Sujet Précédent Sujet Suivant

Gros nettoyage

Résolu/Fermé
jlm1963 Messages postés 467 Date d'inscription mardi 19 janvier 2010 Statut Membre Dernière intervention 20 novembre 2020 - 24 juin 2013 à 11:56
juju666 Messages postés 35446 Date d'inscription jeudi 18 décembre 2008 Statut Contributeur sécurité Dernière intervention 21 avril 2024 - 25 juin 2013 à 14:39
Bonjour.
Je suis chez mes parents.
Et je viens de me rendre compte que l'ordinateur n'avance plus.
Je ne sais pas si c'est un virus ou autre chose.
Mais sa rame vraiment beaucoup.
C"est pourquoi je m'en remet a un spécialiste pour faire un peu le ménage et voir ce qui se passe.
D'avance merci pour votre aide.



A voir également:

31 réponses

Précédent
  • 1
  • 2
Réponse 21 / 31
jlm1963 Messages postés 467 Date d'inscription mardi 19 janvier 2010 Statut Membre Dernière intervention 20 novembre 2020 47
24 juin 2013 à 16:51
https://forums-fec.be/upload/www/?a=d&i=9590725105
https://forums-fec.be/upload/www/?a=r&i=9590725105&r=6216565522
0
Réponse 22 / 31
juju666 Messages postés 35446 Date d'inscription jeudi 18 décembre 2008 Statut Contributeur sécurité Dernière intervention 21 avril 2024 4 796
24 juin 2013 à 16:57
Flute il a pas tué la avg toolbar à la noix.

Relance OTL, sous personnalisation colle le texte suivant puis click sur correction le pc va redmarrer, poste le rapport.


:OTL
PRC - [2013/05/21 14:30:55 | 001,015,984 | ---- | M] (AVG Secure Search) -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe
SRV - [2013/05/21 14:30:55 | 001,015,984 | ---- | M] (AVG Secure Search) [Auto | Running] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe -- (vToolbarUpdater15.2.0)
IE - HKLM\..\SearchScopes\{0D003D45-649F-4705-A3D8-F5423D780653}: "URL" = http://be.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913939
IE - HKLM\..\SearchScopes\{5DEAA266-9AFB-465C-A6EC-0E831F3E8AF4}: "URL" = http://be.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913939
IE - HKLM\..\SearchScopes\{A1465D8B-7243-47A9-8A3B-1532F717D1CB}: "URL" = http://be.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913939
IE - HKCU\..\SearchScopes\{0D003D45-649F-4705-A3D8-F5423D780653}: "URL" = http://be.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913939
IE - HKCU\..\SearchScopes\{3CBC88F8-6598-4C07-B1FC-CBD73E5BAC97}: "URL" = http://www.mysearchresults.com/search?c=2402&t=01&q={searchTerms}
IE - HKCU\..\SearchScopes\{5DEAA266-9AFB-465C-A6EC-0E831F3E8AF4}: "URL" = http://be.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913939
IE - HKCU\..\SearchScopes\{8923756E-B4E4-45F1-B009-F63A156685F1}: "URL" = http://ww7.tuvaro.com{searchTerms}
IE - HKCU\..\SearchScopes\{A1465D8B-7243-47A9-8A3B-1532F717D1CB}: "URL" = http://be.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913939
FF - prefs.js..browser.startup.homepage: "http://ww7.tuvaro.com"
FF - prefs.js..browser.search.selectedEngine: "Tuvaro"
FF - prefs.js..browser.search.order.1: "Tuvaro"
FF - prefs.js..keyword.URL: "http://ww7.tuvaro.com"
[2013/05/25 10:13:35 | 000,001,407 | ---- | M] () -- C:\Users\Gustave\AppData\Roaming\mozilla\firefox\profiles\x6vcm5q8.default\searchplugins\tuvaro.xml
CHR - default_search_provider: Babylon (Enabled)
CHR - default_search_provider: search_url = http://search.babylon.com/?q={searchTerms}&affID=119531&babsrc=SP_ss_din2g&mntrId=FE6D00FFFC09C54D
O2 - BHO: (Toolbar BHO) - {1e91a655-bb4b-4693-a05e-2edebc4c9d89} - C:\PROGRA~1\MAPSGA~2\bar\1.bin\39bar.dll File not found
O2 - BHO: (Search Assistant BHO) - {71c1d63a-c944-428a-a5bd-ba513190e5d2} - C:\Program Files\MapsGalaxy_39\bar\1.bin\39SrcAs.dll File not found
[2013/06/24 16:29:13 | 000,000,350 | ---- | M] () -- C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
[2013/06/24 16:28:25 | 000,000,300 | ---- | M] () -- C:\Windows\tasks\iMeshNAG.job
[2013/06/08 10:19:36 | 000,000,849 | ---- | M] () -- C:\Users\Public\Desktop\RegClean Pro.lnk

:Files
C:\Program Files\Common Files\AVG Secure Search

:Commands
[EMPTYTEMP]

0
Réponse 23 / 31
jlm1963 Messages postés 467 Date d'inscription mardi 19 janvier 2010 Statut Membre Dernière intervention 20 novembre 2020 47
24 juin 2013 à 17:29
OTL logfile created on: 24/06/2013 16:41:35 - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Gustave\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000080C | Country: Belgique | Language: FRB | Date Format: d/MM/yyyy

3,00 Gb Total Physical Memory | 1,66 Gb Available Physical Memory | 55,47% Memory free
6,19 Gb Paging File | 4,78 Gb Available in Paging File | 77,12% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 139,80 Gb Total Space | 22,71 Gb Free Space | 16,24% Space Free | Partition Type: NTFS
Drive D: | 149,05 Gb Total Space | 116,80 Gb Free Space | 78,36% Space Free | Partition Type: NTFS
Drive E: | 9,25 Gb Total Space | 2,07 Gb Free Space | 22,42% Space Free | Partition Type: NTFS
Drive H: | 1396,92 Gb Total Space | 930,87 Gb Free Space | 66,64% Space Free | Partition Type: FAT32

Computer Name: PC-DE-GUSTAVE | User Name: Gustave | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2013/06/24 16:41:13 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Gustave\Downloads\OTL (1).exe
PRC - [2013/06/18 22:12:34 | 000,831,272 | ---- | M] (AnchorFree Inc.) -- C:\Program Files\Hotspot Shield\bin\cmw_srv.exe
PRC - [2013/06/18 22:12:06 | 001,641,768 | ---- | M] (AnchorFree Inc.) -- C:\Program Files\Hotspot Shield\bin\hsscp.exe
PRC - [2013/06/18 22:11:20 | 000,548,136 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\hsswd.exe
PRC - [2013/05/21 14:30:55 | 001,015,984 | ---- | M] (AVG Secure Search) -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe
PRC - [2013/05/21 06:44:22 | 000,144,368 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe
PRC - [2013/05/16 16:44:05 | 001,012,000 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
PRC - [2013/05/16 16:38:39 | 001,826,592 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2013/05/12 21:58:09 | 001,821,984 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2013/05/12 21:58:09 | 000,875,296 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
PRC - [2013/03/08 16:30:12 | 000,957,512 | ---- | M] (Realtek Semiconductor) -- C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
PRC - [2013/01/23 16:33:24 | 013,207,096 | ---- | M] (Orange) -- C:\Program Files\Orange\Assistance Livebox\dist\ST2.exe
PRC - [2013/01/23 16:33:24 | 000,149,560 | ---- | M] (Orange) -- C:\Program Files\Orange\Assistance Livebox\AssistanceLivebox.exe
PRC - [2012/11/23 14:49:16 | 000,141,968 | ---- | M] (Realtek Semiconductor) -- C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe
PRC - [2012/10/02 13:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
PRC - [2012/06/11 16:22:16 | 000,240,208 | ---- | M] (Microsoft Corporation.) -- C:\Program Files\Microsoft\BingBar\7.1.391.0\SeaPort.exe
PRC - [2012/06/11 16:22:16 | 000,193,616 | ---- | M] (Microsoft Corporation.) -- C:\Program Files\Microsoft\BingBar\7.1.391.0\BBSvc.exe
PRC - [2011/01/20 04:01:40 | 000,095,568 | ---- | M] (Devguru Co., Ltd.) -- C:\WINDOWS\System32\dgdersvc.exe
PRC - [2011/01/20 03:59:18 | 000,217,088 | ---- | M] (Teruten) -- C:\WINDOWS\System32\FsUsbExService.Exe
PRC - [2009/12/01 14:37:48 | 000,322,624 | ---- | M] (DigitalPersona, Inc.) -- C:\Program Files\DigitalPersona\Bin\DpHostW.exe
PRC - [2009/04/11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2009/04/11 08:27:28 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\conime.exe
PRC - [2008/12/05 17:11:54 | 000,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
PRC - [2007/07/25 08:02:44 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2013/06/18 00:18:54 | 000,749,352 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\af_proxy.dll
MOD - [2013/01/23 16:33:20 | 000,159,744 | ---- | M] () -- C:\Program Files\Orange\Assistance Livebox\dist\rt\jetrt\baseline720.dll
MOD - [2013/01/23 16:33:18 | 000,126,976 | ---- | M] () -- C:\Program Files\Orange\Assistance Livebox\dist\rt\bin\zip.dll
MOD - [2013/01/23 16:33:18 | 000,020,480 | ---- | M] () -- C:\Program Files\Orange\Assistance Livebox\dist\rt\bin\jetvm\jvm.dll
MOD - [2013/01/23 16:33:18 | 000,019,456 | ---- | M] () -- C:\Program Files\Orange\Assistance Livebox\dist\NetWPSAPI.dll
MOD - [2013/01/23 16:33:16 | 000,151,552 | ---- | M] () -- C:\Program Files\Orange\Assistance Livebox\dist\Tools.DLL
MOD - [2013/01/23 16:33:16 | 000,131,584 | ---- | M] () -- C:\Program Files\Orange\Assistance Livebox\dist\NetworkAPI.dll
MOD - [2013/01/23 16:33:16 | 000,069,632 | ---- | M] () -- C:\Program Files\Orange\Assistance Livebox\dist\rt\bin\java.dll
MOD - [2012/05/30 08:51:08 | 000,699,280 | R--- | M] () -- C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\20.4.0.40\wincfi39.dll
MOD - [2011/06/24 22:56:36 | 000,087,328 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/06/24 22:56:14 | 001,241,888 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV - File not found [Auto | Stopped] -- C:\PROGRA~1\TELEVI~2\bar\1.bin\64barsvc.exe -- (TelevisionFanaticService)
SRV - File not found [Auto | Stopped] -- C:\PROGRA~1\MAPSGA~2\bar\1.bin\39barsvc.exe -- (MapsGalaxy_39Service)
SRV - [2013/06/18 22:12:34 | 000,831,272 | ---- | M] (AnchorFree Inc.) [Auto | Running] -- C:\Program Files\Hotspot Shield\bin\cmw_srv.exe -- (hshld)
SRV - [2013/06/18 22:11:20 | 000,548,136 | ---- | M] () [Auto | Running] -- C:\Program Files\Hotspot Shield\bin\hsswd.exe -- (HssWd)
SRV - [2013/06/13 21:55:18 | 000,078,512 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE -- (HssTrayService)
SRV - [2013/06/12 16:26:00 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/06/03 16:54:06 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/05/21 14:30:55 | 001,015,984 | ---- | M] (AVG Secure Search) [Auto | Running] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe -- (vToolbarUpdater15.2.0)
SRV - [2013/05/21 06:44:22 | 000,144,368 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe -- (NIS)
SRV - [2013/05/16 16:38:39 | 001,826,592 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012/11/23 14:49:16 | 000,141,968 | ---- | M] (Realtek Semiconductor) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe -- (RtkAudioService)
SRV - [2012/10/02 13:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2012/09/18 16:33:48 | 001,082,016 | ---- | M] (France Telecom SA) [Auto | Stopped] -- C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe -- (Orange update Core Service)
SRV - [2012/06/11 16:22:16 | 000,240,208 | ---- | M] (Microsoft Corporation.) [On_Demand | Running] -- C:\Program Files\Microsoft\BingBar\7.1.391.0\SeaPort.exe -- (BBUpdate)
SRV - [2012/06/11 16:22:16 | 000,193,616 | ---- | M] (Microsoft Corporation.) [Auto | Running] -- C:\Program Files\Microsoft\BingBar\7.1.391.0\BBSvc.exe -- (BBSvc)
SRV - [2011/01/20 04:01:40 | 000,095,568 | ---- | M] (Devguru Co., Ltd.) [Auto | Running] -- C:\WINDOWS\System32\dgdersvc.exe -- (dgdersvc)
SRV - [2011/01/20 03:59:18 | 000,217,088 | ---- | M] (Teruten) [Auto | Running] -- C:\WINDOWS\System32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2009/12/01 14:37:48 | 000,322,624 | ---- | M] (DigitalPersona, Inc.) [Auto | Running] -- C:\Program Files\DigitalPersona\Bin\DpHostW.exe -- (DpHost)
SRV - [2008/12/05 17:11:54 | 000,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2008/01/19 09:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV - [2007/07/25 08:02:44 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe -- (IAANTMON)
SRV - [2007/03/05 11:30:06 | 000,110,592 | ---- | M] (Hewlett-Packard Development Company, L.P.) [On_Demand | Stopped] -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe -- (Com4Qlb)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\blbdrive.sys -- (blbdrive)
DRV - [2013/06/19 09:13:38 | 000,142,496 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2013/06/13 21:49:28 | 000,041,160 | ---- | M] (AnchorFree Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\hssdrv6.sys -- (HssDRV6)
DRV - [2013/06/04 11:49:55 | 001,611,992 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\Definitions\VirusDefs\20130623.002\NAVEX15.SYS -- (NAVEX15)
DRV - [2013/06/04 11:49:55 | 000,106,656 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2013/06/04 11:49:55 | 000,093,272 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\Definitions\VirusDefs\20130623.002\NAVENG.SYS -- (NAVENG)
DRV - [2013/05/31 18:58:19 | 001,002,072 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\Definitions\BASHDefs\20130531.001\BHDrvx86.sys -- (BHDrvx86)
DRV - [2013/05/23 07:25:28 | 000,934,488 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\WINDOWS\System32\drivers\NIS\1404000.028\symefa.sys -- (SymEFA)
DRV - [2013/05/21 14:30:56 | 000,037,664 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\avgtpx86.sys -- (avgtp)
DRV - [2013/05/21 07:02:00 | 000,367,704 | ---- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\NIS\1404000.028\symds.sys -- (SymDS)
DRV - [2013/05/16 07:02:14 | 000,603,224 | ---- | M] (Symantec Corporation) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\NIS\1404000.028\srtsp.sys -- (SRTSP)
DRV - [2013/05/12 23:37:58 | 009,053,984 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2013/05/02 20:02:14 | 000,386,720 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\Definitions\IPSDefs\20130621.001\IDSvix86.sys -- (IDSVix86)
DRV - [2013/04/25 02:43:56 | 000,352,344 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\NIS\1404000.028\symtdiv.sys -- (SYMTDIv)
DRV - [2013/04/24 21:25:44 | 000,037,064 | ---- | M] (Anchorfree Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\taphss6.sys -- (taphss6)
DRV - [2013/04/16 04:41:14 | 000,134,744 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\NIS\1404000.028\ccsetx86.sys -- (ccSet_NIS)
DRV - [2013/03/05 04:14:18 | 000,036,512 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\SymIMV.sys -- (SymIM)
DRV - [2013/03/05 03:39:19 | 000,175,264 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\NIS\1404000.028\ironx86.sys -- (SymIRON)
DRV - [2013/03/05 03:21:35 | 000,032,344 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\NIS\1404000.028\srtspx.sys -- (SRTSPX)
DRV - [2013/02/12 17:02:39 | 000,376,480 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2012/11/09 22:25:58 | 000,454,288 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2011/03/16 18:13:10 | 000,044,544 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2011/02/11 23:23:34 | 000,035,088 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\npf.sys -- (npf)
DRV - [2011/01/20 04:01:40 | 000,018,120 | ---- | M] (Devguru Co., Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\dgderdrv.sys -- (dgderdrv)
DRV - [2011/01/20 03:59:18 | 000,036,640 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2010/12/21 07:55:02 | 000,123,648 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\ss_bmdm.sys -- (ss_bmdm)
DRV - [2010/12/21 07:55:02 | 000,100,224 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\ss_bserd.sys -- (ss_bserd)
DRV - [2010/12/21 07:55:02 | 000,098,432 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\ss_bbus.sys -- (ss_bbus)
DRV - [2010/12/21 07:55:02 | 000,014,848 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\ss_bmdfl.sys -- (ss_bmdfl)
DRV - [2010/10/07 07:11:38 | 006,639,616 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\NETwLv32.sys -- (NETwLv32)
DRV - [2010/08/10 15:08:12 | 000,659,968 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\ATSwpWDF.sys -- (ATSwpWDF)
DRV - [2009/10/26 16:09:06 | 001,095,936 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\smserial.sys -- (smserial)
DRV - [2009/06/25 17:58:10 | 000,048,128 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2009/06/25 16:25:58 | 000,038,400 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2009/04/20 12:57:26 | 000,046,592 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\risdptsk.sys -- (risdptsk)
DRV - [2009/04/11 06:42:52 | 000,031,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\winusb.sys -- (winusb)
DRV - [2009/04/11 06:38:59 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\usbccid.sys -- (USBCCID)
DRV - [2008/11/17 16:40:22 | 003,668,480 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\NETw5v32.sys -- (NETw5v32)
DRV - [2007/10/01 15:59:46 | 001,769,984 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\snp2uvc.sys -- (SNP2UVC)
DRV - [2007/08/28 16:47:36 | 000,146,560 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\atswpdrv.sys -- (ATSWPDRV)
DRV - [2007/07/11 11:30:22 | 000,007,168 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\HpqRemHid.sys -- (HpqRemHid)
DRV - [2007/06/28 17:09:56 | 002,222,080 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\NETw4v32.sys -- (NETw4v32)
DRV - [2007/06/18 18:12:04 | 000,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV - [2006/11/02 09:30:54 | 001,781,760 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\NETw3v32.sys -- (NETw3v32)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/nl-be?cobrand=hp.msn.com&ocid=HPDHP&pc=HPDTDF&checklang=1
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/nl-be?cobrand=hp.msn.com&ocid=HPDHP&pc=HPDTDF&checklang=1
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = https://www.bing.com/?scope=web&mkt=fr-FR{searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{0D003D45-649F-4705-A3D8-F5423D780653}: "URL" = http://be.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913939
IE - HKLM\..\SearchScopes\{5DEAA266-9AFB-465C-A6EC-0E831F3E8AF4}: "URL" = http://be.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913939
IE - HKLM\..\SearchScopes\{A1465D8B-7243-47A9-8A3B-1532F717D1CB}: "URL" = http://be.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913939

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?gws_rd=ssl
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = https://www.msn.com/fr-be?lang=fr-be&ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr-be
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = E0 23 58 71 17 7A CC 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {26842a09-ffa8-4e2c-ae12-0c80f01c3295} - No CLSID value found
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = https://www.bing.com/?scope=web&mkt=fr-FR{searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{0D003D45-649F-4705-A3D8-F5423D780653}: "URL" = http://be.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913939
IE - HKCU\..\SearchScopes\{2500B16F-6188-494E-B0D6-D1F06B6ACF07}: "URL" = https://search.yahoo.com/web?fr=chr-greentree_ie{searchTerms}
IE - HKCU\..\SearchScopes\{3CBC88F8-6598-4C07-B1FC-CBD73E5BAC97}: "URL" = http://www.mysearchresults.com/search?c=2402&t=01&q={searchTerms}
IE - HKCU\..\SearchScopes\{5DEAA266-9AFB-465C-A6EC-0E831F3E8AF4}: "URL" = http://be.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913939
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = https://www.bing.com/?scope=web&mkt=fr-FR{searchTerms}&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{814C76CB-2623-43F4-AAD0-58A0E5190A20}: "URL" = http://r.orange.fr/r?ref=O_OI_hook_openSearchIE&url=http%3A//rws.search.ke.voila.fr/RW/S/opensearch_orange?rdata={searchTerms}
IE - HKCU\..\SearchScopes\{8923756E-B4E4-45F1-B009-F63A156685F1}: "URL" = http://ww7.tuvaro.com{searchTerms}
IE - HKCU\..\SearchScopes\{9D5BD211-422C-4164-9298-BB4186A30F31}: "URL" = https://www.bing.com/?scope=web&mkt=fr-FR{searchTerms}&mkt=fr-FR&form=MIAWB1
IE - HKCU\..\SearchScopes\{A1465D8B-7243-47A9-8A3B-1532F717D1CB}: "URL" = http://be.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913939
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.startup.homepage: "http://ww7.tuvaro.com"
FF - prefs.js..browser.search.selectedEngine: "Tuvaro"
FF - prefs.js..browser.search.order.1: "Tuvaro"
FF - prefs.js..keyword.URL: "http://ww7.tuvaro.com"
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@TelevisionFanatic.com/Plugin: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\otis@digitalpersona.com: C:\Program Files\DigitalPersona\Bin\FirefoxExt\ [2011/01/25 16:24:14 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\coFFPlgn\ [2013/06/24 16:29:24 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\64ffxtbr@TelevisionFanatic.com: C:\Program Files\TelevisionFanatic\bar\1.bin
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\IPSFFPlgn\ [2013/05/03 14:46:48 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\otis@digitalpersona.com: C:\Program Files\DigitalPersona\Bin\firefoxext [2011/01/25 16:24:14 | 000,000,000 | ---D | M]

[2012/04/11 18:42:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Gustave\AppData\Roaming\mozilla\Extensions
[2013/06/24 12:39:56 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Gustave\AppData\Roaming\mozilla\Firefox\Profiles\x6vcm5q8.default\extensions
[2011/01/21 16:49:16 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Gustave\AppData\Roaming\mozilla\Firefox\Profiles\x6vcm5q8.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2012/12/03 18:15:16 | 000,000,000 | ---D | M] (barre d'outils Orange) -- C:\Users\Gustave\AppData\Roaming\mozilla\Firefox\Profiles\x6vcm5q8.default\extensions\toolbar@Orange.fr
[2011/01/27 17:34:51 | 000,002,650 | ---- | M] () -- C:\Users\Gustave\AppData\Roaming\mozilla\firefox\profiles\x6vcm5q8.default\searchplugins\bing.xml
[2013/05/25 10:13:35 | 000,001,407 | ---- | M] () -- C:\Users\Gustave\AppData\Roaming\mozilla\firefox\profiles\x6vcm5q8.default\searchplugins\tuvaro.xml
[2012/08/05 22:48:56 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions

[color=#E56717]========== Chrome ==========[/color]

CHR - default_search_provider: Babylon (Enabled)
CHR - default_search_provider: search_url = http://search.babylon.com/?q={searchTerms}&affID=119531&babsrc=SP_ss_din2g&mntrId=FE6D00FFFC09C54D
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\27.0.1453.116\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\27.0.1453.116\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\27.0.1453.116\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll
CHR - plugin: QuickTime Plug-in 7.7.4 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.4 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.4 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.4 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.4 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.4 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: CANON iMAGE GATEWAY Album Plugin Utility (Enabled) = C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U21 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_202.dll
CHR - plugin: Java Deployment Toolkit 7.0.210.11 (Enabled) = C:\Windows\system32\npDeployJava1.dll
CHR - Extension: Skype Click to Call = C:\Users\Gustave\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.3.0.11079_0\
CHR - Extension: Norton Identity Protection = C:\Users\Gustave\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.3.3.19_0\
CHR - Extension: Norton Identity Protection = C:\Users\Gustave\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.4.0.10_0\

O1 HOSTS File: ([2006/09/18 23:41:30 | 000,000,761 | ---- | M]) - C:\WINDOWS\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Aide pour le lien d'Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Toolbar BHO) - {1e91a655-bb4b-4693-a05e-2edebc4c9d89} - C:\PROGRA~1\MAPSGA~2\bar\1.bin\39bar.dll File not found
O2 - BHO: (DigitalPersona Personal Extension) - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files\DigitalPersona\Bin\DpOtsPluginIe8.dll (DigitalPersona, Inc.)
O2 - BHO: (Norton Identity Protection) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
O2 - BHO: (Norton Vulnerability Protection) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\20.4.0.40\IPS\IPSBHO.DLL (Symantec Corporation)
O2 - BHO: (Search Assistant BHO) - {71c1d63a-c944-428a-a5bd-ba513190e5d2} - C:\Program Files\MapsGalaxy_39\bar\1.bin\39SrcAs.dll File not found
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (MapsGalaxy) - {364ea597-e728-4ce4-bb4a-ed846ef47970} - C:\Program Files\MapsGalaxy_39\bar\1.bin\39bar.dll File not found
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\7.1.391.0\BingExt.dll (Microsoft Corporation.)
O3 - HKCU\..\Toolbar\WebBrowser: (MapsGalaxy) - {364EA597-E728-4CE4-BB4A-ED846EF47970} - C:\Program Files\MapsGalaxy_39\bar\1.bin\39bar.dll File not found
O3 - HKCU\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
O4 - HKLM..\Run: [Nvtmru] C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (NVIDIA Corporation)
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: ajouter cette page à vos favoris Orange - C:\Users\Gustave\AppData\Roaming\Orange\OrangeInside\src\addfavorites_html\addfavorites.html ()
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: envoyer le texte sélectionné par sms - C:\Users\Gustave\AppData\Roaming\Orange\OrangeInside\src\sendsmsselectedtext_html\sendsmsselectedtext.html ()
O8 - Extra context menu item: envoyer par sms - C:\Users\Gustave\AppData\Roaming\Orange\OrangeInside\src\sendsms_html\sendsms.html ()
O8 - Extra context menu item: envoyer un mail - C:\Users\Gustave\AppData\Roaming\Orange\OrangeInside\src\sendmail_html\sendmail.html ()
O8 - Extra context menu item: orange.fr - C:\Users\Gustave\AppData\Roaming\Orange\OrangeInside\src\orange_html\orange.html ()
O8 - Extra context menu item: rechercher le texte sélectionné - C:\Users\Gustave\AppData\Roaming\Orange\OrangeInside\src\selectedsearch_html\selectedsearch.html ()
O8 - Extra context menu item: traduire la page - C:\Users\Gustave\AppData\Roaming\Orange\OrangeInside\src\translate_html\translate.html ()
O8 - Extra context menu item: traduire le texte sélectionné - C:\Users\Gustave\AppData\Roaming\Orange\OrangeInside\src\translateSelectedText_html\translateSelectedText.html ()
O9 - Extra Button: PokerStars.be - {878AC5FC-BE78-4bae-896C-7F75B790A71E} - C:\Program Files\PokerStars.BE\PokerStarsUpdate.exe (PokerStars)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: orange.fr ([logicielsgratuits] http in Trusted sites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0F098907-E90D-4824-9A01-8747D4191174}: DhcpNameServer = 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A6E73B4E-146B-4766-B7DE-FEC1BBB3CB69}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\WINDOWS\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\img24.jpg
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\img24.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2005/09/11 17:18:54 | 000,000,340 | -HS- | M] () - C:\AUTOMODE -- [ NTFS ]
O32 - AutoRun File - [2005/09/11 17:18:54 | 000,000,340 | -HS- | M] () - E:\AUTOMODE -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (MACHINE BootExecut)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2013/06/24 12:56:49 | 000,036,512 | R--- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\SymIMV.sys
[2013/06/13 21:49:28 | 000,041,160 | ---- | C] (AnchorFree Inc.) -- C:\Windows\System32\drivers\hssdrv6.sys
[2013/06/11 08:02:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotspot Shield
[2013/06/11 08:02:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Hotspot Shield
[2013/06/11 08:02:40 | 000,000,000 | ---D | C] -- C:\Program Files\Hotspot Shield
[2013/06/11 08:02:10 | 000,000,000 | ---D | C] -- C:\Users\Gustave\AppData\Roaming\Hotspot Shield
[2013/06/08 10:18:56 | 003,291,096 | ---- | C] (Systweak Inc ) -- C:\Users\Gustave\Desktop\sysrc_trial.exe
[2013/06/08 10:09:43 | 000,000,000 | ---D | C] -- C:\Program Files\RegCleaner
[2013/06/06 10:52:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2013/06/06 10:51:55 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2013/06/06 10:51:55 | 000,000,000 | ---D | C] -- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
[2013/06/04 13:27:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2013/05/30 16:38:24 | 000,000,000 | ---D | C] -- C:\Windows\pss
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2013/06/24 16:30:01 | 000,001,054 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/06/24 16:29:13 | 000,000,350 | ---- | M] () -- C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
[2013/06/24 16:28:29 | 000,003,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2013/06/24 16:28:28 | 000,003,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2013/06/24 16:28:25 | 000,000,300 | ---- | M] () -- C:\Windows\tasks\iMeshNAG.job
[2013/06/24 16:28:21 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/06/24 16:04:14 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2013/06/24 16:03:48 | 000,001,570 | ---- | M] () -- C:\Windows\DeleteOnReboot.bat
[2013/06/24 15:28:00 | 000,001,058 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/06/24 15:25:00 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/06/24 15:02:14 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013/06/24 12:59:31 | 000,000,680 | ---- | M] () -- C:\Users\Gustave\AppData\Local\d3d9caps.dat
[2013/06/24 12:56:44 | 002,357,103 | ---- | M] () -- C:\Windows\System32\drivers\NIS\1404000.028\Cat.DB
[2013/06/24 12:55:46 | 000,002,215 | ---- | M] () -- C:\Users\Public\Desktop\Norton Internet Security.lnk
[2013/06/24 12:22:55 | 000,000,444 | ---- | M] () -- C:\Users\Gustave\Documents - Raccourci.lnk
[2013/06/24 11:39:29 | 000,000,892 | ---- | M] () -- C:\Users\Public\Desktop\HomeBank Off-Line.lnk
[2013/06/21 20:13:59 | 000,285,508 | ---- | M] () -- C:\Users\Gustave\Desktop\Documents\insc.xps
[2013/06/21 20:09:47 | 000,284,857 | ---- | M] () -- C:\Users\Gustave\Desktop\Documents\ins.xps
[2013/06/21 18:54:25 | 000,000,903 | ---- | M] () -- C:\Users\Public\Desktop\Hotspot Shield.lnk
[2013/06/20 18:36:03 | 000,001,973 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/06/19 09:13:38 | 000,142,496 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\SYMEVENT.SYS
[2013/06/19 09:13:38 | 000,007,611 | ---- | M] () -- C:\Windows\System32\drivers\SYMEVENT.CAT
[2013/06/19 09:13:38 | 000,000,805 | ---- | M] () -- C:\Windows\System32\drivers\SYMEVENT.INF
[2013/06/14 03:44:39 | 000,002,236 | ---- | M] () -- C:\Windows\System32\ASOROSet.bin
[2013/06/13 21:49:28 | 000,041,160 | ---- | M] (AnchorFree Inc.) -- C:\Windows\System32\drivers\hssdrv6.sys
[2013/06/12 15:29:58 | 000,002,687 | ---- | M] () -- C:\Users\Gustave\Desktop\Microsoft Office Word 2007.lnk
[2013/06/11 19:20:36 | 000,003,556 | ---- | M] () -- C:\Users\Gustave\Desktop\Documents\VENDEUR EN PRET-A-PORTER FEMININ (H_F) [HUY].pdf
[2013/06/09 14:29:39 | 000,002,641 | ---- | M] () -- C:\Users\Gustave\Desktop\Microsoft Office Excel 2007.lnk
[2013/06/08 10:19:36 | 000,000,849 | ---- | M] () -- C:\Users\Public\Desktop\RegClean Pro.lnk
[2013/06/08 10:19:07 | 005,446,832 | ---- | M] () -- C:\Users\Gustave\Desktop\HSS-2-87-install-plain-504-plain.exe
[2013/06/08 10:18:58 | 003,291,096 | ---- | M] (Systweak Inc ) -- C:\Users\Gustave\Desktop\sysrc_trial.exe
[2013/06/08 10:11:33 | 000,000,769 | ---- | M] () -- C:\Users\Gustave\Desktop\RegCleaner.lnk
[2013/06/08 09:54:42 | 000,032,256 | ---- | M] () -- C:\Users\Gustave\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013/06/06 10:52:52 | 000,001,666 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013/06/06 03:10:18 | 000,720,112 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2013/06/06 03:10:18 | 000,632,380 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013/06/06 03:10:18 | 000,144,908 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2013/06/06 03:10:18 | 000,119,006 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013/06/04 08:34:29 | 000,000,172 | ---- | M] () -- C:\Windows\System32\drivers\NIS\1404000.028\isolate.ini
[2013/06/03 14:40:15 | 000,001,728 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2013/05/30 10:39:47 | 000,000,163 | ---- | M] () -- C:\Users\Public\Documents\hpqp.ini
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2013/06/24 15:02:14 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2013/06/24 12:22:55 | 000,000,444 | ---- | C] () -- C:\Users\Gustave\Documents - Raccourci.lnk
[2013/06/24 11:39:29 | 000,000,892 | ---- | C] () -- C:\Users\Public\Desktop\HomeBank Off-Line.lnk
[2013/06/21 20:11:20 | 000,285,508 | ---- | C] () -- C:\Users\Gustave\Desktop\Documents\insc.xps
[2013/06/21 20:07:45 | 000,284,857 | ---- | C] () -- C:\Users\Gustave\Desktop\Documents\ins.xps
[2013/06/21 18:54:25 | 000,000,903 | ---- | C] () -- C:\Users\Public\Desktop\Hotspot Shield.lnk
[2013/06/11 19:20:36 | 000,003,556 | ---- | C] () -- C:\Users\Gustave\Desktop\Documents\VENDEUR EN PRET-A-PORTER FEMININ (H_F) [HUY].pdf
[2013/06/08 10:18:56 | 005,446,832 | ---- | C] () -- C:\Users\Gustave\Desktop\HSS-2-87-install-plain-504-plain.exe
[2013/06/08 10:09:44 | 000,000,769 | ---- | C] () -- C:\Users\Gustave\Desktop\RegCleaner.lnk
[2013/06/06 15:10:02 | 000,001,570 | ---- | C] () -- C:\Windows\DeleteOnReboot.bat
[2013/06/06 10:52:51 | 000,001,666 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013/06/04 13:02:33 | 000,015,885 | ---- | C] () -- C:\Windows\System32\nvinfo.pb
[2013/06/03 20:55:48 | 000,000,350 | ---- | C] () -- C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
[2013/06/03 14:40:15 | 000,001,728 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2013/05/25 10:12:33 | 000,000,290 | RHS- | C] () -- C:\Users\Gustave\ntuser.pol
[2013/04/17 13:27:28 | 000,465,645 | ---- | C] () -- C:\Windows\System32\drivers\RTAIODAT.DAT
[2012/08/06 10:56:23 | 000,002,236 | ---- | C] () -- C:\Windows\System32\ASOROSet.bin
[2012/08/05 19:55:41 | 000,017,136 | ---- | C] () -- C:\Windows\System32\sasnative32.exe
[2011/12/30 12:14:18 | 000,000,290 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2011/10/25 19:55:23 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2011/10/01 15:08:33 | 000,110,592 | ---- | C] () -- C:\Windows\System32\FsUsbExDevice.Dll
[2011/10/01 15:08:33 | 000,036,640 | ---- | C] () -- C:\Windows\System32\FsUsbExDisk.Sys
[2011/09/22 19:08:56 | 003,902,976 | ---- | C] () -- C:\Windows\System32\ffmpeg.dll
[2011/08/22 21:07:48 | 000,074,752 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2011/08/22 21:07:02 | 000,158,208 | ---- | C] () -- C:\Windows\System32\ff_unrar.dll
[2011/08/22 21:07:00 | 000,259,584 | ---- | C] () -- C:\Windows\System32\TomsMoComp_ff.dll
[2011/08/22 21:06:30 | 001,524,224 | ---- | C] () -- C:\Windows\System32\ff_samplerate.dll
[2011/08/22 21:06:30 | 000,211,456 | ---- | C] () -- C:\Windows\System32\ff_libdts.dll
[2011/08/22 21:06:30 | 000,097,280 | ---- | C] () -- C:\Windows\System32\ff_wmv9.dll
[2011/08/22 21:06:28 | 000,327,680 | ---- | C] () -- C:\Windows\System32\ff_libfaad2.dll
[2011/08/22 21:06:28 | 000,113,664 | ---- | C] () -- C:\Windows\System32\ff_liba52.dll
[2011/08/22 21:06:26 | 000,145,920 | ---- | C] () -- C:\Windows\System32\ff_libmad.dll
[2011/08/22 21:06:26 | 000,136,704 | ---- | C] () -- C:\Windows\System32\libmpeg2_ff.dll
[2011/04/05 19:44:21 | 000,000,680 | ---- | C] () -- C:\Users\Gustave\AppData\Local\d3d9caps.dat
[2011/04/03 15:23:09 | 000,000,000 | ---- | C] () -- C:\Users\Gustave\AppData\Roaming\downloads.m3u
[2011/03/04 10:04:14 | 000,000,165 | ---- | C] () -- C:\Users\Gustave\AppData\Roaming\default.rss
[2011/02/24 20:39:51 | 000,024,206 | ---- | C] () -- C:\Users\Gustave\AppData\Roaming\UserTile.png
[2011/01/26 01:28:50 | 000,042,301 | ---- | C] () -- C:\ProgramData\nvModes.001
[2011/01/26 01:28:31 | 000,042,301 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2011/01/25 10:06:01 | 000,000,150 | ---- | C] () -- C:\Users\Gustave\AppData\Roaming\wklnhst.dat
[2011/01/22 16:23:32 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Classic Thick
[2011/01/22 16:23:32 | 000,000,268 | RH-- | C] () -- C:\Users\Gustave\AppData\Roaming\Carbon
[2011/01/22 16:23:32 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLdw.DAT
[2011/01/22 16:20:51 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Chiller
[2011/01/22 16:20:51 | 000,000,268 | RH-- | C] () -- C:\Users\Gustave\AppData\Roaming\Caches
[2011/01/22 16:20:51 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLdu.DAT
[2011/01/21 00:49:10 | 000,032,256 | ---- | C] () -- C:\Users\Gustave\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/01/19 21:23:31 | 000,027,525 | ---- | C] () -- C:\Users\Gustave\AppData\Roaming\nvModes.001
[2011/01/19 19:38:11 | 000,027,525 | ---- | C] () -- C:\Users\Gustave\AppData\Roaming\nvModes.dat

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2006/11/02 14:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 19:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/04/11 08:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/04/11 08:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[color=#E56717]========== LOP Check ==========[/color]

[2011/01/19 19:01:43 | 000,000,000 | ---D | M] -- C:\Users\Gustave\AppData\Roaming\DigitalPersona
[2011/10/01 14:45:05 | 000,000,000 | ---D | M] -- C:\Users\Gustave\AppData\Roaming\Easeware
[2013/06/11 08:02:10 | 000,000,000 | ---D | M] -- C:\Users\Gustave\AppData\Roaming\Hotspot Shield
[2012/01/04 00:12:43 | 000,000,000 | ---D | M] -- C:\Users\Gustave\AppData\Roaming\Nikon
[2011/07/19 21:46:51 | 000,000,000 | ---D | M] -- C:\Users\Gustave\AppData\Roaming\OpenOffice.org
[2012/12/03 18:15:59 | 000,000,000 | ---D | M] -- C:\Users\Gustave\AppData\Roaming\Orange
[2013/02/12 15:54:56 | 000,000,000 | ---D | M] -- C:\Users\Gustave\AppData\Roaming\PhotoFiltre
[2011/01/27 17:34:51 | 000,000,000 | ---D | M] -- C:\Users\Gustave\AppData\Roaming\Raccourcis applicatifs
[2011/10/01 15:06:31 | 000,000,000 | ---D | M] -- C:\Users\Gustave\AppData\Roaming\Samsung
[2013/06/06 22:40:21 | 000,000,000 | ---D | M] -- C:\Users\Gustave\AppData\Roaming\Systweak
[2011/01/25 10:06:02 | 000,000,000 | ---D | M] -- C:\Users\Gustave\AppData\Roaming\Template
[2011/02/14 20:12:29 | 000,000,000 | ---D | M] -- C:\Users\Gustave\AppData\Roaming\Windows Live Writer

[color=#E56717]========== Purity Check ==========[/color]



< End of report
0
Réponse 24 / 31
juju666 Messages postés 35446 Date d'inscription jeudi 18 décembre 2008 Statut Contributeur sécurité Dernière intervention 21 avril 2024 4 796
24 juin 2013 à 17:32
T'as pas bien lu ce que j'ai écris, recommence
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 31
jlm1963 Messages postés 467 Date d'inscription mardi 19 janvier 2010 Statut Membre Dernière intervention 20 novembre 2020 47
24 juin 2013 à 17:32
Désolé j'aurai du poster le lien.
Je vais de voir renter chez moi
Je continuerai le nettoyage demain.
Merci pour ton aide jusque maintenant.
A demain et bonne soirée.
0
Réponse 26 / 31
juju666 Messages postés 35446 Date d'inscription jeudi 18 décembre 2008 Statut Contributeur sécurité Dernière intervention 21 avril 2024 4 796
24 juin 2013 à 17:32
Ok.

Non faut cliquer sur CORRECTION j'ai dit
0
Réponse 27 / 31
jlm1963 Messages postés 467 Date d'inscription mardi 19 janvier 2010 Statut Membre Dernière intervention 20 novembre 2020 47
24 juin 2013 à 17:35
OK je lance otl et correction
POur le reste ce sera demain.
0
Réponse 28 / 31
jlm1963 Messages postés 467 Date d'inscription mardi 19 janvier 2010 Statut Membre Dernière intervention 20 novembre 2020 47
25 juin 2013 à 09:25
Bonjour.
Voila je suis de retour pour le nettoyage.
Ci joint le lien OTL.
https://forums-fec.be/upload/www/?a=d&i=9101675688
https://forums-fec.be/upload/www/?a=r&i=9101675688&r=0906963826
0
Réponse 29 / 31
juju666 Messages postés 35446 Date d'inscription jeudi 18 décembre 2008 Statut Contributeur sécurité Dernière intervention 21 avril 2024 4 796
25 juin 2013 à 14:04
Ce n'est pas le rapport de correction OTL.
0
Réponse 30 / 31
jlm1963 Messages postés 467 Date d'inscription mardi 19 janvier 2010 Statut Membre Dernière intervention 20 novembre 2020 47
25 juin 2013 à 14:37
Bonjour.
J'ai du me tromper en mettant le rapport.
Comme au départ on ne répondais pas,j'ai passer MAB
Qui ma trouver plusieurs infections.
Mises en quarantaine puis supprimées.
J'ai aussi passer ccleaner.
Par contre j'ai du rentrer chez moi.
J'écris de mon ordinateur.
Quels seraient les choses que je peu faire quand j'irai chez mes parents(dans 2ou3jours)
pour continuer le nettoyage seul si tu n'es pas la?
D'avance merci pour ton aide.
Malheureusement je ne suis pas disponible tout le temps.
0
Réponse 31 / 31
juju666 Messages postés 35446 Date d'inscription jeudi 18 décembre 2008 Statut Contributeur sécurité Dernière intervention 21 avril 2024 4 796
25 juin 2013 à 14:39
Re,

Les seules choses que tu pourrais faire :

Passe un coup de delfix en cochant toutes cases : https://www.commentcamarche.net/telecharger/securite/7111-delfix/

~~

Installe Malwarebyte's Anti-Malware : https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
Fais des scans réguliers avec, il est efficace.

~~

Sécurise ton PC !

Un exploit sur site web permet l'infection de ton ordinateur de manière automatiquement à la visite d'un site WEB qui a été hacké, il tire partie du fait que tu as des logiciels (Java, Adobe Reader etc) qui sont pas à jour et possèdent des vulnérabilités qui permettent l'execution de code (malicieux dans notre cas) à ton insu.
Le fait de ne pas avoir des logiciels à jour et qui ont potentiellement des vulnérabilités permettent donc d'infecter ton système.
Exemple avec : Exploit Java

Il faut donc impérativement maintenir tes logiciels à jour afin de ne pas voir ces portes d'entrée sur ton système.
Tant que ces logiciels ne seront pas à jour, ton PC est vulnérable et les infections peuvent s'installer facilement.

IMPORTANT : mettre à jour tes programmes notamment Java/Adobe Reader et Flash :
https://www.commentcamarche.net/faq/13362-mettre-a-jour-son-pc-contre-les-failles-de-securite

https://forum.malekal.com/viewtopic.php?t=15960&start=

Désactive Java de tes navigateurs WEB : https://www.commentcamarche.net/faq/35621-desactiver-java-sur-ses-navigateurs-web

~~

Attention à ce que tu installes à l'avenir :
Des logiciels additionnels sont proposés (barre d'outils, adwares) via l'installation de logiciel gratuit en général ou via certains sites de téléchargement comme S0ft0nic.
L'éditeur touche de l'argent à chaque installation réussie de ces programmes additionnels (un genre de sponsoring), ton PC se retrouve avec des barres d'outils qui ralentissent le navigateur ou des adwares qui ouvrent des popups de publicités.
Dès lors, lorsque tu installes un programme, lis bien ce qui est proposé car tu risques d'installé des barres d'outils sans le savoir.

Lire Les PUPs/LPIs : https://www.malekal.com/adwares-pup-protection/

Passe le mot à tes amis !

~~

Le reste de la sécurité : http://forum.malekal.com/comment-securiser-son-ordinateur.html

Bonne lecture et n'oublie pas d'indiquer que ton sujet est résolu :)
0

Discussions similaires

Meilleure application pour nettoyer IPhone et photos
Berline -
Berline -

3 réponses
Nettoyer sa Ps4
QuentinPsg97424 -
Reskape -

5 réponses