Sujet Précédent Sujet Suivant

Problème d'affichage avec google

Fermé
manon - 4 juin 2013 à 06:39
billmaxime Messages postés 50445 Date d'inscription dimanche 20 novembre 2011 Statut Contributeur Dernière intervention 23 décembre 2024 - 27 août 2013 à 07:30
Bonjour, L
Lorsque je fais une recherche dans google, je ne peux pas accéder aux adresses de sites proposées à droite de l'écran.
Dans la barre d'adresse en haut de l'écran est inscrit 'googleadservices.com" et lorsque je clique sur une de ces adresses de sites , j'ai à l'écran "Internet Explorer ne peut afficher cette page".
Est-ce que c'est normal ?
Y'a-t-il un moyen de pouvoir accéder à ces sites qui sont souvent d'apparence intéressants ?
Je vous remercie pour votre aide et à plus tard !
A voir également:

68 réponses

Précédent
Réponse 41 / 68
manon
29 juin 2013 à 18:39
Je croyais te les avoir déjà envoyés, désolée

Voilà ce que j'ai sur le bureau
a+

RogueKiller V8.6.1 [Jun 25 2013] par Tigzy
mail : tigzyRK<at>gmail<dot>com
Remontees : http://www.sur-la-toile.com/discussion-193725-1--RogueKiller-Remontees.html
Site Web : http://www.sur-la-toile.com/RogueKiller/
Blog : http://tigzyrk.blogspot.com/

Systeme d'exploitation : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Demarrage : Mode normal
Utilisateur : SANDRINE [Droits d'admin]
Mode : Recherche -- Date : 06/26/2013 11:44:47
| ARK || FAK || MBR |

¤¤¤ Processus malicieux : 0 ¤¤¤

¤¤¤ Entrees de registre : 1 ¤¤¤
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> TROUVÉ

¤¤¤ Tâches planifiées : 1 ¤¤¤
[V1][SUSP PATH] OptimizerPro1UpdaterTask{8F1C255F-C9AF-48D1-8267-70AEC056FFE8}.job : C:\Documents and Settings\All Users\Application Data\Premium\OptimizerPro1\OptimizerPro1.exe - /schedule /profilepath "C:\Documents and Settings\All Users\Application Data\Premium\OptimizerPro1\profile.ini" [x][x] -> TROUVÉ

¤¤¤ Entrées Startup : 0 ¤¤¤

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver : [CHARGE] ¤¤¤

¤¤¤ Ruches Externes: ¤¤¤

¤¤¤ Infection : Mal.Hosts ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

127.0.0.1 ad.doubleclick.net # This may interefere with www.sears.com --> Potentially malicious!
127.0.0.1 c1.statcounter.com --> Potentially malicious!
127.0.0.1 c3.statcounter.com --> Potentially malicious!
127.0.0.1 s2.statcounter.com --> Potentially malicious!
127.0.0.1 statcounter.com --> Potentially malicious!
127.0.0.1 www.statcounter.com --> Potentially malicious!
127.0.0.1 3ad.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.3au.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.au.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.br.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.ca.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.de.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.es.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.fi.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.fr.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.it.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.jp.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.n2434.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.nl.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.no.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.pl.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.se.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.sg.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.uk.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.ve.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.za.doubleclick.net --> Potentially malicious!
127.0.0.1 ad2.doubleclick.net --> Potentially malicious!
127.0.0.1 doubleclick.com --> Potentially malicious!
127.0.0.1 doubleclick.de --> Potentially malicious!
127.0.0.1 doubleclick.net --> Potentially malicious!
127.0.0.1 exnjadgda1.doubleclick.net --> Potentially malicious!
127.0.0.1 exnjadgda2.doubleclick.net --> Potentially malicious!
127.0.0.1 exnjadgds1.doubleclick.net --> Potentially malicious!
127.0.0.1 exnjmdgda1.doubleclick.net --> Potentially malicious!
127.0.0.1 exnjmdgds1.doubleclick.net --> Potentially malicious!
127.0.0.1 gd1.doubleclick.net --> Potentially malicious!
127.0.0.1 gd10.doubleclick.net --> Potentially malicious!
127.0.0.1 gd11.doubleclick.net --> Potentially malicious!
127.0.0.1 gd12.doubleclick.net --> Potentially malicious!
127.0.0.1 gd13.doubleclick.net --> Potentially malicious!
127.0.0.1 gd14.doubleclick.net --> Potentially malicious!
127.0.0.1 gd15.doubleclick.net --> Potentially malicious!
127.0.0.1 gd16.doubleclick.net --> Potentially malicious!
127.0.0.1 gd17.doubleclick.net --> Potentially malicious!
127.0.0.1 gd18.doubleclick.net --> Potentially malicious!
127.0.0.1 gd19.doubleclick.net --> Potentially malicious!
127.0.0.1 gd2.doubleclick.net --> Potentially malicious!
127.0.0.1 gd20.doubleclick.net --> Potentially malicious!
127.0.0.1 gd21.doubleclick.net --> Potentially malicious!
127.0.0.1 gd22.doubleclick.net --> Potentially malicious!
127.0.0.1 gd23.doubleclick.net --> Potentially malicious!
127.0.0.1 gd24.doubleclick.net --> Potentially malicious!
127.0.0.1 gd25.doubleclick.net --> Potentially malicious!
127.0.0.1 gd26.doubleclick.net --> Potentially malicious!
127.0.0.1 gd27.doubleclick.net --> Potentially malicious!
127.0.0.1 gd28.doubleclick.net --> Potentially malicious!
127.0.0.1 gd29.doubleclick.net --> Potentially malicious!
127.0.0.1 gd3.doubleclick.net --> Potentially malicious!
127.0.0.1 gd30.doubleclick.net --> Potentially malicious!
127.0.0.1 gd31.doubleclick.net --> Potentially malicious!
127.0.0.1 gd4.doubleclick.net --> Potentially malicious!
127.0.0.1 gd5.doubleclick.net --> Potentially malicious!
127.0.0.1 gd7.doubleclick.net --> Potentially malicious!
127.0.0.1 gd8.doubleclick.net --> Potentially malicious!
127.0.0.1 gd9.doubleclick.net --> Potentially malicious!
127.0.0.1 iv.doubleclick.net --> Potentially malicious!
127.0.0.1 ln.doubleclick.net --> Potentially malicious!
127.0.0.1 m.doubleclick.net --> Potentially malicious!
127.0.0.1 m1.doubleclick.net --> Potentially malicious!
127.0.0.1 m2.doubleclick.net --> Potentially malicious!
127.0.0.1 m3.doubleclick.net --> Potentially malicious!
127.0.0.1 m4.doubleclick.net --> Potentially malicious!
127.0.0.1 m5.doubleclick.net --> Potentially malicious!
127.0.0.1 m6.doubleclick.net --> Potentially malicious!
127.0.0.1 m7.doubleclick.net --> Potentially malicious!
127.0.0.1 m8.doubleclick.net --> Potentially malicious!
127.0.0.1 m9.doubleclick.net --> Potentially malicious!
127.0.0.1 n3349ad.doubleclick.net --> Potentially malicious!
127.0.0.1 n479ad.doubleclick.net --> Potentially malicious!
127.0.0.1 optimize.doubleclick.net --> Potentially malicious!
127.0.0.1 rd.intl.doubleclick.net --> Potentially malicious!
127.0.0.1 uunyadgda1.doubleclick.net --> Potentially malicious!
127.0.0.1 uunyadgds1.doubleclick.net --> Potentially malicious!
127.0.0.1 www.winmx.co.kr --> Potentially malicious!
127.0.0.1 www.winmx-download-winmx.com --> Potentially malicious!
127.0.0.1 www.winmxpro.com --> Potentially malicious!
127.0.0.1 www.winmx-pro.com --> Potentially malicious!
127.0.0.1 download-winmx-free.com --> Potentially malicious!
127.0.0.1 www.download-winmx-free.com --> Potentially malicious!
127.0.0.1 www.facebook.com.img335.tk --> Potentially malicious!
127.0.0.1 www.free-winmx-downloads.com --> Potentially malicious!
127.0.0.1 free-winmx-downloads.com --> Potentially malicious!
127.0.0.1 www.mp3winmx.com --> Potentially malicious!
127.0.0.1 mp3winmx.com --> Potentially malicious!
127.0.0.1 winmx.click-new-download.com --> Potentially malicious!
127.0.0.1 www.winmx.click-new-download.com --> Potentially malicious!
127.0.0.1 winmx-d0wnload.com --> Potentially malicious!
127.0.0.1 www.winmx-d0wnload.com --> Potentially malicious!
127.0.0.1 winmxfrance.com --> Potentially malicious!
127.0.0.1 www.winmxfrance.com --> Potentially malicious!
127.0.0.1 winmx-freebie.com --> Potentially malicious!
127.0.0.1 www.winmx-freebie.com --> Potentially malicious!
127.0.0.1 www.winmx-music-download.com --> Potentially malicious!
127.0.0.1 winmx-music-download.com --> Potentially malicious!
127.0.0.1 winmx-usa.com --> Potentially malicious!
127.0.0.1 www.winmx-usa.com --> Potentially malicious!
127.0.0.1 www.google.dospop.com --> Potentially malicious!

127.0.0.1 localhost
127.0.0.1 localhost.localdomain
127.0.0.1 sitefinder.Verisign.com # Verisign has joined the game
127.0.0.1 sitefinder-idn.Verisign.com # of trying to hijack mistyped
127.0.0.1 # URLs to their site.
127.0.0.1 ad.doubleclick.net # This may interefere with www.sears.com
127.0.0.1 # and potentially other sites.
127.0.0.1 media.fastclick.net # Likewise, this may interefer with some
127.0.0.1 # sites.
127.0.0.1 #up CSS on livejournal
127.0.0.1 # problems with NPR.org
127.0.0.1 06272002-dbase.hitcountz.net # Web bugs in spam
127.0.0.1 123counter.mycomputer.com
127.0.0.1 123counter.superstats.com
127.0.0.1 1ca.cqcounter.com
127.0.0.1 1uk.cqcounter.com
127.0.0.1 1us.cqcounter.com
127.0.0.1 2001-007.com
127.0.0.1 4-counter.com
127.0.0.1 abscbn.spinbox.net
[...]


¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: ST3320820AS +++++
--- User ---
[MBR] 0e0e5163afc2218c93f4444ee8a12170
[BSP] 4c61c68ac04096662e33b882358be4b4 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 305242 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Termine : << RKreport[0]_S_06262013_114447.txt >>
RKreport[0]_S_06262013_054102.txt



RogueKiller V8.6.1 [Jun 25 2013] par Tigzy
mail : tigzyRK<at>gmail<dot>com
Remontees : http://www.sur-la-toile.com/discussion-193725-1--RogueKiller-Remontees.html
Site Web : http://www.sur-la-toile.com/RogueKiller/
Blog : http://tigzyrk.blogspot.com/

Systeme d'exploitation : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Demarrage : Mode normal
Utilisateur : SANDRINE [Droits d'admin]
Mode : Recherche -- Date : 06/26/2013 11:50:36
| ARK || FAK || MBR |

¤¤¤ Processus malicieux : 0 ¤¤¤

¤¤¤ Entrees de registre : 0 ¤¤¤

¤¤¤ Tâches planifiées : 0 ¤¤¤

¤¤¤ Entrées Startup : 0 ¤¤¤

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver : [CHARGE] ¤¤¤

¤¤¤ Ruches Externes: ¤¤¤

¤¤¤ Infection : Mal.Hosts ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

127.0.0.1 ad.doubleclick.net # This may interefere with www.sears.com --> Potentially malicious!
127.0.0.1 c1.statcounter.com --> Potentially malicious!
127.0.0.1 c3.statcounter.com --> Potentially malicious!
127.0.0.1 s2.statcounter.com --> Potentially malicious!
127.0.0.1 statcounter.com --> Potentially malicious!
127.0.0.1 www.statcounter.com --> Potentially malicious!
127.0.0.1 3ad.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.3au.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.au.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.br.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.ca.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.de.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.es.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.fi.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.fr.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.it.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.jp.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.n2434.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.nl.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.no.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.pl.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.se.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.sg.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.uk.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.ve.doubleclick.net --> Potentially malicious!
127.0.0.1 ad.za.doubleclick.net --> Potentially malicious!
127.0.0.1 ad2.doubleclick.net --> Potentially malicious!
127.0.0.1 doubleclick.com --> Potentially malicious!
127.0.0.1 doubleclick.de --> Potentially malicious!
127.0.0.1 doubleclick.net --> Potentially malicious!
127.0.0.1 exnjadgda1.doubleclick.net --> Potentially malicious!
127.0.0.1 exnjadgda2.doubleclick.net --> Potentially malicious!
127.0.0.1 exnjadgds1.doubleclick.net --> Potentially malicious!
127.0.0.1 exnjmdgda1.doubleclick.net --> Potentially malicious!
127.0.0.1 exnjmdgds1.doubleclick.net --> Potentially malicious!
127.0.0.1 gd1.doubleclick.net --> Potentially malicious!
127.0.0.1 gd10.doubleclick.net --> Potentially malicious!
127.0.0.1 gd11.doubleclick.net --> Potentially malicious!
127.0.0.1 gd12.doubleclick.net --> Potentially malicious!
127.0.0.1 gd13.doubleclick.net --> Potentially malicious!
127.0.0.1 gd14.doubleclick.net --> Potentially malicious!
127.0.0.1 gd15.doubleclick.net --> Potentially malicious!
127.0.0.1 gd16.doubleclick.net --> Potentially malicious!
127.0.0.1 gd17.doubleclick.net --> Potentially malicious!
127.0.0.1 gd18.doubleclick.net --> Potentially malicious!
127.0.0.1 gd19.doubleclick.net --> Potentially malicious!
127.0.0.1 gd2.doubleclick.net --> Potentially malicious!
127.0.0.1 gd20.doubleclick.net --> Potentially malicious!
127.0.0.1 gd21.doubleclick.net --> Potentially malicious!
127.0.0.1 gd22.doubleclick.net --> Potentially malicious!
127.0.0.1 gd23.doubleclick.net --> Potentially malicious!
127.0.0.1 gd24.doubleclick.net --> Potentially malicious!
127.0.0.1 gd25.doubleclick.net --> Potentially malicious!
127.0.0.1 gd26.doubleclick.net --> Potentially malicious!
127.0.0.1 gd27.doubleclick.net --> Potentially malicious!
127.0.0.1 gd28.doubleclick.net --> Potentially malicious!
127.0.0.1 gd29.doubleclick.net --> Potentially malicious!
127.0.0.1 gd3.doubleclick.net --> Potentially malicious!
127.0.0.1 gd30.doubleclick.net --> Potentially malicious!
127.0.0.1 gd31.doubleclick.net --> Potentially malicious!
127.0.0.1 gd4.doubleclick.net --> Potentially malicious!
127.0.0.1 gd5.doubleclick.net --> Potentially malicious!
127.0.0.1 gd7.doubleclick.net --> Potentially malicious!
127.0.0.1 gd8.doubleclick.net --> Potentially malicious!
127.0.0.1 gd9.doubleclick.net --> Potentially malicious!
127.0.0.1 iv.doubleclick.net --> Potentially malicious!
127.0.0.1 ln.doubleclick.net --> Potentially malicious!
127.0.0.1 m.doubleclick.net --> Potentially malicious!
127.0.0.1 m1.doubleclick.net --> Potentially malicious!
127.0.0.1 m2.doubleclick.net --> Potentially malicious!
127.0.0.1 m3.doubleclick.net --> Potentially malicious!
127.0.0.1 m4.doubleclick.net --> Potentially malicious!
127.0.0.1 m5.doubleclick.net --> Potentially malicious!
127.0.0.1 m6.doubleclick.net --> Potentially malicious!
127.0.0.1 m7.doubleclick.net --> Potentially malicious!
127.0.0.1 m8.doubleclick.net --> Potentially malicious!
127.0.0.1 m9.doubleclick.net --> Potentially malicious!
127.0.0.1 n3349ad.doubleclick.net --> Potentially malicious!
127.0.0.1 n479ad.doubleclick.net --> Potentially malicious!
127.0.0.1 optimize.doubleclick.net --> Potentially malicious!
127.0.0.1 rd.intl.doubleclick.net --> Potentially malicious!
127.0.0.1 uunyadgda1.doubleclick.net --> Potentially malicious!
127.0.0.1 uunyadgds1.doubleclick.net --> Potentially malicious!
127.0.0.1 www.winmx.co.kr --> Potentially malicious!
127.0.0.1 www.winmx-download-winmx.com --> Potentially malicious!
127.0.0.1 www.winmxpro.com --> Potentially malicious!
127.0.0.1 www.winmx-pro.com --> Potentially malicious!
127.0.0.1 download-winmx-free.com --> Potentially malicious!
127.0.0.1 www.download-winmx-free.com --> Potentially malicious!
127.0.0.1 www.facebook.com.img335.tk --> Potentially malicious!
127.0.0.1 www.free-winmx-downloads.com --> Potentially malicious!
127.0.0.1 free-winmx-downloads.com --> Potentially malicious!
127.0.0.1 www.mp3winmx.com --> Potentially malicious!
127.0.0.1 mp3winmx.com --> Potentially malicious!
127.0.0.1 winmx.click-new-download.com --> Potentially malicious!
127.0.0.1 www.winmx.click-new-download.com --> Potentially malicious!
127.0.0.1 winmx-d0wnload.com --> Potentially malicious!
127.0.0.1 www.winmx-d0wnload.com --> Potentially malicious!
127.0.0.1 winmxfrance.com --> Potentially malicious!
127.0.0.1 www.winmxfrance.com --> Potentially malicious!
127.0.0.1 winmx-freebie.com --> Potentially malicious!
127.0.0.1 www.winmx-freebie.com --> Potentially malicious!
127.0.0.1 www.winmx-music-download.com --> Potentially malicious!
127.0.0.1 winmx-music-download.com --> Potentially malicious!
127.0.0.1 winmx-usa.com --> Potentially malicious!
127.0.0.1 www.winmx-usa.com --> Potentially malicious!
127.0.0.1 www.google.dospop.com --> Potentially malicious!

127.0.0.1 localhost
127.0.0.1 localhost.localdomain
127.0.0.1 sitefinder.Verisign.com # Verisign has joined the game
127.0.0.1 sitefinder-idn.Verisign.com # of trying to hijack mistyped
127.0.0.1 # URLs to their site.
127.0.0.1 ad.doubleclick.net # This may interefere with www.sears.com
127.0.0.1 # and potentially other sites.
127.0.0.1 media.fastclick.net # Likewise, this may interefer with some
127.0.0.1 # sites.
127.0.0.1 #up CSS on livejournal
127.0.0.1 # problems with NPR.org
127.0.0.1 06272002-dbase.hitcountz.net # Web bugs in spam
127.0.0.1 123counter.mycomputer.com
127.0.0.1 123counter.superstats.com
127.0.0.1 1ca.cqcounter.com
127.0.0.1 1uk.cqcounter.com
127.0.0.1 1us.cqcounter.com
127.0.0.1 2001-007.com
127.0.0.1 4-counter.com
127.0.0.1 abscbn.spinbox.net
[...]


¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: ST3320820AS +++++
--- User ---
[MBR] 0e0e5163afc2218c93f4444ee8a12170
[BSP] 4c61c68ac04096662e33b882358be4b4 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 305242 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Termine : << RKreport[0]_S_06262013_115036.txt >>
RKreport[0]_D_06262013_114618.txt;RKreport[0]_S_06262013_054102.txt;RKreport[0]_S_06262013_114447.txt
0
Réponse 42 / 68
billmaxime Messages postés 50445 Date d'inscription dimanche 20 novembre 2011 Statut Contributeur Dernière intervention 23 décembre 2024 6 011
29 juin 2013 à 18:44
re

relance roguekiller et clique sur suppression

regarge l'image

ensuite tu fais la même, mais en cliquant sur host raz

regarde l'image

poste les rapports des 2 suppression via 1 copier/coller

merci

@+
0
Réponse 43 / 68
manon
29 juin 2013 à 19:38
RogueKiller V8.6.1 [Jun 25 2013] par Tigzy
mail : tigzyRK<at>gmail<dot>com
Remontees : http://www.sur-la-toile.com/discussion-193725-1--RogueKiller-Remontees.html
Site Web : http://www.sur-la-toile.com/RogueKiller/
Blog : http://tigzyrk.blogspot.com/

Systeme d'exploitation : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Demarrage : Mode normal
Utilisateur : SANDRINE [Droits d'admin]
Mode : Recherche -- Date : 06/29/2013 19:14:42
| ARK || FAK || MBR |

¤¤¤ Processus malicieux : 0 ¤¤¤

¤¤¤ Entrees de registre : 0 ¤¤¤

¤¤¤ Tâches planifiées : 0 ¤¤¤

¤¤¤ Entrées Startup : 0 ¤¤¤

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver : [CHARGE] ¤¤¤

¤¤¤ Ruches Externes: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: ST3320820AS +++++
--- User ---
[MBR] 0e0e5163afc2218c93f4444ee8a12170
[BSP] 4c61c68ac04096662e33b882358be4b4 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 305242 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Termine : << RKreport[0]_S_06292013_191441.txt >>
RKreport[0]_D_06262013_114618.txt;RKreport[0]_H_06262013_115325.txt;RKreport[0]_S_06262013_054102.txt
RKreport[0]_S_06262013_114447.txt;RKreport[0]_S_06262013_115036.txt



RogueKiller V8.6.1 [Jun 25 2013] par Tigzy
mail : tigzyRK<at>gmail<dot>com
Remontees : http://www.sur-la-toile.com/discussion-193725-1--RogueKiller-Remontees.html
Site Web : http://www.sur-la-toile.com/RogueKiller/
Blog : http://tigzyrk.blogspot.com/

Systeme d'exploitation : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Demarrage : Mode normal
Utilisateur : SANDRINE [Droits d'admin]
Mode : Suppression -- Date : 06/29/2013 19:22:14
| ARK || FAK || MBR |

¤¤¤ Processus malicieux : 0 ¤¤¤

¤¤¤ Entrees de registre : 0 ¤¤¤

¤¤¤ Tâches planifiées : 0 ¤¤¤

¤¤¤ Entrées Startup : 0 ¤¤¤

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver : [CHARGE] ¤¤¤

¤¤¤ Ruches Externes: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: ST3320820AS +++++
--- User ---
[MBR] 0e0e5163afc2218c93f4444ee8a12170
[BSP] 4c61c68ac04096662e33b882358be4b4 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 305242 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Termine : << RKreport[0]_D_06292013_192214.txt >>
RKreport[0]_D_06262013_114618.txt;RKreport[0]_H_06262013_115325.txt;RKreport[0]_S_06262013_054102.txt
RKreport[0]_S_06262013_114447.txt;RKreport[0]_S_06262013_115036.txt;RKreport[0]_S_06292013_191441.txt




RogueKiller V8.6.1 [Jun 25 2013] par Tigzy
mail : tigzyRK<at>gmail<dot>com
Remontees : http://www.sur-la-toile.com/discussion-193725-1--RogueKiller-Remontees.html
Site Web : http://www.sur-la-toile.com/RogueKiller/
Blog : http://tigzyrk.blogspot.com/

Systeme d'exploitation : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Demarrage : Mode normal
Utilisateur : SANDRINE [Droits d'admin]
Mode : Suppression -- Date : 06/29/2013 19:36:57
| ARK || FAK || MBR |

¤¤¤ Processus malicieux : 0 ¤¤¤

¤¤¤ Entrees de registre : 0 ¤¤¤

¤¤¤ Tâches planifiées : 0 ¤¤¤

¤¤¤ Entrées Startup : 0 ¤¤¤

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver : [CHARGE] ¤¤¤

¤¤¤ Ruches Externes: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: ST3320820AS +++++
--- User ---
[MBR] 0e0e5163afc2218c93f4444ee8a12170
[BSP] 4c61c68ac04096662e33b882358be4b4 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 305242 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Termine : << RKreport[0]_D_06292013_193657.txt >>
RKreport[0]_D_06262013_114618.txt;RKreport[0]_D_06292013_192214.txt;RKreport[0]_H_06262013_115325.txt
RKreport[0]_H_06292013_193033.txt;RKreport[0]_H_06292013_193228.txt;RKreport[0]_S_06262013_054102.txt
RKreport[0]_S_06262013_114447.txt;RKreport[0]_S_06262013_115036.txt;RKreport[0]_S_06292013_191441.txt
RKreport[0]_S_06292013_192942.txt;RKreport[0]_S_06292013_193152.txt;RKreport[0]_S_06292013_193354.txt
0
Réponse 44 / 68
manon
29 juin 2013 à 19:41
J'ai oublié !

RogueKiller V8.6.1 [Jun 25 2013] par Tigzy
mail : tigzyRK<at>gmail<dot>com
Remontees : http://www.sur-la-toile.com/discussion-193725-1--RogueKiller-Remontees.html
Site Web : http://www.sur-la-toile.com/RogueKiller/
Blog : http://tigzyrk.blogspot.com/

Systeme d'exploitation : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Demarrage : Mode normal
Utilisateur : SANDRINE [Droits d'admin]
Mode : Recherche -- Date : 06/29/2013 19:33:54
| ARK || FAK || MBR |

¤¤¤ Processus malicieux : 0 ¤¤¤

¤¤¤ Entrees de registre : 0 ¤¤¤

¤¤¤ Tâches planifiées : 0 ¤¤¤

¤¤¤ Entrées Startup : 0 ¤¤¤

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver : [CHARGE] ¤¤¤

¤¤¤ Ruches Externes: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: ST3320820AS +++++
--- User ---
[MBR] 0e0e5163afc2218c93f4444ee8a12170
[BSP] 4c61c68ac04096662e33b882358be4b4 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 305242 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Termine : << RKreport[0]_S_06292013_193354.txt >>
RKreport[0]_D_06262013_114618.txt;RKreport[0]_D_06292013_192214.txt;RKreport[0]_H_06262013_115325.txt
RKreport[0]_H_06292013_193033.txt;RKreport[0]_H_06292013_193228.txt;RKreport[0]_S_06262013_054102.txt
RKreport[0]_S_06262013_114447.txt;RKreport[0]_S_06262013_115036.txt;RKreport[0]_S_06292013_191441.txt
RKreport[0]_S_06292013_192942.txt;RKreport[0]_S_06292013_193152.txt
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 45 / 68
billmaxime Messages postés 50445 Date d'inscription dimanche 20 novembre 2011 Statut Contributeur Dernière intervention 23 décembre 2024 6 011
29 juin 2013 à 19:53
re

ok, refais 1 scan rapide avec MBAM et poste le rapport

merci

@+
0
Réponse 46 / 68
manon
3 juil. 2013 à 10:50
Bonjour billmaxime
J'espère que tu vas bien, je t'envoie le rapport que tu m'as demandé
A+ et bonne journée

Malwarebytes Anti-Malware (Essai) 1.75.0.1300
www.malwarebytes.org

Version de la base de données: v2013.07.03.03

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
SANDRINE :: NOM-D824701614D [administrateur]

Protection: Activé

03/07/2013 10:28:08
mbam-log-2013-07-03 (10-28-08).txt

Type d'examen: Examen rapide
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 232326
Temps écoulé: 19 minute(s), 31 seconde(s)

Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Clé(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Valeur(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)

Dossier(s) détecté(s): 0
(Aucun élément nuisible détecté)

Fichier(s) détecté(s): 0
(Aucun élément nuisible détecté)

(fin)
0
Réponse 47 / 68
billmaxime Messages postés 50445 Date d'inscription dimanche 20 novembre 2011 Statut Contributeur Dernière intervention 23 décembre 2024 6 011
Modifié par billmaxime le 3/07/2013 à 19:58
salut Manon,

dis moi quel soucis persistent?

refais moi 1 zhpdiag en cliquant sur la loupe avec le + et poste le rapport via ce lien

https://www.cjoint.com/

@+

le taux de radiation est plus élevé au pôle emploi qu'à Tchernobyl
0
Réponse 48 / 68
manon
6 juil. 2013 à 11:56
Bonjour billmaxime
Je t'envoie le dernier rapport zhpdiag

Rapport de ZHPDiag v2013.6.13.18 par Nicolas Coolman, Update du 13/06/2013
Run by SANDRINE at 04/07/2013 19:05:45
WebSite: http://nicolascoolman.webs.com
State : Problème connexion internet
WhiteList : Enable
High Elevated Privileges : OK
UAC : Not Found


---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702 (Defaut)
MFIE: Mozilla Firefox 21.0

---\\ Windows Product Information
~ Langage: Français
Windows XP Professional Service Pack 3 (Build 2600)
Windows Automatic Updates : OK
Windows Genuine Advantage : OK

---\\ System Protection
avast! Free Antivirus v8.0.1489.0
Malwarebytes Anti-Malware version 1.75.0.1300

---\\ System Optimizer
CCleaner v4.02 =>Piriform Ltd

---\\ Peer To Peer (P2P)

---\\ Software Update
Adobe Flash Player 11 ActiveX
Adobe Reader XI

---\\ System Information
~ Processor: x86 Family 6 Model 15 Stepping 6, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 1022 MB (14% free)
System Restore: Activé (Enable)
System drive C: has 96 GB (32%) free of 298 GB

---\\ Logged in mode
~ Computer Name: NOM-D824701614D
~ User Name: SANDRINE
~ All Users Names: SUPPORT_388945a0, SANDRINE, HelpAssistant, ASPNET, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Documents and Settings\SANDRINE\Application Data\
~ %Desktop% : C:\Documents and Settings\SANDRINE\Bureau\
~ %Favorites% : C:\Documents and Settings\SANDRINE\Favoris\
~ %LocalAppData% : C:\Documents and Settings\SANDRINE\Local Settings\Application Data\
~ %StartMenu% : C:\Documents and Settings\SANDRINE\Menu Démarrer\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\system32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 96 Go of 298 Go)
D:\ CD-ROM drive (Not Inserted)
E:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date
~ Security Center: 32 Legitimates Filtered in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.14/04/2008 - 03:34:03.) -- C:\WINDOWS\Explorer.exe [1037824]
[MD5.DD11A997125B22963CE49A95F7E32034] - (.Microsoft Corporation - Internet Extensions for Win32.) (.07/05/2013 - 23:28:27.) -- C:\WINDOWS\system32\wininet.dll [920064]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.14/04/2008 - 03:34:28.) -- C:\WINDOWS\system32\Winlogon.exe [512000]
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.17/08/2011 - 14:49:54.) -- C:\WINDOWS\system32\Drivers\AFD.sys [138496]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 - 19:40:30.) -- C:\WINDOWS\system32\Drivers\atapi.sys [96512]
[MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/04/2008 - 20:14:21.) -- C:\WINDOWS\system32\Drivers\Cdfs.sys [63744]
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.13/04/2008 - 19:40:46.) -- C:\WINDOWS\system32\Drivers\Cdrom.sys [62976]
[MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) (.14/04/2008 - 02:57:38.) -- C:\WINDOWS\system32\Drivers\Fips.sys [44672]
[MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.13/04/2008 - 17:36:05.) -- C:\WINDOWS\system32\Drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) (.14/04/2008 - 03:00:52.) -- C:\WINDOWS\system32\Drivers\i8042prt.sys [54144]
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.13/04/2008 - 19:40:58.) -- C:\WINDOWS\system32\Drivers\Imapi.sys [42112]
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) (.13/04/2008 - 19:57:15.) -- C:\WINDOWS\system32\Drivers\IpNat.sys [152832]
[MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.13/04/2008 - 20:19:42.) -- C:\WINDOWS\system32\Drivers\IPSec.sys [75264]
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.15/07/2011 - 14:29:31.) -- C:\WINDOWS\system32\Drivers\MRxSmb.sys [456320]
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) (.13/04/2008 - 20:21:00.) -- C:\WINDOWS\system32\Drivers\netBT.sys [162816]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.13/04/2008 - 20:15:53.) -- C:\WINDOWS\system32\Drivers\ntfs.sys [574976]
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/04/2008 - 03:09:40.) -- C:\WINDOWS\system32\Drivers\Parport.sys [80384]
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.13/04/2008 - 20:19:43.) -- C:\WINDOWS\system32\Drivers\Rasl2tp.sys [51328]
[MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.13/04/2008 - 19:32:51.) -- C:\WINDOWS\system32\Drivers\rdpdr.sys [196224]
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) (.14/04/2008 - 02:57:34.) -- C:\WINDOWS\system32\Drivers\redbook.sys [58752]
[MD5.46DE1126684369BACE4849E4FC8C43CA] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.14/04/2008 - 02:56:04.) -- C:\WINDOWS\system32\Drivers\volsnap.sys [53376]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 3/110
Mes musiques (My Musics) : 3/3 (Modified)
~ Mes Videos (My Videos) : 2/17
~ Mes Favoris (My Favorites) : 1/159
~ Mes Documents (My Documents) : 4/2419
~ Mon Bureau (My Desktop) : 0/30
~ Menu demarrer (Programs) : 1/41
~ Hidden Files: Scanned in 00mn 14s



---\\ Processus lancés
[MD5.28D6701C710AD7BA3CB95E75F8F1A9AA] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808] [PID.1540]
[MD5.9C69E6A25F5500501B14AF43311F8D8B] - (.Microsoft Corporation - Media Center Tray Applet.) -- C:\WINDOWS\ehome\ehtray.exe [64512] [PID.264]
[MD5.117DA4BE0254C84B0201321801A7CDC5] - (.General - Gene USB Monitor.) -- C:\WINDOWS\system32\UMonit2K.exe [40960] [PID.332]
[MD5.93AD0B78C7357A05F50E594EC7C22300] - (...) -- ystem32\rundll32.exe [0] [PID.348]
[MD5.94897A21D751D72DA0F34421DE17FB9D] - (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.exe [16050688] [PID.440]
[MD5.1B0FB5F0975957ADFD02C555F5674F60] - (.Musicmatch, Inc. - mm_tray.) -- C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe [110592] [PID.484]
[MD5.603D421ACD2A3D76210B8F4DFFF43F48] - (.Musicmatch, Inc. - Logging and tracing manager.) -- C:\Program Files\Musicmatch\Musicmatch Jukebox\MMDiag.exe [102400] [PID.504]
[MD5.0711524E77BE0747927D18385468D36E] - (.Macrovision Corporation - Macrovision Update Service Scheduler.) -- C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe [81920] [PID.512]
[MD5.3F11B20D12D89365D7721BDC860CE5F0] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968] [PID.548]
[MD5.C6E9FD508A4D866CFB672AE70E8944B5] - (.Musicmatch, Inc. - mim.) -- C:\Program Files\Musicmatch\Musicmatch Jukebox\mim.exe [416768] [PID.684]
[MD5.D7BCA9D445F0896DE3C57BD85E58103D] - (.BitTorrent Inc. - µTorrent.) -- C:\Documents and Settings\SANDRINE\Application Data\uTorrent\uTorrent.exe [884056] [PID.732] =>P2P.µTorrent
[MD5.EE8DEBD2D159E7052EB0DAA5CA19FAF7] - (.Orbiscom Ltd. All rights reserved. - ECBL Client.) -- C:\Program Files\e-Carte Bleue La Banque Postale\ecbl-lbp.exe [278528] [PID.872]
[MD5.5D1347AA5AE6E2F77D7F4F8372D95AC9] - (.Microsoft Corporation - Media Center Receiver Service.) -- C:\WINDOWS\eHome\ehRecvr.exe [237568] [PID.860]
[MD5.980EEEA91776357518892C5544768E2B] - (.Microsoft Corporation - Service de planification Media Center.) -- C:\WINDOWS\eHome\ehSched.exe [103424] [PID.540]
[MD5.65085456FD9A74D7F1A999520C299ECB] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376] [PID.1460]
[MD5.E0D7732F2D2E24B2DB3F67B6750295B8] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512] [PID.612]
[MD5.6D88C26BF33D2B8404F01CECBDD47D3A] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 86.02.) -- C:\WINDOWS\system32\nvsvc32.exe [143426] [PID.2128]
[MD5.D1D5DAB39DCB4BE0359943738D87409B] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [532040] [PID.2376]
[MD5.DAEFB050AC8FEE4F1097FCF7CB97220E] - (.Microsoft Corporation - Media Center Media Status Aggregator Servic.) -- C:\WINDOWS\eHome\ehmsas.exe [46592] [PID.3216]
[MD5.0DAD93BB0FECF5016AE3C06CBB0A873B] - (.Microsoft Corporation - COM Surrogate.) -- C:\WINDOWS\system32\dllhost.exe [5120] [PID.1664]
[MD5.B60DDDD2D63CE41CB8C487FCFBB6419E] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [638816] [PID.3252]
[MD5.B8DD83B85636F7D6EC0F09B090E49130] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [7494656] [PID.3200]
[MD5.52404CC76E9D53843BDF97564BB16BED] - (.Microsoft Corporation - MCRD Device Service.) -- C:\WINDOWS\ehome\mcrdsvc.exe [99328] [PID.3480]
[MD5.5E9A6658A2A69AE7EB195113B7A2E7A9] - (.Microsoft Corporation - Application Layer Gateway Service.) -- C:\WINDOWS\System32\alg.exe [44544] [PID.824]
~ Processes Running: Scanned in 00mn 03s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Documents and Settings\SANDRINE\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences
~ Google Browser: 0 Legitimates Filtered in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Documents and Settings\SANDRINE\Application Data\Mozilla\Firefox\Profiles\4wb2v1jx.default\prefs.js
~ Firefox Browser: 4 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://free.fr
~ IE Browser: 15 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys: Scanned in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 19



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} . (.SEIKO EPSON CORPORATION - EPSON Web-To-Page.) -- C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
~ BHO: 2 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: EPSON Web-To-Page - [HKLM]{EE5D279F-081B-4404-994D-C6B60AAEBA6D} . (.SEIKO EPSON CORPORATION - EPSON Web-To-Page.) -- C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: avast! Online Security - [HKLM]{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
~ Toolbar: Scanned in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [ehTray] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [SkyTel] . (.Realtek Semiconductor Corp. - Realtek Voice Manager.) -- C:\WINDOWS\SkyTel.exe
O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\WINDOWS\system32\NvCpl.dll
O4 - HKLM\..\Run: [nwiz] . (...) -- C:\WINDOWS\system32\nwiz.exe
O4 - HKLM\..\Run: [Gene USB Monitor] . (.General - Gene USB Monitor.) -- C:\WINDOWS\system32\UMonit2K.exe
O4 - HKLM\..\Run: [RTHDCPL] . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.exe
O4 - HKLM\..\Run: [MimBoot] . (.Musicmatch, Inc. - mimBoot.) -- C:\Program Files\Musicmatch\Musicmatch Jukebox\mimboot.exe
O4 - HKLM\..\Run: [MMTray] . (.Musicmatch, Inc. - mm_tray.) -- C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
O4 - HKLM\..\Run: [ISUSPM Startup] . (.Macrovision Corporation - Macrovision Update Service Update Manager.) -- C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe
O4 - HKLM\..\Run: [ISUSScheduler] . (.Macrovision Corporation - Macrovision Update Service Scheduler.) -- C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
O4 - HKLM\..\Run: [EPSON Stylus DX5000 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBVE.exe
O4 - HKLM\..\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ares] C:\Program Files\Ares\Ares.exe (.not file.)
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Documents and Settings\SANDRINE\Application Data\uTorrent\uTorrent.exe =>P2P.µTorrent
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-21-3644695239-1359274983-3181099069-1005\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-3644695239-1359274983-3181099069-1005\..\Run: [ares] C:\Program Files\Ares\Ares.exe (.not file.)
O4 - HKUS\S-1-5-21-3644695239-1359274983-3181099069-1005\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Documents and Settings\SANDRINE\Application Data\uTorrent\uTorrent.exe =>P2P.µTorrent
~ Application: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Programs: Adobe Reader XI.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico
O4 - GS\Programs: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.) -- C:\Program Files\CDBurnerXP\cdbxpp.exe
O4 - GS\Programs: IncrediMail.lnk . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\Bin\IncMail.exe
O4 - GS\Programs: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\Programs: Windows Movie Maker.lnk . (.Microsoft Corporation - Windows Movie Maker.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - GS\Programs: Assistance à distance.lnk . (.Microsoft Corporation - Assistance à distance Microsoft.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Programs: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - GS\Programs: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
~ Global Startup: Scanned in 00mn 01s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} -- Clé orpheline
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} ((no name)) - http://ushousecall02.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} ((no name)) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase6770.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} ((no name)) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1258013269781
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} ((no name)) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} ((no name)) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} ((no name)) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
~ Objets ActiveX: Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{2F914240-4186-48B0-8ED6-51CC0E7FD9F9}: NameServer = 212.27.40.240,212.27.40.241
O17 - HKLM\System\CCS\Services\Tcpip\..\{563F557E-64A0-47D9-95CB-C7AF64101961}: NameServer = 212.27.40.240,212.27.40.241
O17 - HKLM\System\CCS\Services\Tcpip\..\{E8F8F881-CCB7-4E04-B9A6-1B63B204AAAD}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS1\Services\Tcpip\..\{2F914240-4186-48B0-8ED6-51CC0E7FD9F9}: NameServer = 212.27.40.240,212.27.40.241
O17 - HKLM\System\CS1\Services\Tcpip\..\{563F557E-64A0-47D9-95CB-C7AF64101961}: NameServer = 212.27.40.240,212.27.40.241
O17 - HKLM\System\CS1\Services\Tcpip\..\{E8F8F881-CCB7-4E04-B9A6-1B63B204AAAD}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS2\Services\Tcpip\..\{2F914240-4186-48B0-8ED6-51CC0E7FD9F9}: NameServer = 212.27.40.240,212.27.40.241
O17 - HKLM\System\CS2\Services\Tcpip\..\{563F557E-64A0-47D9-95CB-C7AF64101961}: NameServer = 212.27.40.240,212.27.40.241
O17 - HKLM\System\CS2\Services\Tcpip\..\{E8F8F881-CCB7-4E04-B9A6-1B63B204AAAD}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS3\Services\Tcpip\..\{2F914240-4186-48B0-8ED6-51CC0E7FD9F9}: NameServer = 212.27.40.240,212.27.40.241
O17 - HKLM\System\CS3\Services\Tcpip\..\{563F557E-64A0-47D9-95CB-C7AF64101961}: NameServer = 212.27.40.240,212.27.40.241
O17 - HKLM\System\CS3\Services\Tcpip\..\{E8F8F881-CCB7-4E04-B9A6-1B63B204AAAD}: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll
O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\WINDOWS\system32\cscdll.dll
O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\system32\dimsntfy.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\WINDOWS\system32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) . (...) - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe (.not file.)
~ Services: 4 Legitimates Filtered in 00mn 10s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Desktop General: BackupWallPaper - .(...) - C:\Documents and Settings\SANDRINE\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop General: WallPaper - .(...) - C:\Documents and Settings\SANDRINE\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
~ Desktop Component: 4 Legitimates Filtered in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoforFilesUpdate.job [282] =>P2P.GoforFiles
[MD5.00000000000000000000000000000000] [APT] [GoforFilesUpdate] (...) -- C:\Program Files\GoforFiles\GFFUpdater.exe (.not file.) [0] =>P2P.GoforFiles
~ Scheduled Task: 8 Legitimates Filtered in 00mn 00s



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (avipbb) . (. - .) - C:\WINDOWS\system32\DRIVERS\avipbb.sys (.not file.)
~ Drivers: 89 Legitimates Filtered in 00mn 01s



---\\ Logiciels installés (O42)
O42 - Logiciel: IncrediMail - (.IncrediMail.) [HKLM] -- {2CF22C94-1369-4C04-9A5F-A4BC6D91B508}
O42 - Logiciel: IncrediMail 2.0 - (.IncrediMail Ltd..) [HKLM] -- IncrediMail
O42 - Logiciel: Opti Drive Control 1.70 - (.Erik Deppe.) [HKLM] -- {80157B54-DB3E-4EE9-8AD8-63A905765FF4}_is1
~ Logic: 111 Legitimates Filtered in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\Andrei Jefremov]
[HKCU\Software\AppConf]
[HKCU\Software\FusionSoft]
[HKCU\Software\GoforFiles] =>P2P.GoforFiles
[HKCU\Software\IncrediMail]
[HKCU\Software\K-Sig]
[HKCU\Software\Opti Drive Control]
[HKCU\Software\mediabarim]
[HKLM\Software\FreeSoft]
[HKLM\Software\FusionSoft]
[HKLM\Software\GoforFiles] =>P2P.GoforFiles
[HKLM\Software\KAZAA]
[HKLM\Software\Rip]
~ Key Software: 233 Legitimates Filtered in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 25/04/2011 - 19:40:10 - [0,000] ----D C:\Program Files\Drivers
O43 - CFD: 04/05/2013 - 19:33:02 - [26,484] ----D C:\Program Files\IncrediMail
O43 - CFD: 26/05/2013 - 06:26:56 - [3,002] ----D C:\Program Files\Opti Drive Control
O43 - CFD: 30/04/2012 - 18:51:21 - [0] ----D C:\Documents and Settings\SANDRINE\Application Data\Free CD DVD Burner
O43 - CFD: 09/05/2013 - 18:58:54 - [0] ----D C:\Documents and Settings\SANDRINE\Application Data\GoforFiles =>P2P.GoforFiles
O43 - CFD: 04/06/2012 - 19:02:45 - [0] ----D C:\Documents and Settings\SANDRINE\Application Data\Shareaza
O43 - CFD: 04/06/2012 - 19:08:50 - [0,029] ----D C:\Documents and Settings\SANDRINE\Local Settings\Application Data\Ares
O43 - CFD: 23/03/2010 - 19:28:48 - [-1251,403] ----D C:\Documents and Settings\SANDRINE\Local Settings\Application Data\IM
O43 - CFD: 08/05/2012 - 11:48:32 - [0,006] ----D C:\Documents and Settings\SANDRINE\Local Settings\Application Data\Shareaza
O43 - CFD: 04/06/2012 - 19:08:45 - [0,002] ----D C:\Documents and Settings\SANDRINE\Menu Démarrer\Programmes\Ares
~ Program Folder: 152 Legitimates Filtered in 00mn 40s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.69094645B6CA815141A3D177838CCAE9] - 04/07/2013 - 17:46:58 ---A- . (...) -- C:\WINDOWS\ModemLog_Câble de communication entre deux ordinateurs.txt [2172]
O44 - LFC:[MD5.AE31EAB2B5C10FDB9BC759E9C3B2F1B9] - 04/07/2013 - 17:46:48 ---A- . (...) -- C:\WINDOWS\wiadebug.log [159]
O44 - LFC:[MD5.ABE9C67C6B1BC6BEC00C30E13D9F8171] - 04/07/2013 - 17:46:47 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50]
O44 - LFC:[MD5.6AB0FD4BEE15FA1C35F74DFAFC09A68A] - 04/07/2013 - 17:46:33 ---A- . (...) -- C:\WINDOWS\system32\nvapps.xml [51048]
O44 - LFC:[MD5.5866F5AC5FA90002CC1275789B715A60] - 04/07/2013 - 09:10:31 ---A- . (...) -- C:\WINDOWS\NeroDigital.ini [116]
O44 - LFC:[MD5.3AB7636DDC4A01648B741CAA8E70B079] - 30/06/2013 - 17:10:38 ---A- . (...) -- C:\WINDOWS\wmsetup.log [1616]
O44 - LFC:[MD5.3FFBEE694566CADB0A64D8A1ACD7DBCE] - 28/06/2013 - 06:55:41 ---A- . (...) -- C:\WINDOWS\system32\Drivers\aswSP.sys.sum [175]
O44 - LFC:[MD5.FAF091AA45A6A6CF3CF94FE065950956] - 28/06/2013 - 06:55:41 ---A- . (...) -- C:\WINDOWS\system32\Drivers\aswSnx.sys.sum [175]
~ Files: 19 Legitimates Filtered in 00mn 16s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.91BDF19AAEF28FC2859838FE204C47B8] - 01/07/2013 - 10:35:40 ---A- - C:\WINDOWS\Prefetch\MMJB.EXE-31482708.pf
O45 - LFCP:[MD5.DB84296897E30F35B719EDAE42FD2AAB] - 01/07/2013 - 10:36:04 ---A- - C:\WINDOWS\Prefetch\MM_DIRECTOR.EXE-1A407E61.pf
O45 - LFCP:[MD5.3B23154D8D7C608CFA855658FB96C9F6] - 01/07/2013 - 10:36:20 ---A- - C:\WINDOWS\Prefetch\MM_TDMENGINE.EXE-04ED9C67.pf
O45 - LFCP:[MD5.004563D8E8C9EA30723CC4D20938C036] - 01/07/2013 - 10:40:00 ---A- - C:\WINDOWS\Prefetch\MMJBLAUNCH.EXE-329E6F24.pf
O45 - LFCP:[MD5.1F75C5FB4E5B6C9C0CE8BC71A9F0BE2C] - 03/07/2013 - 15:30:23 ---A- - C:\WINDOWS\Prefetch\FXSSVC.EXE-3B8F7819.pf
O45 - LFCP:[MD5.B4C4631C3BD2788778E528501B0736AC] - 04/07/2013 - 09:03:01 ---A- - C:\WINDOWS\Prefetch\IMNOTFY.EXE-39B9FFE6.pf
O45 - LFCP:[MD5.E41A9E8A0C6B350E0E6C84A7450F3628] - 04/07/2013 - 10:07:25 ---A- - C:\WINDOWS\Prefetch\INCMAIL.EXE-1D49117E.pf
O45 - LFCP:[MD5.D6618C6D88839B938AF19958259AEE93] - 04/07/2013 - 11:18:00 ---A- - C:\WINDOWS\Prefetch\MMDIAG.EXE-0FB5A05F.pf
O45 - LFCP:[MD5.FE77143D57A9FE7EA857CBD6A97B552A] - 04/07/2013 - 11:18:19 ---A- - C:\WINDOWS\Prefetch\IMAPP.EXE-093362B0.pf
O45 - LFCP:[MD5.5D589F9C552D0DBDB4EC9597A509792A] - 04/07/2013 - 17:48:03 ---A- - C:\WINDOWS\Prefetch\0742129F-015C-47FF-B068-3E437-29544B1D.pf
O45 - LFCP:[MD5.D202756928D7764A4224BB5A537FE238] - 04/07/2013 - 17:48:24 ---A- - C:\WINDOWS\Prefetch\MMCOMP~1.EXE-32321D3B.pf
O45 - LFCP:[MD5.5BF9DF8525C82950B1A2726BD6FE9E9E] - 04/07/2013 - 17:53:38 ---A- - C:\WINDOWS\Prefetch\WPGLDFSH.SCR-0B370EE2.pf
O45 - LFCP:[MD5.5FC9E78095EBC0FFEBA724BC3B6E9D64] - 26/06/2013 - 05:11:13 ---A- - C:\WINDOWS\Prefetch\_IU14D2N.TMP-1F3AA4A0.pf
O45 - LFCP:[MD5.74081B6DEAACFADCD69684DB9FDC69EB] - 26/06/2013 - 18:38:59 ---A- - C:\WINDOWS\Prefetch\A9A1712B-90D1-4EA4-8466-8F309-37445520.pf
O45 - LFCP:[MD5.EEEE68D684051FA2D716075B8DF6B64D] - 26/06/2013 - 18:39:09 ---A- - C:\WINDOWS\Prefetch\MIMBOOT.EXE-160E1BB3.pf
O45 - LFCP:[MD5.79604833DA2AD3FAF4BBF65CB0BAD3E0] - 26/06/2013 - 18:39:12 ---A- - C:\WINDOWS\Prefetch\MM_TRAY.EXE-01CCB25B.pf
O45 - LFCP:[MD5.916188D350A59A27589F4E5C9AC73EFA] - 26/06/2013 - 18:39:21 ---A- - C:\WINDOWS\Prefetch\UMONIT2K.EXE-016242BE.pf
O45 - LFCP:[MD5.8298FA3822E4DE48D91F43FBBE0E5F3B] - 26/06/2013 - 18:39:35 ---A- - C:\WINDOWS\Prefetch\MIM.EXE-117570E3.pf
O45 - LFCP:[MD5.7FBF74B16D2DAEEDD8E27E196F04707A] - 26/06/2013 - 18:39:41 ---A- - C:\WINDOWS\Prefetch\ECBL-LBP.EXE-06E3579C.pf
O45 - LFCP:[MD5.B11AAA8398498165D1103E42E2D10D76] - 28/06/2013 - 06:55:37 ---A- - C:\WINDOWS\Prefetch\94682319-7672-4CAF-9A34-76AEA-14E1E2BB.pf
O45 - LFCP:[MD5.5BE28C18B126E48B1053C247481F2490] - 30/06/2013 - 17:05:20 ---A- - C:\WINDOWS\Prefetch\RTMPDUMP.EXE-2254CF6E.pf
O45 - LFCP:[MD5.DF954C98C9651DF9035AD04FBE7EB1DB] - 30/06/2013 - 17:11:50 ---A- - C:\WINDOWS\Prefetch\FLVEXTRACT.EXE-3106FE57.pf
O45 - LFCP:[MD5.9EE76D6EC3466B4C575677B5A794D64F] - 30/06/2013 - 17:11:54 ---A- - C:\WINDOWS\Prefetch\MKVMERGE.EXE-0E4D83A6.pf
~ Prefetcher: 125 Legitimates Filtered in 00mn 02s



---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll
O46 - SEH:ShellExecuteHooks - Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll
~ ShellExecuteHooks: Scanned in 00mn 00s



---\\ Export de clé d'application autorisée (O47)
O47 - AAKE:Key Export SP - "C:\Program Files\IncrediMail\Bin\IncMail.exe" [Enabled] .(.IncrediMail, Ltd..) -- C:\Program Files\IncrediMail\Bin\IncMail.exe
O47 - AAKE:Key Export SP - "C:\Program Files\IncrediMail\Bin\ImApp.exe" [Enabled] .(.IncrediMail, Ltd..) -- C:\Program Files\IncrediMail\Bin\ImApp.exe
O47 - AAKE:Key Export SP - "C:\Program Files\IncrediMail\Bin\ImpCnt.exe" [Enabled] .(.IncrediMail, Ltd..) -- C:\Program Files\IncrediMail\Bin\ImpCnt.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Ares\Ares.exe" [Disabled] .(...) -- C:\Program Files\Ares\Ares.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\iMesh Applications\iMesh\iMesh.exe" [Disabled] .(...) -- C:\Program Files\iMesh Applications\iMesh\iMesh.exe (.not file.) =>PUP.iMesh
O47 - AAKE:Key Export SP - "C:\Program Files\AlerteGPS\G200NEOV2\AULauncher.exe" [Enabled] .(...) -- C:\Program Files\AlerteGPS\G200NEOV2\AULauncher.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\GoforFiles\goforfilesdl.exe" [Enabled] .(...) -- C:\Program Files\GoforFiles\goforfilesdl.exe (.not file.) =>P2P.GoforFiles
O47 - AAKE:Key Export SP - "C:\Program Files\GoforFiles\GoforFiles.exe" [Enabled] .(...) -- C:\Program Files\GoforFiles\GoforFiles.exe (.not file.) =>P2P.GoforFiles
O47 - AAKE:Key Export DP - "C:\Program Files\iMesh Applications\iMesh\iMesh.exe" [Enabled] .(...) -- C:\Program Files\iMesh Applications\iMesh\iMesh.exe (.not file.) =>PUP.iMesh
~ Keys Export: 15 Legitimates Filtered in 00mn 00s



---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d
~ IFEO: Scanned in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "InstallVisualStyle"=1
O55 - MWPS:[HKLM\...\Policies\System] - "InstallTheme"=1
~ MWPS: 7 Legitimates Filtered in 00mn 00s



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.7BB07B8F835ED36F98598CF85F6E6C08] - 15/10/2006 - 23:58:36 ---A- . (.D-Link Corporation - Driver for D-Link Wireless Network Adapter.) -- C:\WINDOWS\system32\Drivers\A3AB.sys [472832]
O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 10/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9037]
~ Drivers: Scanned in 00mn 00s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 01/07/2013 - 10:33:18 -S-A- C:\Documents and Settings\SANDRINE\Application Data\Microsoft\Crypto\RSA\S-1-5-21-3644695239-1359274983-3181099069-1005\73f74cef406b6be0728922a4cd68a679_3cf19886-7bdb-481c-b4dd-71ddd949d168 [1305]
O61 - LFC: 01/07/2013 - 10:35:08 ---A- C:\Documents and Settings\SANDRINE\Recent\06 - Whisper.lnk [1044]
O61 - LFC: 01/07/2013 - 10:35:10 ---A- C:\Documents and Settings\SANDRINE\Recent\[www.Cpasbien.com] Superbus - Sunset 2012.lnk [707]
O61 - LFC: 01/07/2013 - 10:35:40 ---A- C:\Documents and Settings\SANDRINE\Local Settings\Application Data\Musicmatch\Jukebox\UserInfo.dat [19480]
O61 - LFC: 01/07/2013 - 10:39:53 ---A- C:\Documents and Settings\SANDRINE\Recent\Superbus - Travel the world.lnk [1199]
O61 - LFC: 01/07/2013 - 10:39:53 ---A- C:\Documents and Settings\SANDRINE\Recent\Superbus-Happy_Busday_The_Best_Of_Superbus-FR-2010-SO.lnk [763]
O61 - LFC: 01/07/2013 - 10:43:27 -SHA- C:\Documents and Settings\SANDRINE\Mes documents\Downloads\Le.Journal.De.Bridget.Jones(Bridget Jone's Diary)FR.DvDRiP.DivX-OldNavy31\Thumbs.db [24064]
O61 - LFC: 01/07/2013 - 11:01:06 ---A- C:\Documents and Settings\SANDRINE\Local Settings\Application Data\Musicmatch\Jukebox\CurrUserSpec.xml [17750]
O61 - LFC: 01/07/2013 - 11:01:19 ---A- C:\Documents and Settings\SANDRINE\Local Settings\Application Data\Musicmatch\Jukebox\Playlist\DefaultPlayList.m3u [1117]
O61 - LFC: 01/07/2013 - 11:01:19 ---A- C:\Documents and Settings\SANDRINE\Local Settings\Application Data\Musicmatch\Jukebox\Playlist\DefaultPlayList.xml [2741]
O61 - LFC: 01/07/2013 - 17:32:11 -S-A- C:\Documents and Settings\SANDRINE\Application Data\Microsoft\Crypto\RSA\S-1-5-21-3644695239-1359274983-3181099069-1005\a47a17e8a18a45078ed67da0c53d78b3_3cf19886-7bdb-481c-b4dd-71ddd949d168 [1305]
O61 - LFC: 02/07/2013 - 17:42:11 -S-A- C:\Documents and Settings\SANDRINE\Application Data\Microsoft\Crypto\RSA\S-1-5-21-3644695239-1359274983-3181099069-1005\832eb63c227552a8d24ddd4c06b187de_3cf19886-7bdb-481c-b4dd-71ddd949d168 [1305]
O61 - LFC: 03/07/2013 - 07:19:44 -S-A- C:\Documents and Settings\SANDRINE\Application Data\Microsoft\Crypto\RSA\S-1-5-21-3644695239-1359274983-3181099069-1005\576ba1f2817a68f0ecf10cb35dd8ce34_3cf19886-7bdb-481c-b4dd-71ddd949d168 [1305]
O61 - LFC: 03/07/2013 - 09:42:41 ---A- C:\Documents and Settings\SANDRINE\Local Settings\Application Data\Microsoft\Media Player\lastplayed.wpl [490]
O61 - LFC: 03/07/2013 - 09:42:43 ---A- C:\Documents and Settings\SANDRINE\Local Settings\Application Data\Microsoft\Media Player\LocalMLS_0.wmdb [78596]
O61 - LFC: 03/07/2013 - 09:42:43 ---A- C:\Documents and Settings\SANDRINE\Local Settings\Application Data\Microsoft\Media Player\LocalMLS_3.wmdb [67778]
O61 - LFC: 03/07/2013 - 09:42:43 ---A- C:\Documents and Settings\SANDRINE\Local Settings\Application Data\Microsoft\Media Player\wmpfolders.wmdb [4286]
O61 - LFC: 03/07/2013 - 09:42:44 ---A- C:\Documents and Settings\SANDRINE\Local Settings\Application Data\Microsoft\Media Player\CurrentDatabase_360.wmdb [3428352]
O61 - LFC: 03/07/2013 - 10:14:27 ---A- C:\Documents and Settings\SANDRINE\Recent\La_France_au_Patrimoine_Mondial_pv_l.lnk [732]
O61 - LFC: 03/07/2013 - 10:17:36 ---A- C:\Documents and Settings\SANDRINE\Recent\ColoresRojos.lnk [492]
O61 - LFC: 03/07/2013 - 10:22:29 ---A- C:\Documents and Settings\SANDRINE\Recent\La Camargue des oiseaux.lnk [557]
O61 - LFC: 03/07/2013 - 10:36:10 ---A- C:\Documents and Settings\SANDRINE\Recent\compilation de vos envois.lnk [649]
O61 - LFC: 03/07/2013 - 10:40:06 ---A- C:\Documents and Settings\SANDRINE\Recent\Trop bonnes !!.lnk [600]
O61 - LFC: 03/07/2013 - 10:45:39 ---A- C:\Documents and Settings\SANDRINE\Recent\histoire_de_la_lavande.lnk [552]
O61 - LFC: 03/07/2013 - 10:48:46 ---A- C:\Documents and Settings\SANDRINE\Recent\Bonsais_en_flor1.lnk [516]
O61 - LFC: 03/07/2013 - 10:52:32 ---A- C:\Documents and Settings\SANDRINE\Recent\Fruits_le_ventre_vide.lnk [545]
O61 - LFC: 03/07/2013 - 15:29:21 -S-A- C:\Documents and Settings\SANDRINE\Application Data\Microsoft\Crypto\RSA\S-1-5-21-3644695239-1359274983-3181099069-1005\17dee53225c5300cead756a0e5607443_3cf19886-7bdb-481c-b4dd-71ddd949d168 [1305]
O61 - LFC: 03/07/2013 - 16:16:19 -S-A- C:\Documents and Settings\SANDRINE\Application Data\Microsoft\Crypto\RSA\S-1-5-21-3644695239-1359274983-3181099069-1005\3fe10418342965878580032968e5efea_3cf19886-7bdb-481c-b4dd-71ddd949d168 [1305]
O61 - LFC: 03/07/2013 - 16:26:34 ---A- C:\Documents and Settings\SANDRINE\Favoris\LeFreenaute.url [226]
O61 - LFC: 03/07/2013 - 18:23:30 ---A- C:\Documents and Settings\SANDRINE\Favoris\VOLKSWAGEN POLO V 1.6 TDI 90 CR FAP CONFORTLINE 5P - Kilométrage 18 633.url [2173]
O61 - LFC: 03/07/2013 - 18:40:12 ---A- C:\Documents and Settings\SANDRINE\Favoris\Liens\Google.url [208]
O61 - LFC: 04/07/2013 - 05:46:08 -S-A- C:\Documents and Settings\SANDRINE\Application Data\Microsoft\Crypto\RSA\S-1-5-21-3644695239-1359274983-3181099069-1005\e49c0830fff5121a138e77b7048a06e6_3cf19886-7bdb-481c-b4dd-71ddd949d168 [1305]
O61 - LFC: 04/07/2013 - 06:20:25 ---A- C:\Documents and Settings\SANDRINE\Favoris\Animaux paires jeu - Téléchargez des jeux gratuits pour téléphones portables auprès de MobileRated.url [3641]
O61 - LFC: 04/07/2013 - 10:07:31 ---A- C:\Documents and Settings\SANDRINE\Local Settings\Application Data\IM\content.xml [39898]
O61 - LFC: 04/07/2013 - 11:01:28 ---A- C:\Documents and Settings\SANDRINE\Application Data\Mozilla\Firefox\Profiles\4wb2v1jx.default\cookies.sqlite [524288]
O61 - LFC: 04/07/2013 - 11:17:07 ---A- C:\Documents and Settings\SANDRINE\Local Settings\Application Data\IM\Lex\IMSTP12.gif [47958]
O61 - LFC: 04/07/2013 - 11:17:47 -SHA- C:\Documents and Settings\SANDRINE\Application Data\Microsoft\Internet Explorer\UserData\index.dat [32768]
O61 - LFC: 04/07/2013 - 11:17:55 ---A- C:\Documents and Settings\SANDRINE\Local Settings\Application Data\Musicmatch\Jukebox\mmjblog.txt [128170]
O61 - LFC: 04/07/2013 - 17:46:39 ---A- C:\Documents and Settings\SANDRINE\Local Settings\Application Data\Musicmatch\MIM\Database\Default.ldb [64]
O61 - LFC: 04/07/2013 - 17:46:39 -S-A- C:\Documents and Settings\SANDRINE\Application Data\Microsoft\Crypto\RSA\S-1-5-21-3644695239-1359274983-3181099069-1005\917b3b45582cdbc1d3775e2c38cfe3de_3cf19886-7bdb-481c-b4dd-71ddd949d168 [1305]
O61 - LFC: 04/07/2013 - 17:46:40 -SHA- C:\Documents and Settings\SANDRINE\IETldCache\index.dat [262144]
O61 - LFC: 04/07/2013 - 17:59:12 ---A- C:\Documents and Settings\SANDRINE\Favoris\Liens\Programme TV free chaînes bouquet free avec Télé Loisirs.url [1035]
O61 - LFC: 04/07/2013 - 18:01:34 -SHA- C:\Documents and Settings\SANDRINE\IECompatCache\index.dat [786432]
O61 - LFC: 04/07/2013 - 18:01:40 -SHA- C:\Documents and Settings\SANDRINE\PrivacIE\index.dat [9535488]
O61 - LFC: 04/07/2013 - 18:04:20 ---A- C:\Documents and Settings\SANDRINE\Local Settings\Application Data\Microsoft\Internet Explorer\frameiconcache.dat [18344]
~ 40 Fichiers temporaires (Temporary files)
~ 36 Fichiers cookies (Cookies files)
~ Files: 248 Legitimates Filtered in 06mn 42s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ ADS: Scanned in 00mn 00s



---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - ??\??\???? - Pas de propriétaire (IKANLOADER2) .(...) - LEGACY_IKANLOADER2
O64 - Services: CurCS - ??\??\???? - Pas de propriétaire (RoxLiveShare9) .(...) - LEGACY_ROXLIVESHARE9
~ Legacy: 150 Legitimates Filtered in 00mn 03s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.html> <htmlfile>[HKCU\..\open\Command] (.Not Key.)
~ FASS Keys: 17 Legitimates Filtered in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: <Launcher.exe> <>[HKLM\..\Shell\open\Command] (.Not Key.)
~ Keys: Scanned in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-1111-472f-A0FF-E1416B8B2EAA} - (Search) - http://start.funmoods.com =>PUP.Funmoods
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {0F36E18A-6296-4333-9D99-269AAFE3D111}_Chercher Malin - (Chercher Malin) - http://www.cherchermalin.com
O69 - SBI: SearchScopes [HKCU] {6317D6EE-8830-4CC2-88A2-A11A2718C860} [DefaultScope] - (Yahoo! Search) - http://fr.search.yahoo.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {C8661B5D-043E-4F68-97F8-6171BC5D677E} - (01NET.com Main Customized Web Search) - http://search.conduit.com
~ Keys: Scanned in 00mn 00s



---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.5156B79D23E4758B035DC29AD06E7EA1] [SPRF][24/02/2007] (...) -- C:\Documents and Settings\SANDRINE\Local Settings\Application Data\fusioncache.dat [131]
[MD5.2C1EF6485EEB834187FC69556A64EAFE] [SPRF][28/10/2012] (.BitTorrent, Inc. - µTorrent.) -- C:\Documents and Settings\SANDRINE\Bureau\uTorrent.exe [896912] =>P2P.µTorrent
[MD5.9E828426DC8413209CA096A10F800148] [SPRF][11/05/2013] (.Conduit - Setup.exe.) -- C:\Program Files\01net_CDBurnerXP_Pro.exe [1319472] =>Toolbar.Conduit
[MD5.76F0004CC8A82BE0DECED65E204EB7FA] [SPRF][28/05/2012] (.Accmeware Corporation - Accord CD Ripper Free Setup.) -- C:\Program Files\accord-cd-ripper-free_accord_cd_ripper_6.9.0_anglais_75380.exe [1901482]
[MD5.BD29C31D04458BFA0E2FEC89CE03B62C] [SPRF][18/09/2009] (...) -- C:\Program Files\AdbeRdr910_fr_FR.exe [26897264]
[MD5.FCD31E9167248D5384EBF14A0D673204] [SPRF][13/11/2010] (...) -- C:\Program Files\adobe reader 9.4.exe [27769936]
[MD5.568B851F01D01D2B8077CC59C06EEB78] [SPRF][07/05/2012] (.Piriform Ltd - CCleaner Installer.) -- C:\Program Files\ccsetup318.exe [3654896] =>Piriform Ltd
[MD5.B36B2E3CA24D80973C59BFBDA1C4800B] [SPRF][08/06/2013] (.Piriform Ltd - CCleaner Installer.) -- C:\Program Files\ccsetup402.exe [4378864] =>Piriform Ltd
[MD5.3579C370C69929AE7056AB63E712D0BD] [SPRF][11/05/2013] (.Canneverbe Limited - CDBurnerXP.) -- C:\Program Files\cdbxp_setup_4.4.1.3099.exe [5307840]
[MD5.AD2021796B2E3BE2EC6ED63D1F77FC7E] [SPRF][09/05/2013] (.StarApp - Installer for StarApp.) -- C:\Program Files\Download.exe [291616]
[MD5.0ACBD71566B36A072F616C8AC9078D7E] [SPRF][27/07/2009] (...) -- C:\Program Files\DVD_Player_5.0_XP.exe [4082140]
[MD5.18A5CB2BD60C417148DE8CE0B484E039] [SPRF][14/01/2012] (...) -- C:\Program Files\FormatFactory-2-80.exe [42786251]
[MD5.7A344B7C7DD531E6EE28E382F79EB2FA] [SPRF][30/09/2009] (.DVDVideoSoft Limited. - Free Video to MP3 Converter 3.2 Setup.) -- C:\Program Files\FreeVideoToMp3Converter.exe [7523893]
[MD5.ACC1E2DCC38EF00452EB0B754351226E] [SPRF][08/06/2013] (.Microsoft Corporation - Auto-extraction de fichier CAB.) -- C:\Program Files\IE8-WindowsXP-x86-FRA.exe [17001840]
[MD5.EA4F5E984CF24F1D0EECBCB7DC1D3D40] [SPRF][09/05/2013] (.http://www.goforfiles.com/ - GoforFiles.) -- C:\Program Files\Marius_et_jeannette_french_gratuit_downloader_fr_99018.exe [6427784] =>P2P.GoforFiles
[MD5.683FDD3D773C58B262DC07CD0C6CE938] [SPRF][26/06/2013] (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\mbam-setup-1.75.0.1300.exe [10285040]
[MD5.4B1527CF984CA8EB1C64BB0AD57118E0] [SPRF][09/06/2013] (.Microsoft Corporation - MSEInstall Package.) -- C:\Program Files\mseinstall.exe [11120080]
[MD5.BFE42572FEB51B6D5D4FA0467E52DB29] [SPRF][26/06/2013] (...) -- C:\Program Files\RogueKiller.exe [911360]
[MD5.88A8EC54BA6A8BF6C37E0D31B2F25C07] [SPRF][23/12/2011] (.eRightSoft - SUPER © v2011.build.49 (July 1st, 2011) Setup.) -- C:\Program Files\super_super_v2011_build_49_anglais_19891.exe [40497982]
[MD5.A83CA92A9AEB066912E72F130FBB9A21] [SPRF][01/06/2012] (.Microsoft Corporation - Win32 Cabinet Self-Extractor.) -- C:\Program Files\Windows_Movie_Maker_2.0.exe [8597840]
[MD5.19EF6FE92855D6CC84CDD628D44B2EC5] [SPRF][15/06/2013] (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag2.exe [5678428]
[MD5.7D83CF297C4E1970E9B3501EFE3B7CD2] [SPRF][19/01/2006] (.Musicmatch, Inc. - Diagnostic Collection ActiveX control.) -- C:\WINDOWS\Downloaded Program Files\DiagCollectionControl.dll [610304]
[MD5.3FEA9D2EDF23B0283C7A66C8DEA380BD] [SPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player Module.) -- C:\WINDOWS\Downloaded Program Files\dwusplay.dll [24576]
[MD5.CDBE35EA59BC9223E4F800BD1DB82D27] [SPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player.) -- C:\WINDOWS\Downloaded Program Files\dwusplay.exe [196608]
[MD5.632E0CE38FBCADEAAE28077F4C9C45D5] [SPRF][21/10/2010] (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller 10.1 r102.) -- C:\WINDOWS\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe [2827728]
[MD5.68CDC33D31F1952C80A915677D7B7796] [SPRF][09/08/2004] (.InstallShield Software Corporation - InstallShield Update Service Web Agent.) -- C:\WINDOWS\Downloaded Program Files\isusweb.dll [327680]
[MD5.87972E814A03FC90A61155686A9E7C72] [SPRF][05/08/2010] (.Microsoft Corporation - Windows Live OneCare Safety Scanner Base Module.) -- C:\WINDOWS\Downloaded Program Files\wlscBase.dll [464272]
~ Files: Scanned in 00mn 23s



---\\ Scan Additionnel (O88)
Database Version : v2.12472 - (13/06/2013)
Clés trouvées (Keys found) : 19
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 2
Fichiers trouvés (Files found) : 0

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{AC6240AE-33B6-40D3-8683-31BBE86049A0}] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{AC6240AE-33B6-40D3-8683-31BBE86049A0}] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D6533F74-218B-41BE-9D91-5BD471FECFFD}] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{08C06D61-F1F3-4799-86F8-BE1A89362C85}] =>Toolbar.Orange
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{08C06D61-F1F3-4799-86F8-BE1A89362C85}] =>Toolbar.Orange
[HKCU\Software\mediabarim] =>PUP.iMesh
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00E944CB89111313EAF35A0553F547F9] =>PUP.Dealio
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\53F55AF3F4049ED3FA6EA6F88E414E24] =>PUP.Dealio
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E4BF4B11615E03C97732FD581AB607] =>PUP.Dealio
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CE3DDAB2D152683FBCEB4866BCD2B0F] =>PUP.Dealio
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF6CE16AFEA5C9A39B766468A8B35C21] =>PUP.Dealio
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB1E44269B58F433A8C8E671E37CFDCF] =>PUP.Dealio
[HKCU\Software\QUAD Utilities] =>Rogue.QUADRegistryCleaner
[HKLM\Software\QUAD Utilities] =>Rogue.QUADRegistryCleaner
[HKLM\Software\Classes\IncrediSpooler.DeltaSync] =>toolbar.DeltaSearch
[HKLM\Software\Classes\IncrediSpooler.DeltaSync.1] =>toolbar.DeltaSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011501160}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011501160}] =>PUP.CrossRider
C:\Documents and Settings\SANDRINE\Application Data\wincoreimband =>PUP.iMesh
C:\Documents and Settings\SANDRINE\Local Settings\Application Data\Software =>Adware.Boxore
~ Additionnel Scan: 169670 Items scanned in 00mn 35s



---\\ Product Upgrade Codes (O90)
O90 - PUC: "49C22FC2963140C4A9F54ACBD6195B80" . (.IncrediMail.) -- C:\WINDOWS\Installer\{2CF22C94-1369-4C04-9A5F-A4BC6D91B508}\ARPPRODUCTICON.exe
~ Update Products: 28 Legitimates Filtered in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 12/06/2013 256904 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 09/05/2013 46808 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SS - | Demand 14/04/2008 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\system32\dmadmin.exe
SS - | Demand 22/10/2004 73728 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
SR - | Auto 04/04/2013 418376 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
SR - | Auto 04/04/2013 701512 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
SS - | Demand 07/06/2013 117144 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 20/07/2006 143426 | (NVSvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvsvc32.exe
SS - | Auto 0 | (RoxLiveShare9) . (...) - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe
~ Services: Scanned in 00mn 23s



~ 1282 Legitimates filtered by white list
End of the scan (622 lines in 12mn 53s)(0)
0
Réponse 49 / 68
manon
6 juil. 2013 à 12:05
Re billmaxime !
Je peux désormais ouvrir les sites auxquels je ne pouvais accéder auparavant dans google, ça marche !
A part ça, le micro rame pas mal et j'ai un petit souci (sans importance mais je voulais t'en parler) : lorsque j'allume le micro, un écran noir apparaît avec un message me demandant de saisir le système d'exploitation à démarrer, ça m'était déjà arrivé mais je ne me souviens plus comment faire pour en être débarrassé.
En attendant de te lire, je te souhaite une bonne journée et merci pour tout
A+
0
Réponse 50 / 68
billmaxime Messages postés 50445 Date d'inscription dimanche 20 novembre 2011 Statut Contributeur Dernière intervention 23 décembre 2024 6 011
6 juil. 2013 à 12:20
salut manon,

fais ceci s'il te plaît

lance zhpfix en tant qu'administrateur (clic droit)

copie tout le texte en gras ci-dessous

clique sur le 2ème bouton en haut a gauche (coller le presse papier)

clic sur GO en bas de page et confirme par oui pour lancer le nettoyage des données

le rapport s'affichera sur ton bureau et dans C:\zhpfix.txt

poste le rapport via ce lien https://www.cjoint.com/

le texte a copier

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoforFilesUpdate.job [282] =>P2P.GoforFiles
[MD5.00000000000000000000000000000000] [APT] [GoforFilesUpdate] (...) -- C:\Program Files\GoforFiles\GFFUpdater.exe (.not file.) [0] =>P2P.GoforFiles
O41 - Driver: (avipbb) . (. - .) - C:\WINDOWS\system32\DRIVERS\avipbb.sys (.not file.)
[HKCU\Software\GoforFiles] =>P2P.GoforFiles
[HKLM\Software\GoforFiles] =>P2P.GoforFiles
O43 - CFD: 09/05/2013 - 18:58:54 - [0] ----D C:\Documents and Settings\SANDRINE\Application Data\GoforFiles =>P2P.GoforFiles
O47 - AAKE:Key Export SP - "C:\Program Files\Ares\Ares.exe" [Disabled] .(...) -- C:\Program Files\Ares\Ares.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\iMesh Applications\iMesh\iMesh.exe" [Disabled] .(...) -- C:\Program Files\iMesh Applications\iMesh\iMesh.exe (.not file.) =>PUP.iMesh
O47 - AAKE:Key Export SP - "C:\Program Files\AlerteGPS\G200NEOV2\AULauncher.exe" [Enabled] .(...) -- C:\Program Files\AlerteGPS\G200NEOV2\AULauncher.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\GoforFiles\goforfilesdl.exe" [Enabled] .(...) -- C:\Program Files\GoforFiles\goforfilesdl.exe (.not file.) =>P2P.GoforFiles
O47 - AAKE:Key Export SP - "C:\Program Files\GoforFiles\GoforFiles.exe" [Enabled] .(...) -- C:\Program Files\GoforFiles\GoforFiles.exe (.not file.) =>P2P.GoforFiles
O47 - AAKE:Key Export DP - "C:\Program Files\iMesh Applications\iMesh\iMesh.exe" [Enabled] .(...) -- C:\Program Files\iMesh Applications\iMesh\iMesh.exe (.not file.) =>PUP.iMesh
O69 - SBI: SearchScopes [HKCU] {0633EE93-1111-472f-A0FF-E1416B8B2EAA} - (Search) - http://start.funmoods.com =>PUP.Funmoods
O69 - SBI: SearchScopes [HKCU] {C8661B5D-043E-4F68-97F8-6171BC5D677E} - (01NET.com Main Customized Web Search) - http://search.conduit.com
[MD5.9E828426DC8413209CA096A10F800148] [SPRF][11/05/2013] (.Conduit - Setup.exe.) -- C:\Program Files\01net_CDBurnerXP_Pro.exe [1319472] =>Toolbar.Conduit
[MD5.EA4F5E984CF24F1D0EECBCB7DC1D3D40] [SPRF][09/05/2013] (.http://www.goforfiles.com/ - GoforFiles.) -- C:\Program Files\Marius_et_jeannette_french_gratuit_downloader_fr_99018.exe [6427784] =>P2P.GoforFiles
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{AC6240AE-33B6-40D3-8683-31BBE86049A0}] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{AC6240AE-33B6-40D3-8683-31BBE86049A0}] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D6533F74-218B-41BE-9D91-5BD471FECFFD}] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{08C06D61-F1F3-4799-86F8-BE1A89362C85}] =>Toolbar.Orange
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{08C06D61-F1F3-4799-86F8-BE1A89362C85}] =>Toolbar.Orange
[HKCU\Software\mediabarim] =>PUP.iMesh
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00E944CB89111313EAF35A0553F547F9] =>PUP.Dealio
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\53F55AF3F4049ED3FA6EA6F88E414E24] =>PUP.Dealio
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E4BF4B11615E03C97732FD581AB607] =>PUP.Dealio
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CE3DDAB2D152683FBCEB4866BCD2B0F] =>PUP.Dealio
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF6CE16AFEA5C9A39B766468A8B35C21] =>PUP.Dealio
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB1E44269B58F433A8C8E671E37CFDCF] =>PUP.Dealio
[HKCU\Software\QUAD Utilities] =>Rogue.QUADRegistryCleaner
[HKLM\Software\QUAD Utilities] =>Rogue.QUADRegistryCleaner
[HKLM\Software\Classes\IncrediSpooler.DeltaSync] =>toolbar.DeltaSearch
[HKLM\Software\Classes\IncrediSpooler.DeltaSync.1] =>toolbar.DeltaSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011501160}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011501160}] =>PUP.CrossRider
C:\Documents and Settings\SANDRINE\Application Data\wincoreimband =>PUP.iMesh
C:\Documents and Settings\SANDRINE\Local Settings\Application Data\Software =>Adware.Boxore


SysRestore
FirewallRAZ
EmptyCLSID
EmptyTemp
EmptyFlash

@+
0
Réponse 51 / 68
manon
9 juil. 2013 à 11:15
Bonjour billmaxime
Je t'envoie le raport de zhpfix que tu m'as demandé
A+ et bonne journée

Rapport de ZHPFix 2013.6.12.3 par Nicolas Coolman, Update du 12/06/2013
Fichier d'export Registre :
Run by SANDRINE at 09/07/2013 11:12:11
High Elevated Privileges : OK
Windows XP Professional Service Pack 3 (Build 2600)

Corbeille vidée

========== Processus mémoire ==========
SUPPRIME Memory Process: C:\Program Files\01net_CDBurnerXP_Pro.exe
SUPPRIME Memory Process: C:\Program Files\Marius_et_jeannette_french_gratuit_downloader_fr_99018.exe

========== Clé(s) du Registre ==========
SUPPRIME Driver Key: avipbb
SUPPRIME Key: HKCU\Software\GoforFiles
SUPPRIME Key: HKLM\Software\GoforFiles
SUPPRIME Key: SearchScopes :{0633EE93-1111-472f-A0FF-E1416B8B2EAA}
SUPPRIME Key: SearchScopes :{C8661B5D-043E-4F68-97F8-6171BC5D677E}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E}
SUPPRIME Key: HKLM\Software\Classes\CLSID\{AC6240AE-33B6-40D3-8683-31BBE86049A0}
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{AC6240AE-33B6-40D3-8683-31BBE86049A0}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D6533F74-218B-41BE-9D91-5BD471FECFFD}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{08C06D61-F1F3-4799-86F8-BE1A89362C85}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{08C06D61-F1F3-4799-86F8-BE1A89362C85}
SUPPRIME Key: HKCU\Software\mediabarim
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00E944CB89111313EAF35A0553F547F9
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\53F55AF3F4049ED3FA6EA6F88E414E24
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E4BF4B11615E03C97732FD581AB607
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CE3DDAB2D152683FBCEB4866BCD2B0F
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF6CE16AFEA5C9A39B766468A8B35C21
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB1E44269B58F433A8C8E671E37CFDCF
SUPPRIME Key: HKCU\Software\QUAD Utilities
SUPPRIME Key: HKLM\Software\QUAD Utilities
SUPPRIME Key: HKLM\Software\Classes\IncrediSpooler.DeltaSync
SUPPRIME Key: HKLM\Software\Classes\IncrediSpooler.DeltaSync.1
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011501160}
SUPPRIME Key: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011501160}

========== Valeur(s) du Registre ==========
SUPPRIME AAKE KeyValue: C:\Program Files\Ares\Ares.exe
SUPPRIME AAKE KeyValue: C:\Program Files\iMesh Applications\iMesh\iMesh.exe
SUPPRIME AAKE KeyValue: C:\Program Files\AlerteGPS\G200NEOV2\AULauncher.exe
SUPPRIME AAKE KeyValue: C:\Program Files\GoforFiles\goforfilesdl.exe
SUPPRIME AAKE KeyValue: C:\Program Files\GoforFiles\GoforFiles.exe
SUPPRIME FirewallRaz (SP) : %windir%\system32\sessmgr.exe
SUPPRIME FirewallRaz (SP) : C:\Program Files\VideoLAN\VLC\vlc.exe
SUPPRIME FirewallRaz (SP) : C:\Program Files\eMule\emule.exe
SUPPRIME FirewallRaz (DP) : %windir%\system32\sessmgr.exe
Aucune valeur présente dans la clé d'exception du registre (FirewallRaz)

========== Dossier(s) ==========
Aucun dossiers CLSID Local utilisateur vide
SUPPRIME Temporaires Windows
SUPPRIME Flash Cookies

========== Fichier(s) ==========
SUPPRIME File: c:\windows\tasks\goforfilesupdate.job
ABSENT File: c:\program files\ares\ares.exe
ABSENT File: c:\program files\imesh applications\imesh\imesh.exe
ABSENT File: c:\program files\alertegps\g200neov2\aulauncher.exe
ABSENT File: c:\program files\goforfiles\goforfilesdl.exe
ABSENT File: c:\program files\goforfiles\goforfiles.exe
SUPPRIME File: c:\program files\01net_cdburnerxp_pro.exe
SUPPRIME File***: c:\program files\marius_et_jeannette_french_gratuit_downloader_fr_99018.exe
SUPPRIME Temporaires Windows
SUPPRIME Flash Cookies

========== Tache planifiée ==========
SUPPRIME Task: GoforFilesUpdate

========== Restauration Système ==========
Point de restauration du système créé avec succès


========== Récapitulatif ==========
2 : Processus mémoire
24 : Clé(s) du Registre
10 : Valeur(s) du Registre
3 : Dossier(s)
10 : Fichier(s)
1 : Tache planifiée
1 : Restauration Système


End of clean in 00mn 35s

========== Chemin de fichier rapport ==========
C:\ZHP\ZHPFix[R1].txt - 09/07/2013 11:12:18 [4592]
0
Réponse 52 / 68
billmaxime Messages postés 50445 Date d'inscription dimanche 20 novembre 2011 Statut Contributeur Dernière intervention 23 décembre 2024 6 011
9 juil. 2013 à 21:44
salut Manon,

dis moi comment va le pc maintenant

@+
0
Réponse 53 / 68
manon
14 juil. 2013 à 10:10
Salut billmaxime,
Le pc va mieux à présent même s'il est lent et plante encore mais cela doit provenir du fait qu'il est ancien et que le processeur l'est aussi !
J'ai peut-être aussi trop d'icônes sur le bureau.
Par contre, j'ai toujours au démarrage de windows un écran où est marqué "veuillez choisir votre système d'exploitation" et je ne me souviens plus comment s'en débarrasser.
Peux-tu me dire ce que je dois faire ?
Merci à toi et bon dimanche
A+
0
Réponse 54 / 68
billmaxime Messages postés 50445 Date d'inscription dimanche 20 novembre 2011 Statut Contributeur Dernière intervention 23 décembre 2024 6 011
14 juil. 2013 à 17:12
salut Manon

fais ceci s'il te plaît et coche bien les 2 cases

http://www.aidewindows.net/verification.php#poste_travail

@+
0
Réponse 55 / 68
manon
16 juil. 2013 à 18:56
Bonsoir billmaxime,
J'ai fais la manip que tu m'as demandé et j'ai toujours le même écran au démarrage de windows
A+ et bonne soirée
0
Réponse 56 / 68
billmaxime Messages postés 50445 Date d'inscription dimanche 20 novembre 2011 Statut Contributeur Dernière intervention 23 décembre 2024 6 011
17 juil. 2013 à 06:50
salut Manon,

dis moi si tu as 2 OS sur ton DD

@+
0
Réponse 57 / 68
manon
17 juil. 2013 à 18:44
Salut billmaxime,
jen'ai qu'un seul OS sur le DD
A+
0
Réponse 58 / 68
billmaxime Messages postés 50445 Date d'inscription dimanche 20 novembre 2011 Statut Contributeur Dernière intervention 23 décembre 2024 6 011
17 juil. 2013 à 19:32
salut Manon,

pour ton message au démarrage d'xp, regarde si ceci peut t'aider

https://forums.commentcamarche.net/forum/affich-3100883-supprimer-le-choix-du-systeme-d-exploitation

@+
0
Réponse 59 / 68
manon
27 juil. 2013 à 17:50
Bonjour Billmaxime,
Une fois de plus grâce à ton aide et tes conseils le problème est résolu !
Je te remercie beaucoup pour tes services
Je te souhaite un bon week-end et peut-être à + sur le forum !
Cdlt
Manon
0
Réponse 60 / 68
billmaxime Messages postés 50445 Date d'inscription dimanche 20 novembre 2011 Statut Contributeur Dernière intervention 23 décembre 2024 6 011
27 juil. 2013 à 17:52
salut Manon,

tu as encore des soucis?

dis moi comment va le pc?

@+
0