Infection diverses et formatage

Oui tu as tout compris :D

et je refait un scan et je t'envoi un rapport

alors tu ma dit Branche tes sources de données externes à ton PC (clé USB, disque dur externe, etc...) sans les ouvrir.j'ai pas compris

faut que je branche des truc dans les endroit usb ??

j'ai clické sur recherche la c'est a 22% mai avant ça ma parler de clé usb disque dure est tout .....

Oui

J'attends le rapport

Rassure toi n'oublies pas que je suis bénévole ;)

ba fait un rapport sans metre de truc dans les emplacement usb donc je vais recommencer

oui désoler

par contre le disque dure je peut pas le brancher j'ai rien

est ce que c'est ça ?

Oui

Fais ceci

=> https://forums.commentcamarche.net/forum/affich-28305030-infection-diverses-et-formatage?page=4#186

m'on netbook est pas vacciné est ce que je dois le faire ?

Suivre les instructions de lili, ne te poses pas trop de questions, elle l'a vu tkt pas ;-)

Un peu de patience stp.

est ce que c'est ça ?

"| UsbFix V 7.129 | [Recherche]"

Non c'est recherche que tu as fait

Prends ton temps ;)

miaws

Ne paniques pas

Respire un bon coup

Il a fait un écran bleu c'est ça?

Est ce qu'il a redémarré ?

Hello

Est ce que tu es là mwias?

As tu essayé de redémarré ton netbook?

Pour info fais attention quand tu débranche sauvagement ta clé usb (d'où les fichiers sur Usbfix)

OK

############################## | UsbFix V 7.129 | [Suppression]

Utilisateur: Mounir (Administrateur) # MOUNIR-PC
Mis à jour le 24/06/2013 par El Desaparecido
Lancé à 17:08:11 | 22/07/2013

Site Web: https://www.sosvirus.net/
Upload Malware: http://www.sosvirus.net/upload-malware-pour-analyse-t489.html
Contact: contact@sosvirus.net

PC: SAMSUNG ELECTRONICS CO., LTD. (N150P/N210P ) (X86-based PC)
CPU: Intel(R) Atom(TM) CPU N455 @ 1.66GHz (1667)
RAM -> [Total : 1013 | Free : 217]
BIOS: Phoenix SecureCore(tm) NB Version 00GT.M025.20100913.RHU
BOOT: Normal boot

OS: Microsoft Windows 7 Édition Starter (6.1.7601 32-Bit) # Service Pack 1
WB: Windows Internet Explorer 9.0.8112.16421

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: avast! Antivirus [Enabled | Updated]
FW: Windows FireWall Service [Enabled]

C:\ (%systemdrive%) -> Disque fixe # 85 Go (50 Go libre(s) - 59%) [] # NTFS
D:\ -> Disque fixe # 128 Go (128 Go libre(s) - 100%) [] # NTFS
G:\ -> Disque amovible # 941 Mo (0 Mo libre(s) - 0%) [ZEN STONE] # FAT32

################## | El Desaparecido Section |

HKLM\SOFTWARE | Run : [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
HKLM\SOFTWARE | Run : [IgfxTray] - C:\windows\system32\igfxtray.exe
HKLM\SOFTWARE | Run : [HotKeysCmds] - C:\windows\system32\hkcmd.exe
HKLM\SOFTWARE | Run : [Persistence] - C:\windows\system32\igfxpers.exe
HKLM\SOFTWARE | Run : [avast] - "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
HKLM\SOFTWARE | Run : [SunJavaUpdateSched] - "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
HKLM\SOFTWARE | Run : [ApnTBMon] - "C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
HKLM\SOFTWARE | RunOnce : [] -
HKU\S-1-5-19\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-19\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe
HKU\S-1-5-20\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe
HKU\S-1-5-18\SOFTWARE | RunOnce : [SPReview] - "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"https://support.microsoft.com/en-us/windows/install-windows-7-service-pack-1-sp1-b3da2c0f-cdb6-0572-8596-bab972897f61" /build:7601

################## | Processus Stoppés |

Stoppé! C:\windows\system32\WLANExt.exe (1460)
Stoppé! C:\Program Files\AVAST Software\Avast\AvastSvc.exe (1468)
Stoppé! C:\windows\system32\conhost.exe (1480)
Stoppé! C:\windows\system32\taskeng.exe (1980)
Stoppé! C:\windows\System32\spoolsv.exe (1988)
Stoppé! C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe (788)
Stoppé! C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe (1148)
Stoppé! C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (1620)
Stoppé! C:\windows\system32\mqsvc.exe (2072)
Stoppé! C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe (2348)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (2520)
Stoppé! C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe (2580)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (2728)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE (3132)
Stoppé! C:\windows\system32\schtasks.exe (3708)
Stoppé! C:\windows\system32\conhost.exe (3716)
Stoppé! C:\windows\system32\SearchIndexer.exe (1008)
Stoppé! C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (2092)
Stoppé! C:\windows\system32\taskhost.exe (1636)
Stoppé! C:\windows\Explorer.EXE (3432)
Stoppé! C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (1172)
Stoppé! C:\windows\system32\taskeng.exe (2040)
Stoppé! C:\Windows\System32\hkcmd.exe (1664)
Stoppé! C:\Windows\System32\igfxpers.exe (2720)
Stoppé! C:\windows\system32\igfxsrvc.exe (1056)
Stoppé! C:\Program Files\AVAST Software\Avast\AvastUI.exe (588)
Stoppé! C:\Program Files\Common Files\Java\Java Update\jusched.exe (1000)
Stoppé! C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe (844)
Stoppé! C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (3088)
Stoppé! C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe (1028)
Stoppé! C:\Program Files\Windows Media Player\wmpnetwk.exe (4100)
Stoppé! C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe (4888)
Stoppé! C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe (4904)
Stoppé! C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe (4912)
Stoppé! C:\Program Files\Samsung\SFB\SmartRestarter.exe (4932)
Stoppé! C:\windows\system32\igfxext.exe (4996)
Stoppé! C:\windows\system32\igfxsrvc.exe (5060)
Stoppé! C:\Program Files\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe (5560)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (5484)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (5540)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (5532)
Stoppé! C:\ProgramData\Browser Manager\2.6.1339.144\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe (1884)
Stoppé! C:\ProgramData\Browser Manager\2.6.1339.144\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe (5464)
Stoppé! C:\windows\System32\WUDFHost.exe (4084)

################## | Éléments infectieux |

Supprimé! G:\05 melrose place (featuring lio petr(4).mp3
Supprimé! G:\05-kenza_farah-lettre_du_front_feat_sefyu.mp3
Supprimé! G:\05-la_fouine_feat_corneille_and_soprano-encore_une_nuit.mp3
Supprimé! G:\05-la_fouine-tomber_pour_elle_feat._amel_bent.wma
Supprimé! G:\05-mister_you-roule_avec_moi_feat_djany.mp3
Supprimé! G:\019 maryam.mp3
Supprimé! G:\05-sultan-qui_aura_ma_peau_part.2_feat_youssoupha_redk_and_canardo.mp3
Supprimé! G:\06- espoirs86.mp3
Supprimé! G:\06-faudel-dana_dana.mp3
Supprimé! G:\020 ta ha.mp3
Supprimé! G:\06-mister_you-ici_ou_la-bas_feat_balti.mp3
Supprimé! G:\06-sultan-fin_de_toi.mp3
Supprimé! G:\021 al anbiya.mp3
Supprimé! G:\07 africain.mp3
Supprimé! G:\07-la_fouine_feat_t-pain_and_mackenson-rollin_like_a_boss.mp3
Supprimé! G:\08-la_fouine_feat_leck_six_coups_mc_and_fababy-jalousie.mp3
Supprimé! G:\08-lim_and_pont_de_sevre-handek_yla_tous_illicites.mp3
Supprimé! G:\08-sultan-eternel_challenger.mp3
Supprimé! G:\09-booba-criminelle_league_feat_kaaris.mp3
Supprimé! G:\01 anachid - le silence des mosqu126(2).mp3
Supprimé! G:\01- crie de bosnie(2).mp3
Supprimé! G:\01-sexion_dassaut-intro_(en_resume).mp3
Supprimé! G:\02 - silence des mosquees - l'eden(2).mp3
Supprimé! G:\02-mac_tyer-justice.mp3
Supprimé! G:\04-la_fouine-ben_laden.mp3
Supprimé! G:\09-soprano-c'est_la_vie_feat_method_man.mp3
Supprimé! G:\003 al imran.mp3
Supprimé! G:\03 anasheed.mp3
Supprimé! G:\03.Daoni-Ounaji.mp3
Supprimé! G:\03.mp3
Supprimé! G:\004 an nisa.mp3
Supprimé! G:\04 anasheed.mp3
Supprimé! G:\04.mp3
Supprimé! G:\04.Qeff-Bel-Khodou.mp3
Supprimé! G:\005 al ma'idah.mp3
Supprimé! G:\05.Bikol-Al-Shawk.mp3
Supprimé! G:\005.mp3
Supprimé! G:\05.mp3
Supprimé! G:\006 al an'am.mp3
Supprimé! G:\06.mp3
Supprimé! G:\06.Rabby-Sobaanaka.mp3
Supprimé! G:\007 al a'raf.mp3
Supprimé! G:\07 asmae al housna(3).mp3
Supprimé! G:\07.Aba-El-Anbiaa.mp3
Supprimé! G:\07.mp3
Supprimé! G:\008 al anfal.mp3
Supprimé! G:\08.Motafered.mp3
Supprimé! G:\08.mp3
Supprimé! G:\009 at tawbah.mp3
Supprimé! G:\09.Ya-Alla.mp3
Supprimé! G:\010 yunus.mp3
Supprimé! G:\011 hud.mp3
Supprimé! G:\012 yusuf.mp3
Supprimé! G:\013 al ra'd.mp3
Supprimé! G:\014 ibrahim.mp3
Supprimé! G:\015 al hijr.mp3
Supprimé! G:\016 an nahl.mp3
Supprimé! G:\017 al isra.mp3
Supprimé! G:\018 al kahf.mp3
Supprimé! G:\022 al hajj.mp3
Supprimé! G:\023 al mu'minun.mp3
Supprimé! G:\024 an nur.mp3
Supprimé! G:\025 furqan.mp3
Supprimé! G:\026 ash'shuara.mp3
Supprimé! G:\027 an naml.mp3
Supprimé! G:\028 al qasas.mp3
Supprimé! G:\029 al ankabut.mp3
Supprimé! G:\030 ar rum.mp3
Supprimé! G:\031 luqman.mp3
Supprimé! G:\032 as-sajdah.mp3
Supprimé! G:\033 al ahzab.mp3
Supprimé! G:\034 saba.mp3
Supprimé! G:\035 fatir.mp3
Supprimé! G:\036 ya-sin.mp3
Supprimé! G:\037 as-safat.mp3
Supprimé! G:\038 sad.mp3
Supprimé! G:\039 az-zumar.mp3
Supprimé! G:\040 ghafir.mp3
Supprimé! G:\041 fussilat.mp3

(!) Fichiers temporaires supprimés.

################## | Registre |


################## | Mountpoints2 |

Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\E
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{0293d599-d984-11e1-bdbd-806e6f6e6963}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{32604959-e946-11e1-bf59-000b6b61d8ff}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{b293e8e9-db10-11e1-a557-001e101f1ed9}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{e0e5bc7f-d986-11e1-b866-000b6b61d8ff}

################## | Listing |

[10/02/2011 - 23:16:33 | SHD ] C:\$Recycle.Bin
[10/06/2009 - 23:42:20 | N | 24] C:\autoexec.bat
[21/07/2013 - 22:21:28 | D ] C:\Config.Msi
[10/06/2009 - 23:42:20 | N | 10] C:\config.sys
[14/07/2009 - 06:53:55 | SHD ] C:\Documents and Settings
[09/07/2011 - 18:19:55 | D ] C:\Downloads
[10/09/2012 - 14:39:09 | D ] C:\Firefox
[22/07/2013 - 14:02:31 | ASH | 1062518784] C:\hiberfil.sys
[13/04/2011 - 20:03:25 | D ] C:\inetpub
[13/03/2011 - 21:35:18 | RHD ] C:\MSOCache
[22/07/2013 - 14:02:35 | ASH | 1073741824] C:\pagefile.sys
[14/07/2009 - 04:37:05 | D ] C:\PerfLogs
[21/07/2013 - 15:16:33 | D ] C:\Program Files
[10/07/2013 - 18:15:43 | HD ] C:\ProgramData
[10/02/2011 - 22:59:18 | SHD ] C:\Recovery
[12/11/2010 - 08:54:19 | N | 2047] C:\RHDSetup.log
[12/11/2010 - 09:11:01 | N | 174] C:\setup.log
[22/07/2013 - 13:25:05 | SHD ] C:\System Volume Information
[22/07/2013 - 17:22:58 | D ] C:\UsbFix
[22/07/2013 - 17:23:43 | A | 9748] C:\UsbFix [Clean 2] MOUNIR-PC.txt
[22/07/2013 - 16:04:11 | N | 6768] C:\UsbFix [Scan 1] MOUNIR-PC.txt
[22/07/2013 - 16:20:02 | N | 9771] C:\UsbFix [Scan 2] MOUNIR-PC.txt
[20/09/2012 - 20:50:27 | N | 2417] C:\user.js
[16/08/2011 - 23:12:22 | D ] C:\Users
[22/07/2013 - 14:07:02 | D ] C:\Windows
[22/07/2013 - 14:33:19 | D ] C:\ZHP
[21/07/2013 - 16:28:50 | N | 42956] C:\ZHPDiag.Txt
[25/12/2012 - 14:30:20 | SHD ] D:\$RECYCLE.BIN
[01/01/2013 - 14:14:04 | N | 528] D:\MediaID.bin
[01/01/2013 - 14:14:03 | D ] D:\MOUNIR-PC
[25/12/2012 - 14:29:25 | SHD ] D:\System Volume Information
[15/04/2008 - 19:50:30 | N | 4991458] G:\medine jihad 06 - besoin de resolution.mp3
[15/04/2008 - 19:51:12 | N | 6861937] G:\medine_ecoute.mp3
[19/02/2008 - 19:45:06 | N | 5761704] G:\Mellissa et Khaled - Benthi.mp3
[19/04/2010 - 08:50:26 | N | 6439088] G:\Nessbeal Ft . Isleym - Ma Solitude.mp3
[21/06/2009 - 11:05:40 | N | 4668932] G:\ROHFF feat. AMEL BENT- Hysteric love.mp3
[01/06/2011 - 10:45:36 | N | 3473815] G:\sexion d'assaut - a bout de souffle.mp3
[05/09/2012 - 13:25:52 | N | 13597288] G:\sexion d'assaut - le relais (les chroniques du 75 vol 2).mp3
[27/07/2012 - 23:24:50 | N | 4265012] G:\Sexion D'Assaut - Ma direction.mp3
[30/10/2007 - 03:50:34 | N | 6124496] G:\Sinik (Feat. Vitaa) - Ne dis jamais.mp3
[06/04/2008 - 01:21:28 | N | 5420038] G:\Sinik feat Kayna Samet - De tout la haut.mp3
[02/01/2008 - 20:09:02 | N | 3601876] G:\Sinik Ft . James Blunt - Je Réalise.mp3
[07/03/2008 - 16:45:18 | N | 5725235] G:\Sinik ft Diams - Le Meme Sang.mp3
[24/01/2008 - 07:53:36 | N | 4855936] G:\Sniper - Sans repères.mp3
[23/01/2008 - 18:59:02 | N | 6156513] G:\soprano-halla_halla.mp3
[25/10/2011 - 17:38:48 | N | 4687935] G:\tlf feat corneille - le meilleur du monde(2).mp3
[14/08/2011 - 12:44:40 | N | 7244607] G:\urban raï 3cris de bosnie (2).mp3
[30/03/2008 - 00:08:16 | N | 3447372] G:\WALLEN - 16- Papa.mp3
[20/03/2008 - 20:26:18 | N | 3227435] G:\Wallen & Abdy - Raï - Galbi.mp3
[19/03/2008 - 18:11:14 | N | 6176896] G:\Wallen, Donna.mp3
[31/03/2008 - 01:10:54 | N | 3556749] G:\Wallen-Parle Moi De Lui.mp3
[24/07/2012 - 13:00:04 | N | 3377147] G:\- site ultras maroc - site ultrasmaroc(3).mp3
[12/07/2012 - 13:26:16 | N | 2706599] G:\[OFFICIEL] MAC TYER - Universal Soldat - Extrait de la compilation We Made It.mp3
[21/12/2010 - 12:54:26 | N | 7520384] G:\10 - rohff - ce son c'est la guerre(1).mp3
[10/07/2012 - 11:39:36 | N | 9438753] G:\10-tlf-criminel_feat_indila_soprano_and_mac_tyer.mp3
[24/11/2011 - 21:07:30 | N | 5475833] G:\11-la_fouine_feat_nessbeal-meilleur_ennemi.mp3
[10/11/2010 - 12:54:28 | N | 5024227] G:\11-soprano-la colombe feat medine.mp3
[11/08/2008 - 21:31:54 | N | 5118389] G:\12 - a la bien217.mp3
[06/04/2008 - 01:18:06 | N | 3427727] G:\13 - Booba - Dicidens feat. Lunatic De Larmes Et De Sang.mp3
[18/04/2009 - 14:57:16 | N | 12174890] G:\13 arabospiritual.mp3
[24/11/2011 - 21:07:30 | N | 10346713] G:\13-la_fouine_feat_kamelancien-vecu.mp3
[10/07/2012 - 11:20:20 | N | 5499434] G:\13-mac_tyer-tout_est_fini_feat_kayliah.mp3
[28/11/2011 - 16:51:56 | N | 14848580] G:\13-sultan-grand_coeur_malade_(bonus_track).mp3
[24/11/2011 - 21:07:30 | N | 6885197] G:\14-la_fouine_feat_orelsan-tu_vas_prendre_cher.mp3
[05/09/2012 - 13:39:32 | N | 6153739] G:\15 wati house.mp3
[19/02/2008 - 19:42:08 | N | 13880082] G:\15-sniper-fallait_que_je_te_dise.mp3
[22/01/2008 - 22:26:56 | N | 7495808] G:\16 Panam All Starz.mp3
[10/11/2010 - 12:48:18 | N | 3759467] G:\16-soprano_feat _medine-ils_disent(2).mp3
[09/09/2008 - 03:00:24 | N | 3710770] G:\17-brasco-a_armes_egales_(2008_version)_feat_el_matador.mp3
[24/11/2011 - 21:07:32 | N | 6382859] G:\17-la_fouine_feat_alonzo_sultan_and_m.a.s-drogba.mp3
[24/11/2011 - 21:07:32 | N | 6916950] G:\20-joker_squad_feat_sultan-on_me_disait.mp3
[24/11/2011 - 21:07:32 | N | 7938430] G:\22-evaanz_feat_soprano-le_silence.mp3
[20/12/2010 - 13:42:42 | N | 3723643] G:\101-rohff-cest_comment.mp3
[30/05/2010 - 12:29:12 | N | 6965658] G:\105-lim_feat_dokou_boulox_zeler_and_big_boss-made_in_ghetto.mp3
[21/12/2010 - 12:13:26 | N | 5095385] G:\106-rohff-qui_veut_ma_peau_feat_nicki_b.mp3
[01/06/2011 - 11:19:26 | N | 8463533] G:\210-soprano-regarde_moi(2).mp3
[14/08/2011 - 12:50:32 | N | 7709849] G:\anachid le silence des mosquées - le début des la islam chnat.mp3
[26/07/2012 - 13:03:26 | N | 4951945] G:\anachid le silence des mosquées - al islamou.mp3
[05/09/2012 - 13:25:46 | N | 4484338] G:\avant qu'elle parte.mp3
[03/02/2007 - 21:30:42 | N | 5042562] G:\Booba - je_me_souviens.mp3
[22/04/2012 - 14:23:16 | N | 4453901] G:\celine dion - titanic-theme - my heart will go on48.mp3
[05/09/2012 - 13:22:12 | N | 4805480] G:\cheb khaled - c'est la vie ( new 2012 by redone ).mp3
[23/07/2012 - 16:15:06 | N | 8831139] G:\coran - le silence des mosquées - le dernier jour7.mp3
[12/07/2012 - 14:14:16 | N | 10063791] G:\despo+rutti++apocalypto+(hassan75rap)(2).mp3
[07/10/2005 - 21:45:36 | N | 4058521] G:\Just married (1).mp3
[07/02/2009 - 13:42:08 | N | 4518513] G:\Kamel Lancien - Le charme de la tristesse.mp3
[10/07/2008 - 12:33:34 | N | 4436013] G:\11.Ya-Rabana.mp3
[19/01/2009 - 13:49:12 | N | 6879054] G:\Kamel L'ancien - un mec bien.mp3
[30/04/2011 - 11:52:14 | N | 8739825] G:\la fouine & zaho - elle venait du ciel.mp3
[10/07/2008 - 12:34:44 | N | 4312998] G:\12.Hanini.mp3
[14/08/2011 - 12:42:42 | N | 5958563] G:\le silence des mosquées - 03 - les pierres de gaza(2).mp3
[23/07/2012 - 16:12:24 | N | 3989803] G:\le silence des mosquées - 08 - fidèles(2).mp3
[10/07/2008 - 12:38:44 | N | 3162912] G:\13.Aseer-El-Khataaya.mp3
[23/07/2012 - 16:13:04 | N | 5974983] G:\le silence des mosquées - 11 - le messager402.mp3
[23/07/2012 - 16:11:44 | N | 4532812] G:\le silence des mosquées - coran guide nous.mp3
[10/07/2008 - 12:39:48 | N | 4941417] G:\14.Onshoudat-El-Adhaan.mp3
[23/07/2012 - 16:12:44 | N | 5976457] G:\le silence des mosquées - que dieu soit loué178.mp3
[30/05/2010 - 12:26:38 | N | 6241392] G:\lim - la danse des leurs-dea (avec selim et demon one).mp3
[10/07/2008 - 12:38:52 | N | 4977696] G:\15.Elaahy-Sayyedy.mp3
[22/11/2007 - 13:24:20 | N | 3636164] G:\Lim - Tous illicites.MP3
[12/07/2012 - 13:23:46 | N | 3910322] G:\Mac Tyer - Des Chiffres et des Litres [CLIP OFFICIEL].mp3
[10/07/2008 - 12:39:04 | N | 5716620] G:\16.Nawo-El-emaam.mp3

################## | Vaccin |

C:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
D:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
G:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | E.O.F | https://www.sosvirus.net/ |

ok ça marche

Rapport de ZHPDiag v2013.7.20.351 par Nicolas Coolman, Update du 21/07/2013
Run by Mounir at 22/07/2013 17:41:45
WebSite: https://nicolascoolman.webs.com/
State : Problème connexion internet
WhiteList : Enable
High Elevated Privileges : OK
UAC : Activate by user


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
GCIE: Google Chrome v28.0.1500.72 (Defaut)

---\\ Windows Product Information
~ Langage: Français
Windows Vista Starter Edition, 32-bit (Build 6000)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : X8XG7
Windows License : OK
~ Windows Remaining Initializations Number : 4
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK

---\\ System Protection
avast! Free Antivirus v6.0.1000.0

---\\ System Optimizer

---\\ Peer To Peer (P2P)

---\\ Software Update
Adobe Flash Player 11 ActiveX
Adobe Reader 9.1 - Français
Java 7 Update 25

---\\ System Information
~ Processor: x86 Family 6 Model 28 Stepping 10, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 1013 MB (25% free)
System Restore: Activé (Enable)
System drive C: has 49 GB (57%) free of 85 GB

---\\ Logged in mode
~ Computer Name: MOUNIR-PC
~ User Name: Mounir
~ All Users Names: Mounir, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Mounir\AppData\Roaming\
~ %Desktop% : C:\Users\Mounir\Desktop\
~ %Favorites% : C:\Users\Mounir\Favorites\
~ %LocalAppData% : C:\Users\Mounir\AppData\Local\
~ %StartMenu% : C:\Users\Mounir\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 49 Go of 85 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 128 Go of 128 Go)
G:\ Floppy drive, Flash card reader, USB Key (Free 1 Go of 1 Go)
Q:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)



---\\ Security Center & Tools Informations
~ Security Center: 35 Legitimates Filtered in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.40D777B7A95E00593EB1568C68514493] - (.Microsoft Corporation - Explorateur Windows.) (.20/11/2010 - 13:17:09.) -- C:\Windows\Explorer.exe [2616320]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\System32\Wininit.exe [96256]
[MD5.EA952A5C277CABCBA69EA806146BB984] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.21/07/2013 - 19:01:46.) -- C:\Windows\System32\wininet.dll [1129472]
[MD5.6D13E1406F50C66E2A95D97F22C47560] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.20/11/2010 - 13:17:54.) -- C:\Windows\System32\Winlogon.exe [286720]
[MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 13:21:24.) -- C:\Windows\System32\sppcomapi.dll [193536]
[MD5.9EBBBA55060F786F0FCAA3893BFA2806] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.25/04/2011 - 03:18:03.) -- C:\Windows\system32\Drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\Drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:11:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [70656]
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 09:38:10.) -- C:\Windows\system32\Drivers\Cdrom.sys [108544]
[MD5.F024449C97EC1E464AAFFDA18593DB88] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 09:42:32.) -- C:\Windows\system32\Drivers\DfsC.sys [78336]
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 10:59:29.) -- C:\Windows\system32\Drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:11:24.) -- C:\Windows\system32\Drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 00:54:29.) -- C:\Windows\system32\Drivers\IpNat.sys [101888]
[MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:17:22.) -- C:\Windows\system32\Drivers\MRxSmb.sys [123904]
[MD5.280122DDCF04B378EDD1AD54D71C1E54] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 09:39:44.) -- C:\Windows\system32\Drivers\netBT.sys [187904]
[MD5.5E43D2B0EE64123D4880DFA6626DEFDE] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.12/04/2013 - 14:45:29.) -- C:\Windows\system32\Drivers\ntfs.sys [1211752]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 00:45:35.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 00:54:34.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [78848]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 00:53:41.) -- C:\Windows\system32\Drivers\smb.sys [71168]
[MD5.B459575348C20E8121D6039DA063C704] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 09:39:17.) -- C:\Windows\system32\Drivers\tdx.sys [74752]
[MD5.F497F67932C6FA693D7DE2780631CFE7] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 13:30:16.) -- C:\Windows\system32\Drivers\volsnap.sys [245632]
~ Generic Processes: Scanned in 00mn 02s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/5
~ Mes musiques (My Musics) : 1/25
~ Mes Videos (My Videos) : 1/2
~ Mes Favoris (My Favorites) : 1/65
~ Mes Documents (My Documents) : 1/261
~ Mon Bureau (My Desktop) : 0/39
~ Menu demarrer (Programs) : 1/33
~ Hidden Files: Scanned in 00mn 04s



---\\ Processus lancés
[MD5.2E9A1A6555C20424FC6DCC3AF21F4D68] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [3451496] [PID.588]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (...) -- ystem32\rundll32.exe [0] [PID.5260]
[MD5.981794879E8FD26CDD6ABCFF3F3F65EF] - (...) -- C:\ProgramData\Browser Manager\2.6.1339.144\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe [3085264] [PID.5568]
[MD5.CB037F03178E31BA2985ADD15879CA56] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [846288] [PID.2576]
[MD5.D8CC16D8DCC5E31ABAA2CACBC1C9B5B3] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [7742464] [PID.4412]
[MD5.2695E3E9497BF72ABB44B5010EC5DA16] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [42184] [PID.1468]
[MD5.7778C6BCAFF58C0E876B307514923A48] - (.Broadcom Corporation. - Bluetooth Support Server.) -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [656672] [PID.2468]
[MD5.E582B9E88EF4980C3B76276620FE667B] - (.Microsoft Corporation - Message Queuing Service.) -- C:\windows\system32\mqsvc.exe [8704] [PID.152]
[MD5.CF87A1DE791347E75B98885214CED2B8] - (.Microsoft Corporation - Service de la plateforme de protection logi.) -- C:\windows\system32\sppsvc.exe [3179520] [PID.5012]
~ Processes Running: Scanned in 00mn 07s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Mounir\AppData\Local\Google\Chrome\User Data\Default\Preferences
~ Google Browser: 0 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\windows\system32\Userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: ActiveCollectorPlugin BHO - {07202B0D-149C-4568-90DF-ACC2B4057809} Clé orpheline
~ BHO: 8 Legitimates Filtered in 00mn 01s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) - [HKLM]{99079a25-328f-4bd4-be04-00955acaa0a7} Clé orpheline
O3 - Toolbar: (no name) - [HKLM]{D0F4A166-B8D4-48b8-9D63-80849FE137CB} Clé orpheline
O3 - Toolbar: avast! WebRep - [HKLM]{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.Pas de propriétaire - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{043C5167-00BB-4324-AF7E-62013FAEDACF} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{D4027C7F-154A-4066-A1AD-4243D8127440} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline
~ Toolbar: Scanned in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [ApnTBMon] . (.APN - Ask Toolbar Notifier.) -- C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe =>Toolbar.Ask
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\windows\System32\SPReview\SPReview.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Application: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\TaskBar: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\TaskBar: TuneUp Utilities.lnk . (...) -- C:\Program Files\TuneUp Utilities 2013\TUMessages.exe (.not file.)
O4 - GS\TaskBar: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\windows\explorer.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) -- C:\windows\system32\eudcedit.exe
O4 - GS\SendTo: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\windows\system32\WFS.exe
O4 - GS\SendTo: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O4 - GS\Desktop: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
~ Global Startup: Scanned in 00mn 01s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} . (.Microsoft Corporation - Windows Live Messenger Companion core resources.) -- C:\Program Files\Windows Live\Companion\companionres.dll
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} . (...) -- C:\Program Files\WIDCOMM\Bluetooth Software\bt_hot_icon.ico
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} ((no name)) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} ((no name)) - http://messenger.zone.msn.com/MessengerGamesContent/GameContent/fr/uno1/GAME_UNO1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} ((no name)) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} ((no name)) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} ((no name)) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
~ Objets ActiveX: Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{A2E03183-BD63-4AE7-A816-AA7884BECFEA}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{A2E03183-BD63-4AE7-A816-AA7884BECFEA}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{A2E03183-BD63-4AE7-A816-AA7884BECFEA}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - C:\ProgramData\Browser Manager\2.6.1339.144\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.dll
~ AppInit DLL: Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated - Adobe® Flash® Player Update Service 11.6 r6.) - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Service de mise à jour Ask (APNMCP) . (.APN LLC. - APN Updater.) - C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
O23 - Service: Browser Manager (Browser Manager) . (...) - C:\ProgramData\Browser Manager\2.6.1339.144\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
~ Services: 7 Legitimates Filtered in 02mn 53s



---\\ Tâches planifiées en automatique (O39)
[MD5.95B63EBDF62D57707FD46393DADB51A4] [APT] [{5CEF62E0-EDC9-469E-8EFB-A7FE3C7C9D7E}] (...) -- C:\Users\Mounir\Downloads\JL_Cmder v1.9 installer\JL_Cmder v1.9.0 Installer\JL_Cmder v1.9.0.exe [155913]
[MD5.00000000000000000000000000000000] [APT] [{5D1AE1E2-3D93-41F6-8FD9-1C26E5BC0498}] (...) -- C:\Program Files\Intel\Intel Matrix Storage Manager\Uninstall\imsmudlg.exe (.not file.) [0]
~ Scheduled Task: 23 Legitimates Filtered in 00mn 18s



---\\ Logiciels installés (O42)
O42 - Logiciel: Ask Toolbar - (.Ask Partner Network.) [HKLM] -- {4F524A2D-5637-006A-76A7-A758B70C0001} =>Toolbar.Ask
O42 - Logiciel: Browser Manager - (...) [HKLM] -- {15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}
O42 - Logiciel: NBT - (...) [HKCU] -- nbt
~ Logic: 86 Legitimates Filtered in 00mn 04s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\AppDataLow\Software\ShoppingReport2] =>Adware.ShoppingReport
[HKCU\Software\AppDataLow\Software\searchqutoolbar] =>PUP.Datamngr
[HKCU\Software\AskPartnerNetwork]
[HKCU\Software\BabSolution] =>Hijacker.BabSolution
[HKCU\Software\BrowserMngr] =>Toolbar.Babylon
[HKCU\Software\DataMngr_Toolbar] =>PUP.Datamngr
[HKCU\Software\Datamngr] =>PUP.Datamngr
[HKCU\Software\NBT]
[HKCU\Software\Trymedia Systems] =>Adware.Trymedia
[HKCU\Software\YahooPartnerToolbar] =>Toolbar.Yahoo
[HKCU\Software\d55dfdfb239ef40]
[HKLM\Software\AskPartnerNetwork]
[HKLM\Software\Babylon] =>Toolbar.Babylon
[HKLM\Software\BrowserMngr] =>Toolbar.Babylon
[HKLM\Software\DataMngr] =>PUP.Datamngr
[HKLM\Software\Trymedia Systems] =>Adware.Trymedia
[HKLM\Software\d55dfdfb239ef40]
~ Key Software: 120 Legitimates Filtered in 00mn 05s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 12/02/2013 - 03:35:19 - [0,388] ----D C:\Program Files\Advanced System Protector =>PUP.AdvancedSystemProtector
O43 - CFD: 10/07/2013 - 18:15:43 - [7,502] ----D C:\Program Files\AskPartnerNetwork
O43 - CFD: 07/06/2013 - 09:44:10 - [20,023] ----D C:\Program Files\Installer
O43 - CFD: 12/02/2013 - 03:35:18 - [0,228] ----D C:\Program Files\RegClean Pro =>Rogue.RegistryPowerCleaner
O43 - CFD: 10/07/2013 - 18:15:15 - [0] ----D C:\ProgramData\APN
O43 - CFD: 05/11/2011 - 13:07:52 - [0] ----D C:\ProgramData\Ask
O43 - CFD: 10/07/2013 - 18:15:43 - [0,429] ----D C:\ProgramData\AskPartnerNetwork
O43 - CFD: 21/04/2012 - 16:14:35 - [0] ----D C:\ProgramData\Babylon =>Toolbar.Babylon
O43 - CFD: 21/04/2012 - 21:10:02 - [0,000] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 15/06/2013 - 11:05:11 - [8,375] ----D C:\ProgramData\Browser Manager
O43 - CFD: 09/07/2011 - 19:03:04 - [0,001] ----D C:\ProgramData\Trymedia =>Adware.Trymedia
O43 - CFD: 03/01/2013 - 18:09:47 - [0] --H-D C:\ProgramData\{05505732-706C-4AFB-8CB4-779D17872B48}
O43 - CFD: 21/04/2012 - 16:14:34 - [0,027] ----D C:\Users\Mounir\AppData\Roaming\Babylon =>Toolbar.Babylon
O43 - CFD: 12/07/2011 - 22:10:55 - [0,053] ----D C:\Users\Mounir\AppData\Roaming\com.socialbox.socialbox
O43 - CFD: 20/06/2013 - 14:43:47 - [0,308] ----D C:\Users\Mounir\AppData\Roaming\File Scout
O43 - CFD: 08/10/2012 - 21:05:37 - [0,203] ----D C:\Users\Mounir\AppData\Roaming\Nbt
O43 - CFD: 17/08/2011 - 23:12:58 - [5,636] ----D C:\Users\Mounir\AppData\Roaming\OpenCandy =>Adware.OpenCandy
O43 - CFD: 21/04/2012 - 21:13:28 - [0,014] ----D C:\Users\Mounir\AppData\Local\Ilivid Player =>Adware.Bandoo
O43 - CFD: 18/08/2011 - 12:40:53 - [0] ----D C:\Users\Mounir\AppData\Local\OpenCandy =>Adware.OpenCandy
~ 1028 Dossiers CLSID vides (CLSID Empty Folders)
~ Program Folder: 1324 Legitimates Filtered in 02mn 12s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.C5265540085722A776975C20692D0976] - 22/07/2013 - 16:47:42 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [16752]
O44 - LFC:[MD5.C5265540085722A776975C20692D0976] - 22/07/2013 - 16:47:42 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [16752]
O44 - LFC:[MD5.B82E532F5EC59247400FECC4C27AEBF4] - 22/07/2013 - 16:29:03 ---A- . (...) -- C:\Upload_UsbFix.zip [546521288]
O44 - LFC:[MD5.9177FB028C03B5B21B217D686D2BF089] - 22/07/2013 - 16:29:03 ---A- . (...) -- C:\UsbFix [Clean 2] MOUNIR-PC.txt [16533]
O44 - LFC:[MD5.DF1671178394E8594F99D529BA0CE8E4] - 22/07/2013 - 15:20:02 ----- . (...) -- C:\UsbFix [Scan 2] MOUNIR-PC.txt [9771]
O44 - LFC:[MD5.F62256C1936F094DC68E5015D203616B] - 22/07/2013 - 15:04:11 ----- . (...) -- C:\UsbFix [Scan 1] MOUNIR-PC.txt [6768]
O44 - LFC:[MD5.D365182EC529562A8E4C8C5D5824B390] - 22/07/2013 - 13:09:32 ---A- . (...) -- C:\Windows\iis7.log [100560]
O44 - LFC:[MD5.C380CF5835C2EDC9A763987EBEE41AFD] - 21/07/2013 - 19:06:21 ---A- . (...) -- C:\Windows\IE9_main.log [16294]
O44 - LFC:[MD5.4B333D3CC96AE66BD754329FD2989EE2] - 21/07/2013 - 19:01:44 ---A- . (...) -- C:\Windows\System32\ieuinit.inf [72822]
O44 - LFC:[MD5.B8CBB46B42570D373C9933FBDF25EBCE] - 21/07/2013 - 18:10:54 ---A- . (...) -- C:\Windows\System32\systemsf.ebd [146852]
O44 - LFC:[MD5.03783D0840B2C54D7665248425C74417] - 21/07/2013 - 18:05:38 ---A- . (...) -- C:\Windows\System32\dosx.exe [53600]
O44 - LFC:[MD5.5C18CD22BE4628865FCB63337A6E5EF6] - 21/07/2013 - 18:05:29 ---A- . (...) -- C:\Windows\System32\ScavengeSpace.xml [10429]
O44 - LFC:[MD5.C236A8735A48B165A2A7724357DBE332] - 21/07/2013 - 18:04:50 ---A- . (...) -- C:\Windows\System32\RacRules.xml [105559]
O44 - LFC:[MD5.96E4F8690E27BE967EE1B4C7585CBF3D] - 21/07/2013 - 15:28:50 ----- . (...) -- C:\ZHPDiag.Txt [42956]
~ Files: 900 Legitimates Filtered in 02mn 43s



---\\ MountPoints2 Shell Key (O51)
O51 - MPSK:{0293d5ec-d984-11e1-bdbd-000b6b61d8ff}\AutoRun\command. (...) -- E:\AutoRun.exe (.not file.)
~ Keys: Scanned in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 16 Legitimates Filtered in 00mn 00s



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [422976]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13/07/2009 - 22:40:41 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029]
~ Drivers: Scanned in 00mn 01s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: UsbFix By El Desaparecido - (.El Desaparecido - SosVirus.net.) [HKLM] -- Usbfix
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ ADS: Scanned in 00mn 00s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)
~ FASS Keys: 19 Legitimates Filtered in 00mn 01s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (@ieframe.dll,-12512) - https://www.bing.com/?fdr=lc&toHttps=1&redig=FA6AD360E0BE4C719380F8C470A3D3A8
O69 - SBI: SearchScopes [HKCU] {043C5167-00BB-4324-AF7E-62013FAEDACF} - (Web Search...) - http://ww1.toolbarhome.com =>PUP.VShareRedir
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} [DefaultScope] - (Search the web (Babylon)) - http://search.babylon.com =>Adware.IMBooster
O69 - SBI: SearchScopes [HKCU] {51D76B41-E224-4B46-92CC-2BDE4E8C2E33} - (Ask Search) - http://www.search.ask.com/?o=10148&l=dis
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - https://www.google.com/?gws_rd=ssl
O69 - SBI: SearchScopes [HKCU] {739E7B8F-383B-4721-B0F0-88695EB431D1} - (Search the web (Babylon)) - http://search.babylon.com =>Adware.IMBooster
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} - (Search Results) - https://www.search.ask.com/web?l=dis&q=&o=APN10655A&apn_dtid=%5EBND101%5EYY%5EFR&shad=s_0048&gct=hp&apn_ptnrs=%5EAG5&d=101-0&lang=en&atb=sysid%3D101%3Auid%3D58c9331d816657ac%3Asrc%3Dhmp%3Ao%3DAPN10655A%3Atg%3D&p2=%5EAG5%5EBND101%5EYY%5EFR =>PUP.SearchResults
~ Keys: Scanned in 00mn 00s



---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.1FE339E72FE03A27DD9D5A9A357CFE7D] [SPRF][16/01/2010] (...) -- C:\ProgramData\FullRemove.exe [131368]
[MD5.80F4A456633F78A26A3C6B16E64EFEC5] [SPRF][28/09/2007] (.Microsoft - Uno Messenger.) -- C:\Windows\Downloaded Program Files\GAME_UNO1.dll [381960]
[MD5.8945CCA5FC4F25168E8B6F401EFAF51F] [SPRF][22/02/2007] (.Microsoft Corporation - Zone.com Stats Client for MSN Messenger.) -- C:\Windows\Downloaded Program Files\MessengerStatsPAClient.dll [304544]
[MD5.E661E91B5929632665683222D509D271] [SPRF][28/02/2007] (.Microsoft Corporation - Zone.com Minesweeper Flags for MSN Messenger.) -- C:\Windows\Downloaded Program Files\MineSweeper.dll [130472]
[MD5.1E5CFDF9AEBDD84305A4C8154277A269] [SPRF][28/02/2007] (.Microsoft Corporation - Zone.com Checkers for MSN Messenger.) -- C:\Windows\Downloaded Program Files\msgrchkr.dll [131472]
~ Files: Scanned in 00mn 00s



---\\ Product Upgrade Codes (O90)
O90 - PUC: "D2A425F47365A600677A7A857BC00010" . (.Ask Toolbar.) -- C:\windows\Installer\{4F524A2D-5637-006A-76A7-A758B70C0001}\ToolbarIcon.exe =>Toolbar.Ask
~ Update Products: 465 Legitimates Filtered in 00mn 01s



---\\ Random Export Key (O91)
[HKCU\Software\d55dfdfb239ef40\2.6.1339.144\upd]:="upd=1"
[HKCU\Software\d55dfdfb239ef40\history\{16cdff19-861d-48e3-a751-d99a27784753}2.2.630.40]:guid="{16cdff19-861d-48e3-a751-d99a27784753}"
[HKCU\Software\d55dfdfb239ef40\history\{16cdff19-861d-48e3-a751-d99a27784753}2.2.630.40]:version="2.2.630.40"
[HKCU\Software\d55dfdfb239ef40\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.787.43]:guid="{16cdff19-861d-48e3-a751-d99a27784753}"
[HKCU\Software\d55dfdfb239ef40\history\{16cdff19-861d-48e3-a751-d99a27784753}2.3.787.43]:version="2.3.787.43"
[HKCU\Software\d55dfdfb239ef40\history\{16cdff19-861d-48e3-a751-d99a27784753}2.6.1123.78]:guid="{16cdff19-861d-48e3-a751-d99a27784753}"
[HKCU\Software\d55dfdfb239ef40\history\{16cdff19-861d-48e3-a751-d99a27784753}2.6.1123.78]:version="2.6.1123.78"
[HKCU\Software\d55dfdfb239ef40\history\{16cdff19-861d-48e3-a751-d99a27784753}2.6.1125.80]:guid="{16cdff19-861d-48e3-a751-d99a27784753}"
[HKCU\Software\d55dfdfb239ef40\history\{16cdff19-861d-48e3-a751-d99a27784753}2.6.1125.80]:version="2.6.1125.80"
[HKCU\Software\d55dfdfb239ef40\history\{16cdff19-861d-48e3-a751-d99a27784753}2.6.1249.132]:guid="{16cdff19-861d-48e3-a751-d99a27784753}"
[HKCU\Software\d55dfdfb239ef40\history\{16cdff19-861d-48e3-a751-d99a27784753}2.6.1249.132]:version="2.6.1249.132"
[HKCU\Software\d55dfdfb239ef40] =>Toolbar.Babylon^
[HKCU\Software\d55dfdfb239ef40]:GUID="{16cdff19-861d-48e3-a751-d99a27784753}"
[HKCU\Software\d55dfdfb239ef40]:version="2.6.1339.144"
[HKLM\Software\d55dfdfb239ef40] =>Toolbar.Babylon^
[HKLM\Software\d55dfdfb239ef40]:GUID="{16cdff19-861d-48e3-a751-d99a27784753}"
[HKLM\Software\d55dfdfb239ef40]:version="2.6.1339.144"
~ Export Key Software: Scanned in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Auto 28/05/2013 163328 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Auto 06/06/2013 169632 | (APNMCP) . (.APN LLC..) - C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
SR - | Auto 23/02/2011 42184 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Auto 3085264 | (Browser Manager) . (...) - C:\ProgramData\Browser Manager\2.6.1339.144\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe
SR - | Auto 21/07/2010 656672 | (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
SS - | Auto 18/04/2011 136176 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 18/04/2011 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Auto 01/03/2013 161384 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe
SR - | Auto 14/07/2009 20992 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 14/07/2009 20992 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 09s



---\\ Scan Additionnel (O88)
Database Version : v2.12804 - (21/07/2013)
Clés trouvées (Keys found) : 68
Valeurs trouvées (Values found) : 2
Dossiers trouvés (Folders found) : 13
Fichiers trouvés (Files found) : 12

[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{043C5167-00BB-4324-AF7E-62013FAEDACF}] =>Parasite.Pugi
[HKLM\Software\Classes\Interface\{0EB3F101-224A-4B2B-9E5B-DF720857529C}] =>Adware.ShopperReports
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3B7599DF-3D5D-4EF5-BF51-9C2EDA788E83}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3B7599DF-3D5D-4EF5-BF51-9C2EDA788E83}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{99079A25-328F-4BD4-BE04-00955ACAA0A7}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9D717F81-9148-4F12-8568-69135F087DB0}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7}] =>Adware.Softomate
[HKLM\Software\Classes\Interface\{a1f1ecd3-4806-44c6-a869-f0dadf11c57c}] =>Adware.SmartShopper
[HKLM\Software\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}] =>Adware.CDNHelper
[HKLM\Software\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Toolbar.Avira
[HKLM\Software\Classes\CLSID\{E46C8196-B634-44a1-AF6E-957C64278AB1}] =>Toolbar.Babylon
[HKLM\Software\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}] =>Toolbar.Babylon
[HKLM\Software\Classes\HBLiteAX.UserProfiles] =>Adware.ShopperReports
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E] =>Toolbar.Ask
[HKCU\Software\BrowserMngr] =>Toolbar.Babylon
[HKLM\Software\BrowserMngr] =>Toolbar.Babylon
[HKCU\Software\DataMngr] =>Adware.Bandoo
[HKLM\Software\DataMngr] =>Adware.Bandoo
[HKCU\Software\DataMngr_Toolbar] =>Toolbar.Agent
[HKCU\Software\AppDataLow\Software\searchqutoolbar] =>Adware.Bandoo
[HKLM\Software\Microsoft\Tracing\MyBabylontb_RASAPI32] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Tracing\MyBabylontb_RASMANCS] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Tracing\Searchqu Toolbar uninstall_RASAPI32] =>Adware.Bandoo
[HKLM\Software\Microsoft\Tracing\Searchqu Toolbar uninstall_RASMANCS] =>Adware.Bandoo
[HKLM\Software\Microsoft\Tracing\SearchquMediaBar_RASAPI32] =>Adware.Bandoo
[HKLM\Software\Microsoft\Tracing\SearchquMediaBar_RASMANCS] =>Adware.Bandoo
[HKLM\Software\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32] =>Adware.Bandoo
[HKLM\Software\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS] =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}] =>Toolbar.Babylon
[HKLM\Software\Classes\Prod.cap] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings] =>PUP.BProtector
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D0F4A166-B8D4-48B8-9D63-80849FE137CB}] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}] =>PUP.BProtector
[HKCU\Software\AppDataLow\Software\NetNucleous\ActiveCollector] =>Adware.Mirar
[HKCU\Software\NetNucleous\ActiveCollector] =>Adware.Mirar
[HKLM\Software\NetNucleous\ActiveCollector] =>Adware.Mirar
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07202B0D-149C-4568-90DF-ACC2B4057809}] =>Adware.Mirar
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{07202B0D-149C-4568-90DF-ACC2B4057809}] =>Adware.Mirar
[HKLM\Software\Classes\CLSID\{07202B0D-149C-4568-90DF-ACC2B4057809}] =>Adware.Mirar
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{07202B0D-149C-4568-90DF-ACC2B4057809}] =>Adware.Mirar
[HKLM\Software\Classes\Interface\{E766BB98-6F19-469B-A7F4-5092C744767C}] =>Adware.Mirar
[HKCU\Software\AskPartnerNetwork] =>Toolbar.Ask
[HKLM\Software\AskPartnerNetwork] =>Toolbar.Ask
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] =>Toolbar.Avast
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] =>Toolbar.Avast
[HKLM\Software\Classes\CLSID\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] =>Toolbar.Avast
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] =>Toolbar.Avast
[HKLM\Software\Classes\ShoppingReport2.HbAx] =>Adware.ShoppingReport
[HKLM\Software\Classes\ShoppingReport2.HbInfoBand] =>Adware.ShoppingReport
[HKLM\Software\Classes\ShoppingReport2.IEButton] =>Adware.ShoppingReport
[HKLM\Software\Classes\ShoppingReport2.IEButtonA] =>Adware.ShoppingReport
[HKLM\Software\Classes\ShoppingReport2.RprtCtrl] =>Adware.ShoppingReport
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{99079A25-328F-4BD4-BE04-00955ACAA0A7} =>Adware.Bandoo
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{D4027C7F-154A-4066-A1AD-4243D8127440} =>Toolbar.Avira
C:\Program Files\Installer =>Adware.InstallPedia
C:\Program Files\RegClean Pro =>Rogue.RegistryPowerCleaner
C:\Program Files\AskPartnerNetwork =>Toolbar.Ask
C:\ProgramData\Babylon =>Toolbar.Babylon
C:\ProgramData\Browser Manager =>Toolbar.Babylon
C:\ProgramData\Trymedia =>Adware.Trymedia
C:\ProgramData\AskPartnerNetwork =>Toolbar.Ask
C:\Users\Mounir\AppData\Roaming\Babylon =>Toolbar.Babylon
C:\Users\Mounir\AppData\Roaming\OpenCandy =>Adware.OpenCandy
C:\Users\Mounir\AppData\Local\OpenCandy =>Adware.OpenCandy
C:\Users\Mounir\AppData\LocalLow\BabylonToolbar =>Toolbar.Babylon
C:\Users\Mounir\AppData\LocalLow\searchquband =>Adware.Bandoo
C:\Users\Mounir\AppData\LocalLow\ShoppingReport2 =>Adware.ShopperReports
C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe =>Toolbar.Ask^
[HKCU\Software\AppDataLow\Software\ShoppingReport2] =>Adware.ShoppingReport^
[HKCU\Software\BabSolution] =>Hijacker.BabSolution^
[HKCU\Software\Datamngr] =>PUP.Datamngr^
[HKCU\Software\Trymedia Systems] =>Adware.Trymedia^
[HKCU\Software\YahooPartnerToolbar] =>Toolbar.Yahoo^
[HKLM\Software\Babylon] =>Toolbar.Babylon^
[HKLM\Software\Trymedia Systems] =>Adware.Trymedia^
C:\Program Files\Advanced System Protector =>PUP.AdvancedSystemProtector^
C:\Users\Mounir\AppData\Local\Ilivid Player =>Adware.Bandoo^
[HKCU\Software\d55dfdfb239ef40] =>Toolbar.Babylon^^
[HKLM\Software\d55dfdfb239ef40] =>Toolbar.Babylon^^
~ Additionnel Scan: 184581 Items scanned in 04mn 16s



---\\ Malicius Software Information
~ http://nicolascoolman.webs.com/apps/blog/show/28927746-toolbar-ask =>Toolbar.Ask
~ http://nicolascoolman.webs.com/apps/blog/show/27422225-adware-shoppingreport =>Adware.ShoppingReport
~ http://nicolascoolman.webs.com/apps/blog/show/27583992-pup-datamngr =>PUP.Datamngr
~ http://nicolascoolman.webs.com/apps/blog/show/26678994-hijacker-babsolution =>Hijacker.BabSolution
~ http://nicolascoolman.webs.com/apps/blog/show/26627369-toolbar-babylon =>Toolbar.Babylon
~ http://nicolascoolman.webs.com/apps/blog/show/29710349-adware-trymedia =>Adware.Trymedia
~ http://nicolascoolman.webs.com/apps/blog/show/30268689-toolbar-yahoo =>Toolbar.Yahoo
~ http://nicolascoolman.webs.com/apps/blog/show/26630283-pup-advancedsystemprotector =>PUP.AdvancedSystemProtector
~ http://nicolascoolman.webs.com/apps/blog/show/29295819-rogue-registrypowercleaner =>Rogue.RegistryPowerCleaner
~ http://nicolascoolman.webs.com/apps/blog/show/26770694-adware-opencandy =>Adware.OpenCandy
~ http://nicolascoolman.webs.com/apps/blog/show/26611092-adware-bandoo =>Adware.Bandoo
~ http://nicolascoolman.webs.com/apps/blog/show/29432250-pup-vshareredir =>PUP.VShareRedir
~ http://nicolascoolman.webs.com/apps/blog/show/26684723-adware-imbooster =>Adware.IMBooster
~ http://nicolascoolman.webs.com/apps/blog/show/30319724-pup-searchresults =>PUP.SearchResults
~ http://nicolascoolman.webs.com/apps/blog/show/26632288-parasite-pugi =>Parasite.Pugi
~ http://nicolascoolman.webs.com/apps/blog/show/28345498-adware-softomate =>Adware.Softomate
~ http://nicolascoolman.webs.com/apps/blog/show/28133096-pup-bprotector =>PUP.BProtector
~ http://nicolascoolman.webs.com/apps/blog/show/27047259-adware-mirar =>Adware.Mirar
~ http://nicolascoolman.webs.com/apps/blog/show/26967630-adware-installpedia =>Adware.InstallPedia
~ MSI: 19 link(s) detected in 04mn 17s



~ 3347 Legitimates filtered by white list
End of the scan (581 lines in 15mn 33s)(0)

voila

donc la je fait recherche avec adwcleaner ?

# AdwCleaner v2.306 - Rapport créé le 22/07/2013 à 18:14:21
# Mis à jour le 19/07/2013 par Xplode
# Système d'exploitation : Windows 7 Starter Service Pack 1 (32 bits)
# Nom d'utilisateur : Mounir - MOUNIR-PC
# Mode de démarrage : Normal
# Exécuté depuis : C:\Users\Mounir\Downloads\AdwCleaner-2.306.exe
# Option [Recherche]


***** [Services] *****

Présent : APNMCP
Présent : Browser Manager

***** [Fichiers / Dossiers] *****

Dossier Présent : C:\Program Files\Advanced System Protector
Dossier Présent : C:\Program Files\AskPartnerNetwork
Dossier Présent : C:\Program Files\NetNucleous
Dossier Présent : C:\Program Files\RegClean Pro
Dossier Présent : C:\ProgramData\APN
Dossier Présent : C:\ProgramData\Ask
Dossier Présent : C:\ProgramData\AskPartnerNetwork
Dossier Présent : C:\ProgramData\Babylon
Dossier Présent : C:\ProgramData\boost_interprocess
Dossier Présent : C:\ProgramData\Browser Manager
Dossier Présent : C:\ProgramData\Trymedia
Dossier Présent : C:\Users\Mounir\AppData\Local\Ilivid Player
Dossier Présent : C:\Users\Mounir\AppData\Local\OpenCandy
Dossier Présent : C:\Users\Mounir\AppData\Local\PackageAware
Dossier Présent : C:\Users\Mounir\AppData\Local\Temp\APN
Dossier Présent : C:\Users\Mounir\AppData\LocalLow\BabylonToolbar
Dossier Présent : C:\Users\Mounir\AppData\LocalLow\searchquband
Dossier Présent : C:\Users\Mounir\AppData\LocalLow\ShoppingReport2
Dossier Présent : C:\Users\Mounir\AppData\Roaming\Babylon
Dossier Présent : C:\Users\Mounir\AppData\Roaming\file scout
Dossier Présent : C:\Users\Mounir\AppData\Roaming\nbt
Dossier Présent : C:\Users\Mounir\AppData\Roaming\NetNucleous
Dossier Présent : C:\Users\Mounir\AppData\Roaming\OpenCandy
Fichier Présent : C:\user.js
Fichier Présent : C:\Users\Mounir\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
Fichier Présent : C:\Users\Mounir\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences

***** [Registre] *****

Clé Présente : HKCU\Software\AppDataLow\Software\NetNucleous
Clé Présente : HKCU\Software\AppDataLow\Software\searchqutoolbar
Clé Présente : HKCU\Software\AppDataLow\Software\ShoppingReport2
Clé Présente : HKCU\Software\AskPartnerNetwork
Clé Présente : HKCU\Software\BabSolution
Clé Présente : HKCU\Software\BrowserMngr
Clé Présente : HKCU\Software\d55dfdfb239ef40
Clé Présente : HKCU\Software\DataMngr
Clé Présente : HKCU\Software\DataMngr_Toolbar
Clé Présente : HKCU\Software\filescout
Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{043C5167-00BB-4324-AF7E-62013FAEDACF}
Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{07202B0D-149C-4568-90DF-ACC2B4057809}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9D717F81-9148-4F12-8568-69135F087DB0}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D0F4A166-B8D4-48B8-9D63-80849FE137CB}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07202B0D-149C-4568-90DF-ACC2B4057809}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3B7599DF-3D5D-4EF5-BF51-9C2EDA788E83}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\NBT
Clé Présente : HKCU\Software\NBT
Clé Présente : HKCU\Software\NetNucleous
Clé Présente : HKCU\Software\YahooPartnerToolbar
Clé Présente : HKLM\Software\AskPartnerNetwork
Clé Présente : HKLM\Software\Babylon
Clé Présente : HKLM\Software\BrowserMngr
Clé Présente : HKLM\SOFTWARE\Classes\ActiveCollectorPlugin.ActiveCollectorPluginBHO
Clé Présente : HKLM\SOFTWARE\Classes\ActiveCollectorPlugin.ActiveCollectorPluginBHO.1
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{A8ECB19D-6458-4C31-82B2-60CF30440483}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\ActiveCollectorPlugin.DLL
Clé Présente : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{07202B0D-149C-4568-90DF-ACC2B4057809}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Clé Présente : HKLM\SOFTWARE\Classes\hbliteax.userprofiles
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{0EB3F101-224A-4B2B-9E5B-DF720857529C}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{A1F1ECD3-4806-44C6-A869-F0DADF11C57C}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{E766BB98-6F19-469B-A7F4-5092C744767C}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{EDE9DB44-A3CA-4465-B527-6E9FA037C84C}
Clé Présente : HKLM\SOFTWARE\Classes\Prod.cap
Clé Présente : HKLM\SOFTWARE\Classes\ShoppingReport2.HbAx
Clé Présente : HKLM\SOFTWARE\Classes\ShoppingReport2.HbInfoBand
Clé Présente : HKLM\SOFTWARE\Classes\ShoppingReport2.IEButton
Clé Présente : HKLM\SOFTWARE\Classes\ShoppingReport2.IEButtonA
Clé Présente : HKLM\SOFTWARE\Classes\ShoppingReport2.RprtCtrl
Clé Présente : HKLM\SOFTWARE\d55dfdfb239ef40
Clé Présente : HKLM\Software\DataMngr
Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7}
Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASAPI32
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASMANCS
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASAPI32
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASMANCS
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASAPI32
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASMANCS
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{07202B0D-149C-4568-90DF-ACC2B4057809}
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4A99-B4B6-146BF802613B}
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3B7599DF-3D5D-4EF5-BF51-9C2EDA788E83}
Clé Présente : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Clé Présente : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Clé Présente : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Clé Présente : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Clé Présente : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Clé Présente : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Clé Présente : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Clé Présente : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Clé Présente : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Clé Présente : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Clé Présente : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Clé Présente : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Clé Présente : HKLM\Software\NetNucleous
Clé Présente : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Clé Présente : HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Clé Présente : HKU\S-1-5-21-3101594506-4248310904-250478768-1000\Software\Microsoft\Internet Explorer\SearchScopes\{043C5167-00BB-4324-AF7E-62013FAEDACF}
Clé Présente : HKU\S-1-5-21-3101594506-4248310904-250478768-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Clé Présente : HKU\S-1-5-21-3101594506-4248310904-250478768-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Valeur Présente : HKCU\Software\Microsoft\Internet Explorer\Extensions\CmdMapping [{DB38E21A-0133-419d-92AD-ECDFD5244D6D}]
Valeur Présente : HKCU\Software\Microsoft\Internet Explorer\Extensions\CmdMapping [{EB620C54-E229-4942-87CE-E717109FC8C6}]
Valeur Présente : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Valeur Présente : HKCU\Software\Microsoft\Internet Explorer\Main [BrowserMngr Start Page]
Valeur Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Valeur Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [BrowserMngrDefaultScope]
Valeur Présente : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{043C5167-00BB-4324-AF7E-62013FAEDACF}]
Valeur Présente : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Valeur Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Valeur Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}]
Valeur Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D0F4A166-B8D4-48B8-9D63-80849FE137CB}]
Valeur Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10]
Valeur Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnTbMon]

***** [Navigateurs] *****

-\\ Internet Explorer v9.0.8112.16496

[OK] Le registre ne contient aucune entrée illégitime.

-\\ Google Chrome v28.0.1500.72

Fichier : C:\Users\Mounir\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Le fichier ne contient aucune entrée illégitime.

*************************

AdwCleaner[R1].txt - [11369 octets] - [22/07/2013 18:14:21]

########## EOF - C:\AdwCleaner[R1].txt - [11430 octets] ##########

j espère que je me suis pas tromper

Mais non

=> https://forums.commentcamarche.net/forum/affich-28305030-infection-diverses-et-formatage?page=4#212

ok après je t'envoi le rapport de la suppression ou c'est pas la peine ?