Comment supprimer Lost de mon PC? [ Résolu]
Modérateur: Modérateurs
Règles du forum
Les désinfections sont prises en charge par un groupe spécifique, tout le monde ne peut pas intervenir pour désinfecter les machines (règles).
Les procédures sont sur-mesure, ne faites pas la même chose chez vous (explications).
Un topic par machine, chacun crée le sien. 
Les désinfections sont prises en charge par un groupe spécifique, tout le monde ne peut pas intervenir pour désinfecter les machines (règles). Les procédures sont sur-mesure, ne faites pas la même chose chez vous (explications). Un topic par machine, chacun crée le sien.
78 messages
• Page 2 sur 4 • 1, 2, 3, 4
Re: Comment supprimer Lost de mon PC?
par vieillechouette » 25 Avr 2010 20:10
excuse moi Florinator mais je vais au lit demain debout à 5h30 bonne nuit à bientôt!
- vieillechouette
- Libellulien Junior
- Messages: 224
- Inscription: 21 Avr 2010 12:57
- Localisation: Manche (50)
Re: Comment supprimer Lost de mon PC?
par Florinator » 25 Avr 2010 22:26
Je colle ici le rapport ZHPDiag de viellechouette reçu par MP.
- Code: Tout sélectionner
Rapport de ZHPDiag v1.25.1405 par Nicolas Coolman
Run by elisa at 25/04/2010 12:21:19
Web site : http://www.premiumorange.com/zeb-help-p ... pdiag.html
---\\ Web Browser
MSIE: Internet Explorer v8.0.7600.16385
---\\ System Information
Platform : Windows 7 Home Premium (6.1.7600)
Processor: AMD64 Family 16 Model 6 Stepping 2, AuthenticAMD
Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3838 MB (58% free)
System drive C: has 113 GB (75%) free of 149 GB
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 113 Go of 149 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 142 Go of 149 Go)
E:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK
---\\ Processus lancés
[MD5.8143723D21F4FA9B7AA295A29AE9541C] - (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304]
[MD5.E579644A3F6196BDD8D1B00EC12FC7E6] - (.TOSHIBA - SVPWUTIL Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe [352256]
[MD5.8107E3A186C034DDEB14718D71332714] - (.TOSHIBA Electronics, Inc. - HWSetup.) -- C:\Program Files\TOSHIBA\Utilities\HWSetup.exe [423936]
[MD5.C5B2679B0AE204FDD0415199B7AFEF20] - (.TOSHIBA CORPORATION - KeNotify MFC Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [34088]
[MD5.1079D6DA23EEE32E846BADEED77B4E9C] - (.TOSHIBA CORPORATION. - Pas de description.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2446648]
[MD5.9776D0FAA496A06693F348668D9045EE] - (.Agence Exclusive - Agence.) -- C:\Program Files (x86)\Agence Exclusive\Agence.exe [638976]
[MD5.F91F52F4EA5D88DAB6245682A16F3A72] - (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [36272]
[MD5.DB1DB28467111A24664933AB8908CBCE] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [952768]
[MD5.29680A793F690EEF4AAA68479D2A6DF8] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [209153]
[MD5.52DB6CDAC5BC7A1FC884E97C41C91213] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [248040]
[MD5.C7F8F961692040215B9464D4A86707BE] - (.SweetIM Technologies Ltd. - SweetIM Instant Messenger Enhancer.) -- C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe [111928]
[MD5.873372026AB74A43A6903DDE22408407] - (.AgenceExclusive - Helper.) -- C:\Users\elisa\AppData\Roaming\Agence Exclusive\Update\UpdateHP.exe [491520]
[MD5.8F82F7C698FFEF3818CFDD280C488C1B] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [437584]
[MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408]
[MD5.AB3BF627C13A5703F59490FDD6E977FB] - (.Agence Exclusive - Spider Messenger.) -- C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.exe [2436792]
[MD5.896A1DB9A972AD2339C2E8569EC926D1] - (.Safer Networking Limited - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2144088]
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=userinit.exe
F2 - REG:system.ini: Shell=explorer.exe
---\\ Pages de recherche d'Internet Explorer (R1)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Aide à la navigation SFR - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} . (.SFR - Aide à la navigation SFR.) -- C:\Program Files (x86)\SFR\Kit\SFRNavErrorHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} . (.Pas de propriétaire - Pas de description.) -- (.not file.)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SpiderMessenger_BHO - {ADE49752-DBBC-43A3-9498-379A82F574BF} . (.Soft2PC - SpiderMessenger BHO.) -- C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.BHO.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} . (.Pas de propriétaire - Pas de description.) --
O3 - Toolbar: (no name) - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Pas de propriétaire - Pas de description.) --
---\\ Applications démarrées automatiquement par le registre (O4)
O4 - HKLM\..\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [SVPWUTIL] . (.TOSHIBA - SVPWUTIL Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe
O4 - HKLM\..\Run: [HWSetup] . (.TOSHIBA Electronics, Inc. - HWSetup.) -- C:\Program Files\TOSHIBA\Utilities\HWSetup.exe
O4 - HKLM\..\Run: [KeNotify] . (.TOSHIBA CORPORATION - KeNotify MFC Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe
O4 - HKLM\..\Run: [TWebCamera] . (.TOSHIBA CORPORATION. - Pas de description.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe
O4 - HKLM\..\Run: [Agence] . (.Agence Exclusive - Agence.) -- C:\Program Files (x86)\Agence Exclusive\Agence.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [SweetIM] . (.SweetIM Technologies Ltd. - SweetIM Instant Messenger Enhancer.) -- C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\RunOnce: [Helper] . (.AgenceExclusive - Helper.) -- C:\Users\elisa\AppData\Roaming\Agence Exclusive\Update\UpdateHP.exe
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpiderMessenger] . (.Agence Exclusive - Spider Messenger.) -- C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Add to Google Photos Screensa&ver . (.Google Inc. - Google Photos Screensaver.) -- C:\Windows\system32\GPhotos.scr
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~2\MICROS~2\Office12\EXCEL.exe
O8 - Extra context menu item: Google Sidewiki... . (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~2\MICROS~2\Office12\REFBARH.ICO
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) - (.not file.)
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} () - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Pas de propriétaire - Pas de description.) -- "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r45.) -- C:\Windows\SysWow64\Macromed\Flash\Flash10e.ocx
---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM]
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Reader 9.3.2 - Français - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Agence 1.0 - (.Agence Exclusive.) [HKLM]
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Atlantis Quest - (.MyPlayCity, Inc..) [HKLM]
O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM]
O42 - Logiciel: Bel Atout 4.50 - (.Vincent Brévart.) [HKLM]
O42 - Logiciel: Big City Adventure(TM) - Vancouver - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Big Fish Games: Game Manager - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM]
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM]
O42 - Logiciel: Dr. Lynch: Grave Secrets - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: FAIRY TOWER 1.1.7 - (.LittleWing Pinball.) [HKLM]
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM]
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM]
O42 - Logiciel: Hidden Wonders of the Depths Deluxe - (.Zylom Games.) [HKCU]
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Java(TM) 6 Update 20 - (.Sun Microsystems, Inc..) [HKLM]
O42 - Logiciel: Jeux WildTangent - (.WildTangent.) [HKLM]
O42 - Logiciel: Jewels of Cleopatra - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM]
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM]
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM]
O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French) - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM]
O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Suite Activation Assistant - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Millennium Secrets: Emerald Curse - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Mortimer Beckett and the Lost King Premium Edition - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM]
O42 - Logiciel: Poker Pop - (.Oberon Media.) [HKLM]
O42 - Logiciel: Realtek 8136 8168 8169 Ethernet Driver - (.Realtek.) [HKLM]
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM]
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM]
O42 - Logiciel: Realtek WLAN Driver - (.Realtek.) [HKLM]
O42 - Logiciel: SFR - Kit de connexion - (.SFR.) [HKLM]
O42 - Logiciel: Search Guard Plus (My Web Tattoo) - (.Make The Web Better, LLC.) [HKLM]
O42 - Logiciel: Search Guard Plus Updater (My Web Tattoo) - (.Make The Web Better, LLC.) [HKLM]
O42 - Logiciel: Secunia PSI - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM]
O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB978380) - (.Microsoft.) [HKLM]
O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB978382) - (.Microsoft.) [HKLM]
O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB957789) - (.Microsoft.) [HKLM]
O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM]
O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM]
O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB969613) - (.Microsoft.) [HKLM]
O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM]
O42 - Logiciel: Skype(TM) Launcher - (.Skype Technologies S.A..) [HKLM]
O42 - Logiciel: SpiderMessenger 1.0 - (.Soft2PC.) [HKLM]
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM]
O42 - Logiciel: SweetIM for Messenger 2.8 - (.SweetIM Technologies Ltd..) [HKLM]
O42 - Logiciel: TOSHIBA Bulletin Board - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA ConfigFree - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA DVD PLAYER - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA Extended Tiles for Windows Mobility Center - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: TOSHIBA Face Recognition - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA Flash Cards Support Utility - (.TOSHIBA CORPORATION.) [HKLM]
O42 - Logiciel: TOSHIBA HDD/SSD Alert - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA Hardware Setup - (.TOSHIBA CORPORATION.) [HKLM]
O42 - Logiciel: TOSHIBA Mot de passe responsable - (.TOSHIBA CORPORATION.) [HKLM]
O42 - Logiciel: TOSHIBA Recovery Media Creator Reminder - (.TOSHIBA.) [HKLM]
O42 - Logiciel: TOSHIBA ReelTime - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA Service Station - (.TOSHIBA.) [HKLM]
O42 - Logiciel: TOSHIBA Supervisor Password - (.TOSHIBA CORPORATION.) [HKLM]
O42 - Logiciel: TOSHIBA Value Added Package - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA Web Camera Application - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA eco Utility - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TRORMCLauncher - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: TV sur PC - (.SFR.) [HKLM]
O42 - Logiciel: The Cradle Bundle - (.Oberon Media.) [HKLM]
O42 - Logiciel: The Sultan's Labyrinth: Le Sacrifice de Bahar - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: The Treasures of Mystery Island Deluxe - (.Zylom Games.) [HKCU]
O42 - Logiciel: Toshiba Assist - (.TOSHIBA.) [HKLM]
O42 - Logiciel: Toshiba Manuals - (.TOSHIBA.) [HKLM]
O42 - Logiciel: Toshiba Online Product Information - (.TOSHIBA.) [HKLM]
O42 - Logiciel: Toshiba Photo Service - powered by myphotobook - (.myphotobook GmbH.) [HKLM]
O42 - Logiciel: Toshiba TEMPRO - (.Toshiba Europe GmbH.) [HKLM]
O42 - Logiciel: Uniblue RegistryBooster 2010 - (.Uniblue Systems Ltd.) [HKLM]
O42 - Logiciel: Update 1.2 - (.Agence Exclusive.) [HKLM]
O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM]
O42 - Logiciel: Update for 2007 Microsoft Office System (KB981715) - (.Microsoft.) [HKLM]
O42 - Logiciel: Update for Microsoft Office InfoPath 2007 (KB976416) - (.Microsoft.) [HKLM]
O42 - Logiciel: Update for Microsoft Office OneNote 2007 (KB980729) - (.Microsoft.) [HKLM]
O42 - Logiciel: Update for Microsoft Office Word 2007 (KB974561) - (.Microsoft.) [HKLM]
O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: WordBiz version 1.8 - (.Internet Scrabble Club.) [HKLM]
O42 - Logiciel: eBay - (.eBay Inc..) [HKLM]
O42 - Logiciel: eMule - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: iWin Games (remove only) - (.Pas de propriétaire.) [HKLM]
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ALWIL Software]
[HKCU\Software\ATI]
[HKCU\Software\Adobe]
[HKCU\Software\AgenceExclusive]
[HKCU\Software\AppDataLow]
[HKCU\Software\Artogon]
[HKCU\Software\Avira]
[HKCU\Software\Big Fish Games]
[HKCU\Software\Boonty]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\FindHiddenObjects.com]
[HKCU\Software\Future Pinball]
[HKCU\Software\GameHouse]
[HKCU\Software\GameXzone]
[HKCU\Software\GibbHill]
[HKCU\Software\Good games]
[HKCU\Software\Google]
[HKCU\Software\IM Providers]
[HKCU\Software\Iminent]
[HKCU\Software\JavaSoft]
[HKCU\Software\JollyBear]
[HKCU\Software\LittleWing]
[HKCU\Software\Macromedia]
[HKCU\Software\Macrovision]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Micro Application]
[HKCU\Software\Monitored]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Oberon Media]
[HKCU\Software\Ovogame]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\SCATLAWS]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\Secunia]
[HKCU\Software\Softonic]
[HKCU\Software\SpiderMessenger]
[HKCU\Software\SpinTop]
[HKCU\Software\SugarGames]
[HKCU\Software\Synaptics]
[HKCU\Software\TOSHIBA]
[HKCU\Software\Test3D]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\Wow6432Node]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\Yams_MANTALOTUS]
[HKCU\Software\Zylom]
[HKCU\Software\eMule]
[HKCU\Software\iWinArcade]
[HKCU\Software\settings]
[HKLM\Software\ALWIL Software]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\Adobe]
[HKLM\Software\AgenceExclusive]
[HKLM\Software\America Online]
[HKLM\Software\Anka]
[HKLM\Software\Avira]
[HKLM\Software\Big Fish Games]
[HKLM\Software\Boonty]
[HKLM\Software\COMPAL]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Conduit]
[HKLM\Software\Cyberlink]
[HKLM\Software\Digital River]
[HKLM\Software\DivXNetworks]
[HKLM\Software\GameInstaller]
[HKLM\Software\Google]
[HKLM\Software\Iminent]
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Licenses]
[HKLM\Software\Macromedia]
[HKLM\Software\McAfeeInstaller]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Neuf]
[HKLM\Software\ODBC]
[HKLM\Software\Oberon Media]
[HKLM\Software\Policies]
[HKLM\Software\QATestSystem]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\ReflexiveArcade]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\RtWLan]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\Secunia]
[HKLM\Software\SiteAdvisor]
[HKLM\Software\SpinTop]
[HKLM\Software\SugarGames]
[HKLM\Software\TOSHIBA Corporation]
[HKLM\Software\TOSHIBA]
[HKLM\Software\TrendMicro]
[HKLM\Software\Uniblue]
[HKLM\Software\WildTangent]
[HKLM\Software\Windows]
[HKLM\Software\X-AVCSD]
---\\ Contenu des dossiers Fichiers Communs (O43)
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\1 Jeu par jour
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\3DYAMS_XP
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Agatha Christie - Death on the Nile
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Agence Exclusive
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ATI Technologies
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Atlantis Quest
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Avira
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\bfgclient
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Big City Adventure - Vancouver
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\BoontyGames
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\CCleaner
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Cradle of Rome
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Dr. Lynch - Grave Secrets
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\eBay
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\eMule
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Escape the Museum 2
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\G.H.O.S.T. Chronicles - Le Fantome de la Foire de la Renaissance
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\G.H.O.S.T. Hunters - The Haunting of Majesty Manor
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Google
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Hidden Expedition - Everest
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Iminent
O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Internet Explorer
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\iWin Games
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\iWin.com
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Java
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Jeux de cartes
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Jewels of Cleopatra
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\La Malediction du Pharaon - A la Recherche de Nefertiti
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\laetjr
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\LittleWing Pinball
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Micro Application
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Office
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Works
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft.NET
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Millennium Secrets - Emerald Curse
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MSBuild
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MyPlayCity.com
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Mystery Case Files - Retour a Ravenhearst
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Oberon Media
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Photo-Service
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\RealArcade
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Realtek
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Realtek WLAN Driver
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Reference Assemblies
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ReflexiveArcade
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Secunia
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\SFR
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\SpiderMessenger
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Spybot - Search & Destroy
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\SweetIM
O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\Temp
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\The Fall Trilogy - Chapter 1
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\The Sultan's Labyrinth - Le Sacrifice de Bahar
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\TOSHIBA
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\TOSHIBA Games
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Toshiba TEMPRO
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\trend micro
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Uniblue
O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\Uninstall Information
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Vampire Saga - La Boite de Pandore
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Defender
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Live
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Live SkyDrive
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Mail
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Media Player
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows NT
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Sidebar
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\WordBiz
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Yahoo! Jeux
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ZHPDiag
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\BOONTY Shared
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Java
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Oberon Media
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Services
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\System
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Toshiba Shared
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Wise Installation Wizard
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.318CA73F9E5152C9386463255CB00238] - 25/04/2010 - 06:47:33 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [16080]
O44 - LFC:[MD5.318CA73F9E5152C9386463255CB00238] - 25/04/2010 - 06:47:33 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [16080]
O44 - LFC:[MD5.00000000000000000000000000000000] - 25/04/2010 - 06:43:49 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\WindowsUpdate.log [1548450]
O44 - LFC:[MD5.ADDF67C5CF0BFBB8E754E9FC2D0F82D9] - 25/04/2010 - 06:40:14 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setupact.log [1232]
O44 - LFC:[MD5.5BB5D37791DE9C96443B8592AD334BBF] - 25/04/2010 - 06:40:12 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.CFE6AEFC4A07A3E077EEB12B90CB1A65] - 23/04/2010 - 22:27:13 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\PFRO.log [3892]
O44 - LFC:[MD5.ED9A1510381027C66143A643942FDCA2] - 23/04/2010 - 09:07:38 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\ZHPExportRegistry-23-04-2010-10-07-38.txt [478]
O44 - LFC:[MD5.B0C86C091A389113E24BE62988510EDC] - 23/04/2010 - 09:07:34 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\ZHPExportRegistry-23-04-2010-10-07-34.txt [15808]
O44 - LFC:[MD5.C6F145E3793460A56028E54B6A084431] - 21/04/2010 - 11:03:06 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc009.dat [103568]
O44 - LFC:[MD5.0D4607DA081946EDD91C2D0431E232BD] - 21/04/2010 - 11:03:06 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc00C.dat [127684]
O44 - LFC:[MD5.08CE9D1E38ABB5E24C9B53ABFE5D454F] - 21/04/2010 - 11:03:06 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh009.dat [607190]
O44 - LFC:[MD5.8062FB9A9A3B257B1DA8122828C5823E] - 21/04/2010 - 11:03:06 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh00C.dat [695004]
O44 - LFC:[MD5.B365A3FA489E9E19541AE449113CAFB0] - 21/04/2010 - 11:03:05 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\PerfStringBackup.INI [1524562]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 17/04/2010 - 23:04:42 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.E9D20980563A9202A965C8BF3F1FF176] - 17/04/2010 - 14:27:40 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\JavaRa.log [6253]
O44 - LFC:[MD5.3117D2C17B76A161A336AD29FDE041F7] - 09/04/2010 - 05:57:29 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\FNTCACHE.DAT [343872]
---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\SysWOW64\l3codeca.acm" . (.Pas de propriétaire - Pas de description.) -- (.not file.)
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll
O52 - TDSD: \drivers.desc\"C:\Windows\SysWOW64\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.)
---\\ Microsoft Windows Policies System (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
---\\ Microsoft Windows Policies Explorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\Policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\Policies\Explorer] - "NoActiveDesktopChanges"=0
O56 - MWPE:[HKLM\...\Policies\Explorer] - "ForceActiveDesktopOn"=0
---\\ Liste des Drivers Système (SDL) (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys
O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys
O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys
O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys
O58 - SDL:[MD5.7A4B413614C055935567CF88A9734D38] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys
O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys
O58 - SDL:[MD5.B4AD0CACBAB298671DD6F6EF7E20679D] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys
O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys
O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys
O58 - SDL:[MD5.E857EEE6B92AAA473EBB3465ADD8F7E7] - 20/06/2009 - 03:09:57 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\drivers\athrx.sys
O58 - SDL:[MD5.173F4C05F87085E9BDA3F7037BC9F40E] - 30/07/2009 - 11:07:12 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys
O58 - SDL:[MD5.7C5D273E29DCC5505469B299C6F29163] - 05/05/2009 - 23:30:28 ---A- . (.Advanced Micro Devices Inc. - AMD PCIE Filter Driver for ATI PCIE chipset.) -- C:\Windows\system32\drivers\AtiPcie.sys
O58 - SDL:[MD5.C30B5FC0ADCDFBA7668E99BAF0CBF58E] - 25/11/2009 - 10:19:02 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\system32\drivers\avgntflt.sys
O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys
O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys
O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys
O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys
O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys
O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys
O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys
O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys
O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys
O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys
O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys
O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys
O58 - SDL:[MD5.0886D440058F203EBA0E1825E4355914] - 14/07/2009 - 02:47:48 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys
O58 - SDL:[MD5.D83EFB6FD45DF9D55E9A1AFC63640D50] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys
O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys
O58 - SDL:[MD5.16679269303613C4CE7C8FF03413410F] - 02/07/2009 - 13:55:38 ---A- . (.COMPAL ELECTRONIC INC. - LPCFilter.) -- C:\Windows\system32\drivers\LPCFilter.sys
O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys
O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys
O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys
O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys
O58 - SDL:[MD5.4A46FA98DE81FF55A7CFC0C26262CB33] - 30/03/2010 - 23:45:56 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys
O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys
O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys
O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys
O58 - SDL:[MD5.3E38712941E9BB4DDBEE00AFFE3FED3D] - 14/07/2009 - 02:48:27 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys
O58 - SDL:[MD5.477DC4D6DEB99BE37084C9AC6D013DA1] - 14/07/2009 - 02:45:45 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys
O58 - SDL:[MD5.663962900E7FEA522126BA287715BB4A] - 22/06/2009 - 16:06:38 ---A- . (.TOSHIBA Corporation - TOSHIBA Universal Camera Filter Driver.) -- C:\Windows\system32\drivers\PGEffect.sys
O58 - SDL:[MD5.6328CFF4C812702412549B34CD08503D] - 17/06/2009 - 13:19:14 ---A- . (.Secunia - Secunia PSI Driver.) -- C:\Windows\system32\drivers\psi_mf.sys
O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys
O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys
O58 - SDL:[MD5.B49DC435AE3695BAC5623DD94B05732D] - 22/05/2009 - 21:52:30 ---A- . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver.) -- C:\Windows\system32\drivers\Rt64win7.sys
O58 - SDL:[MD5.0C3CF4B3BAE28E121A1689E3538F8712] - 28/07/2009 - 20:00:14 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHD64.sys
O58 - SDL:[MD5.A9EDE191B5478D18F0A1BFF3B822F7A5] - 26/08/2009 - 17:11:12 ---A- . (.Realtek Semiconductor Corporation - Realtek RTL81892SE NDIS Driverr.) -- C:\Windows\system32\drivers\rtl8192se.sys
O58 - SDL:[MD5.8C22F21C924413D4E109995F748E18BB] - 30/07/2009 - 16:46:22 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7.) -- C:\Windows\system32\drivers\RtsUStor.sys
O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys
O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys
O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys
O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys
O58 - SDL:[MD5.BE7311DA9D6833FA69ED04B744A1C8F8] - 20/07/2009 - 16:48:32 ---A- . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\system32\drivers\SynTP.sys
O58 - SDL:[MD5.FD542B661BD22FA69CA789AD0AC58C29] - 30/07/2009 - 19:22:04 ---A- . (.TOSHIBA Corporation. - TOSHIBA ODD Writing Driver for x64..) -- C:\Windows\system32\drivers\tdcmdpst.sys
O58 - SDL:[MD5.09FF7B0B1B5C3D225495CB6F5A9B39F8] - 24/07/2009 - 14:57:08 ---A- . (.TOSHIBA Corporation - tos_sps64.) -- C:\Windows\system32\drivers\tos_sps64.sys
O58 - SDL:[MD5.9C7191F4B2E49BFF47A6C1144B5923FA] - 19/06/2009 - 18:15:22 ---A- . (.TOSHIBA Corporation - TOSHIBA TVALZ Filter Driver for x64.) -- C:\Windows\system32\drivers\TVALZFL.sys
O58 - SDL:[MD5.550B567F9364D8F7684C3FB3EA665A72] - 14/07/2009 - 14:31:18 ---A- . (.TOSHIBA Corporation - TOSHIBA ACPI-Based Value Added Logical and General Purpose Devi.) -- C:\Windows\system32\drivers\TVALZ_O.SYS
O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys
O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys
O58 - SDL:[MD5.75B8EF2A089127E8A3B38F46CC366D79] - 30/03/2010 - 23:46:30 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys
O58 - SDL:[MD5.3AD0362CF68DE3AC500E981700242CCA] - 11/05/2009 - 08:11:52 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\Windows\SysWOW64\drivers\ssmdrv.sys
---\\ Liste des outils de nettoyage (LATC) (O63)
O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.)
O63 - Logiciel: ZHPDiag 1.25 - (.Nicolas Coolman.)
O63 - Logiciel: RSIT - (random/random)
---\\ Observateur d'évènement d'application (OEA) (O66)
O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O66 - EventLog: ID=1000 (Application Error) - (.Agence Exclusive - Agence.) -- C:\Program Files (x86)\Agence Exclusive\Agence.exe
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\system32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\system32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.html> <htmlfile>[HKCR\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
---\\ Start Menu Internet (SMI) (O68)
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
---\\ Recherche d'infection Master Boot Record (O80)
Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net
device: opened successfully
user: MBR read successfully
kernel: error reading MBR
End of the scan (610 lines in 01mn 08s)
Le savoir n'est utile que si il est transmis.
-
Florinator - Maître Libellulien
- Messages: 661
- Inscription: 28 Déc 2009 16:19
Re: Comment supprimer Lost de mon PC?
par Florinator » 25 Avr 2010 22:40
Bonsoir Viellechouette,
Merci pour le fichier
J'ai ajouté le rapport que tu m'avais envoyé par MP.
Cela sera plus lisible pour les personnes qui liront ce sujet.
Cette saloperie est revenue, on va essayer de le redégager autrement:
1)
Télécharge sur le bureau OTM crée par de Old_Timer
Remarque: Il est possible qu'il te soit demandé de redémarrer ton ordinateur pour supprimer les fichiers,ce redémarrage peut être plus long qu’à l’accoutumé.Accepte et dans ce cas, après redémarrage, tu trouveras justement le rapport dans le dossier C:\OTMoveIt\MovedFiles.
2)
Repasse Mbam en scan complet et aprés l'avoir mis à jour.
A++
Merci pour le fichier
J'ai ajouté le rapport que tu m'avais envoyé par MP.
Cela sera plus lisible pour les personnes qui liront ce sujet.
Cette saloperie est revenue, on va essayer de le redégager autrement:
1)
Télécharge sur le bureau OTM crée par de Old_Timer
- Enregistre-le sur ton Bureau.
- Double-clique dessus.
- Copie la liste qui se trouve dans la zone code ci-dessous et colle-la dans le cadre de gauche sous "Paste instructions for Items to be Moved".
- Code: Tout sélectionner
go
:Reg
[HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Helper"=-
[-HKCU\Software\AgenceExclusive]
:Files
C:\Users\elisa\AppData\Roaming\Agence Exclusive
:Commands
[emptytemp]
- Clique sur "MoveIt!" pour lancer la suppression. Le résultat apparaitra alors dans le cadre "Results"
- Copie/Colle ce résultat
- Clique sur Exit pour fermer.
Remarque: Il est possible qu'il te soit demandé de redémarrer ton ordinateur pour supprimer les fichiers,ce redémarrage peut être plus long qu’à l’accoutumé.Accepte et dans ce cas, après redémarrage, tu trouveras justement le rapport dans le dossier C:\OTMoveIt\MovedFiles.
- Si ton Bureau ne réapparaît pas:
- Fais CTRL+ALT+SUPP pour ouvrir le Gestionnaire de tâches.
- Clique en haut à gauche sur "Fichier"
- Choisi "Nouvelle tâche" (Exécuter ...)
- Tape "explorer" et valide.
- Cela fera apparaître ton Bureau.
2)
Repasse Mbam en scan complet et aprés l'avoir mis à jour.
A++
Le savoir n'est utile que si il est transmis.
-
Florinator - Maître Libellulien
- Messages: 661
- Inscription: 28 Déc 2009 16:19
Re: Comment supprimer Lost de mon PC?
par vieillechouette » 28 Avr 2010 13:07
bonjour Florinator voilà j'ai un cheval de troie RT/UHelper.A dans C:\Users\elisa\Appdata_roaming\Agence Exclusive\Update\UpdateHP.exe Au secours!!!! Que dois-je faire s'il te plaît? Merci à+++
- vieillechouette
- Libellulien Junior
- Messages: 224
- Inscription: 21 Avr 2010 12:57
- Localisation: Manche (50)
Re: Comment supprimer Lost de mon PC?
par vieillechouette » 28 Avr 2010 13:53
All processes killed
Error: Unable to interpret <:> in the current context!
Error: Unable to interpret <go> in the current context!
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Helper deleted successfully.
Registry key HKEY_CURRENT_USER\Software\AgenceExclusive\ deleted successfully.
========== FILES ==========
C:\Users\elisa\AppData\Roaming\Agence Exclusive\Update\Software\itsTV\3.0.1.173 folder moved successfully.
C:\Users\elisa\AppData\Roaming\Agence Exclusive\Update\Software\itsTV folder moved successfully.
C:\Users\elisa\AppData\Roaming\Agence Exclusive\Update\Software folder moved successfully.
C:\Users\elisa\AppData\Roaming\Agence Exclusive\Update\Download folder moved successfully.
C:\Users\elisa\AppData\Roaming\Agence Exclusive\Update folder moved successfully.
C:\Users\elisa\AppData\Roaming\Agence Exclusive folder moved successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: AppData
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 41044 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: elisa
->Temp folder emptied: 542058 bytes
->Temporary Internet Files folder emptied: 145666196 bytes
->Java cache emptied: 26184965 bytes
->Flash cache emptied: 47460 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 830854 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 133781 bytes
RecycleBin emptied: 187017013 bytes
Total Files Cleaned = 344,00 mb
OTM by OldTimer - Version 3.1.10.1 log created on 04282010_143219
Files moved on Reboot...
C:\Users\elisa\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SZ36U0MH\comment-supprimer-lost-de-mon-pc-t35359-20[1].html moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SZ36U0MH\facebook_com[2].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SZ36U0MH\haste_combo_frame[1].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NYCWE79S\redirectiframe[1].html moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MJAPS6WO\adserv[1].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MJAPS6WO\command[2].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MJAPS6WO\load[1].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\IEBC7UBZ\feed[1].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\IEBC7UBZ\index[2].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\BAGPM1KY\11[2].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3CUCETOZ\ads[5].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0X1GRHO2\11[1].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0X1GRHO2\activityi;src=2509497;type=yahoo421;cat=frhom644;ord=1;num=9446806092482[1].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0X1GRHO2\farm[6].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0X1GRHO2\fr_yahoo_com[3].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0X1GRHO2\rawrgames_fr[1].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\2CEDBFBC-DBA8-43AA-B1FD-CC8E6316E3E2.dat moved successfully.
File C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\fla5C4D.tmp not found!
File C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\flaAD28.tmp not found!
File C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\flaB737.tmp not found!
File C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\flaFE33.tmp not found!
Registry entries deleted on Reboot...
Je ne sais pas si c'est celui là y'en avait 3 je ne suis pas douée pour les manips ? L'anti virus me mets toujours que j'ai le cheval de troie je clique sur refuser l'accés est ce que je fais bien? Merci pour ton aide à+++
Error: Unable to interpret <:> in the current context!
Error: Unable to interpret <go> in the current context!
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Helper deleted successfully.
Registry key HKEY_CURRENT_USER\Software\AgenceExclusive\ deleted successfully.
========== FILES ==========
C:\Users\elisa\AppData\Roaming\Agence Exclusive\Update\Software\itsTV\3.0.1.173 folder moved successfully.
C:\Users\elisa\AppData\Roaming\Agence Exclusive\Update\Software\itsTV folder moved successfully.
C:\Users\elisa\AppData\Roaming\Agence Exclusive\Update\Software folder moved successfully.
C:\Users\elisa\AppData\Roaming\Agence Exclusive\Update\Download folder moved successfully.
C:\Users\elisa\AppData\Roaming\Agence Exclusive\Update folder moved successfully.
C:\Users\elisa\AppData\Roaming\Agence Exclusive folder moved successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: AppData
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 41044 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: elisa
->Temp folder emptied: 542058 bytes
->Temporary Internet Files folder emptied: 145666196 bytes
->Java cache emptied: 26184965 bytes
->Flash cache emptied: 47460 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 830854 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 133781 bytes
RecycleBin emptied: 187017013 bytes
Total Files Cleaned = 344,00 mb
OTM by OldTimer - Version 3.1.10.1 log created on 04282010_143219
Files moved on Reboot...
C:\Users\elisa\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SZ36U0MH\comment-supprimer-lost-de-mon-pc-t35359-20[1].html moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SZ36U0MH\facebook_com[2].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SZ36U0MH\haste_combo_frame[1].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NYCWE79S\redirectiframe[1].html moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MJAPS6WO\adserv[1].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MJAPS6WO\command[2].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MJAPS6WO\load[1].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\IEBC7UBZ\feed[1].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\IEBC7UBZ\index[2].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\BAGPM1KY\11[2].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\3CUCETOZ\ads[5].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0X1GRHO2\11[1].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0X1GRHO2\activityi;src=2509497;type=yahoo421;cat=frhom644;ord=1;num=9446806092482[1].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0X1GRHO2\farm[6].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0X1GRHO2\fr_yahoo_com[3].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0X1GRHO2\rawrgames_fr[1].htm moved successfully.
C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\2CEDBFBC-DBA8-43AA-B1FD-CC8E6316E3E2.dat moved successfully.
File C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\fla5C4D.tmp not found!
File C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\flaAD28.tmp not found!
File C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\flaB737.tmp not found!
File C:\Users\elisa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\flaFE33.tmp not found!
Registry entries deleted on Reboot...
Je ne sais pas si c'est celui là y'en avait 3 je ne suis pas douée pour les manips ? L'anti virus me mets toujours que j'ai le cheval de troie je clique sur refuser l'accés est ce que je fais bien? Merci pour ton aide à+++
- vieillechouette
- Libellulien Junior
- Messages: 224
- Inscription: 21 Avr 2010 12:57
- Localisation: Manche (50)
Re: Comment supprimer Lost de mon PC?
par Florinator » 28 Avr 2010 14:05
Bonjour viellechouette,
Oui, c'est normal pour l'antivirus, il le détecte depuis peu, gràce au fichier que tu m'as transmis
Mais aprés le script OTM, il ne devrait plus réapparaître.
Mais si Antivir continu à se mettre en alerte continu à bloquer le programme
Fais moi ce rapport stp:
Télécharge RSIT crée par Random/random
Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera et tu devras accepter la licence.
Remarque: Les 2 rapports se situent aussi dans C:/Rsit
A++
Oui, c'est normal pour l'antivirus, il le détecte depuis peu, gràce au fichier que tu m'as transmis
Mais aprés le script OTM, il ne devrait plus réapparaître.
Mais si Antivir continu à se mettre en alerte continu à bloquer le programme
Fais moi ce rapport stp:
Télécharge RSIT crée par Random/random
- Enregistre le sur ton bureau
- Double-clique dessus
- Clique sur Continue à l'écran Disclaimer.
Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera et tu devras accepter la licence.
- Poste le contenu de log.txt qui sera affiché
- Poste le contenu de info.txt qui sera réduit dans la Barre des Tâches.
Remarque: Les 2 rapports se situent aussi dans C:/Rsit
A++
Le savoir n'est utile que si il est transmis.
-
Florinator - Maître Libellulien
- Messages: 661
- Inscription: 28 Déc 2009 16:19
Re: Comment supprimer Lost de mon PC?
par vieillechouette » 28 Avr 2010 17:04
je t'envoie le scan Mbam par mp
- vieillechouette
- Libellulien Junior
- Messages: 224
- Inscription: 21 Avr 2010 12:57
- Localisation: Manche (50)
Re: Comment supprimer Lost de mon PC?
par vieillechouette » 28 Avr 2010 17:14
le RSIT celui que j'avais sur mon bureau ne veut pas fonctionner il me dit : error variable used without being declared désolée à+++
- vieillechouette
- Libellulien Junior
- Messages: 224
- Inscription: 21 Avr 2010 12:57
- Localisation: Manche (50)
Re: Comment supprimer Lost de mon PC?
par vieillechouette » 28 Avr 2010 19:16
Dis moi Florinator est ce que je peux naviguer sur le net avec le cheval de Troie? Ca craint quoi ce cheval? Est ce dangereux? Merci pour tout.à+++
(je panique!!!).
(je panique!!!).
- vieillechouette
- Libellulien Junior
- Messages: 224
- Inscription: 21 Avr 2010 12:57
- Localisation: Manche (50)
Re: Comment supprimer Lost de mon PC?
par Florinator » 28 Avr 2010 21:01
Tu n'as pas à paniquer.
C'est un Adware/Spyware, il cible tes recherches pour te balancer les pubs qui vont avec, sur chacunes de tes navigations.Il possèdes aussi un petit processus qui reste pour stocker tes diffèrents paramètres.
Il est pas méchant à supprimer mais il ne te faudrat plus retourner sur "Agence exclusive" c'est lui qui te l'installe.
Si RSIT ne fonctionne pas, refais un ZHPDiag stp.
A++
C'est un Adware/Spyware, il cible tes recherches pour te balancer les pubs qui vont avec, sur chacunes de tes navigations.Il possèdes aussi un petit processus qui reste pour stocker tes diffèrents paramètres.
Il est pas méchant à supprimer mais il ne te faudrat plus retourner sur "Agence exclusive" c'est lui qui te l'installe.
Si RSIT ne fonctionne pas, refais un ZHPDiag stp.
A++
Le savoir n'est utile que si il est transmis.
-
Florinator - Maître Libellulien
- Messages: 661
- Inscription: 28 Déc 2009 16:19
Re: Comment supprimer Lost de mon PC?
par vieillechouette » 29 Avr 2010 12:03
Rapport de ZHPDiag v1.25.1405 par
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Add to Google Photos Screensa&ver . (.Google Inc. - Google Photos Screensaver.) -- C:\Windows\system32\GPhotos.scr
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~2\MICROS~2\Office12\EXCEL.exe
O8 - Extra context menu item: Google Sidewiki... . (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Ajout Direct dans Windows Nicolas Coolman
Run by elisa at 29/04/2010 12:46:40
Web site : http://www.premiumorange.com/zeb-help-p ... pdiag.html
---\\ Web Browser
MSIE: Internet Explorer v8.0.7600.16385
---\\ System Information
Platform : Windows 7 Home Premium (6.1.7600)
Processor: AMD64 Family 16 Model 6 Stepping 2, AuthenticAMD
Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3838 MB (64% free)
System drive C: has 113 GB (76%) free of 149 GB
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 113 Go of 149 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 142 Go of 149 Go)
E:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK
---\\ Processus lancés
[MD5.8143723D21F4FA9B7AA295A29AE9541C] - (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304]
[MD5.E579644A3F6196BDD8D1B00EC12FC7E6] - (.TOSHIBA - SVPWUTIL Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe [352256]
[MD5.8107E3A186C034DDEB14718D71332714] - (.TOSHIBA Electronics, Inc. - HWSetup.) -- C:\Program Files\TOSHIBA\Utilities\HWSetup.exe [423936]
[MD5.C5B2679B0AE204FDD0415199B7AFEF20] - (.TOSHIBA CORPORATION - KeNotify MFC Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [34088]
[MD5.1079D6DA23EEE32E846BADEED77B4E9C] - (.TOSHIBA CORPORATION. - Pas de description.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2446648]
[MD5.9776D0FAA496A06693F348668D9045EE] - (.Agence Exclusive - Agence.) -- C:\Program Files (x86)\Agence Exclusive\Agence.exe [638976]
[MD5.F91F52F4EA5D88DAB6245682A16F3A72] - (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [36272]
[MD5.DB1DB28467111A24664933AB8908CBCE] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [952768]
[MD5.29680A793F690EEF4AAA68479D2A6DF8] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [209153]
[MD5.52DB6CDAC5BC7A1FC884E97C41C91213] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [248040]
[MD5.C7F8F961692040215B9464D4A86707BE] - (.SweetIM Technologies Ltd. - SweetIM Instant Messenger Enhancer.) -- C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe [111928]
[MD5.8F82F7C698FFEF3818CFDD280C488C1B] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [437584]
[MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408]
[MD5.AB3BF627C13A5703F59490FDD6E977FB] - (.Agence Exclusive - Spider Messenger.) -- C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.exe [2436792]
[MD5.896A1DB9A972AD2339C2E8569EC926D1] - (.Safer Networking Limited - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2144088]
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=userinit.exe
F2 - REG:system.ini: Shell=explorer.exe
---\\ Pages de recherche d'Internet Explorer (R1)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Aide à la navigation SFR - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} . (.SFR - Aide à la navigation SFR.) -- C:\Program Files (x86)\SFR\Kit\SFRNavErrorHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} . (.Pas de propriétaire - Pas de description.) -- (.not file.)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SpiderMessenger_BHO - {ADE49752-DBBC-43A3-9498-379A82F574BF} . (.Soft2PC - SpiderMessenger BHO.) -- C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.BHO.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} . (.Pas de propriétaire - Pas de description.) --
O3 - Toolbar: (no name) - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Pas de propriétaire - Pas de description.) --
---\\ Applications démarrées automatiquement par le registre (O4)
O4 - HKLM\..\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [SVPWUTIL] . (.TOSHIBA - SVPWUTIL Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe
O4 - HKLM\..\Run: [HWSetup] . (.TOSHIBA Electronics, Inc. - HWSetup.) -- C:\Program Files\TOSHIBA\Utilities\HWSetup.exe
O4 - HKLM\..\Run: [KeNotify] . (.TOSHIBA CORPORATION - KeNotify MFC Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe
O4 - HKLM\..\Run: [TWebCamera] . (.TOSHIBA CORPORATION. - Pas de description.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe
O4 - HKLM\..\Run: [Agence] . (.Agence Exclusive - Agence.) -- C:\Program Files (x86)\Agence Exclusive\Agence.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [SweetIM] . (.SweetIM Technologies Ltd. - SweetIM Instant Messenger Enhancer.) -- C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpiderMessenger] . (.Agence Exclusive - Spider Messenger.) -- C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~2\MICROS~2\Office12\REFBARH.ICO
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) - (.not file.)
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} () - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Pas de propriétaire - Pas de description.) -- "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r45.) -- C:\Windows\SysWow64\Macromed\Flash\Flash10e.ocx
---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM]
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Reader 9.3.2 - Français - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Agence 1.0 - (.Agence Exclusive.) [HKLM]
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Atlantis Quest - (.MyPlayCity, Inc..) [HKLM]
O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM]
O42 - Logiciel: Bel Atout 4.50 - (.Vincent Brévart.) [HKLM]
O42 - Logiciel: Big City Adventure(TM) - Vancouver - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Big Fish Games: Game Manager - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM]
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM]
O42 - Logiciel: Dr. Lynch: Grave Secrets - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: FAIRY TOWER 1.1.7 - (.LittleWing Pinball.) [HKLM]
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM]
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM]
O42 - Logiciel: Hidden Wonders of the Depths Deluxe - (.Zylom Games.) [HKCU]
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Java(TM) 6 Update 20 - (.Sun Microsystems, Inc..) [HKLM]
O42 - Logiciel: Jeux WildTangent - (.WildTangent.) [HKLM]
O42 - Logiciel: Jewels of Cleopatra - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM]
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM]
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM]
O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French) - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM]
O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Suite Activation Assistant - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Millennium Secrets: Emerald Curse - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Module de compatibilité pour M\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Add to Google Photos Screensa&ver . (.Google Inc. - Google Photos Screensaver.) -- C:\Windows\system32\GPhotos.scr
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~2\MICROS~2\Office12\EXCEL.exe
O8 - Extra context menu item: Google Sidewiki... . (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Ajout Direct dans Windows Nicolas Coolman
Run by elisa at 29/04/2010 12:46:40
Web site : http://www.premiumorange.com/zeb-help-p ... pdiag.html
---\\ Web Browser
MSIE: Internet Explorer v8.0.7600.16385
---\\ System Information
Platform : Windows 7 Home Premium (6.1.7600)
Processor: AMD64 Family 16 Model 6 Stepping 2, AuthenticAMD
Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3838 MB (64% free)
System drive C: has 113 GB (76%) free of 149 GB
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 113 Go of 149 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 142 Go of 149 Go)
E:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK
---\\ Processus lancés
[MD5.8143723D21F4FA9B7AA295A29AE9541C] - (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304]
[MD5.E579644A3F6196BDD8D1B00EC12FC7E6] - (.TOSHIBA - SVPWUTIL Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe [352256]
[MD5.8107E3A186C034DDEB14718D71332714] - (.TOSHIBA Electronics, Inc. - HWSetup.) -- C:\Program Files\TOSHIBA\Utilities\HWSetup.exe [423936]
[MD5.C5B2679B0AE204FDD0415199B7AFEF20] - (.TOSHIBA CORPORATION - KeNotify MFC Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [34088]
[MD5.1079D6DA23EEE32E846BADEED77B4E9C] - (.TOSHIBA CORPORATION. - Pas de description.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2446648]
[MD5.9776D0FAA496A06693F348668D9045EE] - (.Agence Exclusive - Agence.) -- C:\Program Files (x86)\Agence Exclusive\Agence.exe [638976]
[MD5.F91F52F4EA5D88DAB6245682A16F3A72] - (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [36272]
[MD5.DB1DB28467111A24664933AB8908CBCE] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [952768]
[MD5.29680A793F690EEF4AAA68479D2A6DF8] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [209153]
[MD5.52DB6CDAC5BC7A1FC884E97C41C91213] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [248040]
[MD5.C7F8F961692040215B9464D4A86707BE] - (.SweetIM Technologies Ltd. - SweetIM Instant Messenger Enhancer.) -- C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe [111928]
[MD5.8F82F7C698FFEF3818CFDD280C488C1B] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [437584]
[MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408]
[MD5.AB3BF627C13A5703F59490FDD6E977FB] - (.Agence Exclusive - Spider Messenger.) -- C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.exe [2436792]
[MD5.896A1DB9A972AD2339C2E8569EC926D1] - (.Safer Networking Limited - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2144088]
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=userinit.exe
F2 - REG:system.ini: Shell=explorer.exe
---\\ Pages de recherche d'Internet Explorer (R1)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Aide à la navigation SFR - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} . (.SFR - Aide à la navigation SFR.) -- C:\Program Files (x86)\SFR\Kit\SFRNavErrorHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} . (.Pas de propriétaire - Pas de description.) -- (.not file.)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SpiderMessenger_BHO - {ADE49752-DBBC-43A3-9498-379A82F574BF} . (.Soft2PC - SpiderMessenger BHO.) -- C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.BHO.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} . (.Pas de propriétaire - Pas de description.) --
O3 - Toolbar: (no name) - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Pas de propriétaire - Pas de description.) --
---\\ Applications démarrées automatiquement par le registre (O4)
O4 - HKLM\..\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [SVPWUTIL] . (.TOSHIBA - SVPWUTIL Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe
O4 - HKLM\..\Run: [HWSetup] . (.TOSHIBA Electronics, Inc. - HWSetup.) -- C:\Program Files\TOSHIBA\Utilities\HWSetup.exe
O4 - HKLM\..\Run: [KeNotify] . (.TOSHIBA CORPORATION - KeNotify MFC Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe
O4 - HKLM\..\Run: [TWebCamera] . (.TOSHIBA CORPORATION. - Pas de description.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe
O4 - HKLM\..\Run: [Agence] . (.Agence Exclusive - Agence.) -- C:\Program Files (x86)\Agence Exclusive\Agence.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [SweetIM] . (.SweetIM Technologies Ltd. - SweetIM Instant Messenger Enhancer.) -- C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpiderMessenger] . (.Agence Exclusive - Spider Messenger.) -- C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~2\MICROS~2\Office12\REFBARH.ICO
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) - (.not file.)
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} () - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Pas de propriétaire - Pas de description.) -- "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r45.) -- C:\Windows\SysWow64\Macromed\Flash\Flash10e.ocx
---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM]
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Reader 9.3.2 - Français - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Agence 1.0 - (.Agence Exclusive.) [HKLM]
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Atlantis Quest - (.MyPlayCity, Inc..) [HKLM]
O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM]
O42 - Logiciel: Bel Atout 4.50 - (.Vincent Brévart.) [HKLM]
O42 - Logiciel: Big City Adventure(TM) - Vancouver - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Big Fish Games: Game Manager - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM]
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM]
O42 - Logiciel: Dr. Lynch: Grave Secrets - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: FAIRY TOWER 1.1.7 - (.LittleWing Pinball.) [HKLM]
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM]
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM]
O42 - Logiciel: Hidden Wonders of the Depths Deluxe - (.Zylom Games.) [HKCU]
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Java(TM) 6 Update 20 - (.Sun Microsystems, Inc..) [HKLM]
O42 - Logiciel: Jeux WildTangent - (.WildTangent.) [HKLM]
O42 - Logiciel: Jewels of Cleopatra - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM]
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM]
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM]
O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French) - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM]
O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Suite Activation Assistant - (.Microsoft Corporation.) [HKLM]
icrosoft Office System 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Mortimer Beckett and the Lost King Premium Edition - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM]
O42 - Logiciel: Poker Pop - (.Oberon Media.) [HKLM]
O42 - Logiciel: Realtek 8136 8168 8169 Ethernet Driver - (.Realtek.) [HKLM]
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM]
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM]
O42 - Logiciel: Realtek WLAN Driver - (.Realtek.) [HKLM]
O42 - Logiciel: SFR - Kit de connexion - (.SFR.) [HKLM]
O42 - Logiciel: Search Guard Plus (My Web Tattoo) - (.Make The Web Better, LLC.) [HKLM]
O42 - Logiciel: Search Guard Plus Updater (My Web Tattoo) - (.Make The Web Better, LLC.) [HKLM]
O42 - Logiciel: Secunia PSI - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM]
O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB978380) - (.Microsoft.) [HKLM]
O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB978382) - (.Microsoft.) [HKLM]
O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB957789) - (.Microsoft.) [HKLM]
O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM]
O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM]
O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB969613) - (.Microsoft.) [HKLM]
O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM]
O42 - Logiciel: Skype(TM) Launcher - (.Skype Technologies S.A..) [HKLM]
O42 - Logiciel: SpiderMessenger 1.0 - (.Soft2PC.) [HKLM]
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM]
O42 - Logiciel: SweetIM for Messenger 2.8 - (.SweetIM Technologies Ltd..) [HKLM]
O42 - Logiciel: TOSHIBA Bulletin Board - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA ConfigFree - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA DVD PLAYER - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA Extended Tiles for Windows Mobility Center - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: TOSHIBA Face Recognition - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA Flash Cards Support Utility - (.TOSHIBA CORPORATION.) [HKLM]
O42 - Logiciel: TOSHIBA HDD/SSD Alert - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA Hardware Setup - (.TOSHIBA CORPORATION.) [HKLM]
O42 - Logiciel: TOSHIBA Mot de passe responsable - (.TOSHIBA CORPORATION.) [HKLM]
O42 - Logiciel: TOSHIBA Recovery Media Creator Reminder - (.TOSHIBA.) [HKLM]
O42 - Logiciel: TOSHIBA ReelTime - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA Service Station - (.TOSHIBA.) [HKLM]
O42 - Logiciel: TOSHIBA Supervisor Password - (.TOSHIBA CORPORATION.) [HKLM]
O42 - Logiciel: TOSHIBA Value Added Package - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA Web Camera Application - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA eco Utility - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TRORMCLauncher - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: TV sur PC - (.SFR.) [HKLM]
O42 - Logiciel: The Cradle Bundle - (.Oberon Media.) [HKLM]
O42 - Logiciel: The Sultan's Labyrinth: Le Sacrifice de Bahar - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: The Treasures of Mystery Island Deluxe - (.Zylom Games.) [HKCU]
O42 - Logiciel: Toshiba Assist - (.TOSHIBA.) [HKLM]
O42 - Logiciel: Toshiba Manuals - (.TOSHIBA.) [HKLM]
O42 - Logiciel: Toshiba Online Product Information - (.TOSHIBA.) [HKLM]
O42 - Logiciel: Toshiba Photo Service - powered by myphotobook - (.myphotobook GmbH.) [HKLM]
O42 - Logiciel: Toshiba TEMPRO - (.Toshiba Europe GmbH.) [HKLM]
O42 - Logiciel: Uniblue RegistryBooster 2010 - (.Uniblue Systems Ltd.) [HKLM]
O42 - Logiciel: Update 1.2 - (.Agence Exclusive.) [HKLM]
O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM]
O42 - Logiciel: Update for 2007 Microsoft Office System (KB981715) - (.Microsoft.) [HKLM]
O42 - Logiciel: Update for Microsoft Office InfoPath 2007 (KB976416) - (.Microsoft.) [HKLM]
O42 - Logiciel: Update for Microsoft Office OneNote 2007 (KB980729) - (.Microsoft.) [HKLM]
O42 - Logiciel: Update for Microsoft Office Word 2007 (KB974561) - (.Microsoft.) [HKLM]
O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: WordBiz version 1.8 - (.Internet Scrabble Club.) [HKLM]
O42 - Logiciel: eBay - (.eBay Inc..) [HKLM]
O42 - Logiciel: eMule - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: iWin Games (remove only) - (.Pas de propriétaire.) [HKLM]
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ALWIL Software]
[HKCU\Software\ATI]
[HKCU\Software\Adobe]
[HKCU\Software\AgenceExclusive]
[HKCU\Software\AppDataLow]
[HKCU\Software\Artogon]
[HKCU\Software\Avira]
[HKCU\Software\Big Fish Games]
[HKCU\Software\Boonty]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\FindHiddenObjects.com]
[HKCU\Software\Future Pinball]
[HKCU\Software\GameHouse]
[HKCU\Software\GameXzone]
[HKCU\Software\GibbHill]
[HKCU\Software\Good games]
[HKCU\Software\Google]
[HKCU\Software\IM Providers]
[HKCU\Software\Iminent]
[HKCU\Software\JavaSoft]
[HKCU\Software\JollyBear]
[HKCU\Software\LittleWing]
[HKCU\Software\Macromedia]
[HKCU\Software\Macrovision]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Micro Application]
[HKCU\Software\Monitored]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Oberon Media]
[HKCU\Software\Ovogame]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\SCATLAWS]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\Secunia]
[HKCU\Software\Softonic]
[HKCU\Software\SpiderMessenger]
[HKCU\Software\SpinTop]
[HKCU\Software\SugarGames]
[HKCU\Software\Synaptics]
[HKCU\Software\TOSHIBA]
[HKCU\Software\Test3D]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\Wow6432Node]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\Yams_MANTALOTUS]
[HKCU\Software\Zylom]
[HKCU\Software\eMule]
[HKCU\Software\iWinArcade]
[HKCU\Software\settings]
[HKLM\Software\ALWIL Software]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\Adobe]
[HKLM\Software\AgenceExclusive]
[HKLM\Software\America Online]
[HKLM\Software\Anka]
[HKLM\Software\Avira]
[HKLM\Software\Big Fish Games]
[HKLM\Software\Boonty]
[HKLM\Software\COMPAL]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Conduit]
[HKLM\Software\Cyberlink]
[HKLM\Software\Digital River]
[HKLM\Software\DivXNetworks]
[HKLM\Software\GameInstaller]
[HKLM\Software\Google]
[HKLM\Software\Iminent]
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Licenses]
[HKLM\Software\Macromedia]
[HKLM\Software\McAfeeInstaller]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Neuf]
[HKLM\Software\ODBC]
[HKLM\Software\Oberon Media]
[HKLM\Software\OldTimer Tools]
[HKLM\Software\Policies]
[HKLM\Software\QATestSystem]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\ReflexiveArcade]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\RtWLan]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\Secunia]
[HKLM\Software\SiteAdvisor]
[HKLM\Software\SpinTop]
[HKLM\Software\SugarGames]
[HKLM\Software\TOSHIBA Corporation]
[HKLM\Software\TOSHIBA]
[HKLM\Software\TrendMicro]
[HKLM\Software\Uniblue]
[HKLM\Software\WildTangent]
[HKLM\Software\Windows]
[HKLM\Software\X-AVCSD]
---\\ Contenu des dossiers Fichiers Communs (O43)
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\1 Jeu par jour
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\3DYAMS_XP
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Agatha Christie - Death on the Nile
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Agence Exclusive
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ATI Technologies
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Atlantis Quest
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Avira
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\bfgclient
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Big City Adventure - Vancouver
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\BoontyGames
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\CCleaner
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Cradle of Rome
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Dr. Lynch - Grave Secrets
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\eBay
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\eMule
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Escape the Museum 2
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\G.H.O.S.T. Chronicles - Le Fantome de la Foire de la Renaissance
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\G.H.O.S.T. Hunters - The Haunting of Majesty Manor
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Google
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Hidden Expedition - Everest
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Iminent
O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Internet Explorer
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\iWin Games
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\iWin.com
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Java
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Jeux de cartes
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Jewels of Cleopatra
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\La Malediction du Pharaon - A la Recherche de Nefertiti
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\laetjr
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\LittleWing Pinball
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Micro Application
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Office
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Works
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft.NET
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Millennium Secrets - Emerald Curse
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MSBuild
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MyPlayCity.com
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Mystery Case Files - Retour a Ravenhearst
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Oberon Media
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Photo-Service
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\RealArcade
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Realtek
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Realtek WLAN Driver
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Reference Assemblies
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ReflexiveArcade
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Secunia
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\SFR
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\SpiderMessenger
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Spybot - Search & Destroy
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\SweetIM
O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\Temp
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\The Fall Trilogy - Chapter 1
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\The Sultan's Labyrinth - Le Sacrifice de Bahar
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\TOSHIBA
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\TOSHIBA Games
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Toshiba TEMPRO
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\trend micro
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Uniblue
O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\Uninstall Information
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Vampire Saga - La Boite de Pandore
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Defender
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Live
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Live SkyDrive
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Mail
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Media Player
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows NT
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Sidebar
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\WordBiz
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Yahoo! Jeux
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ZHPDiag
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\BOONTY Shared
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Java
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Oberon Media
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Services
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\System
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Toshiba Shared
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Wise Installation Wizard
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.9B48550CCFA021C24944576F0A66C229] - 29/04/2010 - 11:32:17 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [16080]
O44 - LFC:[MD5.9B48550CCFA021C24944576F0A66C229] - 29/04/2010 - 11:32:17 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [16080]
O44 - LFC:[MD5.00000000000000000000000000000000] - 29/04/2010 - 11:28:21 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\WindowsUpdate.log [1679858]
O44 - LFC:[MD5.84514EBAB7915F71D14AE4ADFF67764A] - 29/04/2010 - 11:24:49 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setupact.log [1736]
O44 - LFC:[MD5.D5FB9E5A25BCF0501007B74F83B0E582] - 29/04/2010 - 11:24:48 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.70A34A2031DE24039A959149B7B52A62] - 28/04/2010 - 13:44:34 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\PFRO.log [4380]
O44 - LFC:[MD5.B365A3FA489E9E19541AE449113CAFB0] - 26/04/2010 - 05:37:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\PerfStringBackup.INI [1524562]
O44 - LFC:[MD5.C6F145E3793460A56028E54B6A084431] - 26/04/2010 - 05:37:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc009.dat [103568]
O44 - LFC:[MD5.0D4607DA081946EDD91C2D0431E232BD] - 26/04/2010 - 05:37:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc00C.dat [127684]
O44 - LFC:[MD5.08CE9D1E38ABB5E24C9B53ABFE5D454F] - 26/04/2010 - 05:37:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh009.dat [607190]
O44 - LFC:[MD5.8062FB9A9A3B257B1DA8122828C5823E] - 26/04/2010 - 05:37:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh00C.dat [695004]
O44 - LFC:[MD5.ED9A1510381027C66143A643942FDCA2] - 23/04/2010 - 09:07:38 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\ZHPExportRegistry-23-04-2010-10-07-38.txt [478]
O44 - LFC:[MD5.B0C86C091A389113E24BE62988510EDC] - 23/04/2010 - 09:07:34 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\ZHPExportRegistry-23-04-2010-10-07-34.txt [15808]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 17/04/2010 - 23:04:42 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.E9D20980563A9202A965C8BF3F1FF176] - 17/04/2010 - 14:27:40 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\JavaRa.log [6253]
O44 - LFC:[MD5.3117D2C17B76A161A336AD29FDE041F7] - 09/04/2010 - 05:57:29 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\FNTCACHE.DAT [343872]
---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\SysWOW64\l3codeca.acm" . (.Pas de propriétaire - Pas de description.) -- (.not file.)
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll
O52 - TDSD: \drivers.desc\"C:\Windows\SysWOW64\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.)
---\\ Microsoft Windows Policies System (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
---\\ Microsoft Windows Policies Explorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\Policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\Policies\Explorer] - "NoActiveDesktopChanges"=0
O56 - MWPE:[HKLM\...\Policies\Explorer] - "ForceActiveDesktopOn"=0
---\\ Liste des Drivers Système (SDL) (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys
O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys
O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys
O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys
O58 - SDL:[MD5.7A4B413614C055935567CF88A9734D38] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys
O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys
O58 - SDL:[MD5.B4AD0CACBAB298671DD6F6EF7E20679D] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys
O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys
O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys
O58 - SDL:[MD5.E857EEE6B92AAA473EBB3465ADD8F7E7] - 20/06/2009 - 03:09:57 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\drivers\athrx.sys
O58 - SDL:[MD5.173F4C05F87085E9BDA3F7037BC9F40E] - 30/07/2009 - 11:07:12 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys
O58 - SDL:[MD5.7C5D273E29DCC5505469B299C6F29163] - 05/05/2009 - 23:30:28 ---A- . (.Advanced Micro Devices Inc. - AMD PCIE Filter Driver for ATI PCIE chipset.) -- C:\Windows\system32\drivers\AtiPcie.sys
O58 - SDL:[MD5.C30B5FC0ADCDFBA7668E99BAF0CBF58E] - 25/11/2009 - 10:19:02 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\system32\drivers\avgntflt.sys
O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys
O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys
O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys
O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys
O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys
O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys
O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys
O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys
O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys
O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys
O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys
O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys
O58 - SDL:[MD5.0886D440058F203EBA0E1825E4355914] - 14/07/2009 - 02:47:48 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys
O58 - SDL:[MD5.D83EFB6FD45DF9D55E9A1AFC63640D50] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys
O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys
O58 - SDL:[MD5.16679269303613C4CE7C8FF03413410F] - 02/07/2009 - 13:55:38 ---A- . (.COMPAL ELECTRONIC INC. - LPCFilter.) -- C:\Windows\system32\drivers\LPCFilter.sys
O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys
O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys
O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys
O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys
O58 - SDL:[MD5.4A46FA98DE81FF55A7CFC0C26262CB33] - 30/03/2010 - 23:45:56 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys
O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys
O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys
O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys
O58 - SDL:[MD5.3E38712941E9BB4DDBEE00AFFE3FED3D] - 14/07/2009 - 02:48:27 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys
O58 - SDL:[MD5.477DC4D6DEB99BE37084C9AC6D013DA1] - 14/07/2009 - 02:45:45 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys
O58 - SDL:[MD5.663962900E7FEA522126BA287715BB4A] - 22/06/2009 - 16:06:38 ---A- . (.TOSHIBA Corporation - TOSHIBA Universal Camera Filter Driver.) -- C:\Windows\system32\drivers\PGEffect.sys
O58 - SDL:[MD5.6328CFF4C812702412549B34CD08503D] - 17/06/2009 - 13:19:14 ---A- . (.Secunia - Secunia PSI Driver.) -- C:\Windows\system32\drivers\psi_mf.sys
O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys
O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys
O58 - SDL:[MD5.B49DC435AE3695BAC5623DD94B05732D] - 22/05/2009 - 21:52:30 ---A- . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver.) -- C:\Windows\system32\drivers\Rt64win7.sys
O58 - SDL:[MD5.0C3CF4B3BAE28E121A1689E3538F8712] - 28/07/2009 - 20:00:14 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHD64.sys
O58 - SDL:[MD5.A9EDE191B5478D18F0A1BFF3B822F7A5] - 26/08/2009 - 17:11:12 ---A- . (.Realtek Semiconductor Corporation - Realtek RTL81892SE NDIS Driverr.) -- C:\Windows\system32\drivers\rtl8192se.sys
O58 - SDL:[MD5.8C22F21C924413D4E109995F748E18BB] - 30/07/2009 - 16:46:22 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7.) -- C:\Windows\system32\drivers\RtsUStor.sys
O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys
O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys
O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Add to Google Photos Screensa&ver . (.Google Inc. - Google Photos Screensaver.) -- C:\Windows\system32\GPhotos.scr
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~2\MICROS~2\Office12\EXCEL.exe
O8 - Extra context menu item: Google Sidewiki... . (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Ajout Direct dans Windows Nicolas Coolman
Run by elisa at 29/04/2010 12:46:40
Web site : http://www.premiumorange.com/zeb-help-p ... pdiag.html
---\\ Web Browser
MSIE: Internet Explorer v8.0.7600.16385
---\\ System Information
Platform : Windows 7 Home Premium (6.1.7600)
Processor: AMD64 Family 16 Model 6 Stepping 2, AuthenticAMD
Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3838 MB (64% free)
System drive C: has 113 GB (76%) free of 149 GB
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 113 Go of 149 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 142 Go of 149 Go)
E:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK
---\\ Processus lancés
[MD5.8143723D21F4FA9B7AA295A29AE9541C] - (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304]
[MD5.E579644A3F6196BDD8D1B00EC12FC7E6] - (.TOSHIBA - SVPWUTIL Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe [352256]
[MD5.8107E3A186C034DDEB14718D71332714] - (.TOSHIBA Electronics, Inc. - HWSetup.) -- C:\Program Files\TOSHIBA\Utilities\HWSetup.exe [423936]
[MD5.C5B2679B0AE204FDD0415199B7AFEF20] - (.TOSHIBA CORPORATION - KeNotify MFC Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [34088]
[MD5.1079D6DA23EEE32E846BADEED77B4E9C] - (.TOSHIBA CORPORATION. - Pas de description.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2446648]
[MD5.9776D0FAA496A06693F348668D9045EE] - (.Agence Exclusive - Agence.) -- C:\Program Files (x86)\Agence Exclusive\Agence.exe [638976]
[MD5.F91F52F4EA5D88DAB6245682A16F3A72] - (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [36272]
[MD5.DB1DB28467111A24664933AB8908CBCE] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [952768]
[MD5.29680A793F690EEF4AAA68479D2A6DF8] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [209153]
[MD5.52DB6CDAC5BC7A1FC884E97C41C91213] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [248040]
[MD5.C7F8F961692040215B9464D4A86707BE] - (.SweetIM Technologies Ltd. - SweetIM Instant Messenger Enhancer.) -- C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe [111928]
[MD5.8F82F7C698FFEF3818CFDD280C488C1B] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [437584]
[MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408]
[MD5.AB3BF627C13A5703F59490FDD6E977FB] - (.Agence Exclusive - Spider Messenger.) -- C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.exe [2436792]
[MD5.896A1DB9A972AD2339C2E8569EC926D1] - (.Safer Networking Limited - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2144088]
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=userinit.exe
F2 - REG:system.ini: Shell=explorer.exe
---\\ Pages de recherche d'Internet Explorer (R1)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Aide à la navigation SFR - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} . (.SFR - Aide à la navigation SFR.) -- C:\Program Files (x86)\SFR\Kit\SFRNavErrorHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} . (.Pas de propriétaire - Pas de description.) -- (.not file.)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SpiderMessenger_BHO - {ADE49752-DBBC-43A3-9498-379A82F574BF} . (.Soft2PC - SpiderMessenger BHO.) -- C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.BHO.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} . (.Pas de propriétaire - Pas de description.) --
O3 - Toolbar: (no name) - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Pas de propriétaire - Pas de description.) --
---\\ Applications démarrées automatiquement par le registre (O4)
O4 - HKLM\..\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [SVPWUTIL] . (.TOSHIBA - SVPWUTIL Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe
O4 - HKLM\..\Run: [HWSetup] . (.TOSHIBA Electronics, Inc. - HWSetup.) -- C:\Program Files\TOSHIBA\Utilities\HWSetup.exe
O4 - HKLM\..\Run: [KeNotify] . (.TOSHIBA CORPORATION - KeNotify MFC Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe
O4 - HKLM\..\Run: [TWebCamera] . (.TOSHIBA CORPORATION. - Pas de description.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe
O4 - HKLM\..\Run: [Agence] . (.Agence Exclusive - Agence.) -- C:\Program Files (x86)\Agence Exclusive\Agence.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [SweetIM] . (.SweetIM Technologies Ltd. - SweetIM Instant Messenger Enhancer.) -- C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpiderMessenger] . (.Agence Exclusive - Spider Messenger.) -- C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~2\MICROS~2\Office12\REFBARH.ICO
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) - (.not file.)
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} () - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Pas de propriétaire - Pas de description.) -- "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r45.) -- C:\Windows\SysWow64\Macromed\Flash\Flash10e.ocx
---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM]
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Reader 9.3.2 - Français - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Agence 1.0 - (.Agence Exclusive.) [HKLM]
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Atlantis Quest - (.MyPlayCity, Inc..) [HKLM]
O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM]
O42 - Logiciel: Bel Atout 4.50 - (.Vincent Brévart.) [HKLM]
O42 - Logiciel: Big City Adventure(TM) - Vancouver - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Big Fish Games: Game Manager - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM]
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM]
O42 - Logiciel: Dr. Lynch: Grave Secrets - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: FAIRY TOWER 1.1.7 - (.LittleWing Pinball.) [HKLM]
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM]
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM]
O42 - Logiciel: Hidden Wonders of the Depths Deluxe - (.Zylom Games.) [HKCU]
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Java(TM) 6 Update 20 - (.Sun Microsystems, Inc..) [HKLM]
O42 - Logiciel: Jeux WildTangent - (.WildTangent.) [HKLM]
O42 - Logiciel: Jewels of Cleopatra - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM]
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM]
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM]
O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French) - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM]
O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Suite Activation Assistant - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Millennium Secrets: Emerald Curse - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Module de compatibilité pour M\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Add to Google Photos Screensa&ver . (.Google Inc. - Google Photos Screensaver.) -- C:\Windows\system32\GPhotos.scr
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~2\MICROS~2\Office12\EXCEL.exe
O8 - Extra context menu item: Google Sidewiki... . (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Ajout Direct dans Windows Nicolas Coolman
Run by elisa at 29/04/2010 12:46:40
Web site : http://www.premiumorange.com/zeb-help-p ... pdiag.html
---\\ Web Browser
MSIE: Internet Explorer v8.0.7600.16385
---\\ System Information
Platform : Windows 7 Home Premium (6.1.7600)
Processor: AMD64 Family 16 Model 6 Stepping 2, AuthenticAMD
Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3838 MB (64% free)
System drive C: has 113 GB (76%) free of 149 GB
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 113 Go of 149 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 142 Go of 149 Go)
E:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK
---\\ Processus lancés
[MD5.8143723D21F4FA9B7AA295A29AE9541C] - (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304]
[MD5.E579644A3F6196BDD8D1B00EC12FC7E6] - (.TOSHIBA - SVPWUTIL Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe [352256]
[MD5.8107E3A186C034DDEB14718D71332714] - (.TOSHIBA Electronics, Inc. - HWSetup.) -- C:\Program Files\TOSHIBA\Utilities\HWSetup.exe [423936]
[MD5.C5B2679B0AE204FDD0415199B7AFEF20] - (.TOSHIBA CORPORATION - KeNotify MFC Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [34088]
[MD5.1079D6DA23EEE32E846BADEED77B4E9C] - (.TOSHIBA CORPORATION. - Pas de description.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2446648]
[MD5.9776D0FAA496A06693F348668D9045EE] - (.Agence Exclusive - Agence.) -- C:\Program Files (x86)\Agence Exclusive\Agence.exe [638976]
[MD5.F91F52F4EA5D88DAB6245682A16F3A72] - (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [36272]
[MD5.DB1DB28467111A24664933AB8908CBCE] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [952768]
[MD5.29680A793F690EEF4AAA68479D2A6DF8] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [209153]
[MD5.52DB6CDAC5BC7A1FC884E97C41C91213] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [248040]
[MD5.C7F8F961692040215B9464D4A86707BE] - (.SweetIM Technologies Ltd. - SweetIM Instant Messenger Enhancer.) -- C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe [111928]
[MD5.8F82F7C698FFEF3818CFDD280C488C1B] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [437584]
[MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408]
[MD5.AB3BF627C13A5703F59490FDD6E977FB] - (.Agence Exclusive - Spider Messenger.) -- C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.exe [2436792]
[MD5.896A1DB9A972AD2339C2E8569EC926D1] - (.Safer Networking Limited - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2144088]
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=userinit.exe
F2 - REG:system.ini: Shell=explorer.exe
---\\ Pages de recherche d'Internet Explorer (R1)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Aide à la navigation SFR - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} . (.SFR - Aide à la navigation SFR.) -- C:\Program Files (x86)\SFR\Kit\SFRNavErrorHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} . (.Pas de propriétaire - Pas de description.) -- (.not file.)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SpiderMessenger_BHO - {ADE49752-DBBC-43A3-9498-379A82F574BF} . (.Soft2PC - SpiderMessenger BHO.) -- C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.BHO.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} . (.Pas de propriétaire - Pas de description.) --
O3 - Toolbar: (no name) - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Pas de propriétaire - Pas de description.) --
---\\ Applications démarrées automatiquement par le registre (O4)
O4 - HKLM\..\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [SVPWUTIL] . (.TOSHIBA - SVPWUTIL Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe
O4 - HKLM\..\Run: [HWSetup] . (.TOSHIBA Electronics, Inc. - HWSetup.) -- C:\Program Files\TOSHIBA\Utilities\HWSetup.exe
O4 - HKLM\..\Run: [KeNotify] . (.TOSHIBA CORPORATION - KeNotify MFC Application.) -- C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe
O4 - HKLM\..\Run: [TWebCamera] . (.TOSHIBA CORPORATION. - Pas de description.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe
O4 - HKLM\..\Run: [Agence] . (.Agence Exclusive - Agence.) -- C:\Program Files (x86)\Agence Exclusive\Agence.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [SweetIM] . (.SweetIM Technologies Ltd. - SweetIM Instant Messenger Enhancer.) -- C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpiderMessenger] . (.Agence Exclusive - Spider Messenger.) -- C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~2\MICROS~2\Office12\REFBARH.ICO
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) - (.not file.)
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} () - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Pas de propriétaire - Pas de description.) -- "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r45.) -- C:\Windows\SysWow64\Macromed\Flash\Flash10e.ocx
---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM]
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Adobe Reader 9.3.2 - Français - (.Adobe Systems Incorporated.) [HKLM]
O42 - Logiciel: Agence 1.0 - (.Agence Exclusive.) [HKLM]
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Atlantis Quest - (.MyPlayCity, Inc..) [HKLM]
O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM]
O42 - Logiciel: Bel Atout 4.50 - (.Vincent Brévart.) [HKLM]
O42 - Logiciel: Big City Adventure(TM) - Vancouver - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Big Fish Games: Game Manager - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM]
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM]
O42 - Logiciel: Dr. Lynch: Grave Secrets - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: FAIRY TOWER 1.1.7 - (.LittleWing Pinball.) [HKLM]
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM]
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM]
O42 - Logiciel: Hidden Wonders of the Depths Deluxe - (.Zylom Games.) [HKCU]
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Java(TM) 6 Update 20 - (.Sun Microsystems, Inc..) [HKLM]
O42 - Logiciel: Jeux WildTangent - (.WildTangent.) [HKLM]
O42 - Logiciel: Jewels of Cleopatra - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM]
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM]
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM]
O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French) - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM]
O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Microsoft Office Suite Activation Assistant - (.Microsoft Corporation.) [HKLM]
icrosoft Office System 2007 - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Mortimer Beckett and the Lost King Premium Edition - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM]
O42 - Logiciel: Poker Pop - (.Oberon Media.) [HKLM]
O42 - Logiciel: Realtek 8136 8168 8169 Ethernet Driver - (.Realtek.) [HKLM]
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM]
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM]
O42 - Logiciel: Realtek WLAN Driver - (.Realtek.) [HKLM]
O42 - Logiciel: SFR - Kit de connexion - (.SFR.) [HKLM]
O42 - Logiciel: Search Guard Plus (My Web Tattoo) - (.Make The Web Better, LLC.) [HKLM]
O42 - Logiciel: Search Guard Plus Updater (My Web Tattoo) - (.Make The Web Better, LLC.) [HKLM]
O42 - Logiciel: Secunia PSI - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM]
O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB978380) - (.Microsoft.) [HKLM]
O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB978382) - (.Microsoft.) [HKLM]
O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB957789) - (.Microsoft.) [HKLM]
O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM]
O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM]
O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB969613) - (.Microsoft.) [HKLM]
O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM]
O42 - Logiciel: Skype(TM) Launcher - (.Skype Technologies S.A..) [HKLM]
O42 - Logiciel: SpiderMessenger 1.0 - (.Soft2PC.) [HKLM]
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM]
O42 - Logiciel: SweetIM for Messenger 2.8 - (.SweetIM Technologies Ltd..) [HKLM]
O42 - Logiciel: TOSHIBA Bulletin Board - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA ConfigFree - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA DVD PLAYER - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA Extended Tiles for Windows Mobility Center - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: TOSHIBA Face Recognition - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA Flash Cards Support Utility - (.TOSHIBA CORPORATION.) [HKLM]
O42 - Logiciel: TOSHIBA HDD/SSD Alert - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA Hardware Setup - (.TOSHIBA CORPORATION.) [HKLM]
O42 - Logiciel: TOSHIBA Mot de passe responsable - (.TOSHIBA CORPORATION.) [HKLM]
O42 - Logiciel: TOSHIBA Recovery Media Creator Reminder - (.TOSHIBA.) [HKLM]
O42 - Logiciel: TOSHIBA ReelTime - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA Service Station - (.TOSHIBA.) [HKLM]
O42 - Logiciel: TOSHIBA Supervisor Password - (.TOSHIBA CORPORATION.) [HKLM]
O42 - Logiciel: TOSHIBA Value Added Package - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA Web Camera Application - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TOSHIBA eco Utility - (.TOSHIBA Corporation.) [HKLM]
O42 - Logiciel: TRORMCLauncher - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: TV sur PC - (.SFR.) [HKLM]
O42 - Logiciel: The Cradle Bundle - (.Oberon Media.) [HKLM]
O42 - Logiciel: The Sultan's Labyrinth: Le Sacrifice de Bahar - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: The Treasures of Mystery Island Deluxe - (.Zylom Games.) [HKCU]
O42 - Logiciel: Toshiba Assist - (.TOSHIBA.) [HKLM]
O42 - Logiciel: Toshiba Manuals - (.TOSHIBA.) [HKLM]
O42 - Logiciel: Toshiba Online Product Information - (.TOSHIBA.) [HKLM]
O42 - Logiciel: Toshiba Photo Service - powered by myphotobook - (.myphotobook GmbH.) [HKLM]
O42 - Logiciel: Toshiba TEMPRO - (.Toshiba Europe GmbH.) [HKLM]
O42 - Logiciel: Uniblue RegistryBooster 2010 - (.Uniblue Systems Ltd.) [HKLM]
O42 - Logiciel: Update 1.2 - (.Agence Exclusive.) [HKLM]
O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM]
O42 - Logiciel: Update for 2007 Microsoft Office System (KB981715) - (.Microsoft.) [HKLM]
O42 - Logiciel: Update for Microsoft Office InfoPath 2007 (KB976416) - (.Microsoft.) [HKLM]
O42 - Logiciel: Update for Microsoft Office OneNote 2007 (KB980729) - (.Microsoft.) [HKLM]
O42 - Logiciel: Update for Microsoft Office Word 2007 (KB974561) - (.Microsoft.) [HKLM]
O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM]
O42 - Logiciel: WordBiz version 1.8 - (.Internet Scrabble Club.) [HKLM]
O42 - Logiciel: eBay - (.eBay Inc..) [HKLM]
O42 - Logiciel: eMule - (.Pas de propriétaire.) [HKLM]
O42 - Logiciel: iWin Games (remove only) - (.Pas de propriétaire.) [HKLM]
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ALWIL Software]
[HKCU\Software\ATI]
[HKCU\Software\Adobe]
[HKCU\Software\AgenceExclusive]
[HKCU\Software\AppDataLow]
[HKCU\Software\Artogon]
[HKCU\Software\Avira]
[HKCU\Software\Big Fish Games]
[HKCU\Software\Boonty]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\FindHiddenObjects.com]
[HKCU\Software\Future Pinball]
[HKCU\Software\GameHouse]
[HKCU\Software\GameXzone]
[HKCU\Software\GibbHill]
[HKCU\Software\Good games]
[HKCU\Software\Google]
[HKCU\Software\IM Providers]
[HKCU\Software\Iminent]
[HKCU\Software\JavaSoft]
[HKCU\Software\JollyBear]
[HKCU\Software\LittleWing]
[HKCU\Software\Macromedia]
[HKCU\Software\Macrovision]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Micro Application]
[HKCU\Software\Monitored]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Oberon Media]
[HKCU\Software\Ovogame]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\SCATLAWS]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\Secunia]
[HKCU\Software\Softonic]
[HKCU\Software\SpiderMessenger]
[HKCU\Software\SpinTop]
[HKCU\Software\SugarGames]
[HKCU\Software\Synaptics]
[HKCU\Software\TOSHIBA]
[HKCU\Software\Test3D]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\Wow6432Node]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\Yams_MANTALOTUS]
[HKCU\Software\Zylom]
[HKCU\Software\eMule]
[HKCU\Software\iWinArcade]
[HKCU\Software\settings]
[HKLM\Software\ALWIL Software]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\Adobe]
[HKLM\Software\AgenceExclusive]
[HKLM\Software\America Online]
[HKLM\Software\Anka]
[HKLM\Software\Avira]
[HKLM\Software\Big Fish Games]
[HKLM\Software\Boonty]
[HKLM\Software\COMPAL]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Conduit]
[HKLM\Software\Cyberlink]
[HKLM\Software\Digital River]
[HKLM\Software\DivXNetworks]
[HKLM\Software\GameInstaller]
[HKLM\Software\Google]
[HKLM\Software\Iminent]
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Licenses]
[HKLM\Software\Macromedia]
[HKLM\Software\McAfeeInstaller]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Neuf]
[HKLM\Software\ODBC]
[HKLM\Software\Oberon Media]
[HKLM\Software\OldTimer Tools]
[HKLM\Software\Policies]
[HKLM\Software\QATestSystem]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\ReflexiveArcade]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\RtWLan]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\Secunia]
[HKLM\Software\SiteAdvisor]
[HKLM\Software\SpinTop]
[HKLM\Software\SugarGames]
[HKLM\Software\TOSHIBA Corporation]
[HKLM\Software\TOSHIBA]
[HKLM\Software\TrendMicro]
[HKLM\Software\Uniblue]
[HKLM\Software\WildTangent]
[HKLM\Software\Windows]
[HKLM\Software\X-AVCSD]
---\\ Contenu des dossiers Fichiers Communs (O43)
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\1 Jeu par jour
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\3DYAMS_XP
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Agatha Christie - Death on the Nile
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Agence Exclusive
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ATI Technologies
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Atlantis Quest
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Avira
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\bfgclient
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Big City Adventure - Vancouver
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\BoontyGames
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\CCleaner
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Cradle of Rome
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Dr. Lynch - Grave Secrets
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\eBay
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\eMule
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Escape the Museum 2
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\G.H.O.S.T. Chronicles - Le Fantome de la Foire de la Renaissance
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\G.H.O.S.T. Hunters - The Haunting of Majesty Manor
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Google
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Hidden Expedition - Everest
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Iminent
O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Internet Explorer
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\iWin Games
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\iWin.com
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Java
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Jeux de cartes
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Jewels of Cleopatra
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\La Malediction du Pharaon - A la Recherche de Nefertiti
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\laetjr
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\LittleWing Pinball
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Micro Application
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Office
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Works
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft.NET
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Millennium Secrets - Emerald Curse
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MSBuild
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MyPlayCity.com
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Mystery Case Files - Retour a Ravenhearst
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Oberon Media
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Photo-Service
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\RealArcade
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Realtek
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Realtek WLAN Driver
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Reference Assemblies
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ReflexiveArcade
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Secunia
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\SFR
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\SpiderMessenger
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Spybot - Search & Destroy
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\SweetIM
O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\Temp
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\The Fall Trilogy - Chapter 1
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\The Sultan's Labyrinth - Le Sacrifice de Bahar
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\TOSHIBA
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\TOSHIBA Games
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Toshiba TEMPRO
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\trend micro
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Uniblue
O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\Uninstall Information
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Vampire Saga - La Boite de Pandore
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Defender
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Live
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Live SkyDrive
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Mail
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Media Player
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows NT
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Sidebar
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\WordBiz
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Yahoo! Jeux
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ZHPDiag
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\BOONTY Shared
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Java
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Oberon Media
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Services
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\System
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Toshiba Shared
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Wise Installation Wizard
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.9B48550CCFA021C24944576F0A66C229] - 29/04/2010 - 11:32:17 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [16080]
O44 - LFC:[MD5.9B48550CCFA021C24944576F0A66C229] - 29/04/2010 - 11:32:17 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [16080]
O44 - LFC:[MD5.00000000000000000000000000000000] - 29/04/2010 - 11:28:21 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\WindowsUpdate.log [1679858]
O44 - LFC:[MD5.84514EBAB7915F71D14AE4ADFF67764A] - 29/04/2010 - 11:24:49 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setupact.log [1736]
O44 - LFC:[MD5.D5FB9E5A25BCF0501007B74F83B0E582] - 29/04/2010 - 11:24:48 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.70A34A2031DE24039A959149B7B52A62] - 28/04/2010 - 13:44:34 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\PFRO.log [4380]
O44 - LFC:[MD5.B365A3FA489E9E19541AE449113CAFB0] - 26/04/2010 - 05:37:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\PerfStringBackup.INI [1524562]
O44 - LFC:[MD5.C6F145E3793460A56028E54B6A084431] - 26/04/2010 - 05:37:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc009.dat [103568]
O44 - LFC:[MD5.0D4607DA081946EDD91C2D0431E232BD] - 26/04/2010 - 05:37:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc00C.dat [127684]
O44 - LFC:[MD5.08CE9D1E38ABB5E24C9B53ABFE5D454F] - 26/04/2010 - 05:37:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh009.dat [607190]
O44 - LFC:[MD5.8062FB9A9A3B257B1DA8122828C5823E] - 26/04/2010 - 05:37:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh00C.dat [695004]
O44 - LFC:[MD5.ED9A1510381027C66143A643942FDCA2] - 23/04/2010 - 09:07:38 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\ZHPExportRegistry-23-04-2010-10-07-38.txt [478]
O44 - LFC:[MD5.B0C86C091A389113E24BE62988510EDC] - 23/04/2010 - 09:07:34 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\ZHPExportRegistry-23-04-2010-10-07-34.txt [15808]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 17/04/2010 - 23:04:42 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.E9D20980563A9202A965C8BF3F1FF176] - 17/04/2010 - 14:27:40 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\JavaRa.log [6253]
O44 - LFC:[MD5.3117D2C17B76A161A336AD29FDE041F7] - 09/04/2010 - 05:57:29 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\FNTCACHE.DAT [343872]
---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\SysWOW64\l3codeca.acm" . (.Pas de propriétaire - Pas de description.) -- (.not file.)
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll
O52 - TDSD: \drivers.desc\"C:\Windows\SysWOW64\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.)
---\\ Microsoft Windows Policies System (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
---\\ Microsoft Windows Policies Explorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\Policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\Policies\Explorer] - "NoActiveDesktopChanges"=0
O56 - MWPE:[HKLM\...\Policies\Explorer] - "ForceActiveDesktopOn"=0
---\\ Liste des Drivers Système (SDL) (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys
O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys
O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys
O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys
O58 - SDL:[MD5.7A4B413614C055935567CF88A9734D38] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys
O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys
O58 - SDL:[MD5.B4AD0CACBAB298671DD6F6EF7E20679D] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys
O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys
O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys
O58 - SDL:[MD5.E857EEE6B92AAA473EBB3465ADD8F7E7] - 20/06/2009 - 03:09:57 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\drivers\athrx.sys
O58 - SDL:[MD5.173F4C05F87085E9BDA3F7037BC9F40E] - 30/07/2009 - 11:07:12 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys
O58 - SDL:[MD5.7C5D273E29DCC5505469B299C6F29163] - 05/05/2009 - 23:30:28 ---A- . (.Advanced Micro Devices Inc. - AMD PCIE Filter Driver for ATI PCIE chipset.) -- C:\Windows\system32\drivers\AtiPcie.sys
O58 - SDL:[MD5.C30B5FC0ADCDFBA7668E99BAF0CBF58E] - 25/11/2009 - 10:19:02 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\system32\drivers\avgntflt.sys
O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys
O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys
O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys
O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys
O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys
O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys
O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys
O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys
O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys
O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys
O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys
O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys
O58 - SDL:[MD5.0886D440058F203EBA0E1825E4355914] - 14/07/2009 - 02:47:48 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys
O58 - SDL:[MD5.D83EFB6FD45DF9D55E9A1AFC63640D50] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys
O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys
O58 - SDL:[MD5.16679269303613C4CE7C8FF03413410F] - 02/07/2009 - 13:55:38 ---A- . (.COMPAL ELECTRONIC INC. - LPCFilter.) -- C:\Windows\system32\drivers\LPCFilter.sys
O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys
O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys
O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys
O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys
O58 - SDL:[MD5.4A46FA98DE81FF55A7CFC0C26262CB33] - 30/03/2010 - 23:45:56 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys
O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys
O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys
O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys
O58 - SDL:[MD5.3E38712941E9BB4DDBEE00AFFE3FED3D] - 14/07/2009 - 02:48:27 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys
O58 - SDL:[MD5.477DC4D6DEB99BE37084C9AC6D013DA1] - 14/07/2009 - 02:45:45 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys
O58 - SDL:[MD5.663962900E7FEA522126BA287715BB4A] - 22/06/2009 - 16:06:38 ---A- . (.TOSHIBA Corporation - TOSHIBA Universal Camera Filter Driver.) -- C:\Windows\system32\drivers\PGEffect.sys
O58 - SDL:[MD5.6328CFF4C812702412549B34CD08503D] - 17/06/2009 - 13:19:14 ---A- . (.Secunia - Secunia PSI Driver.) -- C:\Windows\system32\drivers\psi_mf.sys
O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys
O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys
O58 - SDL:[MD5.B49DC435AE3695BAC5623DD94B05732D] - 22/05/2009 - 21:52:30 ---A- . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver.) -- C:\Windows\system32\drivers\Rt64win7.sys
O58 - SDL:[MD5.0C3CF4B3BAE28E121A1689E3538F8712] - 28/07/2009 - 20:00:14 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHD64.sys
O58 - SDL:[MD5.A9EDE191B5478D18F0A1BFF3B822F7A5] - 26/08/2009 - 17:11:12 ---A- . (.Realtek Semiconductor Corporation - Realtek RTL81892SE NDIS Driverr.) -- C:\Windows\system32\drivers\rtl8192se.sys
O58 - SDL:[MD5.8C22F21C924413D4E109995F748E18BB] - 30/07/2009 - 16:46:22 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7.) -- C:\Windows\system32\drivers\RtsUStor.sys
O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys
O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys
O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys
- vieillechouette
- Libellulien Junior
- Messages: 224
- Inscription: 21 Avr 2010 12:57
- Localisation: Manche (50)
Re: Comment supprimer Lost de mon PC?
par vieillechouette » 29 Avr 2010 12:05
Florinator tu n'as pas le rapport entièrement il y avait trop de caractère aussi j'ai dû supprimer la fin et je ne sais pas comment faire pour t'envoyer la suite (que la fin)??? 
- vieillechouette
- Libellulien Junior
- Messages: 224
- Inscription: 21 Avr 2010 12:57
- Localisation: Manche (50)
Re: Comment supprimer Lost de mon PC?
par Florinator » 29 Avr 2010 15:12
Bonjour,
Tu as encore, cette fois ci une autre, une variante issue de "Agence exclusive", je t'assure ne télécharge plus rien via ce sîte, il est pourrit!Supprimes tout ce que tu as pû télécharger sur leur sîte.
1)
O4 - HKCU\..\Run: [SpiderMessenger] . (.Agence Exclusive - Spider Messenger.) -- C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.exe
[MD5.AB3BF627C13A5703F59490FDD6E977FB] - (.Agence Exclusive - Spider Messenger.) -- C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.exe [2436792]
O3 - Toolbar: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} . (.Pas de propriétaire - Pas de description.) --
O3 - Toolbar: (no name) - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Pas de propriétaire - Pas de description.) --
[HKCU\Software\AgenceExclusive]
[HKLM\Software\AgenceExclusive]
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Agence Exclusive
Remarque:Le rapport se situe aussi sous C:\Program Files\ZebHelpProcess\ZHPFixReport.txt
2)
Mets à jour MBAM, et scanne ton pc,
Poste moi le rapport stp.
A++
Tu as encore, cette fois ci une autre, une variante issue de "Agence exclusive", je t'assure ne télécharge plus rien via ce sîte, il est pourrit!Supprimes tout ce que tu as pû télécharger sur leur sîte.
1)
- Copie ces lignes ci dessous:
O4 - HKCU\..\Run: [SpiderMessenger] . (.Agence Exclusive - Spider Messenger.) -- C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.exe
[MD5.AB3BF627C13A5703F59490FDD6E977FB] - (.Agence Exclusive - Spider Messenger.) -- C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.exe [2436792]
O3 - Toolbar: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} . (.Pas de propriétaire - Pas de description.) --
O3 - Toolbar: (no name) - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Pas de propriétaire - Pas de description.) --
[HKCU\Software\AgenceExclusive]
[HKLM\Software\AgenceExclusive]
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Agence Exclusive
- Ouvre ZHPDiag, puis clique sur l'icône
Si l'icône n'apparait pas, relance un scan avec ZHPDiag, à la fin du scan elle apparaitra - Clique successivement sur l'icône
,pour effacer le rapport qui s'est affiché - Clique ensuite sur
pour coller la sélection - Vérifie que toutes les lignes que je t'ai demandé de copier (et seulement elles) sont dans la fenêtre
- Clique sur "OK", ce qui fait apparaître un carré à gauche de chaque ligne.
- Clique sur "Tous" puis sur "Nettoyer".
Si on te demande de redémarrer l'ordi pour achever le nettoyage, fais le immmédiatement. - Copie/colle le rapport dans ton prochain post.
Remarque:Le rapport se situe aussi sous C:\Program Files\ZebHelpProcess\ZHPFixReport.txt
2)
Mets à jour MBAM, et scanne ton pc,
Poste moi le rapport stp.
A++
Le savoir n'est utile que si il est transmis.
-
Florinator - Maître Libellulien
- Messages: 661
- Inscription: 28 Déc 2009 16:19
Re: Comment supprimer Lost de mon PC?
par vieillechouette » 29 Avr 2010 15:49
bonsoir Florinator je ne vais jamais sur ce site, je ne le connais même pas? Je ne sais pas quoi supprimer j'ai juste le jeu SPIDER qui était déjà sur mon PC? Je fais ce que tu me dis de faire . Merci à+++
- vieillechouette
- Libellulien Junior
- Messages: 224
- Inscription: 21 Avr 2010 12:57
- Localisation: Manche (50)
Re: Comment supprimer Lost de mon PC?
par vieillechouette » 29 Avr 2010 16:04
Ca me marque : Impossible de créer le fichier : C\programFiles (x86)ZHDiag\ZHPFix Quarantine.txt". Accés refusé. Désolée. A+++
- vieillechouette
- Libellulien Junior
- Messages: 224
- Inscription: 21 Avr 2010 12:57
- Localisation: Manche (50)
Re: Comment supprimer Lost de mon PC?
par Florinator » 29 Avr 2010 16:21
Fais un clique droit sur ZHP pour le lancer et "éxécuter" en administrateur.
A++
A++
Le savoir n'est utile que si il est transmis.
-
Florinator - Maître Libellulien
- Messages: 661
- Inscription: 28 Déc 2009 16:19
Re: Comment supprimer Lost de mon PC?
par vieillechouette » 29 Avr 2010 16:21
Je suis allée dans le panneau de configuration et j'ai trouvé Agence Exclusive est ce que je peux le supprimer? Je ne vois pas du tout pourquoi j'ai ce fichier je ne suis jamais allée sur ce site? Merci à+++
- vieillechouette
- Libellulien Junior
- Messages: 224
- Inscription: 21 Avr 2010 12:57
- Localisation: Manche (50)
Re: Comment supprimer Lost de mon PC?
par Florinator » 29 Avr 2010 16:22
ZHP va le supprimer, si tu le vois encore aprés le scan, tu peux le supprimer manuellement.
A++
A++
Le savoir n'est utile que si il est transmis.
-
Florinator - Maître Libellulien
- Messages: 661
- Inscription: 28 Déc 2009 16:19
Re: Comment supprimer Lost de mon PC?
par vieillechouette » 29 Avr 2010 17:35
ZHPFix v1.12.3091 by Nicolas Coolman - Rapport de suppression du 29/04/2010 18:28:34
Fichier Registre :
Web site : http://www.premiumorange.com/zeb-help-p ... hpfix.html
Processus mémoire :
C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.exe [2436792] => Fichier supprimé au reboot
Module mémoire :
(Néant)
Clé du Registre :
HKCU\Software\AgenceExclusive => Clé supprimée avec succès
HKLM\Software\AgenceExclusive => Clé supprimée avec succès
Valeur du Registre :
O4 - HKCU\..\Run: [SpiderMessenger] . (.Agence Exclusive - Spider Messenger.) -- C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.exe => Valeur supprimée avec succès
O3 - Toolbar: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} . (.Pas de propriétaire - Pas de description.) -- => Valeur supprimée avec succès
O3 - Toolbar: (no name) - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Pas de propriétaire - Pas de description.) -- => Valeur supprimée avec succès
Elément de données du Registre :
(Néant)
Dossier :
C:\Program Files (x86)\Agence Exclusive => Fichier supprimé au reboot
Fichier :
c:\program files (x86)\spidermessenger\spidermessenger.exe => Fichier supprimé au reboot
Logiciel :
(Néant)
Script Registre :
(Néant)
Autre :
(Néant)
Récapitulatif :
Processus mémoire : 1
Module mémoire : 0
Clé du Registre : 2
Valeur du Registre : 3
Elément de données du Registre : 0
Dossier : 1
Fichier : 1
Logiciel : 0
Autre : 0
End of the scan
Fichier Registre :
Web site : http://www.premiumorange.com/zeb-help-p ... hpfix.html
Processus mémoire :
C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.exe [2436792] => Fichier supprimé au reboot
Module mémoire :
(Néant)
Clé du Registre :
HKCU\Software\AgenceExclusive => Clé supprimée avec succès
HKLM\Software\AgenceExclusive => Clé supprimée avec succès
Valeur du Registre :
O4 - HKCU\..\Run: [SpiderMessenger] . (.Agence Exclusive - Spider Messenger.) -- C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.exe => Valeur supprimée avec succès
O3 - Toolbar: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} . (.Pas de propriétaire - Pas de description.) -- => Valeur supprimée avec succès
O3 - Toolbar: (no name) - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Pas de propriétaire - Pas de description.) -- => Valeur supprimée avec succès
Elément de données du Registre :
(Néant)
Dossier :
C:\Program Files (x86)\Agence Exclusive => Fichier supprimé au reboot
Fichier :
c:\program files (x86)\spidermessenger\spidermessenger.exe => Fichier supprimé au reboot
Logiciel :
(Néant)
Script Registre :
(Néant)
Autre :
(Néant)
Récapitulatif :
Processus mémoire : 1
Module mémoire : 0
Clé du Registre : 2
Valeur du Registre : 3
Elément de données du Registre : 0
Dossier : 1
Fichier : 1
Logiciel : 0
Autre : 0
End of the scan
- vieillechouette
- Libellulien Junior
- Messages: 224
- Inscription: 21 Avr 2010 12:57
- Localisation: Manche (50)
Re: Comment supprimer Lost de mon PC?
par vieillechouette » 29 Avr 2010 18:30
Malwarebytes' Anti-Malware 1.45
www.malwarebytes.org
Version de la base de données: 4052
Windows 6.1.7600
Internet Explorer 8.0.7600.16385
29/04/2010 19:22:37
mbam-log-2010-04-29 (19-22-37).txt
Type d'examen: Examen complet (C:\|D:\|)
Elément(s) analysé(s): 224166
Temps écoulé: 44 minute(s), 8 seconde(s)
Processus mémoire infecté(s): 1
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 5
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 8
Processus mémoire infecté(s):
C:\Program Files (x86)\Agence Exclusive\Agence.exe (Spyware.AgenceExclusive) -> No action taken.
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\Typelib\{d105a2c4-36da-49ad-bdb1-34215b3a9ed9} (Spyware.AgenceExclusive) -> No action taken.
HKEY_CLASSES_ROOT\agencebho.aebho (Spyware.AgenceExclusive) -> No action taken.
HKEY_CLASSES_ROOT\agencebho.aebho.1 (Spyware.AgenceExclusive) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Agence_is1 (Spyware.AgenceExclusive) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Update_is1 (Spyware.AgenceExclusive) -> No action taken.
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\agence (Spyware.AgenceExclusive) -> No action taken.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
C:\Program Files (x86)\Agence Exclusive (Spyware.AgenceExclusive) -> No action taken.
Fichier(s) infecté(s):
C:\Program Files (x86)\Agence Exclusive\Agence.exe (Spyware.AgenceExclusive) -> No action taken.
C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.exe (Spyware.AgenceExclusive) -> No action taken.
C:\Program Files (x86)\ZHPDiag\Quarantine\spidermessenger.exe.VIR (Spyware.AgenceExclusive) -> No action taken.
C:\Program Files (x86)\ZHPDiag\Quarantine\Agence Exclusive.DIR\Agence.exe (Spyware.AgenceExclusive) -> No action taken.
C:\Program Files (x86)\ZHPDiag\Quarantine\Agence Exclusive.DIR\Agence Exclusive\Agence.exe (Spyware.AgenceExclusive) -> No action taken.
C:\Program Files (x86)\Agence Exclusive\confmedia.cyp (Spyware.AgenceExclusive) -> No action taken.
C:\Program Files (x86)\Agence Exclusive\unins000.dat (Spyware.AgenceExclusive) -> No action taken.
C:\Program Files (x86)\Agence Exclusive\unins000.exe (Spyware.AgenceExclusive) -> No action taken.
voilà j'ai réussi! Ouf!! merci à++++
www.malwarebytes.org
Version de la base de données: 4052
Windows 6.1.7600
Internet Explorer 8.0.7600.16385
29/04/2010 19:22:37
mbam-log-2010-04-29 (19-22-37).txt
Type d'examen: Examen complet (C:\|D:\|)
Elément(s) analysé(s): 224166
Temps écoulé: 44 minute(s), 8 seconde(s)
Processus mémoire infecté(s): 1
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 5
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 8
Processus mémoire infecté(s):
C:\Program Files (x86)\Agence Exclusive\Agence.exe (Spyware.AgenceExclusive) -> No action taken.
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\Typelib\{d105a2c4-36da-49ad-bdb1-34215b3a9ed9} (Spyware.AgenceExclusive) -> No action taken.
HKEY_CLASSES_ROOT\agencebho.aebho (Spyware.AgenceExclusive) -> No action taken.
HKEY_CLASSES_ROOT\agencebho.aebho.1 (Spyware.AgenceExclusive) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Agence_is1 (Spyware.AgenceExclusive) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Update_is1 (Spyware.AgenceExclusive) -> No action taken.
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\agence (Spyware.AgenceExclusive) -> No action taken.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
C:\Program Files (x86)\Agence Exclusive (Spyware.AgenceExclusive) -> No action taken.
Fichier(s) infecté(s):
C:\Program Files (x86)\Agence Exclusive\Agence.exe (Spyware.AgenceExclusive) -> No action taken.
C:\Program Files (x86)\SpiderMessenger\SpiderMessenger.exe (Spyware.AgenceExclusive) -> No action taken.
C:\Program Files (x86)\ZHPDiag\Quarantine\spidermessenger.exe.VIR (Spyware.AgenceExclusive) -> No action taken.
C:\Program Files (x86)\ZHPDiag\Quarantine\Agence Exclusive.DIR\Agence.exe (Spyware.AgenceExclusive) -> No action taken.
C:\Program Files (x86)\ZHPDiag\Quarantine\Agence Exclusive.DIR\Agence Exclusive\Agence.exe (Spyware.AgenceExclusive) -> No action taken.
C:\Program Files (x86)\Agence Exclusive\confmedia.cyp (Spyware.AgenceExclusive) -> No action taken.
C:\Program Files (x86)\Agence Exclusive\unins000.dat (Spyware.AgenceExclusive) -> No action taken.
C:\Program Files (x86)\Agence Exclusive\unins000.exe (Spyware.AgenceExclusive) -> No action taken.
voilà j'ai réussi! Ouf!! merci à++++
- vieillechouette
- Libellulien Junior
- Messages: 224
- Inscription: 21 Avr 2010 12:57
- Localisation: Manche (50)
78 messages
• Page 2 sur 4 • 1, 2, 3, 4
Qui est en ligne
Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 2 invités
Développé par phpBB® Forum Software © phpBB Group
Traduction par phpBB-fr.com
Traduction par phpBB-fr.com
phpBB Metro Theme by PixelGoose Studio