Page de démarage SEEEARCH

re

trés bonne nuit et encore merci.

le lien:

http://www.cijoint.fr/cjlink.php?file=cj201109/cijwVnjPyY.txt


merci

bonjour,

le fichier que je télécharge du lien est sous le nom de cijIoXP7Qf.txt et non pas ZHPFixScript.txt , alors j'ai télécharger le fichier sur le bureau et j'ai changer le non pour pouvoir copier sur ZHPFix-Script , et ca donne la méme chose,

merci

A+

bonjour,

voici le le rapport de ZHPDiag.

Rapport de ZHPDiag v1.28.1343 par Nicolas Coolman, Update du 24/08/2011
Run by Setchou at 04/09/2011 17:29:43
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421 (Defaut)
MFIE: Mozilla Firefox 5.0.1 v5.0.1

---\\ Windows Product Information
Windows 7 Ultimate Edition, 32-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 4RPH9
Windows License : OK
~ Windows Remaining Initializations Number : 4
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: x86 Family 6 Model 15 Stepping 2, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2038 MB (61% free)
System Restore: Activé (Enable)
System drive C: has 31 GB (27%) free of 112 GB

---\\ Logged in mode
~ Computer Name: SERVEURGTI
~ User Name: Setchou
~ All Users Names: Setchou, HomeGroupUser$, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Setchou\AppData\Roaming\
~ %Desktop% : C:\Users\Setchou\Desktop\
~ %Favorites% : C:\Users\Setchou\Favorites\
~ %LocalAppData% : C:\Users\Setchou\AppData\Local\
~ %StartMenu% : C:\Users\Setchou\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\system32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 31 Go of 112 Go)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
~ Scan Security Center in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) (.27/04/2011 - 06:30:54.) -- C:\Windows\Explorer.exe [2616320]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (....) (.14/07/2009 - 02:14:31.) -- C:\Windows\system32\rundll32.exe [44544]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\system32\Wininit.exe [96256]
[MD5.2C7332C222D1FE1FC57D622699A8C001] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.10/08/2011 - 03:48:26.) -- C:\Windows\system32\wininet.dll [1126912]
[MD5.6D13E1406F50C66E2A95D97F22C47560] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.14/04/2011 - 13:17:54.) -- C:\Windows\system32\Winlogon.exe [286720]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\drivers\atapi.sys [21584]
[MD5.81189C3D7763838E55C397759D49007A] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.27/04/2011 - 06:39:00.) -- C:\Windows\system32\drivers\ntfs.sys [1211264]
[MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) (.14/04/2011 - 13:21:24.) -- C:\Windows\system32\sppcomapi.dll [193536]
[MD5.129F80D7868E30DF3E3DE33A1D3132B4] - (....) (.14/04/2011 - 13:08:50.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480]
~ Scan Generic Processes in 00mn 01s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/13
~ Mes Favoris (My Favorites) : 4/41
~ Mes Documents (My Documents) : 31/5419
~ Mon Bureau (My Desktop) : 198/28339
~ Menu demarrer (Programs) : 6/29
~ Scan Hidden Files in 01mn 26s



---\\ Processus lancés
[MD5.B2B3FCBA37671C853879DF7DDE8A839A] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe [365336] [PID.]
[MD5.33BFCE71F407F24E5DFDB7DD46CE2D6D] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [449584] [PID.2504]
[MD5.F26208B3C13B48670E055BAD116D6438] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [669696] [PID.3960]
[MD5.904E13BA41AF2E353A32CF351CA53639] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [748336] [PID.748]
[MD5.461A87D7A4304BDA228CF1DBB86D3CE9] - (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\system32\Macromed\Flash\FlashUtil10v_ActiveX.exe [243360] [PID.4872]
~ Scan Processes Running in 00mn 01s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Setchou\AppData\Roaming\Mozilla\Firefox\Profiles\rv6d4pxb.default\prefs.js
C:\Users\Setchou\AppData\Roaming\Mozilla\Firefox\Profiles\rv6d4pxb.default\user.js (.not file.)
M3 - MFPP: Plugins - [Setchou] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Setchou] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Setchou] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Setchou] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Setchou] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Setchou] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Setchou] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
M0 - MFSP: prefs.js [Setchou - rv6d4pxb.default] https://www.google.fr/?gws_rd=ssl
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_25 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60531.0.) -- c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.dll
P2 - FPN: [HKLM] [@microsoft.com/SharePoint,version=14.0] - (.Microsoft Corporation - The plug-in allows you to open and edit files using Microsoft Office a.) -- C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.dll
P2 - FPN: [HKLM] [@real.com/nppl3260;version=12.0.1.647] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll
P2 - FPN: [HKLM] [@real.com/nprjplug;version=12.0.1.647] - (.RealNetworks, Inc. - RealJukebox Netscape Plugin.) -- C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll
P2 - FPN: [HKLM] [@real.com/nprpchromebrowserrecordext;version=12.0.1.652] - (.RealNetworks, Inc. - RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserre
P2 - FPN: [HKLM] [@real.com/nprphtml5videoshim;version=12.0.1.652] - (.RealNetworks, Inc. - RealPlayer(tm) HTML5VideoShim Plug-In.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
P2 - FPN: [HKLM] [@real.com/nprpjplug;version=12.0.1.647] - (.RealNetworks, Inc. - 12.0.1.647.) -- C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.5".) -- C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
~ Scan Firefox Browser in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R0 - HKUS\S-1-5-21-116240524-840477392-1593334273-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKUS\S-1-5-21-116240524-840477392-1593334273-1000\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s



---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Scan Hosts File in 00mn 00s



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} . (.RealPlayer - RealPlayer Download and Record Plugin.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {465E08E7-F005-4389-980F-1D8764B3486C} Clé orpheline
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} . (.Kaspersky Lab ZAO - IE Virtual Keyboard.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\ievkbd.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} . (.Kaspersky Lab ZAO - WebToolBar component.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll
~ Scan BHO in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [AVP] . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Setchou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Setchou\Desktop\GTI.lnk . (.GTI 4.2.) -- C:\Serveur HF\GTI 2010 S\GTI42Serveur.exe
O4 - Global Startup: C:\Users\Setchou\Desktop\MBRCheck.lnk . (...) -- C:\Program Files\ZHPDiag\mbrcheck.exe
O4 - Global Startup: C:\Users\Setchou\Desktop\ZHPDiag.lnk . (.Nicolas Coolman.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe
O4 - Global Startup: C:\Users\Setchou\Desktop\ZHPFix.lnk . (.Nicolas Coolman.) -- C:\Program Files\ZHPDiag\ZHPFix.exe
O4 - Global Startup: C:\Users\Setchou\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Setchou\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Outlook.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE
~ Scan Global Startup in 00mn 02s



---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: &Envoyer à OneNote . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll
O8 - Extra context menu item: Ajouter à l'Anti-bannière . (...) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\ie_banner_deny.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Excel.) -- C:\PROGRA~1\MICROS~2\Office14\EXCEL.exe
O8 - Extra context menu item: Télécharger avec IDM . (...) -- C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Télécharger tous les liens avec IDM . (...) -- C:\Program Files\Internet Download Manager\IEGetAll.htm
~ Scan IE Menu Contextuel in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll
O9 - Extra button: &Envoyer à OneNote - {4248FE82-7FCB-46AC-B270-339F08212110} . (...) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\kbrd.ico
O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~2\Office14\ONBTTN~2.dll
O9 - Extra button: Notes &liées OneNote - {CCF151D8-D089-449F-A5A4-D9909053F20F} . (...) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\logo.ico
~ Scan IE Extra Buttons in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
~ Scan Winsock in 00mn 00s



---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
~ Scan Objets ActiveX in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{347A2D0B-7BB5-47C5-9C3B-1060217C01B1}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{347A2D0B-7BB5-47C5-9C3B-1060217C01B1}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{347A2D0B-7BB5-47C5-9C3B-1060217C01B1}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.dll
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.dll
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
~ Scan Protocole Additionnel in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\system32\igfxdev.dll
O20 - Winlogon Notify: klogon . (.Kaspersky Lab ZAO - Logon Visualizer.) -- C:\Windows\system32\klogon.dll
~ Scan Winlogon in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.Kaspersky Lab ZAO - Kaspersky OE plugin loader.) - C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll
~ Scan AppInit DLL in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Kaspersky Anti-Virus Service (AVP) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe
O23 - Service: Hyper File Server : SERVEURGTI (Hyper File Server : SERVEURGTI) . (.PC SOFT - PC SOFT - Moteur Hyper File Client/Serveur.) - C:\Serveur HF\Manta.exe
O23 - Service: MantaManager (MantaManager) . (.PC SOFT - PC SOFT - Gestion et mise à jour du serveur.) - C:\Serveur HF\MantaManager.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: TeamViewer 6 (TeamViewer6) . (.TeamViewer GmbH - TeamViewer Remote Control Application.) - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
~ Scan Services in 00mn 00s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.FD8DCAE8AAE888D8BAD0E6C2DAAAFB6D] [APT] [RealUpgradeLogonTaskS-1-5-21-116240524-840477392-1593334273-1000] (.RealNetworks, Inc..) -- C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
[MD5.FD8DCAE8AAE888D8BAD0E6C2DAAAFB6D] [APT] [RealUpgradeScheduledTaskS-1-5-21-116240524-840477392-1593334273-1000] (.RealNetworks, Inc..) -- C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
~ Scan Scheduled Task in 00mn 12s



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: C:\Windows\system32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\system32\drivers\csc.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\system32\drivers\discache.sys
O41 - Driver: (kl2) . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) - C:\Windows\system32\DRIVERS\kl2.sys
O41 - Driver: (KLIF) . (.Kaspersky Lab - Klif Mini-Filter [fre_wlh_x86].) - C:\Windows\system32\DRIVERS\klif.sys
O41 - Driver: (KLIM6) . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) - C:\Windows\system32\DRIVERS\klim6.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\system32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\system32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\system32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 02s



---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Bluetooth Monitor 3 - (.TOSHIBA.) [HKLM] -- {61539202-097E-487E-9237-B291AB56D54C}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Definition update for Microsoft Office 2010 (KB982726) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{06C723B9-ADF5-42BC-B949-D14D6C6628B9}
O42 - Logiciel: GOM Player - (.Gretech Corporation.) [HKLM] -- GOM Player
O42 - Logiciel: HP Officejet 7000 E809a Series - (.HP.) [HKLM] -- {5A9CA18F-976B-4F44-8716-457B6D39FDCF}
O42 - Logiciel: Hyper File : SERVEURGTI - (.Pas de propriétaire.) [HKLM] -- HyperFile-SERVEURGTI
O42 - Logiciel: Hyper File Manager - (.Pas de propriétaire.) [HKLM] -- HyperFileManager
O42 - Logiciel: Imprimantes Canon CAPT - (.Pas de propriétaire.) [HKLM] -- Canon Advanced Printing Technology
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- HDMI
O42 - Logiciel: Internet Download Manager - (.Pas de propriétaire.) [HKLM] -- Internet Download Manager
O42 - Logiciel: Kaspersky Internet Security 2011 - (.Kaspersky Lab.) [HKLM] -- InstallWIX_{66F1F013-008F-4875-B283-5A814B820347}
O42 - Logiciel: Kaspersky Internet Security 2011 - (.Kaspersky Lab.) [HKLM] -- {66F1F013-008F-4875-B283-5A814B820347}
O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.1.1800 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft Office Professionnel Plus 2010 - (.Microsoft Corporation.) [HKLM] -- Office14.PROPLUS
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: Mozilla Firefox 5.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 5.0.1 (x86 fr)
O42 - Logiciel: Nokia PC Suite - (.Nokia.) [HKLM] -- Nokia PC Suite
O42 - Logiciel: Package de pilotes Windows - Nokia Modem (02/25/2011 4.7) - (.Nokia.) [HKLM] -- E0AC723A3DE3A04256288CADBBB011B112AED454
O42 - Logiciel: Package de pilotes Windows - Nokia Modem (02/25/2011 7.01.0.9) - (.Nokia.) [HKLM] -- 72A50F48CC5601190B9C4E74D81161693133E7F7
O42 - Logiciel: Package de pilotes Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0) - (.Nokia.) [HKLM] -- 504244733D18C8F63FF584AEB290E3904E791693
O42 - Logiciel: RealPlayer - (.RealNetworks.) [HKLM] -- RealPlayer 12.0
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2446708
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2478663
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2518870
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2539636
O42 - Logiciel: Security Update for Microsoft Excel 2010 (KB2523021) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{AA9E4C48-857D-4558-A4F4-343CA7680277}
O42 - Logiciel: Security Update for Microsoft InfoPath 2010 (KB2510065) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{3C6C6854-EB6B-455C-B0A6-9871F0538028}
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2289078) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{1D1A4F08-2F17-475B-BA72-476CE5992FEE}
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2289161) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F134C2C6-30B3-4169-A325-58482B4CE6FC}
O42 - Logiciel: Security Update for Microsoft PowerPoint 2010 (KB2519975) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{45D7C5CD-B967-44AF-9DAB-E5C8545558AD}
O42 - Logiciel: Security Update for Microsoft Publisher 2010 (KB2409055) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{C3C277D5-36E3-4B1A-926A-175B2BC019CF}
O42 - Logiciel: Security Update for Microsoft Word 2010 (KB2345000) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{A6D422EE-1196-45EE-B9AE-6B5B64975E8B}
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}.KB2478663
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}.KB2518870
O42 - Logiciel: TeamViewer 6 - (.TeamViewer GmbH.) [HKLM] -- TeamViewer 6
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2468871) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2468871
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2533523) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2533523
O42 - Logiciel: Update for Microsoft Office 2010 (KB2202188) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{86B7A074-265D-420C-9E1E-7A920EF0ECA7}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2413186) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{556146F7-74AE-4E0A-B64F-5B8B93469F61}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2413186) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B5516874-E926-4BFD-B412-D0E70112F244}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2413186) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{D6CE7280-6EE3-419A-8F47-DB111C040B1B}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2494150) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2523113) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{C0FF04BF-A05E-408B-81CA-B7FACDA508A3}
O42 - Logiciel: Update for Microsoft OneNote 2010 (KB2493983) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{309EEC22-83CE-4109-B019-BA9392FAA322}
O42 - Logiciel: Update for Microsoft Outlook Social Connector (KB2441641) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{A10DC2B7-6FDA-4C17-9DF0-6A834CAC4306}
O42 - Logiciel: WinRAR archiver - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite
O42 - Logiciel: µTorrent - (.Pas de propriétaire.) [HKLM] -- uTorrent

---\\ HKCU & HKLM Software Keys
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Axialis]
[HKCU\Software\BitTorrent]
[HKCU\Software\Canon]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CoreAAC]
[HKCU\Software\DownloadManager]
[HKCU\Software\EIPC]
[HKCU\Software\GRETECH]
[HKCU\Software\GTI 4.2]
[HKCU\Software\Google]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IM Providers]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\KasperskyLab]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\Nokia]
[HKCU\Software\ODBC]
[HKCU\Software\PC SOFT]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\RealNetworks]
[HKCU\Software\SSPrint]
[HKCU\Software\Skype]
[HKCU\Software\Softonic]
[HKCU\Software\SuperSoftwarePackage]
[HKCU\Software\TeamViewer]
[HKCU\Software\Trolltech]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Adobe]
[HKLM\Software\AuthenTec]
[HKLM\Software\CDDB]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\GRETECH]
[HKLM\Software\Google]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\ICE]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\KasperskyLab]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Nokia]
[HKLM\Software\ODBC]
[HKLM\Software\PC Connectivity Solution]
[HKLM\Software\PCSuite]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RealNetworks]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Skype]
[HKLM\Software\Sonic]
[HKLM\Software\TOSHIBA]
[HKLM\Software\TeamViewer]
[HKLM\Software\TrueSuite]
[HKLM\Software\Volatile]
[HKLM\Software\WinRAR]
[HKLM\Software\Xing Technology Corp.]
[HKLM\Software\mozilla.org]
~ Scan Softwares in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 19/04/2011 - 11:14:50 - [162903726] ----D- C:\Program Files\Adobe
O43 - CFD: 28/05/2011 - 11:31:58 - [0] ----D- C:\Program Files\Axialis
O43 - CFD: 14/05/2011 - 16:30:00 - [34327893] ----D- C:\Program Files\CC Hyper File
O43 - CFD: 03/09/2011 - 16:07:44 - [4118120] ----D- C:\Program Files\CCleaner
O43 - CFD: 25/08/2011 - 21:52:02 - [556468766] ----D- C:\Program Files\Common Files
O43 - CFD: 04/09/2011 - 11:35:06 - [3588096] ----D- C:\Program Files\DCP & D41
O43 - CFD: 25/08/2011 - 21:54:00 - [1595928] ----D- C:\Program Files\DIFX
O43 - CFD: 14/04/2011 - 17:48:40 - [83226644] ----D- C:\Program Files\DVD Maker
O43 - CFD: 14/04/2011 - 09:28:10 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 14/04/2011 - 09:51:00 - [20783971] ----D- C:\Program Files\GRETECH
O43 - CFD: 31/07/2011 - 20:01:28 - [75844453] ----D- C:\Program Files\HP
O43 - CFD: 10/06/2011 - 09:27:08 - [1112344] --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD: 28/06/2011 - 11:39:06 - [9896926] ----D- C:\Program Files\Internet Download Manager
O43 - CFD: 11/08/2011 - 05:28:44 - [5175108] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 29/04/2011 - 10:00:38 - [88332071] ----D- C:\Program Files\Java
O43 - CFD: 20/04/2011 - 16:23:46 - [62378174] ----D- C:\Program Files\Kaspersky Lab
O43 - CFD: 31/05/2011 - 18:45:32 - [1835008] ----D- C:\Program Files\LCF
O43 - CFD: 03/09/2011 - 21:24:02 - [6953190] ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 31/05/2011 - 18:53:56 - [39848379] ----D- C:\Program Files\Microsoft Analysis Services
O43 - CFD: 14/07/2009 - 10:01:22 - [147813426] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 18/07/2011 - 08:48:22 - [9362570] ----D- C:\Program Files\Microsoft Games for Windows - LIVE
O43 - CFD: 31/05/2011 - 18:58:24 - [992612768] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 15/06/2011 - 22:54:06 - [38411899] ----D- C:\Program Files\Microsoft Silverlight
O43 - CFD: 31/05/2011 - 18:53:14 - [1805760] ----D- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 31/05/2011 - 18:53:14 - [793991] ----D- C:\Program Files\Microsoft Sync Framework
O43 - CFD: 31/05/2011 - 18:54:14 - [326800] ----D- C:\Program Files\Microsoft Synchronization Services
O43 - CFD: 31/05/2011 - 18:59:48 - [1378033] ----D- C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 31/05/2011 - 18:53:14 - [8167779] ----D- C:\Program Files\Microsoft.NET
O43 - CFD: 10/08/2011 - 09:53:20 - [34244217] ----D- C:\Program Files\Mozilla Firefox
O43 - CFD: 01/06/2011 - 14:19:04 - [26521] ----D- C:\Program Files\MSBuild
O43 - CFD: 15/04/2011 - 09:43:44 - [6388783] ----D- C:\Program Files\MSECache
O43 - CFD: 25/08/2011 - 21:52:02 - [53831821] ----D- C:\Program Files\Nokia
O43 - CFD: 25/08/2011 - 21:51:16 - [13586855] ----D- C:\Program Files\PC Connectivity Solution
O43 - CFD: 08/07/2011 - 11:56:40 - [95906562] ----D- C:\Program Files\Real
O43 - CFD: 14/07/2009 - 05:52:32 - [39159041] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 18/04/2011 - 23:27:24 - [15145436] R---D- C:\Program Files\Skype
O43 - CFD: 06/06/2011 - 11:47:54 - [16136326] ----D- C:\Program Files\TeamViewer
O43 - CFD: 10/06/2011 - 09:27:08 - [686264] ----D- C:\Program Files\TOSHIBA
O43 - CFD: 26/05/2011 - 19:11:54 - [819200] ----D- C:\Program Files\Transitaires
O43 - CFD: 14/04/2011 - 15:02:58 - [6853958] ----D- C:\Program Files\TrueSuite
O43 - CFD: 14/07/2009 - 05:53:24 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 15/04/2011 - 11:07:54 - [399736] ----D- C:\Program Files\uTorrent
O43 - CFD: 02/05/2011 - 18:22:34 - [0] ----D- C:\Program Files\VideoLAN
O43 - CFD: 14/04/2011 - 17:48:36 - [3050496] ----D- C:\Program Files\Windows Defender
O43 - CFD: 14/04/2011 - 17:48:40 - [7013496] ----D- C:\Program Files\Windows Journal
O43 - CFD: 27/08/2011 - 22:07:22 - [62369527] ----D- C:\Program Files\Windows Live
O43 - CFD: 14/04/2011 - 17:48:40 - [6181376] ----D- C:\Program Files\Windows Mail
O43 - CFD: 14/04/2011 - 17:48:40 - [6604034] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 14/04/2011 - 09:28:10 - [12197556] ----D- C:\Program Files\Windows NT
O43 - CFD: 14/04/2011 - 17:48:40 - [4417800] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 14/04/2011 - 17:48:40 - [189952] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 14/04/2011 - 17:48:40 - [7313922] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 14/04/2011 - 09:44:00 - [3770396] ----D- C:\Program Files\WinRAR
O43 - CFD: 04/09/2011 - 17:31:26 - [4354020] ----D- C:\Program Files\ZHPDiag
O43 - CFD: 19/04/2011 - 11:15:00 - [6247934] ----D- C:\Program Files\Common Files\Adobe
O43 - CFD: 01/06/2011 - 14:16:36 - [99136] ----D- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 10/06/2011 - 09:26:10 - [1976305] ----D- C:\Program Files\Common Files\InstallShield
O43 - CFD: 29/04/2011 - 10:01:26 - [1252295] ----D- C:\Program Files\Common Files\Java
O43 - CFD: 27/08/2011 - 22:06:04 - [250369898] ----D- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 25/08/2011 - 21:52:02 - [7274430] ----D- C:\Program Files\Common Files\Nokia
O43 - CFD: 25/08/2011 - 21:52:02 - [88064] ----D- C:\Program Files\Common Files\PCSuite
O43 - CFD: 14/07/2009 - 03:37:06 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 14/07/2009 - 03:37:06 - [41103783] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 14/04/2011 - 09:47:38 - [14390121] ----D- C:\Program Files\Common Files\System
O43 - CFD: 14/04/2011 - 11:15:22 - [233311842] ----D- C:\Program Files\Common Files\Windows Live
O43 - CFD: 08/07/2011 - 11:56:18 - [352256] ----D- C:\Program Files\Common Files\xing shared
O43 - CFD: 19/04/2011 - 11:14:58 - [763] ----D- C:\ProgramData\Adobe
O43 - CFD: 14/07/2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 14/04/2011 - 09:28:10 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 14/07/2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 14/04/2011 - 15:02:54 - [13877248] ----D- C:\ProgramData\Downloaded Installations
O43 - CFD: 14/04/2011 - 09:28:10 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 06/07/2011 - 18:07:08 - [9605] ----D- C:\ProgramData\HideIPEasy
O43 - CFD: 31/07/2011 - 19:46:26 - [238106] ----D- C:\ProgramData\HP
O43 - CFD: 25/08/2011 - 21:45:04 - [173795761] ----D- C:\ProgramData\Installations
O43 - CFD: 04/09/2011 - 17:26:36 - [1847620374] ----D- C:\ProgramData\Kaspersky Lab
O43 - CFD: 20/04/2011 - 16:21:22 - [117967008] ----D- C:\ProgramData\Kaspersky Lab Setup Files
O43 - CFD: 03/09/2011 - 21:23:56 - [7328169] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 14/04/2011 - 09:28:10 - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 18/07/2011 - 08:41:40 - [453497414] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 10/08/2011 - 22:54:08 - [63858] ----D- C:\ProgramData\Microsoft Help
O43 - CFD: 14/04/2011 - 09:28:10 - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 25/08/2011 - 22:06:36 - [245410] ----D- C:\ProgramData\PC Suite
O43 - CFD: 08/07/2011 - 11:58:46 - [1524019] ----D- C:\ProgramData\Real
O43 - CFD: 18/04/2011 - 23:27:16 - [20253044] ----D- C:\ProgramData\Skype
O43 - CFD: 14/07/2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 29/04/2011 - 10:01:28 - [119] ----D- C:\ProgramData\Sun
O43 - CFD: 14/07/2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 14/04/2011 - 15:02:58 - [0] ----D- C:\ProgramData\TrueSuite
O43 - CFD: 15/04/2011 - 09:55:46 - [218306] ----D- C:\Users\Setchou\AppData\Roaming\Adobe
O43 - CFD: 04/09/2011 - 17:21:52 - [0] ----D- C:\Users\Setchou\AppData\Roaming\DMCache
O43 - CFD: 14/04/2011 - 09:51:32 - [785] ----D- C:\Users\Setchou\AppData\Roaming\GRETECH
O43 - CFD: 06/07/2011 - 18:07:08 - [22] ----D- C:\Users\Setchou\AppData\Roaming\HideIPEasy
O43 - CFD: 31/07/2011 - 20:05:40 - [770] ----D- C:\Users\Setchou\AppData\Roaming\HP
O43 - CFD: 14/04/2011 - 09:28:46 - [0] ----D- C:\Users\Setchou\AppData\Roaming\Identities
O43 - CFD: 03/09/2011 - 16:35:10 - [6518550] ----D- C:\Users\Setchou\AppData\Roaming\IDM
O43 - CFD: 15/04/2011 - 09:47:30 - [843] ----D- C:\Users\Setchou\AppData\Roaming\Macromedia
O43 - CFD: 03/09/2011 - 21:24:10 - [1208177] ----D- C:\Users\Setchou\AppData\Roaming\Malwarebytes
O43 - CFD: 14/07/2009 - 10:00:34 - [0] ----D- C:\Users\Setchou\AppData\Roaming\Media Center Programs
O43 - CFD: 08/07/2011 - 11:40:06 - [136] ----D- C:\Users\Setchou\AppData\Roaming\Media Player Classic
O43 - CFD: 30/07/2011 - 11:40:50 - [16614621] -S--D- C:\Users\Setchou\AppData\Roaming\Microsoft
O43 - CFD: 10/08/2011 - 09:54:54 - [12897406] ----D- C:\Users\Setchou\AppData\Roaming\Mozilla
O43 - CFD: 25/08/2011 - 22:07:28 - [21650809] ----D- C:\Users\Setchou\AppData\Roaming\Nokia
O43 - CFD: 26/08/2011 - 10:51:12 - [4192554] ----D- C:\Users\Setchou\AppData\Roaming\PC Suite
O43 - CFD: 08/07/2011 - 19:44:40 - [1134772] ----D- C:\Users\Setchou\AppData\Roaming\Real
O43 - CFD: 03/09/2011 - 16:35:10 - [1347299] ----D- C:\Users\Setchou\AppData\Roaming\Skype
O43 - CFD: 03/09/2011 - 16:35:10 - [2821517] ----D- C:\Users\Setchou\AppData\Roaming\uTorrent
O43 - CFD: 14/05/2011 - 14:46:46 - [0] ----D- C:\Users\Setchou\AppData\Roaming\WinBatch
O43 - CFD: 14/04/2011 - 09:44:08 - [12] ----D- C:\Users\Setchou\AppData\Roaming\WinRAR
O43 - CFD: 19/04/2011 - 11:14:28 - [83157] ----D- C:\Users\Setchou\AppData\Local\Adobe
O43 - CFD: 14/04/2011 - 09:28:30 - [0] -SH-D- C:\Users\Setchou\AppData\Local\Application Data
O43 - CFD: 04/06/2011 - 14:52:38 - [1251997] ----D- C:\Users\Setchou\AppData\Local\Apps
O43 - CFD: 28/05/2011 - 11:31:46 - [0] ----D- C:\Users\Setchou\AppData\Local\Axialis
O43 - CFD: 06/07/2011 - 17:32:28 - [0] ----D- C:\Users\Setchou\AppData\Local\Deployment
O43 - CFD: 30/08/2011 - 23:04:50 - [0] ----D- C:\Users\Setchou\AppData\Local\Diagnostics
O43 - CFD: 04/09/2011 - 01:00:48 - [0] ----D- C:\Users\Setchou\AppData\Local\ElevatedDiagnostics
O43 - CFD: 07/07/2011 - 00:20:58 - [0] ----D- C:\Users\Setchou\AppData\Local\Google
O43 - CFD: 14/04/2011 - 09:28:30 - [0] -SH-D- C:\Users\Setchou\AppData\Local\Historique
O43 - CFD: 23/07/2011 - 17:15:28 - [213465329] ----D- C:\Users\Setchou\AppData\Local\Microsoft
O43 - CFD: 27/05/2011 - 12:09:46 - [87547] ----D- C:\Users\Setchou\AppData\Local\Microsoft Games
O43 - CFD: 18/08/2011 - 16:46:54 - [213852] ----D- C:\Users\Setchou\AppData\Local\Microsoft Help
O43 - CFD: 06/07/2011 - 17:29:18 - [22653274] ----D- C:\Users\Setchou\AppData\Local\Mozilla
O43 - CFD: 04/09/2011 - 17:27:52 - [244397] ----D- C:\Users\Setchou\AppData\Local\Temp
O43 - CFD: 14/04/2011 - 09:28:30 - [0] -SH-D- C:\Users\Setchou\AppData\Local\Temporary Internet Files
O43 - CFD: 03/09/2011 - 00:45:04 - [0] ----D- C:\Users\Setchou\AppData\Local\VirtualStore
O43 - CFD: 03/09/2011 - 19:09:58 - [36864] ----D- C:\Users\Setchou\AppData\Local\Windows Live
O43 - CFD: 03/09/2011 - 19:09:54 - [0] ----D- C:\Users\Setchou\AppData\Local\{4F4DB8CE-A464-4644-AE27-E5B58DFCC8AC}
O43 - CFD: 03/09/2011 - 19:09:40 - [0] ----D- C:\Users\Setchou\AppData\Local\{9108DDB4-7558-414D-861A-DA744DBCACEB}
~ Scan Program Folder in 00mn 21s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.36164A62A455162F66A53AF19CC4B9CF] - 04/09/2011 - 17:30:04 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1535310]
O44 - LFC:[MD5.AC849B99E032F4017BB1CE37934DD4AF] - 04/09/2011 - 17:26:04 ---A- . (...) -- C:\Windows\setupact.log [112]
O44 - LFC:[MD5.E3E37BCD02E2EE1FFEF36EDFB3D40182] - 04/09/2011 - 17:26:00 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.976C828EBE13C9EC7DDB30EA817A9ED2] - 04/09/2011 - 17:23:53 ---A- . (...) -- C:\Windows\PFRO.log [576]
O44 - LFC:[MD5.247E64900E2D9B09A4E4931BECAD6111] - 04/09/2011 - 11:33:21 ---A- . (...) -- C:\Windows\system32\PerfStringBackup.INI [1549700]
O44 - LFC:[MD5.EC0FFC4817D530359B67D0C7D979ABA6] - 04/09/2011 - 11:33:21 ---A- . (...) -- C:\Windows\system32\perfc009.dat [106388]
O44 - LFC:[MD5.550DFA3AA621882AC7994210C7DEB346] - 04/09/2011 - 11:33:21 ---A- . (...) -- C:\Windows\system32\perfc00C.dat [130754]
O44 - LFC:[MD5.B2A637094C815FFB4C2A5F4ED1C2A8CB] - 04/09/2011 - 11:33:21 ---A- . (...) -- C:\Windows\system32\perfh009.dat [616008]
O44 - LFC:[MD5.DC642CA44699034CC91A9672D089DA67] - 04/09/2011 - 11:33:21 ---A- . (...) -- C:\Windows\system32\perfh00C.dat [704480]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 04/09/2011 - 01:00:08 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.B18225739ED9CAA83BA2DF966E9F43E8] - 03/09/2011 - 21:23:56 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbamswissarmy.sys [41272]
O44 - LFC:[MD5.ECA00EED9AB95489007B0EF84C7149DE] - 03/09/2011 - 21:23:50 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [22712]
O44 - LFC:[MD5.52F46A77C65B210005CCD0181241579A] - 03/09/2011 - 19:41:46 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 25/08/2011 - 22:06:41 --HA- . (...) -- C:\Windows\system32\drivers\Msft_User_PCCSWpdDriver_01_09_00.Wdf [0]
O44 - LFC:[MD5.FD2041E9BA03DB7764B2248F02475079] - 25/08/2011 - 21:51:42 ---A- . (.Nokia - PCCS Mode Change Filter Driver.) -- C:\Windows\system32\drivers\pccsmcfd.sys [18816]
O44 - LFC:[MD5.DA5F446833C250558EF9435DF24D4AD9] - 21/08/2011 - 09:40:54 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\system32\FlashPlayerCPLApp.cpl [404640]
~ Scan Files in 01mn 07s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\system32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d'extension du gestionnaire de volumes.) -- C:\Windows\system32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\system32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\system32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\system32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\system32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d'extension du gestionnaire de volumes.) -- C:\Windows\system32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 01s



---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\system32\iccvid.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"wdmaud.drv"="Pilote de fonction UAA 1.1 Microsoft pour High Definition Audio" . (...) -- (.not file.)
~ Scan Keys in 00mn 02s



---\\ ShareTools MSconfig StartupReg (O53)
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
O53 - SMSR:HKLM\...\startupreg\BCSSync [Key] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files\Microsoft Office\Office14\BCSSync.exe
O53 - SMSR:HKLM\...\startupreg\CAPON [Key] . (.CANON INC. - Canon Advanced Printing Technology Printer.) -- C:\Windows\system32\Spool\Drivers\w32x86\3\CAPONN.exe
O53 - SMSR:HKLM\...\startupreg\HotKeysCmds [Key] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O53 - SMSR:HKLM\...\startupreg\IgfxTray [Key] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O53 - SMSR:HKLM\...\startupreg\PC Suite Tray [Key] . (.Nokia - Nokia Launch Application.) -- C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
O53 - SMSR:HKLM\...\startupreg\Persistence [Key] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O53 - SMSR:HKLM\...\startupreg\Sidebar [Key] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
O53 - SMSR:HKLM\...\startupreg\TkBellExe [Key] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe
~ Scan SMSR Keys in 00mn 00s



---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ Scan Keys in 00mn 00s



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 10/06/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [422976]
O58 - SDL:[MD5.0C676BC278D5B59FF5ABD57BBE9123F2] - 13/07/2009 - 02:26:17 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [297552]
O58 - SDL:[MD5.7C7B5EE4B7B822EC85321FE23A27DB33] - 13/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys [146512]
O58 - SDL:[MD5.0D40BCF52EA90FC7DF2AEAB6503DEA44] - 14/07/2009 - 02:26:15 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [14400]
O58 - SDL:[MD5.D320BF87125326F996D4904FE24300FC] - 27/04/2011 - 06:38:37 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [80256]
O58 - SDL:[MD5.EA43AF0C423FF267355F74E7A53BDABA] - 10/06/2009 - 02:26:15 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows fa.) -- C:\Windows\system32\drivers\amdsbs.sys [159312]
O58 - SDL:[MD5.46387FB17B086D16DEA267D5BE23A2F2] - 27/04/2011 - 06:38:37 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [22400]
O58 - SDL:[MD5.2932004F49677BD84DBC72EDB754FFB3] - 13/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [76368]
O58 - SDL:[MD5.

bonjour

voici le lien pour le rapport complet

http://www.cijoint.fr/cjlink.php?file=cj201109/cij6YCxpd6.txt

A+

re

rapport delfix

# DelFix v8.3 - Rapport créé le 04/09/2011 à 18:48
# Mis à jour le 04/08/11 à 11h par Xplode
# Système d'exploitation : Windows 7 Ultimate (32 bits) [version 6.1.7601] Service Pack 1
# Nom d'utilisateur : Setchou - SERVEURGTI (Administrateur)
# Exécuté depuis : C:\Users\Setchou\Desktop\delfix0.exe
# Option [Suppression]


~~~~~~ Dossier(s) ~~~~~~

Supprimé : C:\ZHP
Supprimé : C:\Program Files\ZHPDiag

~~~~~~ Fichier(s) ~~~~~~

Supprimé : C:\PhysicalDisk0_MBR.bin
Supprimé : C:\Users\Setchou\Desktop\MBRCheck.lnk
Supprimé : C:\Users\Setchou\Desktop\SEAF.exe
Supprimé : C:\Users\Setchou\Desktop\ZHP_uninstall.exe
Supprimé : C:\Users\Setchou\Desktop\ZHPDiag.lnk
Supprimé : C:\Users\Setchou\Desktop\ZHPDiag.txt
Supprimé : C:\Users\Setchou\Desktop\ZHPDiag_silent.exe
Supprimé : C:\Users\Setchou\Desktop\ZHPFix.lnk
Supprimé : C:\Users\Setchou\Desktop\ZHPFixReport.txt
Supprimé : C:\Users\Setchou\Desktop\ZHPFixScript.txt.txt

~~~~~~ Registre ~~~~~~


~~~~~~ Autre ~~~~~~

-> Prefetch vidé

########## EOF - "C:\DelFixSuppr.txt" - [1132 octets] ##########

re fish66

merci beuacoup pour votre aide,

j'ai toujours la page de démarage SEEEARCH , a chaque fois que je la change, elle revient????


a+

re

internet explorer 9.

+

re

toujours le meme probleme sous internet explorer 8.
la page de démarage est :http://seeearch.com/

+

re

user.js

1. ========================= SEAF 1.0.1.0 - C_XX
2.
3. Commencé à: 20:17:17 le 04/09/2011
4.
5. Valeur(s) recherchée(s):
6. user.js
7.
8. Légende: TC => Date de création, TM => Date de modification, DA => Dernier accès
9.
10. (!) --- Informations supplémentaires
11. (!) --- Recherche registre
12.
13. ====== Fichier(s) ======
14.
15. Aucun fichier trouvé
16.
17.
18. ====== Entrée(s) du registre ======
19.
20. Aucun élément dans le registre trouvé
21.
22. =========================
23.
24. Fin à: 20:23:54 le 04/09/2011
25. 352907 Éléments analysés
26.
27. =========================
28. E.O.F

seeearch

1. ========================= SEAF 1.0.1.0 - C_XX
2.
3. Commencé à: 20:24:55 le 04/09/2011
4.
5. Valeur(s) recherchée(s):
6. seeearch
7.
8. Légende: TC => Date de création, TM => Date de modification, DA => Dernier accès
9.
10. (!) --- Informations supplémentaires
11. (!) --- Recherche registre
12.
13. ====== Fichier(s) ======
14.
15.
16. "C:\Users\Setchou\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\317D31QZ\affich-23072456-page-de-demarage-seeearch[1].htm" [ NOT_CONTENT_INDEXED|ARCHIVE | 246 Ko ]
17. TC: 04/09/2011,19:34:08 | TM: 04/09/2011,19:34:09 | DA: 04/09/2011,19:34:08
18.
19.
20. =========================
21.
22.
23. "C:\Users\Setchou\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U0EB9UOR\seeearch_com[1].htm" [ NOT_CONTENT_INDEXED|ARCHIVE | 9 Ko ]
24. TC: 04/09/2011,19:07:23 | TM: 04/09/2011,19:07:23 | DA: 04/09/2011,19:07:23
25.
26.
27. =========================
28.
29.
30. "C:\Users\Setchou\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\WVCHEC7L\affich-23072456-page-de-demarage-seeearch[1].txt" [ NOT_CONTENT_INDEXED|ARCHIVE | 266 Ko ]
31. TC: 04/09/2011,20:05:57 | TM: 04/09/2011,20:05:57 | DA: 04/09/2011,20:05:57
32.
33.
34. =========================
35.
36.
37. "C:\Users\Setchou\AppData\Roaming\Microsoft\Windows\Cookies\Low\setchou@seeearch[1].txt" [ NOT_CONTENT_INDEXED|ARCHIVE | 357 o ]
38. TC: 04/09/2011,19:51:11 | TM: 04/09/2011,19:51:11 | DA: 04/09/2011,19:51:11
39.
40.
41. =========================
42.
43.
44.
45. ====== Entrée(s) du registre ======
46.
47.
48. [HKU\S-1-5-21-116240524-840477392-1593334273-1000\Software\DownloadManager\645]
49. "owWPCookies"="__utma=42938809.1387856063.1315081286.1315081286.1315081286.1; __utmb=42938809.1.10.1315081286; __utmc=42938809; __utmz=42938809.1315081286.1.1.utmcsr=commentcamarche.net|utmccn=(referral)|utmcmd=referral|utmcct=/forum/affich-23072456-page-de-demarage-seeearch" (REG_SZ)
50.
51. [HKU\S-1-5-21-116240524-840477392-1593334273-1000\Software\DownloadManager\645]
52. "U0_c"="__utma=42938809.1387856063.1315081286.1315081286.1315081286.1; __utmb=42938809.1.10.1315081286; __utmc=42938809; __utmz=42938809.1315081286.1.1.utmcsr=commentcamarche.net|utmccn=(referral)|utmcmd=referral|utmcct=/forum/affich-23072456-page-de-demarage-seeearch" (REG_SZ)
53.
54. [HKU\S-1-5-21-116240524-840477392-1593334273-1000\Software\DownloadManager\648]
55. "Cookie"="60gp=R152030339; d90ec42d01ce642041b670aa6370261d=f2ddbee415261b03fc479f420a883db9; __utma=256901844.1521452999.1315158405.1315158405.1315158405.1; __utmb=256901844.2.10.1315158405; __utmc=256901844; __utmz=256901844.1315158405.1.1.utmcsr=commentcamarche.net|utmccn=(referral)|utmcmd=referral|utmcct=/forum/affich-23072456-page-de-demarage-seeearch" (REG_SZ)
56.
57. [HKU\S-1-5-21-116240524-840477392-1593334273-1000\Software\DownloadManager\648]
58. "owWPCookies"="60gp=R152030339; d90ec42d01ce642041b670aa6370261d=f2ddbee415261b03fc479f420a883db9; __utma=256901844.1521452999.1315158405.1315158405.1315158405.1; __utmb=256901844.2.10.1315158405; __utmc=256901844; __utmz=256901844.1315158405.1.1.utmcsr=commentcamarche.net|utmccn=(referral)|utmcmd=referral|utmcct=/forum/affich-23072456-page-de-demarage-seeearch" (REG_SZ)
59.
60. [HKU\S-1-5-21-116240524-840477392-1593334273-1000\Software\DownloadManager\648]
61. "U0_c"="60gp=R152030339; d90ec42d01ce642041b670aa6370261d=f2ddbee415261b03fc479f420a883db9; __utma=256901844.1521452999.1315158405.1315158405.1315158405.1; __utmb=256901844.2.10.1315158405; __utmc=256901844; __utmz=256901844.1315158405.1.1.utmcsr=commentcamarche.net|utmccn=(referral)|utmcmd=referral|utmcct=/forum/affich-23072456-page-de-demarage-seeearch" (REG_SZ)
62.
63. [HKU\S-1-5-21-116240524-840477392-1593334273-1000\Software\DownloadManager\649]
64. "Cookie"="VISITOR=4e63ba65ce09e741710011ff; sf.consume=c0c8fc8504acb3e0dc1739f743db68f9a2af56fdgAJ9cQEoVQhfZXhwaXJlc3ECY2RhdGV0aW1lCmRhdGV0aW1lCnEDVQoH9gETAw4HAAAAhVJxBFUDX2lkcQVVIDQ5MWMxNWFhM2FlNTUyMmE0ZDU1YWUzZTMwNDQ0OWE1cQZVDnVzZXNfcmVsYXRpb25zcQeJVQd2ZXJzaW9ucQhVATJVA2tleXEJVRg0ZTYzYmE2NWNlMDllNzQxNzEwMDExZmZxClUFcHJlZnNxC31xDFUOX2FjY2Vzc2VkX3RpbWVxDUdB05jumX2RbVUOX2NyZWF0aW9uX3RpbWVxDkdB05jumWfMdXUu; __utma=191645736.1029317361.1315158631.1315158631.1315158631.1; __utmb=191645736.1.10.1315158631; __utmc=191645736; __utmz=191645736.1315158631.1.1.utmcsr=commentcamarche.net|utmccn=(referral)|utmcmd=referral|utmcct=/forum/affich-23072456-page-de-demarage-seeearch; ki_r=http%3A//www.commentcamarche.net/forum/affich-23072456-page-de-demarage-seeearch; ki_u=711f9222-0215-b685-aef5-bfecef24a57d; ki_t=1315158632102%3B1315158632102%3B1315158632102%3B1%3B1" (REG_SZ)
65.
66. [HKU\S-1-5-21-116240524-840477392-1593334273-1000\Software\DownloadManager\649]
67. "owWPCookies"="sf.consume=c0c8fc8504acb3e0dc1739f743db68f9a2af56fdgAJ9cQEoVQhfZXhwaXJlc3ECY2RhdGV0aW1lCmRhdGV0aW1lCnEDVQoH9gETAw4HAAAAhVJxBFUDX2lkcQVVIDQ5MWMxNWFhM2FlNTUyMmE0ZDU1YWUzZTMwNDQ0OWE1cQZVDnVzZXNfcmVsYXRpb25zcQeJVQd2ZXJzaW9ucQhVATJVA2tleXEJVRg0ZTYzYmE2NWNlMDllNzQxNzEwMDExZmZxClUFcHJlZnNxC31xDFUOX2FjY2Vzc2VkX3RpbWVxDUdB05jumX2RbVUOX2NyZWF0aW9uX3RpbWVxDkdB05jumWfMdXUu; __utma=191645736.1029317361.1315158631.1315158631.1315158631.1; __utmb=191645736.1.10.1315158631; __utmc=191645736; __utmz=191645736.1315158631.1.1.utmcsr=commentcamarche.net|utmccn=(referral)|utmcmd=referral|utmcct=/forum/affich-23072456-page-de-demarage-seeearch; ki_r=http%3A//www.commentcamarche.net/forum/affich-23072456-page-de-demarage-seeearch; ki_u=711f9222-0215-b685-aef5-bfecef24a57d; ki_t=1315158632102%3B1315158632102%3B1315158632102%3B1%3B1" (REG_SZ)
68.
69. [HKU\S-1-5-21-116240524-840477392-1593334273-1000\Software\DownloadManager\649]
70. "Url0"="https://sourceforge.net/projects/javara/files/javara/JavaRa/JavaRa.zip/download?use_mirror=freefr&r=http%3A%2F%2Fwww.commentcamarche.net%2Fforum%2Faffich-23072456-page-de-demarage-seeearch&use_mirror=garr" (REG_SZ)
71.
72. [HKU\S-1-5-21-116240524-840477392-1593334273-1000\Software\DownloadManager\649]
73. "U0_c"="sf.consume=c0c8fc8504acb3e0dc1739f743db68f9a2af56fdgAJ9cQEoVQhfZXhwaXJlc3ECY2RhdGV0aW1lCmRhdGV0aW1lCnEDVQoH9gETAw4HAAAAhVJxBFUDX2lkcQVVIDQ5MWMxNWFhM2FlNTUyMmE0ZDU1YWUzZTMwNDQ0OWE1cQZVDnVzZXNfcmVsYXRpb25zcQeJVQd2ZXJzaW9ucQhVATJVA2tleXEJVRg0ZTYzYmE2NWNlMDllNzQxNzEwMDExZmZxClUFcHJlZnNxC31xDFUOX2FjY2Vzc2VkX3RpbWVxDUdB05jumX2RbVUOX2NyZWF0aW9uX3RpbWVxDkdB05jumWfMdXUu; __utma=191645736.1029317361.1315158631.1315158631.1315158631.1; __utmb=191645736.1.10.1315158631; __utmc=191645736; __utmz=191645736.1315158631.1.1.utmcsr=commentcamarche.net|utmccn=(referral)|utmcmd=referral|utmcct=/forum/affich-23072456-page-de-demarage-seeearch; ki_r=http%3A//www.commentcamarche.net/forum/affich-23072456-page-de-demarage-seeearch; ki_u=711f9222-0215-b685-aef5-bfecef24a57d; ki_t=1315158632102%3B1315158632102%3B1315158632102%3B1%3B1" (REG_SZ)
74.
75. [HKU\S-1-5-21-116240524-840477392-1593334273-1000\Software\DownloadManager\651]
76. "Cookie"="FH_PreferredCulture=en-US; __utma=144473122.1630793086.1315159672.1315159672.1315159672.1; __utmb=144473122.1.10.1315159672; __utmc=144473122; __utmz=144473122.1315159672.1.1.utmcsr=commentcamarche.net|utmccn=(referral)|utmcmd=referral|utmcct=/forum/affich-23072456-page-de-demarage-seeearch" (REG_SZ)
77.
78. [HKU\S-1-5-21-116240524-840477392-1593334273-1000\Software\DownloadManager\651]
79. "owWPCookies"="FH_PreferredCulture=en-US; __utma=144473122.1630793086.1315159672.1315159672.1315159672.1; __utmb=144473122.1.10.1315159672; __utmc=144473122; __utmz=144473122.1315159672.1.1.utmcsr=commentcamarche.net|utmccn=(referral)|utmcmd=referral|utmcct=/forum/affich-23072456-page-de-demarage-seeearch" (REG_SZ)
80.
81. [HKU\S-1-5-21-116240524-840477392-1593334273-1000\Software\DownloadManager\651]
82. "U0_c"="FH_PreferredCulture=en-US; __utma=144473122.1630793086.1315159672.1315159672.1315159672.1; __utmb=144473122.1.10.1315159672; __utmc=144473122; __utmz=144473122.1315159672.1.1.utmcsr=commentcamarche.net|utmccn=(referral)|utmcmd=referral|utmcct=/forum/affich-23072456-page-de-demarage-seeearch" (REG_SZ)
83.
84. [HKU\S-1-5-21-116240524-840477392-1593334273-1000\Software\DownloadManager\652]
85. "Cookie"="__utma=144473122.1630793086.1315159672.1315159672.1315159672.1; __utmb=144473122.2.10.1315159672; __utmz=144473122.1315159672.1.1.utmcsr=commentcamarche.net|utmccn=(referral)|utmcmd=referral|utmcct=/forum/affich-23072456-page-de-demarage-seeearch; __utmc=144473122; UDC=010764f5-c40a-4cef-aca8-bc1b2c880ee3" (REG_SZ)
86.
87. [HKU\S-1-5-21-116240524-840477392-1593334273-1000\Software\DownloadManager\652]
88. "owWPCookies"="FH_PreferredCulture=en-US; __utma=144473122.1630793086.1315159672.1315159672.1315159672.1; __utmb=144473122.2.10.1315159672; __utmz=144473122.1315159672.1.1.utmcsr=commentcamarche.net|utmccn=(referral)|utmcmd=referral|utmcct=/forum/affich-23072456-page-de-demarage-seeearch; __utmc=144473122; UDC=010764f5-c40a-4cef-aca8-bc1b2c880ee3" (REG_SZ)
89.
90. [HKU\S-1-5-21-116240524-840477392-1593334273-1000\Software\DownloadManager\652]
91. "U0_c"="FH_PreferredCulture=en-US; __utma=144473122.1630793086.1315159672.1315159672.1315159672.1; __utmb=144473122.2.10.1315159672; __utmz=144473122.1315159672.1.1.utmcsr=commentcamarche.net|utmccn=(referral)|utmcmd=referral|utmcct=/forum/affich-23072456-page-de-demarage-seeearch; __utmc=144473122; UDC=010764f5-c40a-4cef-aca8-bc1b2c880ee3" (REG_SZ)
92.
93. [HKU\S-1-5-21-116240524-840477392-1593334273-1000\Software\DownloadManager\653]
94. "Cookie"="__utma=144473122.1630793086.1315159672.1315159672.1315159672.1; __utmb=144473122.3.10.1315159672; __utmz=144473122.1315159672.1.1.utmcsr=commentcamarche.net|utmccn=(referral)|utmcmd=referral|utmcct=/forum/affich-23072456-page-de-demarage-seeearch; __utmc=144473122; UDC=010764f5-c40a-4cef-aca8-bc1b2c880ee3" (REG_SZ)
95.
96. [HKU\S-1-5-21-116240524-840477392-1593334273-1000\Software\DownloadManager\653]
97. "owWPCookies"="FH_PreferredCulture=en-US; __utma=144473122.1630793086.1315159672.1315159672.1315159672.1; __utmb=144473122.3.10.1315159672; __utmz=144473122.1315159672.1.1.utmcsr=commentcamarche.net|utmccn=(referral)|utmcmd=referral|utmcct=/forum/affich-23072456-page-de-demarage-seeearch; __utmc=144473122; UDC=010764f5-c40a-4cef-aca8-bc1b2c880ee3" (REG_SZ)
98.
99. [HKU\S-1-5-21-116240524-840477392-1593334273-1000\Software\DownloadManager\653]
100. "U0_c"="FH_PreferredCulture=en-US; __utma=144473122.1630793086.1315159672.1315159672.1315159672.1; __utmb=144473122.3.10.1315159672; __utmz=144473122.1315159672.1.1.utmcsr=commentcamarche.net|utmccn=(referral)|utmcmd=referral|utmcct=/forum/affich-23072456-page-de-demarage-seeearch; __utmc=144473122; UDC=010764f5-c40a-4cef-aca8-bc1b2c880ee3" (REG_SZ)
101.
102. [HKU\S-1-5-21-116240524-840477392-1593334273-1000\Software\Policies\Microsoft\Internet Explorer\Main]
103. "Start Page"="http://ww10.seeearch.com" (REG_SZ)
104.
105. =========================
106.
107. Fin à: 20:31:08 le 04/09/2011
108. 352911 Éléments analysés
109.
110. =========================
111. E.O.F

re

oui j'iai xteetl rcdr,pu msd éisalto efnton info la methode sur le site de seeearch ne fonctionne pas, les programme de désinstallation ne s'éxécutent meme pas.

salutations.

je voulais dire que j'ai fait tous ce que vous avez dit,

+

re

re

enfin ca fonctionne, j'ai copier les fichier de désinstallation dans c:

je exécuter et apres redemarage du navigateur internet explorer, j'ai google cherche à la place de seeearch,

il falais vraiment tous ca pour pouvoir se débarasser de ce seeearch,

c'est pas normal,


1000 merci à vous tous et UN GRAND MERCI à FISH66.

bravo

bonjour,

merci phibe pour votre réponse,

j'ai déposer le rapport de SEAF on recherchons le mot (seeearch), et je pense que ma base de registre est bouré de seeearch,

j'ai le centiment qu'il faut supprimer quelque chose pour que seeearch disparai, mais je sais pas quoi faire.

merci les amis.