Sujet Précédent Sujet Suivant

Virus à lallumage

klm735 Messages postés 40 Statut Membre -  
 Utilisateur anonyme -
Bonjour,j'ai un virus à l'allumage,soit disant de la gendarmerie qui bloque l'ordinateur et me demande un règlement de 100 euros.J'ai pu rallumer l'ordi avec f4 puis mode sans échec mais je n'ai plus de son et toutes les icones sont grossies.Aidez moi s'il vous plait à pouvoir rallumer l'ordi sans ce virus.D'avance merci.

A voir également:

62 réponses

Précédent
Réponse 21 / 62
Utilisateur anonyme
 
C:\Delfix.txt
0
Réponse 22 / 62
klm735 Messages postés 40 Statut Membre
 
Avec Delfix,pas de trace de raport.Avec Pre scan le logiciel tourne en boucle.A-t-il un autre moyen de scaner?Merci
0
Réponse 23 / 62
Utilisateur anonyme
 
qu'est-ce que tu apelles tourne en boucle ?
0
Réponse 24 / 62
klm735 Messages postés 40 Statut Membre
 
Il scane toujours les memes fichiers et n'avance pas.Y-a-t-il un autre logiciel de scan?
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 62
Utilisateur anonyme
 
tu crois qu il avance pas mais en fait si , il ne peut pas tourner en rond
0
Réponse 26 / 62
klm735 Messages postés 40 Statut Membre
 
Et pourtant si,il a tourné pendant 12 heures et il en était toujours au début.Y-a-t-il un autre logiciel de scan?
0
Réponse 27 / 62
Utilisateur anonyme
 
alors y a un truc...

retelecharge la version ".pif" et lance-le en mode sans echec
0
Réponse 28 / 62
klm735 Messages postés 40 Statut Membre
 
Ou trouver la version pif?
0
Réponse 29 / 62
Utilisateur anonyme
 
https://forums.commentcamarche.net/forum/affich-25307239-virus-a-lallumage?full#1
0
Réponse 30 / 62
klm735 Messages postés 40 Statut Membre
 
Voici les deux raports sur mon bureau apres le scan:¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Pre_Scan | 2.604 ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤ XP | Vista | 7 | 8 - 32/64 bits ¤¤¤¤¤

~ Mis à jour le 04/06/2012 | 18.35 par g3n-h@ckm@n
~ Informations Evolution : https://gen-hackman.kanak.fr/
~ Informations sur les switchs Pre_Script : https://gen-hackman.kanak.fr/
~ Feedback Pre_scan : https://gen-hackman.kanak.fr/#505
~ Merci à Slyk & Saachaa pour leur apport à l'évolution de l'outil

~ Utilisateur : clement (Administrateurs) | SID = S-1-5-21-256286368-1765848927-3188923961-1000
~ Ordinateur : CLEMENT-PC

~ Système d'exploitation : Windows 7 Home Premium (64 bits) HomePremium Service Pack 1
~ Type d'installation : Client
~ Enregistré sous : clement
~ Enregistré sous : Microsoft
~ Processeur : Intel(R) Core(TM)2 Quad CPU Q8300 @ 2.50GHz
~ Identification : Intel64 Family 6 Model 23 Stepping 10

Pare-feu windows : Inactif
Windows Defender : Inactif

~ Mémoire RAM = Total (KB) : 6290420 | Used (%) : 23 | Free (KB) : 4836810
~ Pagefile = Total (KB) : 12578980 | Free (KB) : 10959890
~ Virtuelle = Total (KB) : 4194180 | Free (KB) : 4002720

c:\ -> [Fixed] | [OS] | Total : 942040 Mo | Free : 599340 Mo -> NTFS

Scan : 19:42:57 | 04/06/2012

¤¤¤¤¤¤¤¤¤¤ | Navigateurs

Internet Explorer : 8.0.7601.17514
Google Chrome : 19.0.1084.52

¤ Par défaut :

[HKCR\http | command] : "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome

¤¤¤¤¤¤¤¤¤¤ | Frameworks

~ [14/07/2009 05:20:10] - C:\Windows\Microsoft.net\Framework\v1.0.3705
~ [14/07/2009 05:20:10] - C:\Windows\Microsoft.net\Framework\v1.1.4322
~ [14/07/2009 05:20:10] - C:\Windows\Microsoft.net\Framework\v1.0.3705
~ [14/07/2009 05:20:10] - C:\Windows\Microsoft.net\Framework\v1.1.4322
~ [14/07/2009 05:20:10] - C:\Windows\Microsoft.net\Framework\v2.0.50727
~ [14/07/2009 07:32:38] - C:\Windows\Microsoft.net\Framework\v3.0
~ [14/07/2009 07:32:38] - C:\Windows\Microsoft.net\Framework\v3.5
~ [03/12/2010 06:25:35] - C:\Windows\Microsoft.net\Framework\v4.0.30319

¤¤¤¤¤¤¤¤¤¤ | Windows Updates

¤¤¤¤¤¤¤¤¤¤ | Sessions | Profiles | Directories

~ [HKLM | ProfileList\S-1-5-21-256286368-1765848927-3188923961-1000] : ProfileImagePath -> C:\Users\clement
~ [HKLM | ProfileList\S-1-5-21-256286368-1765848927-3188923961-1000] : RefCount -> 5
~ [HKLM | ProfileList\S-1-5-21-256286368-1765848927-3188923961-1000] : State -> 0

~ C:\Windows\system32\config\systemprofile
~ C:\Windows\ServiceProfiles\LocalService
~ C:\Windows\ServiceProfiles\NetworkService
~ C:\Users\clement

[HKLM | ProfileLoader\{F5441CBB-AE7D-4495-905B-161047E58936}] : DllName -> userenv.dll

¤¤¤¤¤¤¤¤¤¤ | Contrôle MD5

[MD5.332FEAB1435662FC6C672E25BEB37BE3] - [28/04/2011 16:44:02] - (.© Microsoft Corporation. - Explorateur Windows.) - [2804.5 Ko] - (6.1.7601.17567) - C:\Windows\explorer.exe
[MD5.C235A51CB740E45FFA0EBFB9BAFCDA64] - [14/07/2009 01:56:52] - (.© Microsoft Corporation. - Explorateur Windows.) - [2801 Ko] - (6.1.7600.16385) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[MD5.F170B4A061C9E026437B193B4D571799] - [16/11/2010 00:26:59] - (.© Microsoft Corporation. - Explorateur Windows.) - [2801 Ko] - (6.1.7600.16404) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe
[MD5.6D4F9E4B640B413C6F73414327484C80] - [16/11/2010 00:26:52] - (.© Microsoft Corporation. - Explorateur Windows.) - [2801.5 Ko] - (6.1.7600.16434) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16434_none_addea9f19345cd81\explorer.exe
[MD5.9AAAEC8DAC27AA17B053E6352AD233AE] - [16/11/2010 00:27:08] - (.© Microsoft Corporation. - Explorateur Windows.) - [2803 Ko] - (6.1.7600.16450) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[MD5.0862495E0C825893DB75EF44FAEA8E93] - [28/04/2011 16:44:02] - (.© Microsoft Corporation. - Explorateur Windows.) - [2803 Ko] - (6.1.7600.16768) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_adc24107935a7e25\explorer.exe
[MD5.700073016DAC1C3D2E7E2CE4223334B6] - [16/11/2010 00:26:59] - (.© Microsoft Corporation. - Explorateur Windows.) - [2801 Ko] - (6.1.7600.20500) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[MD5.CA17F8620815267DC838E30B68CB5052] - [16/11/2010 00:26:52] - (.© Microsoft Corporation. - Explorateur Windows.) - [2801.5 Ko] - (6.1.7600.20542) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20542_none_ae5b763cac6d568e\explorer.exe
[MD5.B8EC4BD49CE8F6FC457721BFC210B67F] - [16/11/2010 00:27:08] - (.© Microsoft Corporation. - Explorateur Windows.) - [2803 Ko] - (6.1.7600.20563) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[MD5.E38899074D4951D31B4040E994DD7C8D] - [28/04/2011 16:44:02] - (.© Microsoft Corporation. - Explorateur Windows.) - [2803.5 Ko] - (6.1.7600.20910) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_ae79ed04ac56c4a9\explorer.exe
[MD5.AC4C51EB24AA95B77F705AB159189E24] - [24/06/2011 18:24:11] - (.© Microsoft Corporation. - Explorateur Windows.) - [2805 Ko] - (6.1.7601.17514) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - [28/04/2011 16:44:02] - (.© Microsoft Corporation. - Explorateur Windows.) - [2804.5 Ko] - (6.1.7601.17567) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[MD5.3B69712041F3D63605529BD66DC00C48] - [28/04/2011 16:44:02] - (.© Microsoft Corporation. - Explorateur Windows.) - [2804.5 Ko] - (6.1.7601.21669) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[MD5.15BC38A7492BEFE831966ADB477CF76F] - [14/07/2009 01:41:14] - (.© Microsoft Corporation. - Explorateur Windows.) - [2552 Ko] - (6.1.7600.16385) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[MD5.B95EEB0F4E5EFBF1038A35B3351CF047] - [16/11/2010 00:26:59] - (.© Microsoft Corporation. - Explorateur Windows.) - [2552 Ko] - (6.1.7600.16404) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[MD5.FC89FACA0473641CB625EDA9277D0885] - [16/11/2010 00:26:52] - (.© Microsoft Corporation. - Explorateur Windows.) - [2552 Ko] - (6.1.7600.16434) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16434_none_b8335443c7a68f7c\explorer.exe
[MD5.2626FC9755BE22F805D3CFA0CE3EE727] - [16/11/2010 00:27:08] - (.© Microsoft Corporation. - Explorateur Windows.) - [2553 Ko] - (6.1.7600.16450) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[MD5.2AF58D15EDC06EC6FDACCE1F19482BBF] - [28/04/2011 16:44:02] - (.© Microsoft Corporation. - Explorateur Windows.) - [2553.5 Ko] - (6.1.7600.16768) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_b816eb59c7bb4020\explorer.exe
[MD5.9FF6C4C91A3711C0A3B18F87B08B518D] - [16/11/2010 00:26:59] - (.© Microsoft Corporation. - Explorateur Windows.) - [2552 Ko] - (6.1.7600.20500) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[MD5.00B0358734CAA32C39D181FE6916B178] - [16/11/2010 00:26:52] - (.© Microsoft Corporation. - Explorateur Windows.) - [2552 Ko] - (6.1.7600.20542) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20542_none_b8b0208ee0ce1889\explorer.exe
[MD5.C76153C7ECA00FA852BB0C193378F917] - [16/11/2010 00:27:08] - (.© Microsoft Corporation. - Explorateur Windows.) - [2553 Ko] - (6.1.7600.20563) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[MD5.255CF508D7CFB10E0794D6AC93280BD8] - [28/04/2011 16:44:02] - (.© Microsoft Corporation. - Explorateur Windows.) - [2553.5 Ko] - (6.1.7600.20910) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_b8ce9756e0b786a4\explorer.exe
[MD5.40D777B7A95E00593EB1568C68514493] - [24/06/2011 18:24:05] - (.© Microsoft Corporation. - Explorateur Windows.) - [2555 Ko] - (6.1.7601.17514) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - [28/04/2011 16:44:02] - (.© Microsoft Corporation. - Explorateur Windows.) - [2555 Ko] - (6.1.7601.17567) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe

[HKLM | ProfileLoader\{F5441CBB-AE7D-4495-905B-161047E58936}] : DllName -> userenv.dll

¤¤¤¤¤¤¤¤¤¤ | Contrôle MD5

[MD5.332FEAB1435662FC6C672E25BEB37BE3] - [28/04/2011 16:44:02] - (.© Microsoft Corporation. - Explorateur Windows.) - [2804.5 Ko] - (6.1.7601.17567) - C:\Windows\explorer.exe
[MD5.C235A51CB740E45FFA0EBFB9BAFCDA64] - [14/07/2009 01:56:52] - (.© Microsoft Corporation. - Explorateur Windows.) - [2801 Ko] - (6.1.7600.16385) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[MD5.F170B4A061C9E026437B193B4D571799] - [16/11/2010 00:26:59] - (.© Microsoft Corporation. - Explorateur Windows.) - [2801 Ko] - (6.1.7600.16404) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe
[MD5.6D4F9E4B640B413C6F73414327484C80] - [16/11/2010 00:26:52] - (.© Microsoft Corporation. - Explorateur Windows.) - [2801.5 Ko] - (6.1.7600.16434) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16434_none_addea9f19345cd81\explorer.exe
[MD5.9AAAEC8DAC27AA17B053E6352AD233AE] - [16/11/2010 00:27:08] - (.© Microsoft Corporation. - Explorateur Windows.) - [2803 Ko] - (6.1.7600.16450) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[MD5.0862495E0C825893DB75EF44FAEA8E93] - [28/04/2011 16:44:02] - (.© Microsoft Corporation. - Explorateur Windows.) - [2803 Ko] - (6.1.7600.16768) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_adc24107935a7e25\explorer.exe
[MD5.700073016DAC1C3D2E7E2CE4223334B6] - [16/11/2010 00:26:59] - (.© Microsoft Corporation. - Explorateur Windows.) - [2801 Ko] - (6.1.7600.20500) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[MD5.CA17F8620815267DC838E30B68CB5052] - [16/11/2010 00:26:52] - (.© Microsoft Corporation. - Explorateur Windows.) - [2801.5 Ko] - (6.1.7600.20542) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20542_none_ae5b763cac6d568e\explorer.exe
[MD5.B8EC4BD49CE8F6FC457721BFC210B67F] - [16/11/2010 00:27:08] - (.© Microsoft Corporation. - Explorateur Windows.) - [2803 Ko] - (6.1.7600.20563) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[MD5.E38899074D4951D31B4040E994DD7C8D] - [28/04/2011 16:44:02] - (.© Microsoft Corporation. - Explorateur Windows.) - [2803.5 Ko] - (6.1.7600.20910) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_ae79ed04ac56c4a9\explorer.exe
[MD5.AC4C51EB24AA95B77F705AB159189E24] - [24/06/2011 18:24:11] - (.© Microsoft Corporation. - Explorateur Windows.) - [2805 Ko] - (6.1.7601.17514) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - [28/04/2011 16:44:02] - (.© Microsoft Corporation. - Explorateur Windows.) - [2804.5 Ko] - (6.1.7601.17567) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[MD5.3B69712041F3D63605529BD66DC00C48] - [28/04/2011 16:44:02] - (.© Microsoft Corporation. - Explorateur Windows.) - [2804.5 Ko] - (6.1.7601.21669) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[MD5.15BC38A7492BEFE831966ADB477CF76F] - [14/07/2009 01:41:14] - (.© Microsoft Corporation. - Explorateur Windows.) - [2552 Ko] - (6.1.7600.16385) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[MD5.B95EEB0F4E5EFBF1038A35B3351CF047] - [16/11/2010 00:26:59] - (.© Microsoft Corporation. - Explorateur Windows.) - [2552 Ko] - (6.1.7600.16404) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[MD5.FC89FACA0473641CB625EDA9277D0885] - [16/11/2010 00:26:52] - (.© Microsoft Corporation. - Explorateur Windows.) - [2552 Ko] - (6.1.7600.16434) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16434_none_b8335443c7a68f7c\explorer.exe
[MD5.2626FC9755BE22F805D3CFA0CE3EE727] - [16/11/2010 00:27:08] - (.© Microsoft Corporation. - Explorateur Windows.) - [2553 Ko] - (6.1.7600.16450) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[MD5.2AF58D15EDC06EC6FDACCE1F19482BBF] - [28/04/2011 16:44:02] - (.© Microsoft Corporation. - Explorateur Windows.) - [2553.5 Ko] - (6.1.7600.16768) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_b816eb59c7bb4020\explorer.exe
[MD5.9FF6C4C91A3711C0A3B18F87B08B518D] - [16/11/2010 00:26:59] - (.© Microsoft Corporation. - Explorateur Windows.) - [2552 Ko] - (6.1.7600.20500) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[MD5.00B0358734CAA32C39D181FE6916B178] - [16/11/2010 00:26:52] - (.© Microsoft Corporation. - Explorateur Windows.) - [2552 Ko] - (6.1.7600.20542) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20542_none_b8b0208ee0ce1889\explorer.exe
[MD5.C76153C7ECA00FA852BB0C193378F917] - [16/11/2010 00:27:08] - (.© Microsoft Corporation. - Explorateur Windows.) - [2553 Ko] - (6.1.7600.20563) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[MD5.255CF508D7CFB10E0794D6AC93280BD8] - [28/04/2011 16:44:02] - (.© Microsoft Corporation. - Explorateur Windows.) - [2553.5 Ko] - (6.1.7600.20910) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_b8ce9756e0b786a4\explorer.exe
[MD5.40D777B7A95E00593EB1568C68514493] - [24/06/2011 18:24:05] - (.© Microsoft Corporation. - Explorateur Windows.) - [2555 Ko] - (6.1.7601.17514) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - [28/04/2011 16:44:02] - (.© Microsoft Corporation. - Explorateur Windows.) - [2555 Ko] - (6.1.7601.17567) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[MD5.0FB9C74046656D1579A64660AD67B746] - [28/04/2011 16:44:02] - (.© Microsoft Corporation. - Explorateur Windows.) - [2555 Ko] - (6.1.7601.21669) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[MD5.60C2862B4BF0FD9F582EF344C2B1EC72] - [14/07/2009 01:19:49] - (.© Microsoft Corporation. - Processus d'exécution client-serveur.) - [7.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\csrss.exe
[MD5.60C2862B4BF0FD9F582EF344C2B1EC72] - [14/07/2009 01:19:49] - (.© Microsoft Corporation. - Processus d'exécution client-serveur.) - [7.5 Ko] - (6.1.7600.16385) - C:\Windows\winsxs\amd64_microsoft-windows-csrss_31bf3856ad364e35_6.1.7600.16385_none_b4d8d57efdc6b4f3\csrss.exe ->
[MD5.1911A3356FA3F77CCC825CCBAC038C2A] - [14/07/2009 01:19:50] - (.© Microsoft Corporation. - Gestionnaire de sessions Windows.) - [110 Ko] - (6.1.7600.16385) - C:\Windows\System32\smss.exe
[MD5.1911A3356FA3F77CCC825CCBAC038C2A] - [14/07/2009 01:19:50] - (.© Microsoft Corporation. - Windows Session Manager.) - [110 Ko] - (6.1.7600.16385) - C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe
[MD5.BAFE84E637BF7388C96EF48D4D3FDD53] - [24/06/2011 18:23:39] - (.© Microsoft Corporation. - Application d'ouverture de session Userinit.) - [30 Ko] - (6.1.7601.17514) - C:\Windows\System32\userinit.exe
[MD5.61AC3EFDFACFDD3F0F11DD4FD4044223] - [24/06/2011 18:23:40] - (.© Microsoft Corporation. - Application d'ouverture de session Userinit.) - [26 Ko] - (6.1.7601.17514) - C:\Windows\SysWOW64\userinit.exe
[MD5.6F8F1376A13114CC10C0E69274F5A4DE] - [14/07/2009 01:50:33] - (.© Microsoft Corporation. - Application d'ouverture de session Userinit.) - [29.5 Ko] - (6.1.7600.16385) - C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
[MD5.BAFE84E637BF7388C96EF48D4D3FDD53] - [24/06/2011 18:23:39] - (.© Microsoft Corporation. - Application d'ouverture de session Userinit.) - [30 Ko] - (6.1.7601.17514) - C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe
[MD5.6DE80F60D7DE9CE6B8C2DDFDF79EF175] - [14/07/2009 01:34:20] - (.© Microsoft Corporation. - Application d'ouverture de session Userinit.) - [25.5 Ko] - (6.1.7600.16385) - C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[MD5.61AC3EFDFACFDD3F0F11DD4FD4044223] - [24/06/2011 18:23:40] - (.© Microsoft Corporation. - Application d'ouverture de session Userinit.) - [26 Ko] - (6.1.7601.17514) - C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - [14/07/2009 01:52:37] - (.© Microsoft Corporation. - Application de démarrage de Windows.) - [126 Ko] - (6.1.7600.16385) - C:\Windows\System32\wininit.exe
[MD5.B5C5DCAD3899512020D135600129D665] - [14/07/2009 01:36:49] - (.© Microsoft Corporation. - Application de démarrage de Windows.) - [94 Ko] - (6.1.7600.16385) - C:\Windows\SysWOW64\wininit.exe
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - [14/07/2009 01:52:37] - (.© Microsoft Corporation. - Application de démarrage de Windows.) - [126 Ko] - (6.1.7600.16385) - C:\Windows\winsxs\amd64_microsoft-windows-wininit_31bf3856ad364e35_6.1.7600.16385_none_8ce7aa761e01ad49\wininit.exe
[MD5.B5C5DCAD3899512020D135600129D665] - [14/07/2009 01:36:49] - (.© Microsoft Corporation. - Application de démarrage de Windows.) - [94 Ko] - (6.1.7600.16385) - C:\Windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.1.7600.16385_none_30c90ef265a43c13\wininit.exe
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - [24/06/2011 18:24:00] - (.© Microsoft Corporation. - Application d'ouverture de session Windows.) - [381.5 Ko] - (6.1.7601.17514) - C:\Windows\System32\winlogon.exe
[MD5.132328DF455B0028F13BF0ABEE51A63A] - [14/07/2009 01:52:48] - (.© Microsoft Corporation. - Windows Logon Application.) - [380 Ko] - (6.1.7600.16385) - C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[MD5.DA3E2A6FA9660CC75B471530CE88453A] - [16/11/2010 00:27:08] - (.© Microsoft Corporation. - Windows Logon Application.) - [380.5 Ko] - (6.1.7600.16447) - C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe
[MD5.A93D41A4D4B0D91C072D11DD8AF266DE] - [16/11/2010 00:27:08] - (.© Microsoft Corporation. - Windows Logon Application.) - [380.5 Ko] - (6.1.7600.20560) - C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - [24/06/2011 18:24:00] - (.© Microsoft Corporation. - Application d'ouverture de session Windows.) - [381.5 Ko] - (6.1.7601.17514) - C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - [16/02/2012 05:34:16] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [487 Ko] - (6.1.7601.17752) - C:\Windows\System32\drivers\afd.sys
[MD5.B9384E03479D2506BC924C16A3DB87BC] - [14/07/2009 01:21:44] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [488.5 Ko] - (6.1.7600.16385) - C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7600.16385_none_33dd3439781e25f7\afd.sys
[MD5.6EF20DDF3172E97D69F596FB90602F29] - [16/06/2011 19:35:51] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [488 Ko] - (6.1.7600.16802) - C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7600.16802_none_3430bc3977dfec2d\afd.sys
[MD5.DB9D6C6B2CD95A9CA414D045B627422E] - [16/02/2012 05:34:16] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [487.5 Ko] - (6.1.7600.16937) - C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7600.16937_none_34154fcd77f3bbda\afd.sys
[MD5.FBFF8B7C9D116229E9208A0D1CAEB49B] - [16/06/2011 19:35:51] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [488 Ko] - (6.1.7600.20951) - C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7600.20951_none_3483491e9126fe55\afd.sys
[MD5.CCA39961E76B491DDF44B1E90FC8971D] - [16/02/2012 05:34:16] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [487.5 Ko] - (6.1.7600.21115) - C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7600.21115_none_34b263fe91032456\afd.sys
[MD5.D31DC7A16DEA4A9BAF179F3D6FBDB38C] - [24/06/2011 18:24:07] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [488 Ko] - (6.1.7601.17514) - C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7601.17514_none_360e4801750ca991\afd.sys
[MD5.D5B031C308A409A0A576BFF4CF083D30] - [16/06/2011 19:35:51] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [487.5 Ko] - (6.1.7601.17603) - C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7601.17603_none_3618198975057170\afd.sys
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - [16/02/2012 05:34:16] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [487 Ko] - (6.1.7601.17752) - C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7601.17752_none_35e10b89752ee0f5\afd.sys
[MD5.F4AD06143EAC303F55D0E86C40802976] - [16/06/2011 19:35:51] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [487.5 Ko] - (6.1.7601.21712) - C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7601.21712_none_3695e61e8e2c13d4\afd.sys
[MD5.36A14FD1A23F57046361733B792CA8DB] - [16/02/2012 05:34:16] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [486.5 Ko] - (6.1.7601.21887) - C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7601.21887_none_364f3a028e605345\afd.sys
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - [14/07/2009 01:19:47] - (.© Microsoft Corporation. - ATAPI IDE Miniport Driver.) - [23.56 Ko] - (6.1.7600.16385) - C:\Windows\System32\drivers\atapi.sys
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - [14/07/2009 01:19:47] - (.© Microsoft Corporation. - ATAPI IDE Miniport Driver.) - [23.56 Ko] - (6.1.7600.16385) - C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - [14/07/2009 01:19:47] - (.© Microsoft Corporation. - ATAPI IDE Miniport Driver.) - [23.56 Ko] - (6.1.7600.16385) - C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.20575_none_39c1885e54505643\atapi.sys
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - [14/07/2009 01:19:47] - (.© Microsoft Corporation. - ATAPI IDE Miniport Driver.) - [23.56 Ko] - (6.1.7600.16385) - C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys
[MD5.F036CE71586E93D94DAB220D7BDF4416] - [24/06/2011 18:23:27] - (.© Microsoft Corporation. - SCSI CD-ROM Driver.) - [144 Ko] - (6.1.7601.17514) - C:\Windows\System32\drivers\cdrom.sys
[MD5.83D2D75E1EFB81B3450C18131443F7DB] - [14/07/2009 01:19:54] - (.© Microsoft Corporation. - SCSI CD-ROM Driver.) - [144 Ko] - (6.1.7600.16385) - C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys
[MD5.F036CE71586E93D94DAB220D7BDF4416] - [24/06/2011 18:23:27] - (.© Microsoft Corporation. - SCSI CD-ROM Driver.) - [144 Ko] - (6.1.7601.17514) - C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys
[MD5.09594D1089C523423B32A4229263F068] - [24/06/2011 18:24:03] - (.© Microsoft Corporation. - MBT Transport driver.) - [255.5 Ko] - (6.1.7601.17514) - C:\Windows\System32\drivers\netbt.sys
[MD5.9162B273A44AB9DCE5B44362731D062A] - [14/07/2009 01:21:29] - (.© Microsoft Corporation. - MBT Transport driver.) - [253 Ko] - (6.1.7600.16385) - C:\Windows\winsxs\amd64_microsoft-windows-netbt_31bf3856ad364e35_6.1.7600.16385_none_bc59ba0910f52e0c\netbt.sys
[MD5.09594D1089C523423B32A4229263F068] - [24/06/2011 18:24:03] - (.© Microsoft Corporation. - MBT Transport driver.) - [255.5 Ko] - (6.1.7601.17514) - C:\Windows\winsxs\amd64_microsoft-windows-netbt_31bf3856ad364e35_6.1.7601.17514_none_be8acdd10de3b1a6\netbt.sys
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - [24/06/2011 18:24:03] - (.© Microsoft Corporation. - TDI Translation Driver.) - [116.5 Ko] - (6.1.7601.17514) - C:\Windows\System32\drivers\tdx.sys
[MD5.079125C4B17B01FCAEEBCE0BCB290C0F] - [14/07/2009 01:21:15] - (.© Microsoft Corporation. - TDI Translation Driver.) - [97.5 Ko] - (6.1.7600.16385) - C:\Windows\winsxs\amd64_microsoft-windows-tdi-over-tcpip_31bf3856ad364e35_6.1.7600.16385_none_4632b9f2f5c6af5e\tdx.sys
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - [24/06/2011 18:24:03] - (.© Microsoft Corporation. - TDI Translation Driver.) - [116.5 Ko] - (6.1.7601.17514) - C:\Windows\winsxs\amd64_microsoft-windows-tdi-over-tcpip_31bf3856ad364e35_6.1.7601.17514_none_4863cdbaf2b532f8\tdx.sys
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - [24/06/2011 18:23:55] - (.© Microsoft Corporation. - Pilote de cliché instantané du volume.) - [288.88 Ko] - (6.1.7601.17514) - C:\Windows\System32\drivers\volsnap.sys
[MD5.58F82EED8CA24B461441F9C3E4F0BF5C] - [14/07/2009 01:20:09] - (.© Microsoft Corporation. - Volume Shadow Copy Driver.) - [288.08 Ko] - (6.1.7600.16385) - C:\Windows\winsxs\amd64_volume.inf_31bf3856ad364e35_6.1.7600.16385_none_71aba92815c60174\volsnap.sys
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - [24/06/2011 18:23:55] - (.© Microsoft Corporation. - Volume Shadow Copy Driver.) - [288.88 Ko] - (6.1.7601.17514) - C:\Windows\winsxs\amd64_volume.inf_31bf3856ad364e35_6.1.7601.17514_none_73dcbcf012b4850e\volsnap.sys

21:23:37

¤¤¤¤¤¤¤¤¤¤ | Processus

atiesrxx.exe (1004) -> Processus stoppé
atieclxx.exe (1192) -> Processus stoppé
DockLogin.exe (1216) -> Processus stoppé
spoolsv.exe (1516) -> Processus stoppé
AppleMobileDeviceService.exe (1724) -> Processus stoppé
mDNSResponder.exe (1796) -> Processus stoppé
SeaPort.exe (1928) -> Processus stoppé
SftService.exe (1968) -> Processus stoppé
taskhost.exe (2112) -> Processus stoppé
taskeng.exe (2120) -> Processus stoppé
rbmonitor.exe (2224) -> Processus stoppé
explorer.exe (2244) -> Processus stoppé
McSvHost.exe (2372) -> Processus stoppé
Toaster.exe (2676) -> Processus stoppé
RAVCpl64.exe (2752) -> Processus stoppé
STService.exe (2764) -> Processus stoppé
uTorrent.exe (2080) -> Processus stoppé
conhost.exe (576) -> Processus stoppé
mediaget.exe (124) -> Processus stoppé
DellDock.exe (2100) -> Processus stoppé
SearchIndexer.exe (2772) -> Processus stoppé
WUDFHost.exe (3464) -> Processus stoppé
DSUpd.exe (3628) -> Processus stoppé
registrybooster.exe (3804) -> Processus stoppé
IAStorIcon.exe (4012) -> Processus stoppé
MOM.exe (4332) -> Processus stoppé
DataSafeOnline.exe (5084) -> Processus stoppé
RoxioBurnLauncher.exe (5100) -> Processus stoppé
mcagent.exe (5116) -> Processus stoppé
SweetIM.exe (4484) -> Processus stoppé
datamngrUI.exe (4604) -> Processus stoppé
jusched.exe (5136) -> Processus stoppé
Updater.exe (5168) -> Processus stoppé
iTunesHelper.exe (5256) -> Processus stoppé
iPodService.exe (5700) -> Processus stoppé
wmpnetwk.exe (6032) -> Processus stoppé
CCC.exe (5132) -> Processus stoppé
IAStorDataMgrSvc.exe (6588) -> Processus stoppé
jucheck.exe (4968) -> Processus stoppé

¤¤¤¤¤¤¤¤¤¤ | Processus en cours

Demarrage : Normal

1544 | C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe - Système - Normal - "C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe" - 676
1700 | C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe - Système - Normal - "C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe" - 676
5196 | C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe - clement - Normal - "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min - 2984
6512 | C:\Users\clement\Downloads\winlogon.exe - clement - Normal - "C:\Users\clement\Downloads\winlogon.exe" - 2244
5688 | C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - Système - Normal - "C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe" - 676
6916 | C:\Pre_Scan\Pv.exe - clement - Normal - C:\Pre_Scan\Pv.exe -o"%i | %f - %u - %p - %l - %r" - 6592

¤¤¤¤¤¤¤¤¤¤ | Winlogon

¤

[HKLM | Winlogon] | Shell : explorer.exe
[HKLM | Winlogon] | AutoRestartShell : 0
[HKLM | Winlogon] | userinit : C:\Windows\system32\userinit.exe,
[HKLM | Winlogon] | PowerDownAfterShutdown : -> 1
[HKLM | Winlogon] | System :
[HKLM | Winlogon] | VMApplet : SystemPropertiesPerformance.exe /pagefile

¤¤¤¤¤¤¤¤¤¤ | Winlogon\Notify

¤¤¤¤¤¤¤¤¤¤ | Associations

[.exe] : exefile
[exefile | command] : "%1" %*
[.com] : comfile
[comfile | command] : "%1" %*
[.reg] : regfile
[regfile | command] : regedit.exe "%1"
[.scr] : scrfile
[scrfile | command] : "%1" /S
[.bat] : batfile
[batfile | command] : "%1" %*
[.cmd] : cmdfile
[cmdfile | command] : "%1" %*
[.pif] : piffile
[piffile | command] : "%1" %*
[.url] : InternetShortcut
[InternetShortcut | command] : "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l
[Application.Manifest | command] : rundll32.exe dfshim.dll,ShOpenVerbApplication %1
[Application.Reference | command] : rundll32.exe dfshim.dll,ShOpenVerbShortcut %1|%2
[Folder | command] : C:\Windows\explorer.exe

¤

[IE | Command] | @ : "C:\Program Files (x86)\Internet Explorer\iexplore.exe"
[Applications | IE | Command] | @ : "C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1
[Safari | Command] | @ : "C:\Program Files (x86)\Safari\Safari.exe"
[Assoc | Applications] | @ : http://shell.windows.com/fileassoc/%04x/xml/redir.asp?Ext=%s

¤¤¤¤¤¤¤¤¤¤ | Corrections diverses

[HKLM | HideDesktopIcons\ClassicStartMenu] | {9343812e-1c37-4a49-a12e-4b2d810d956b} : 0
[HKLM | HideDesktopIcons\NewStartPanel] | {F02C1A0D-BE21-4350-88B0-7367FC96EF3C} : 0
[HKLM | HideDesktopIcons\NewStartPanel] | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 0
[HKLM | HideDesktopIcons\NewStartPanel] | {208D2C60-3AEA-1069-A2D7-08002B30309D} : 0
[HKLM | HideDesktopIcons\NewStartPanel] | {871C5380-42A0-1069-A2EA-08002B30309D} : 0
[HKLM | HideDesktopIcons\NewStartPanel] | {5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0} : 0
[HKLM | HideDesktopIcons\NewStartPanel] | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 0
[HKLM | HideDesktopIcons\NewStartPanel] | {9343812e-1c37-4a49-a12e-4b2d810d956b} : 0
[HKLM | Advanced\Folder\Hidden\SHOWALL] | CheckedValue : 1
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000 | Desktop] | Wallpaper : C:\Users\clement\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
[HKU\S-1-5-19 | Policies\Explorer] | NoDesktop : 0
[HKU\S-1-5-20 | Policies\Explorer] | NoDesktop : 0
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000 | Policies\Explorer] | NoDesktop : 0
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000_Classes | Policies\Explorer] | NoDesktop : 0
[HKU\S-1-5-18 | Policies\Explorer] | NoDesktop : 0
[HKLM | policies\Explorer] | NoDesktop : 0
[HKU\S-1-5-19 | Explorer\Advanced] | Hidden : 0
[HKU\S-1-5-20 | Explorer\Advanced] | Hidden : 0
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000 | Explorer\Advanced] | Hidden : 0
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000_Classes | Explorer\Advanced] | Hidden : 0
[HKU\S-1-5-18 | Explorer\Advanced] | Hidden : 0
[HKLM | policies\Explorer] | NoRun : 0
[HKLM | policies\Explorer] | NoActiveDesktop : 0
[HKLM | policies\Explorer] | NoActiveDesktopChanges : 0
[HKLM | Windows\System] | DisableCMD : 0
[HKLM | Policies\System] | DisableTaskMgr : 0
[HKLM | Policies\System] | DisableRegistryTools : 0
[HKLM | Policies\System] | DisableTaskMgr : 0
[HKLM | Policies\System] | DisableRegistryTools : 0

21:23:38

¤¤¤¤¤¤¤¤¤¤ | Services

[RPCSS] | Start : 2 : Actif
[Cmbatt] | Start : 3 : Inactif
[Compbatt] | Start : 3 -> 0 : Inactif
[Ndisuio] | Start : 3 : Inactif
[Power] | Start : 2 : Actif
[Profsvc] | Start : 2 : Actif
[PlugPlay] | Start : 2 : Actif
[PEAUTH] | Start : 2 : Actif
[nsi] | Start : 2 : Actif
[NLASvc] | Start : 2 : Actif
[MMCSS] | Start : 2 : Inactif
[luafv] | Start : 2 : Actif
[lltdio] | Start : 2 : Actif
[IKEEXT] | Start : 2 : Inactif
[IAStorDataMgrsvc] | Start : 2 : Inactif
[gpsvc] | Start : 2 : Actif
[lmhosts] | Start : 2 : Inactif
[LanmanWorkstation] | Start : 2 : Actif
[LanmanServer] | Start : 2 : Actif
[agp440] | Start : 3 -> 2 : Inactif
[AudioEndpointBuilder] | Start : 2 : Actif
[Audiosrv] | Start : 2 : Actif
[Bits] | Start : 2 : Actif
[CryptSvc] | Start : 2 : Actif
[EapHost] | Start : 3 -> 2 : Inactif
[Wlansvc] | Start : 3 -> 2 : Inactif
[SharedAccess] | Start : 4 -> 2 : Inactif
[wuauserv] | Start : 2 : Actif
[WerSvc] | Start : 3 -> 2 : Inactif
[wscsvc] | Start : -> 2 : Inactif

21:23:38

¤¤¤¤¤¤¤¤¤¤ | Internet Explorer

[HKU\S-1-5-21-256286368-1765848927-3188923961-1000 | Main] | Start Page : https://www.google.fr/?gws_rd=ssl -> https://www.google.com/?gws_rd=ssl
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000 | Main] | Local Page : C:\Windows\system32\blank.htm
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000 | Main] | Search Page : https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

[HKLM | Search] | SearchAssistant : -> http://www.google.com/toolbar/ie8/sidebar.html
[HKLM | Main] | Start Page : http://startsear.ch/?aff=2&cf=cfc72f49-3712-11e1-8ca4-b8ac6fdc4630 -> https://www.msn.com/fr-fr/?ocid=iehp
[HKLM | Main] | Local Page : C:\Windows\SysWOW64\blank.htm
[HKLM | Main] | Default_Search_URL : https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
[HKLM | Main] | Default_Page_URL : https://www.msn.com/fr-fr/?ocid=iehp
[HKLM | Main] | Search Page : https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
[HKLM | AboutURLs] | Tabs : res://ieframe.dll/tabswelcome.htm

¤

[HKU\S-1-5-21-256286368-1765848927-3188923961-1000 | Internet settings] | ProxyOverride : *.local
[HKU\S-1-5-19 | Internet settings] | EnableHttp1_1 : 1
[HKU\S-1-5-20 | Internet settings] | EnableHttp1_1 : 1
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000 | Internet settings] | EnableHttp1_1 : 1
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000 | Internet settings] | MigrateProxy : 1
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000 | Internet settings] | WarnonZoneCrossing : 0 -> 1
[HKU\S-1-5-19 | Internet settings] | AutoConfigProxy : wininet.dll
[HKU\S-1-5-20 | Internet settings] | AutoConfigProxy : wininet.dll
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000 | Internet settings] | AutoConfigProxy : wininet.dll
[HKU\S-1-5-18 | Internet settings] | AutoConfigProxy : wininet.dll

¤

[HKU\S-1-5-21-256286368-1765848927-3188923961-1000\Software\Microsoft\Internet Explorer\SearchScopes\{043C5167-00BB-4324-AF7E-62013FAEDACF}] | (Web Search...) -> http://ww1.toolbarhome.com{searchTerms}&srch=dsp
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}] | (Search the web (Babylon)) -> http://search.babylon.com/web/{searchTerms}?babsrc=SP_ss&affID=100607&mntrId=5e2985d5000000000000b8ac6fdc4630
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}] | (Search Results) -> http://www1.search-results.com/web?l=dis&q=&o=APN10653&apn_dtid=%5EIME001%5EYY%5EFR&shad=s_0043&gct=ds&apn_ptnrs=%5EAGE&d=1-1083&lang=en&atb=sysid%3D1%3Aappid%3D1083%3Auid%3D16ea04ac75081eae%3Asrc%3Dieb%3Ao%3DAPN10653%3Atg%3D&p2=%5EAGE%5EIME001%5EYY%5EFR{searchTerms}
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BE019F7-9844-40B9-90A7-50EAAC9F0426}] | (Ask Search) -> http://www.search.ask.com/?l=dis{searchTerms}&locale=&apn_ptnrs=&apn_dtid=OSJ000&apn_uid=6EFD86FD-D7B3-4519-BB91-7A4ACB950400&apn_sauid=9B62711D-DD51-448D-A1CF-46C146749BD6&
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000\Software\Microsoft\Internet Explorer\SearchScopes\{B00434A1-AC6E-422E-9283-9FB2BA294D72}] | () ->
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}] | (MyStart Search) -> https://mystart.incredibar.com/mb106/?search={searchTerms}&loc=IB_DS&a=6OypNyU2Yt&i=26
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000\Software\Microsoft\Internet Explorer\SearchScopes\{E413986E-4DDB-4853-8FE4-ECBB419124B9}] | () ->
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000\Software\Microsoft\Internet Explorer\SearchScopes\{E82B6F5A-32B9-46C4-84A8-58F2539DB3B5}] | (Search Results) -> http://www1.search-results.com/web?l=dis&q=&o=APN10653&apn_dtid=%5EIME001%5EYY%5EFR&shad=s_0043&gct=ds&apn_ptnrs=%5EAGE&d=1-1083&lang=en&atb=sysid%3D1%3Aappid%3D1083%3Auid%3D16ea04ac75081eae%3Asrc%3Dieb%3Ao%3DAPN10653%3Atg%3D&p2=%5EAGE%5EIME001%5EYY%5EFR{searchTerms}
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}] | (SweetIM Search) -> https://search.sweetim.com/search.asp?src=6&q={searchTerms}

[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] | () ->
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}] | (Search Results) -> http://www1.search-results.com/web?l=dis&q=&o=APN10653&apn_dtid=%5EIME001%5EYY%5EFR&shad=s_0043&gct=ds&apn_ptnrs=%5EAGE&d=1-1083&lang=en&atb=sysid%3D1%3Aappid%3D1083%3Auid%3D16ea04ac75081eae%3Asrc%3Dieb%3Ao%3DAPN10653%3Atg%3D&p2=%5EAGE%5EIME001%5EYY%5EFR{searchTerms}
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{E413986E-4DDB-4853-8FE4-ECBB419124B9}] | (Bing) -> https://www.bing.com/?scope=web&mkt=fr-FR{searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{E82B6F5A-32B9-46C4-84A8-58F2539DB3B5}] | (Search Results) -> http://www1.search-results.com/web?l=dis&q=&o=APN10653&apn_dtid=%5EIME001%5EYY%5EFR&shad=s_0043&gct=ds&apn_ptnrs=%5EAGE&d=1-1083&lang=en&atb=sysid%3D1%3Aappid%3D1083%3Auid%3D16ea04ac75081eae%3Asrc%3Dieb%3Ao%3DAPN10653%3Atg%3D&p2=%5EAGE%5EIME001%5EYY%5EFR{searchTerms}
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}] | (SweetIM Search) -> https://search.sweetim.com/search.asp?src=6&q={searchTerms}

[HKU\S-1-5-21-256286368-1765848927-3188923961-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}] | () ->
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6052BF20-EA23-4A04-B3C1-A20EFE01A95A}] | () ->
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{680FA47E-AB59-46BE-B594-7358726E108B}] | () ->
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}] | () ->
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}] | () ->
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C442AC41-9200-4770-8CC0-7CDB4F245C55}] | () ->
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0A900DF-9611-4446-86BD-4B1D47E7DB2A}] | () ->
[HKU\S-1-5-21-256286368-1765848927-3188923961-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E8BC6C2B-DD90-4397-96EB-2AAF0E48ABE6}] | () ->

[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0002df01-0000-0000-c000-000000000046}] | (iexplore.exe) -> C:\Program Files (x86)\Internet Explorer
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{003B91A6-61E3-4591-891D-01E94C8CB11E}] | (Silverlight.Configuration.exe) -> c:\Program Files (x86)\Microsoft Silverlight\3.0.40624.0\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{043C5167-00BB-4324-AF7E-62013FAEDACF}] | (lip.exe) -> C:\Program Files (x86)\vShare
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{054aae20-4bea-4347-8a35-64a533254a9d}] | (tabtip.exe) -> C:\Program Files (x86)\Common Files\Microsoft Shared\Ink
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a}] | (wpcer.exe) -> C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08E8D305-8D6D-49fe-8603-03A926E46AE0}] | (Adobe_Updater.exe) -> C:\Program Files (x86)\Common Files\Adobe\Updater6
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08f24d68-9087-4b24-81ad-7b34af3e3ed5}] | (Acrobat Elements.exe) -> C:\Program Files (x86)\adobe\acrobat 6.0\Acrobat Elements
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695}] | (winfxdocobj.exe) -> C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0ABE0FED-50E7-4e42-A125-57C0A11DBCDE}] | (iMesh.exe) -> C:\Program Files (x86)\iMesh Applications\iMesh
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1138506a-b949-46a7-b6c0-ee26499fdeaf}] | (wuapp.exe) -> C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{130c40f0-1bcb-4852-8b63-291cf90a600b}] | (msdt.exe) -> C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{15B3FB63-66F4-4EFC-B717-BB283B85E79B}] | (AcroBroker.exe) -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{186e0934-aee9-11da-961b-0014223d2a70}] | (dfsvc.exe) -> C:\Windows\microsoft.net\framework\v2.0.50727
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1F1E561D-AF17-4510-B996-351BBA0862A7}] | () ->
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1FCCD250-A453-4348-86C1-E5EA9B76FADB}] | (mcvsmap.exe) -> C:\Program Files\McAfee\VirusScan
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2391d819-9d17-44ec-9ac1-f6aa07549469}] | (wermgr.exe) -> C:\Windows\system32
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{26fe7361-bd5a-4dcb-b309-c6f42dde661c}] | (ieinstal.exe) -> C:\Program Files (x86)\Internet Explorer
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{28387537-e3f9-4ed7-860c-11e69af4a8a0}] | (uninstall.exe) -> C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\ToolBar
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{28A36D69-07EA-44CE-B298-1A8B3E8B6FE1}] | (Skype.exe) -> C:\Program Files (x86)\Skype\Phone\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{358E6F10-DE8A-4602-8424-179CA217F8EE}] | (AcroRd32Info.exe) -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3B9A6E32-36C9-4946-B78C-3F58E3785EC1}] | (unpack200.exe) -> C:\Program Files (x86)\Java\jre6\bin
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{43ABBB95-C0E9-497B-8BB9-B5FA08861705}] | (wlmail.exe) -> C:\Program Files (x86)\Windows Live\Mail\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{44D1B085-E495-4b5f-9EE6-34795C46E7E7}] | (jp2launcher.exe) -> C:\Program Files (x86)\Java\jre6\bin
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4becf16c-74f0-429b-8d3e-4fba507ac661}] | (acrord32.exe) -> C:\Program Files (x86)\adobe\acrobat 7.0\reader
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4C0B7A7C-8ECF-422f-9448-0874C41D4532}] | (WLLoginProxy.exe) -> %ProgramFiles(x86)%\Common Files\Microsoft Shared\Windows Live
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{50A6102E-D757-409e-97B7-6EA4EEEA5BC3}] | (BookmarkDAV_client.exe) -> C:\Program Files (x86)\Common Files\Apple\Internet Services\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5852F5ED-8BF4-11D4-A245-0080C6F74284}] | (javaws.exe) -> C:\Program Files (x86)\Java\jre6\bin
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6052BF20-EA23-4A04-B3C1-A20EFE01A95A}] | (vtl_hfs.exe) -> C:\Program Files (x86)\Veetle\Player
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{680FA47E-AB59-46BE-B594-7358726E108B}] | (player.exe) -> C:\Program Files (x86)\Veetle\Player
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6bf52a52-394a-11d3-b153-00c04f79faa6}] | (wmplayer.exe) -> %ProgramFiles%\Windows Media Player
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6bf52a52-394a-11d3-b153-00c04f79faa6}-32] | (wmplayer.exe) -> %ProgramFiles(x86)%\Windows Media Player
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999}] | (iedw.exe) -> C:\Program Files (x86)\Internet Explorer
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{71274DC5-D6B8-4B74-BBCF-04D76E30772B}] | (SkypeNames2.exe) -> C:\Program Files (x86)\Skype\Toolbars\Shared\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{74C36554-31F0-49DD-8857-ED6A64DF45BE}] | (incredibarsrv.exe) -> C:\Program Files (x86)\Incredibar.com\incredibar\1.5.3.27
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{78c7b664-c9bf-4ce9-8b3a-b05d442e451e}] | (CertEnrollCtrl.exe) -> C:\Windows\SysWOW64\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7aaae723-5fb5-4b2d-9327-75519f336825}] | () ->
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7B7FB824-0A43-4bc2-B58D-F6386FEEFD84}] | (CGuard.exe) -> Choice Guard
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7eb01fb2-f185-445a-94e4-ec4e1ba2202c}] | (verclsid.exe) -> C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}] | (BabylonToolbarsrv.exe) -> C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.31.6
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{85fc331e-bb64-4c53-ba25-3d8a956c02fd}] | (ctfmon.exe) -> C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{88B89B96-F7B2-469D-8F22-5F3BE33DEDDE}] | (SkypeIEPluginBroker.exe) -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8cec58ae-07a1-11d9-b15e-000d56bfe6ee}] | (helppane.exe) -> C:\Windows
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8E1F80F4-953F-41E7-8460-E64AE5BE4ED3}] | (AdobeCollabSync.exe) -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9060DA4E-2BD8-4BF7-9287-EF8FFB93584E}] | (uTorrentBar_FRToolbarHelper.exe) -> C:\Program Files (x86)\uTorrentBar_FR
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{95a4104c-1c49-4c2a-9830-1be0f47e926c}] | (acrobat.exe) -> C:\Program Files (x86)\adobe\acrobat 7.0\Acrobat
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C6A861C-B233-4994-AFB1-C158EE4FC578}] | (AcroRd32.exe) -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9da1d2cb-796d-4bec-bbaa-0aa9ccd80e15}] | (Acrobat Elements.exe) -> C:\Program Files (x86)\adobe\acrobat 7.0\Acrobat Elements
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{a1ad1bbb-3b33-4260-a74c-5fd8bc1479fc}] | (splwow64.exe) -> C:\Windows
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A2C4A926-ABA8-4983-817F-4EB832F995DA}] | (wltuser.exe) -> C:\Program Files (x86)\Windows Live\Toolbar\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{a5a2d52a-4944-47c4-a3e0-8bd92e14d953}] | (xpsviewer.exe) -> C:\Windows\SysWOW64\xpsviewer
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}] | (SaUpdate.exe) -> C:\Program Files (x86)\Ask.com\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A8F94DF3-F6C6-422a-8BFC-7EE0F60A8609}] | (mcvsshld.exe) -> C:\Program Files\McAfee\VirusScan
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{aff735eb-cdf9-4894-aa69-3e3131128618}] | (cmd.exe) -> C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01}] | (TSWbPrxy.exe) -> C:\Windows\system32
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BD18A03F-31CC-4CC0-B52D-9E199122923D}] | () ->
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C8999AEC-AECE-4E27-9BCB-5358B13F9FF9}] | (dfsvc.exe) -> C:\Windows\Microsoft.NET\Framework\v4.0.30319\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C8999AED-AECE-4E27-9BCB-5358B13F9FF9}] | (dfsvc.exe) -> C:\Windows\Microsoft.NET\Framework64\v4.0.30319\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C8FE2181-CAE7-49EE-9B04-DB7EB4DA544A}] | (ssvagent.exe) -> C:\Program Files (x86)\Java\jre6\bin
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D133B285-8A43-4EC7-93BE-9B909C2370F5}] | (msnmsgr.exe) -> C:\Program Files (x86)\Windows Live\Messenger\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d8a5d001-3352-40db-9d1c-ed46683193b5}] | (WindowsLiveWriter.exe) -> C:\Program Files (x86)\Windows Live\Writer\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{da8002cf-2914-493a-b7e8-79740e2e15db}] | (OfferBox.exe) -> C:\Program Files (x86)\OfferBox
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{dc6bf185-7ae4-444e-8c35-e447b0d2bd1e}] | (notepad.exe) -> C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e5f90a07-7db7-4dcb-bd6d-d3fecd376ca3}] | (acrord32.exe) -> C:\Program Files (x86)\adobe\acrobat 6.0\reader
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E8BC6C2B-DD90-4397-96EB-2AAF0E48ABE6}] | (vtl_hfax.exe) -> C:\Program Files (x86)\Veetle\Player
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ED0A8FC4-DAEA-4D84-82EC-3CC8BBFA4E96}] | (dtUser.exe) -> C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\ToolBar
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{eee261cc-4b3e-46e7-affb-61f297155bf2}] | (presentationhost.exe) -> C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}] | (mgHelperApp.exe) -> C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F1D2EFD5-E6DA-4F53-BD63-3711A6A558FD}] | (ConduitEngineHelper.exe) -> C:\Program Files (x86)\ConduitEngine
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F3A8DDCF-2275-418A-838C-55C743B55B0D}] | (dtUser.exe) -> C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\ToolBar
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FAF199D2-BFA7-4394-A4DE-044A08E59B32}] | (FlashUtil11f_ActiveX.exe) -> C:\Windows\SysWOW64\Macromed\Flash
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{fb9e068b-c612-4fa8-bdb9-d728a716a420}] | (acrobat.exe) -> C:\Program Files (x86)\adobe\acrobat 6.0\Acrobat

¤¤¤¤¤¤¤¤¤¤ | Firefox

¤¤¤¤¤¤¤¤¤¤ | Extensions

¤¤¤¤¤¤¤¤¤¤ | Plugins

¤¤¤¤¤¤¤¤¤¤ | DNS

[HKLM\SYSTEM\CCS | Tcpip\Parameters] | DhcpNameServer : 212.27.40.241 212.27.40.240
[HKLM\SYSTEM\ControlSet001 | Interfaces\{B638AB7F-E270-40B3-980C-6DDE0F506DA2}] | DhcpNameServer : 212.27.40.241 212.27.40.240
[HKLM\SYSTEM\ControlSet002 | Interfaces\{B638AB7F-E270-40B3-980C-6DDE0F506DA2}] | DhcpNameServer : 212.27.40.241 212.27.40.240
[HKLM\SYSTEM\CurrentControlSet | Interfaces\{B638AB7F-E270-40B3-980C-6DDE0F506DA2}] | DhcpNameServer : 212.27.40.241 212.27.40.240

¤¤¤¤¤¤¤¤¤¤ | Hosts

# 127.0.0.1 localhost
# ::1 localhost

2 ligne(s)

¤¤¤¤¤¤¤¤¤¤ | Traitement Fichiers | Dossiers | Registre

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Pre_Scan | 2.604 ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤ XP | Vista | 7 | 8 - 32/64 bits ¤¤¤¤¤

~ Mis à jour le 04/06/2012 | 18.35 par g3n-h@ckm@n
~ Informations Evolution : https://gen-hackman.kanak.fr/
~ Informations sur les switchs Pre_Script : https://gen-hackman.kanak.fr/
~ Feedback Pre_scan : https://gen-hackman.kanak.fr/#505
~ Merci à Slyk & Saachaa pour leur apport à l'évolution de l'outil

~ Utilisateur : clement (Administrateurs) | SID = S-1-5-21-256286368-1765848927-3188923961-1000
~ Ordinateur : CLEMENT-PC

~ Système d'exploitation : Windows 7 Home Premium (64 bits) HomePremium Service Pack 1
~ Type d'installation : Client
~ Enregistré sous : clement
~ Enregistré sous : Microsoft
~ Processeur : Intel(R) Core(TM)2 Quad CPU Q8300 @ 2.50GHz
~ Identification : Intel64 Family 6 Model 23 Stepping 10

Pare-feu windows : Inactif
Windows Defender : Inactif

~ Mémoire RAM = Total (KB) : 6290420 | Used (%) : 21 | Free (KB) : 4956340
~ Pagefile = Total (KB) : 12578980 | Free (KB) : 11162380
~ Virtuelle = Total (KB) : 4194180 | Free (KB) : 3993100

c:\ -> [Fixed] | [OS] | Total : 942040 Mo | Free : 599390 Mo -> NTFS

Scan : 18:49:57 | 05/06/2012

¤¤¤¤¤¤¤¤¤¤ | Navigateurs

Internet Explorer : 8.0.7601.17514
Google Chrome : 19.0.1084.52

¤ Par défaut :

[HKCR\http | command] : "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome

¤¤¤¤¤¤¤¤¤¤ | Frameworks

~ [14/07/2009 05:20:10] - C:\Windows\Microsoft.net\Framework\v1.0.3705
~ [14/07/2009 05:20:10] - C:\Windows\Microsoft.net\Framework\v1.1.4322
~ [14/07/2009 05:20:10] - C:\Windows\Microsoft.net\Framework\v1.0.3705
~ [14/07/2009 05:20:10] - C:\Windows\Microsoft.net\Framework\v1.1.4322
~ [14/07/2009 05:20:10] - C:\Windows\Microsoft.net\Framework\v2.0.50727
~ [14/07/2009 07:32:38] - C:\Windows\Microsoft.net\Framework\v3.0
~ [14/07/2009 07:32:38] - C:\Windows\Microsoft.net\Framework\v3.5
~ [03/12/2010 06:25:35] - C:\Windows\Microsoft.net\Framework\v4.0.30319

¤¤¤¤¤¤¤¤¤¤ | Windows Updates

¤¤¤¤¤¤¤¤¤¤ | Sessions | Profiles | Directories

~ [HKLM | ProfileList\S-1-5-21-256286368-1765848927-3188923961-1000] : ProfileImagePath -> C:\Users\clement
~ [HKLM | ProfileList\S-1-5-21-256286368-1765848927-3188923961-1000] : RefCount -> 1
~ [HKLM | ProfileList\S-1-5-21-256286368-1765848927-3188923961-1000] : State -> 256

~ C:\Windows\system32\config\systemprofile
~ C:\Windows\ServiceProfiles\LocalService
~ C:\Windows\ServiceProfiles\NetworkService
~ C:\Users\clement

[HKLM | ProfileLoader\{F5441CBB-AE7D-4495-905B-161047E58936}] : DllName -> userenv.dll

¤¤¤¤¤¤¤¤¤¤ | Contrôle MD5

[MD5.332FEAB1435662FC6C672E25BEB37BE3] - [28/04/2011 16:44:02] - (.© Microsoft Corporation. - Explorateur Windows.) - [2804.5 Ko] - (6.1.7601.17567) - C:\Windows\explorer.exe
[MD5.C235A51CB740E45FFA0EBFB9BAFCDA64] - [14/07/2009 01:56:52] - (.© Microsoft Corporation. - Explorateur Windows.) - [2801 Ko] - (6.1.7600.16385) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[MD5.F170B4A061C9E026437B193B4D571799] - [16/11/2010 00:26:59] - (.© Microsoft Corporation. - Explorateur Windows.) - [2801 Ko] - (6.1.7600.16404) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe
[MD5.6D4F9E4B640B413C6F73414327484C80] - [16/11/2010 00:26:52] - (.© Microsoft Corporation. - Explorateur Windows.) - [2801.5 Ko] - (6.1.7600.16434) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16434_none_addea9f19345cd81\explorer.exe
[MD5.9AAAEC8DAC27AA17B053E6352AD233AE] - [16/11/2010 00:27:08] - (.© Microsoft Corporation. - Explorateur Windows.) - [2803 Ko] - (6.1.7600.16450) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[MD5.0862495E0C825893DB75EF44FAEA8E93] - [28/04/2011 16:44:02] - (.© Microsoft Corporation. - Explorateur Windows.) - [2803 Ko] - (6.1.7600.16768) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_adc24107935a7e25\explorer.exe
[MD5.700073016DAC1C3D2E7E2CE4223334B6] - [16/11/2010 00:26:59] - (.© Microsoft Corporation. - Explorateur Windows.) - [2801 Ko] - (6.1.7600.20500) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[MD5.CA17F8620815267DC838E30B68CB5052] - [16/11/2010 00:26:52] - (.© Microsoft Corporation. - Explorateur Windows.) - [2801.5 Ko] - (6.1.7600.20542) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20542_none_ae5b763cac6d568e\explorer.exe
[MD5.B8EC4BD49CE8F6FC457721BFC210B67F] - [16/11/2010 00:27:08] - (.© Microsoft Corporation. - Explorateur Windows.) - [2803 Ko] - (6.1.7600.20563) - C:\Windows\winsxs\amd64_microsoft-windows-e
0
Réponse 31 / 62
Utilisateur anonyme
 
pourquoi tu n'heberges pas comme demandé ?
0
Réponse 32 / 62
klm735 Messages postés 40 Statut Membre
 
Désolé mais je ne sais pas bien faire ce genre de choses.Le raport t'aprend-t-il quelque chose?Merci d'avance.
0
Réponse 33 / 62
Utilisateur anonyme
 
ben non il en manque 80%

je le dis ici comment heberger :

https://forums.commentcamarche.net/forum/affich-25307239-virus-a-lallumage?full#1
0
Réponse 34 / 62
klm735 Messages postés 40 Statut Membre
 
J'ai hébergé les deux raports sur le site.Je n'ai pas obtenu de lien mais le mot de passe pour les retrouver est"solex14".Merci.
0
Réponse 35 / 62
Utilisateur anonyme
 
sisi t'as obtenu un lien
0
Réponse 36 / 62
klm735 Messages postés 40 Statut Membre
 
Ou trouver ce lien sur le site?Merci.
0
Réponse 37 / 62
Utilisateur anonyme
 
c'est ecrit en gros en plein milieu de la page
0
Réponse 38 / 62
klm735 Messages postés 40 Statut Membre
 
J'envoie le raport et aucun lien n'apparait.Ne peut-tu-pas le trouver avec le mot de passe ou bien n'y-a-t-il pas un autre site ou heberger le raport?Merci.
0
Réponse 39 / 62
Utilisateur anonyme
 
https://www.cjoint.com/
0
Réponse 40 / 62
klm735 Messages postés 40 Statut Membre
 
Merci.Les liens pour les deux raports obtenus sont:https://www.cjoint.com/?BGiryGaKWFz et:http://cjoint.com/BGirz1u9770
0

Discussions similaires

Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
Désinstaller Softonic
Diguimette -
lilidurhone -

5 réponses
virus Artemis!
mabiche37 -
Malekal_morte- -

14 réponses
Message Apple virus !!
Souclik67 -
MPMP10 -

3 réponses