its subsidiaries.) [HKLM][64Bits] -- {D17111CB-C992-42A9-9D56-C19395102AAA}
O42 - Logiciel: Generations - (.Pas de propriétaire.) [HKLM][64Bits] -- {5BFBB150-3552-4910-96B7-FC282CA78D82}
O42 - Logiciel: Gestionnaire pour appareils Windows Mobile - (.Microsoft Corporation.) [HKLM] -- {626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Granny In Paradise - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110551697}
O42 - Logiciel: HP Photo Creations - (.HP Photo Creations Powered by RocketLife.) [HKLM][64Bits] -- HP Photo Creations
O42 - Logiciel: HP Photosmart Plus B210 series - Enquête sur l'amélioration du produit - (.Hewlett-Packard Co..) [HKLM] -- {61D48648-AC4B-43B5-B544-5217391C8652}
O42 - Logiciel: HP Photosmart Plus B210 series Aide - (.Hewlett Packard.) [HKLM][64Bits] -- {7F5FDEA1-D0AC-4D80-9D95-59775FCCFA40}
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {787D1A33-A97B-4245-87C0-7174609A540C}
O42 - Logiciel: Heroes of Hellas - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113786380}
O42 - Logiciel: HiYo - (.IncrediMail.) [HKLM][64Bits] -- HiYo
O42 - Logiciel: HiYo - (.IncrediMail - Certified Microsoft Partner.) [HKLM][64Bits] -- {00E1E235-AB45-4695-A156-073118949ED4}
O42 - Logiciel: Hitman Pro 3.5 - (.SurfRight B.V..) [HKLM] -- HitmanPro35
O42 - Logiciel: IMAJin version 1.2.2 - (.simple coder, Inc..) [HKLM][64Bits] -- {35206840-B35E-495D-9A7A-79D4F125B8D2}_is1
O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM][64Bits] -- Identity Card
O42 - Logiciel: ImgBurn - (.LIGHTNING UK!.) [HKLM][64Bits] -- ImgBurn
O42 - Logiciel: IncrediMail - (.IncrediMail.) [HKLM][64Bits] -- {5E97F3BD-CDDC-4188-9D98-532E14FABB5D}
O42 - Logiciel: IncrediMail 2.0 - (.IncrediMail Ltd..) [HKLM][64Bits] -- IncrediMail
O42 - Logiciel: IncrediMail JunkFilter Plus - (.IncrediMail Ltd..) [HKLM][64Bits] -- JunkFilterPlus
O42 - Logiciel: IncrediMail MediaBar 2 Toolbar - (.IncrediMail MediaBar 2.) [HKLM][64Bits] -- IncrediMail_MediaBar_2 Toolbar
O42 - Logiciel: Java(TM) 6 Update 24 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216017FF}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: JunkFilterPlus - (.IncrediMail.) [HKLM][64Bits] -- {DC754D8F-1D06-4016-BF57-8D21F97E1F0A}
O42 - Logiciel: K-Lite Codec Pack 5.8.0 (Full) - (.Pas de propriétaire.) [HKLM][64Bits] -- KLiteCodecPack_is1
O42 - Logiciel: LG USB Modem driver - (.Pas de propriétaire.) [HKLM][64Bits] -- {C3ABE126-2BB2-4246-BFE1-6797679B3579}
O42 - Logiciel: Les Sims(TM) 3 - (.Electronic Arts.) [HKLM][64Bits] -- {C05D8CDB-417D-4335-A38C-A0659EDFD6B8}
O42 - Logiciel: Les Sims(TM) 3 Ambitions - (.Electronic Arts.) [HKLM][64Bits] -- {910F4A29-1134-49E0-AD8B-56E4A3152BD1}
O42 - Logiciel: Logiciel d'archivage WinRAR - (.Pas de propriétaire.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Logiciel de base du périphérique HP Photosmart Plus B210 series - (.Hewlett-Packard Co..) [HKLM] -- {33691844-0DF2-49A6-856E-685968E9BB9C}
O42 - Logiciel: MAGIX Music Manager 2006 (F) - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX Music Manager 2006 F
O42 - Logiciel: MAGIX Photo Clinic 5.0 (F) - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX Photo Clinic 5.0 F
O42 - Logiciel: MAGIX Photo Manager 2006 (F) - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX Photo Manager 2006 F
O42 - Logiciel: MAGIX Video deluxe 2007 PLUS (F) - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX Video deluxe 2007 PLUS F
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Magic Bullet Looks Studio - (.Pas de propriétaire.) [HKLM][64Bits] -- Magic Bullet Looks Studio
O42 - Logiciel: MagicDisc 2.7.106 - (.Pas de propriétaire.) [HKLM][64Bits] -- MagicDisc 2.7.106
O42 - Logiciel: McAfee Security Scan Plus - (.McAfee, Inc..) [HKLM][64Bits] -- McAfee Security Scan
O42 - Logiciel: Merriam Websters Spell Jam - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112662477}
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: Messenger Plus! 5 - (.Yuna Software.) [HKLM][64Bits] -- Messenger Plus!
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}
O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Extended
O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- {8E34682C-8118-31F1-BC4C-98CD9675E1C2}
O42 - Logiciel: Microsoft Antimalware - (.Microsoft Corporation.) [HKLM] -- {774088D4-0777-4D78-904D-E435B318F5D2}
O42 - Logiciel: Microsoft Antimalware Service FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {0450B7B0-AC71-44A4-AB40-4DD678DF3A8C}
O42 - Logiciel: Microsoft Antimalware Service FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {A4526B5A-89C0-4F4B-9E6E-4F883374D5F9}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0015-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0016-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0018-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0019-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001A-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001B-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-0000-1000-0000000FF1CE}_PROPLUS_{E64BA721-2310-4B55-BE5A-2925F9706192}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-002A-040C-1000-0000000FF1CE}_OMUI.fr-fr_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0044-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-006E-040C-0000-0000000FF1CE}_OMUI.fr-fr_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-00A1-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-00BA-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0100-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0101-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0015-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0016-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Groove MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-00BA-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0044-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Language Pack 2007 - French/Français - (.Microsoft Corporation.) [HKLM][64Bits] -- OMUI.fr-fr
O42 - Logiciel: Microsoft Office Live Add-in 1.5 - (.Microsoft Corporation.) [HKLM][64Bits] -- {F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}
O42 - Logiciel: Microsoft Office O MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0100-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Office 64-bit Components 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-0000-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-00A1-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Outlook Connector - (.Microsoft Corporation.) [HKLM][64Bits] -- {95140000-007A-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001A-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0018-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French) - (.Microsoft Corporation.) [HKLM][64Bits] -- {95120000-00AF-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- PROPLUS
O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0011-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0401-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0413-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0407-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-001F-0C0A-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-002C-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0401-0000-0000000FF1CE}_OMUI.fr-fr_{14809F99-C601-4D4A-9391-F1E8FAA964C5}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0407-0000-0000000FF1CE}_OMUI.fr-fr_{A0516415-ED61-419A-981D-93596DA74165}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-001F-0413-0000-0000000FF1CE}_OMUI.fr-fr_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}
O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0019-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM][64Bits] -- {90120000-0017-040C-0000-0000000FF1CE}_OMUI.fr-fr_{CCDA3DD6-E33D-4D75-B7C9-FF585580CE83}
O42 - Logiciel: Microsoft Office SharePoint Designer MUI (French) 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0017-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Shared 64-bit MUI (French) 2007 - (.Microsoft C
0
maxou45 Messages postés 252 Date d'inscription mercredi 15 décembre 2010 Statut Membre Dernière intervention 22 août 2013 29
5 mai 2011 à 19:38
il en manque un gros bout de ce rapport

Ce rapport étant trop long pour le forum, héberge le :
Sur http://www.cijoint.fr/
et copie-colle le lien fourni dans ta réponse
0
macal83 Messages postés 25 Date d'inscription mercredi 4 mai 2011 Statut Membre Dernière intervention 20 mai 2011
5 mai 2011 à 20:20
bonsoir,
ok le voici
http://www.cijoint.fr/cjlink.php?file=cj201105/cijcvsUJXb.txt
Par contre après une analyse avec avast il n'apparaitrien mais lorsque je fais un scan de window avant démarge ,il apparait toujours ceci:
5/05/2011 19:04
Analyse de C:\Windows

Fichier C:\Windows\Installer\738de.msi|>Binary.rkverify.exe est infecté par Win32:Relevant-P [PUP], Réparer: Erreur 42060 {Le fichier n'a pas été réparé.}
Fichier C:\Windows\Installer\738de.msi|>Binary.ResutlUrlWD1.exe est infecté par Win32:PUP-gen [PUP]
Nombre de dossiers parcourus : 20421
Nombre de fichiers analysés : 297890
Nombre de fichiers infectés : 2
l apparait toujours ceci:
0
maxou45 Messages postés 252 Date d'inscription mercredi 15 décembre 2010 Statut Membre Dernière intervention 22 août 2013 29
5 mai 2011 à 20:48
Nous allons utiliser un outil plus generaliste pour supprimer le trojan (MBAM)

* Télécharge et installe https://www.commentcamarche.net/telecharger/securite/14361-malwarebytes-anti-malware/
* A la fin de l'installation, veille à ce que l'option « mettre a jour Malwarebyte's Anti-Malware » soit cochée
* Lance MBAM et laisse les Mises à jour se télécharger (sinon fais les manuellement au lancement du programme)
* Puis va dans l'onglet "Recherche", coche "Exécuter un examen complet" puis "Rechercher"
* A la fin de l'analyse, clique sur "Afficher les résultats"
* Coche tous les éléments détectés puis clique sur "Supprimer la sélection"
* Enregistre le rapport
* S'il t'est demandé de redémarrer l'ordinateur, clique sur Yes
* Un rapport apparait après la suppression : poste le dans ta prochaine réponse.

https://www.androidworld.fr/ (Tutoriel pour t'aider).

Fais redémarrer ton ordinateur normalement et poste le rapport dans ta prochaine réponse.

REMARQUE : Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok.
0
macal83 Messages postés 25 Date d'inscription mercredi 4 mai 2011 Statut Membre Dernière intervention 20 mai 2011
6 mai 2011 à 08:59
Bonjour,
Voici le résultat:
http://www.cijoint.fr/cjlink.php?file=cj201105/cijBiyFL1w.txt
Bonne journée
0
maxou45 Messages postés 252 Date d'inscription mercredi 15 décembre 2010 Statut Membre Dernière intervention 22 août 2013 29
6 mai 2011 à 15:43
MBAM a bien fonctionné, ton PC doit se porter bien mieux, mais ce n'est pas fini
Refait un rapport ZHPDIAG STP
0
macal83 Messages postés 25 Date d'inscription mercredi 4 mai 2011 Statut Membre Dernière intervention 20 mai 2011
6 mai 2011 à 16:20
Voici le rapport:
http://www.cijoint.fr/cjlink.php?file=cj201105/cij87VXpMR.txt
0
macal83 Messages postés 25 Date d'inscription mercredi 4 mai 2011 Statut Membre Dernière intervention 20 mai 2011
6 mai 2011 à 16:22
A noter que je n'arrive pas à installer certaines mise a jour window et itunes .Je ne sais pas si ça a son importance
0
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
6 mai 2011 à 20:57
Lance ZHPFix (soit via le raccourci sur ton Bureau, soit via ZHPDiag en cliquant sur l'écusson vert)
Copie/colle les lignes en gras suivantes :

----------------------------------------------------------


[MD5.2BCB5C0FF8B651A35D69FA8EE6A1502D] [APT] [{024B03C5-8034-4677-AC4F-A29E304EE3E8}] (.Marcelo Bona Boff.) -- C:\Windows\suinsta4001.exe
[MD5.00000000000000000000000000000000] [APT] [{136F5184-68A1-4E9A-8748-8BDDF1B537D2}] (.Pas de propriétaire.) -- C:\Users\Macal83\Documents\Vuze Downloads\kapersky pure+resetter\Resetter 2.3.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{4DE7B7FC-6192-4CC8-BD8D-4BF4AB6134B7}] (.Pas de propriétaire.) -- C:\Users\Macal83\Documents\Vuze Downloads\kapersky pure+resetter\Resetter 2.3.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{5F85C5F3-0A5F-4339-8B23-693E99051EA2}] (.Pas de propriétaire.) -- C:\Program FilesDisney Interactive\Disney Peter Pan Aventures au Pays Imaginaire\PPA.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{68B05505-560A-4F83-9A88-6DAE2E909840}] (.Pas de propriétaire.) -- C:\Users\Macal83\Documents\Vuze Downloads\kapersky pure+resetter\Resetter 2.3.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{6FFF48CA-A0EB-4222-A1BD-F36FCDE879C4}] (.Pas de propriétaire.) -- F:\setup.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{B7F7B49F-BFDC-4819-952E-04976DA5D12A}] (.Pas de propriétaire.) -- C:\Users\Macal83\Documents\Vuze Downloads\kapersky pure+resetter\Resetter 2.3.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{D3F622EA-5ACB-46F4-B389-58810F476E7A}] (.Pas de propriétaire.) -- C:\Users\Macal83\Documents\winamp5572_full_emusic-7plus_fr-fr.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{DA5ECE0D-3026-42FF-B512-76A1DD3B2FFC}] (.Pas de propriétaire.) -- M:\Utilitaires\COUTURE\Embroidery Husqvarna 3D Vip Digitizing Plus Vs7.1\Vip Digitizing Plus vs6.1\setup.exes6.1 (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{DA8899BE-40B5-4041-B188-7DB65AE6DA64}] (.Pas de propriétaire.) -- C:\Users\Macal83\Documents\Vuze Downloads\kapersky pure+resetter\Resetter 2.3.exe (.not file.)
[HKCR\Interface\{21447c90-6ec1-4fc1-9379-bd515008aedb}]
[HKLM\Software\Classes\Interface\{21447c90-6ec1-4fc1-9379-bd515008aedb}]
[HKCR\CLSID\{286e500c-ef0a-4aa3-a94d-e495f653ef4b}]
[HKLM\Software\Classes\CLSID\{286e500c-ef0a-4aa3-a94d-e495f653ef4b}]
[HKCR\CLSID\{319260ab-be0c-4025-8569-7a27ed2faab9}]
[HKLM\Software\Classes\CLSID\{319260ab-be0c-4025-8569-7a27ed2faab9}]
[HKCR\Interface\{32c97a37-e2b8-4097-9330-5f3e1125e181}]
[HKLM\Software\Classes\Interface\{32c97a37-e2b8-4097-9330-5f3e1125e181}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4daac69c-cba7-45e2-9bc8-1044483d3352}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4daac69c-cba7-45e2-9bc8-1044483d3352}]
[HKCR\CLSID\{4daac69c-cba7-45e2-9bc8-1044483d3352}]
[HKLM\Software\Classes\CLSID\{4daac69c-cba7-45e2-9bc8-1044483d3352}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4daac69c-cba7-45e2-9bc8-1044483d3352}]
[HKCR\CLSID\{82ac53b4-164c-4b07-a016-437a8388b81a}]
[HKLM\Software\Classes\CLSID\{82ac53b4-164c-4b07-a016-437a8388b81a}]
[HKCR\CLSID\{9809a6b4-70b1-4bb2-b3b5-b415763a534e}]
[HKLM\Software\Classes\CLSID\{9809a6b4-70b1-4bb2-b3b5-b415763a534e}]
[HKCR\Interface\{b0c3de1b-e3ff-4dd0-9229-f452cf9c678e}]
[HKLM\Software\Classes\Interface\{b0c3de1b-e3ff-4dd0-9229-f452cf9c678e}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ba14329e-9550-4989-b3f2-9732e92d17cc}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ba14329e-9550-4989-b3f2-9732e92d17cc}]
[HKCR\CLSID\{ba14329e-9550-4989-b3f2-9732e92d17cc}]
[HKLM\Software\Classes\CLSID\{ba14329e-9550-4989-b3f2-9732e92d17cc}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ba14329e-9550-4989-b3f2-9732e92d17cc}]
[HKCR\TypeLib\{bce2e826-d0f5-41c8-97be-28a6f540ceeb}]
[HKLM\Software\Classes\Wow6432Node\TypeLib\{bce2e826-d0f5-41c8-97be-28a6f540ceeb}]
[HKCR\Interface\{d2d94732-a74d-433c-98f7-9ed740e82ae9}]
[HKLM\Software\Classes\Interface\{d2d94732-a74d-433c-98f7-9ed740e82ae9}]
[HKCR\CLSID\{d5178f77-c5e6-4e8f-9787-48b5d7eccce8}]
[HKLM\Software\Classes\CLSID\{d5178f77-c5e6-4e8f-9787-48b5d7eccce8}]
[HKCR\Interface\{dfd5d79b-ef2f-4a51-9821-5b469f05262e}]
[HKLM\Software\Classes\Interface\{dfd5d79b-ef2f-4a51-9821-5b469f05262e}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKCR\CLSID\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKLM\Software\Classes\CLSID\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKCU\Software\ImInstaller]
[HKLM\Software\ImInstaller]
[HKLM\Software\Wow6432Node\ImInstaller] =
[HKCU\Software\AppDataLow\Software\Softonic_France]
[HKLM\Software\Softonic_France]
[HKLM\Software\Wow6432Node\Softonic_France]
[HKLM\Software\SweetIM]
[HKLM\Software\Wow6432Node\SweetIM]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\daemon tools toolbar]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Softonic_France Toolbar]
C:\ProgramData\SweetIM

----------------------------------------------------------
- Clique sur l'icone représentant la lettre H (« coller les lignes Helper »)
- Les lignes se collent automatiquement dans ZHPFix, sinon colle les lignes
- Clique sur « OK » puis sur « Tous », puis sur « Nettoyer »
- Copie/colle la totalité du rapport dans ta prochaine réponse



______________________

puis

* Téléchargez TDSSKiller sur votre bureau


https://support.kaspersky.com/downloads/utils/tdsskiller.zip

* Créez un nouveau dossier sur votre bureau puis décompressez l'archive dedans
* Lancez le programme en cliquant sur TDSSKiller.exe, l'analyse se fait automatiquement, si l'infection est détectée, des éléments cachés (= hidden) seront alors affichés.


Cochez les et cliquez sur "Delete/Repair Selected".

* Un message peut ensuite apparaitre demandant de redémarrer le pc (reboot)pour finir le nettoyage. taper "Y" pour redémarrer le PC ("close all programs and choose Y to restart").

et nous coller le rapport obtenu


Informations complémentaires sur cet outil :
https://support.kaspersky.com/5350
0