Virus Bagle 2013-10-26T09:02:38+00:00
  • Auteur
    Messages
  • Photo du profil de smeggysmeggy
    Participant
    Post count: 9

    Bonjour
    Je pense etre infecté par le virus Bagle. Les symptomes sont: centre de sécurité désactivé et donc l’antivirus et le pare-feu aussi. Que dois-je faire?

  • Anonyme
    Post count: 0

    Hello :hello:

    Bienvenue sur SosVirus :welcome:

    • Télécharge Malwarebytes’ Anti-Malware et installe le.
    • Lance Malwarebytes’ Anti-Malware.
    • Clique sur l’onglet “Mises à jours” puis sur “Rechercher des mises à jours”.
    • Clique sur l’onglet “Recherche”, coche “éxécuter un examen rapide” puis clic sur Rechercher.

    A la fin de l’analyse, si MBAM n’a rien trouvé :

    • Clique sur OK, le rapport s’ouvre spontanément.

    Si des menaces ont été détectées :

    • Clique sur OK puis “Afficher les résultats”.
    • Choisis l’option “Supprimer la sélection”.
    • Si MBAM demande le redémarrage de Windows : Clique sur “Oui”.
    • Une fois le PC redémarré, le rapport se trouve dans l’onglet “Rapports/Logs”.
    • Sinon le rapport s’ouvre automatiquement après la suppression.
    • Post le rapport dans ta prochaine réponse.
  • Photo du profil de smeggysmeggy
    Participant
    Post count: 9

    j’avais déja MBAM mais il n’a rien trouvé

  • Anonyme
    Post count: 0

    j’avais déja MBAM mais il n’a rien trouvé

    Alors c’est surement pas Bagle ;)

    • Télécharges Adwcleaner (de Xplode) sur ton Bureau !
    • Fais clic droit dessus, exécuter en tant qu’administrateur sous Windows : 7/8 et Vista
      1. Choisi l’option Scanner
      2. Choisi l’option Nettoyer
    • Accepte l’avertissement en cliquant sur OK

    • Acceptes les avertissements/informations en cliquant sur OK
    • Copie et Colle le contenu du rapport qui apparaît au redémarrage du PC
  • Photo du profil de smeggysmeggy
    Participant
    Post count: 9

    # AdwCleaner v3.010 – Rapport créé le 26/10/2013 à 18:38:10
    # Mis à jour le 20/10/2013 par Xplode
    # Système d’exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
    # Nom d’utilisateur : Christian – CHRISTIAN-PC
    # Exécuté depuis : C:UsersChristianDownloadsadwcleaner.exe
    # Option : Nettoyer

    ***** [ Services ] *****

    ***** [ Fichiers / Dossiers ] *****

    Dossier Supprimé : C:ProgramDataboost_interprocess
    Dossier Supprimé : C:ProgramDataSoftSafe
    Dossier Supprimé : C:ProgramDataStarApp
    Dossier Supprimé : C:ProgramDataSweetIM
    Dossier Supprimé : C:ProgramDataTrymedia
    Dossier Supprimé : C:ProgramDataAlawar Stargaze
    Dossier Supprimé : C:ProgramDataBruowse2ssAive
    Dossier Supprimé : C:ProgramDataconatiiNuettosaavve
    Dossier Supprimé : C:ProgramDataMicrosoftWindowsStart MenuProgramsmyfree codec
    Dossier Supprimé : C:ProgramDataMicrosoftWindowsStart MenuProgramsPC Speed Maximizer
    Dossier Supprimé : C:ProgramDataMicrosoftWindowsStart MenuProgramsconatiiNuettosaavve
    Dossier Supprimé : C:Program Files (x86)myfree codec
    Dossier Supprimé : C:Program Files (x86)PC Speed Maximizer
    Dossier Supprimé : C:Program Files (x86)SearchCore for Browsers
    Dossier Supprimé : C:Program Files (x86)SweetIM
    Dossier Supprimé : C:Program Files (x86)tuguu sl
    Dossier Supprimé : C:Program Files (x86)Yontoo Layers Runtime
    Dossier Supprimé : C:WindowsInstaller{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
    Dossier Supprimé : C:Program FilesDomaIQ Uninstaller
    Dossier Supprimé : C:UsersChristianAppDataLocalSupreme Savings
    Dossier Supprimé : C:UsersChristianAppDataLocalLowboost_interprocess
    Dossier Supprimé : C:UsersChristianAppDataLocalLowBrowse2Save
    Dossier Supprimé : C:UsersChristianAppDataLocalLowsearchquband
    Dossier Supprimé : C:UsersChristianAppDataLocalLowSearchqutoolbar
    Dossier Supprimé : C:UsersChristianAppDataLocalLowSweetIM
    Dossier Supprimé : C:UsersChristianAppDataLocalLowconatiiNuettosaavve
    Dossier Supprimé : C:UsersChristianAppDataRoamingiWin
    Dossier Supprimé : C:UsersChristianAppDataRoamingPC Speed Maximizer
    Dossier Supprimé : C:UsersChristianAppDataRoamingpdfforge
    Dossier Supprimé : C:UsersChristianAppDataRoamingSystweak
    Dossier Supprimé : C:UsersChristianAppDataRoamingMozillaFirefoxProfilesv3d57zdy.defaultSearchqutoolbar
    Dossier Supprimé : C:Program Files (x86)Software
    Fichier Supprimé : C:Program Files (x86)Mozilla FirefoxExtensions{1FD91A9C-410C-4090-BBCC-55D3450EF433}
    Fichier Supprimé : C:ProgramDataMicrosoftWindowsStart MenuProgramseBay.lnk
    Fichier Supprimé : C:WindowsSystem32roboot64.exe
    Fichier Supprimé : C:Program Files (x86)Mozilla FirefoxsearchpluginsSearchResults.xml
    Fichier Supprimé : C:UsersChristianAppDataRoamingMozillaFirefoxProfilesv3d57zdy.defaultuser.js

    ***** [ Raccourcis ] *****

    ***** [ Registre ] *****

    Clé Supprimée : HKLMSOFTWAREGoogleChromeExtensionsjcdgjdiieiljkfkdcloehkohchhpekkn
    Clé Supprimée : HKLMSOFTWAREGoogleChromeExtensionsniapdbllcanepiiimjjndipklodoedlc
    Clé Supprimée : HKLMSOFTWAREGoogleChromeExtensionsogccgbmabaphcakpiclgcnmcnimhokcj
    Clé Supprimée : HKLMSOFTWAREClassesAppIDBrowserConnection.dll
    Clé Supprimée : HKLMSOFTWAREClassesAppIDDNSBHO.dll
    Clé Supprimée : HKLMSOFTWAREClassesAppIDescort.DLL
    Clé Supprimée : HKLMSOFTWAREClassesAppIDescortApp.DLL
    Clé Supprimée : HKLMSOFTWAREClassesAppIDescortEng.DLL
    Clé Supprimée : HKLMSOFTWAREClassesAppIDescorTlbr.DLL
    Clé Supprimée : HKLMSOFTWAREClassesAppIDesrv.EXE
    Clé Supprimée : HKLMSOFTWAREClassesAppIDNCTAudioCDGrabber2.DLL
    Clé Supprimée : HKLMSOFTWAREClassesAppIDsecman.DLL
    Clé Supprimée : HKLMSOFTWAREClassesMediaPlayer.GraphicsUtils
    Clé Supprimée : HKLMSOFTWAREClassesMediaPlayer.GraphicsUtils.1
    Clé Supprimée : HKLMSOFTWAREClassessim-packages
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingAskInstallChecker_RASAPI32
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingAskInstallChecker_RASMANCS
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingau__rasapi32
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingau__rasmancs
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingboxore_RASAPI32
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingboxore_RASMANCS
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingBundleSweetIMSetup_RASAPI32
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingBundleSweetIMSetup_RASMANCS
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingdatamngrUI_RASAPI32
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingdatamngrUI_RASMANCS
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingHPSF_Tasks_RASAPI32
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingHPSF_Tasks_RASMANCS
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingSearchqu Toolbar uninstall_RASAPI32
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingSearchqu Toolbar uninstall_RASMANCS
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingSearchquMediaBar_RASAPI32
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingSearchquMediaBar_RASMANCS
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingSetupDataMngr_Searchqu_RASAPI32
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingSetupDataMngr_Searchqu_RASMANCS
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingsweetim_rasapi32
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingsweetim_rasmancs
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingsweetpacksupdatemanager_rasapi32
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingSweetPacksUpdateManager_RASMANCS
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingsystweakasp_rasapi32
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingsystweakasp_rasmancs
    Clé Supprimée : HKLMSOFTWAREMicrosoftWindowsCurrentVersionApp PathsSweetIM.exe
    Clé Supprimée : HKLMSOFTWAREMicrosoftWindowsCurrentVersionUninstallSP_4e24eecb
    Clé Supprimée : HKLMSOFTWAREMicrosoftWindowsCurrentVersionUninstallSP_e14dcdfa
    Clé Supprimée : HKLMSOFTWAREMicrosoftWindowsCurrentVersionUninstallSP_f2a323db
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingSoftonicDownloader55534_RASAPI32
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingSoftonicDownloader55534_RASMANCS
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingSoftonicDownloader_pour_softkey-revealer_RASAPI32
    Clé Supprimée : HKLMSOFTWAREMicrosoftTracingSoftonicDownloader_pour_softkey-revealer_RASMANCS
    Clé Supprimée : HKLMSOFTWAREClassesAppID{09C554C3-109B-483C-A06B-F14172F1A947}
    Clé Supprimée : HKLMSOFTWAREClassesAppID{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
    Clé Supprimée : HKLMSOFTWAREClassesAppID{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
    Clé Supprimée : HKLMSOFTWAREClassesAppID{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}
    Clé Supprimée : HKLMSOFTWAREClassesAppID{AC662AF2-4601-4A68-84DF-A3FE83F1A5F9}
    Clé Supprimée : HKLMSOFTWAREClassesAppID{B12E99ED-69BD-437C-86BE-C862B9E5444D}
    Clé Supprimée : HKLMSOFTWAREClassesAppID{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
    Clé Supprimée : HKLMSOFTWAREClassesAppID{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}
    Clé Supprimée : HKLMSOFTWAREClassesAppID{EA28B360-05E0-4F93-8150-02891F1D8D3C}
    Clé Supprimée : HKLMSOFTWAREClassesCLSID{00000001-4FEF-40D3-B3FA-E0531B897F98}
    Clé Supprimée : HKLMSOFTWAREClassesCLSID{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
    Clé Supprimée : HKLMSOFTWAREClassesCLSID{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
    Clé Supprimée : HKLMSOFTWAREClassesCLSID{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
    Clé Supprimée : HKLMSOFTWAREClassesCLSID{64697678-0000-0010-8000-00AA00389B71}
    Clé Supprimée : HKLMSOFTWAREClassesCLSID{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
    Clé Supprimée : HKLMSOFTWAREClassesCLSID{7E84186E-B5DE-4226-8A66-6E49C6B511B4}
    Clé Supprimée : HKLMSOFTWAREClassesCLSID{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
    Clé Supprimée : HKLMSOFTWAREClassesCLSID{826D7151-8D99-434B-8540-082B8C2AE556}
    Clé Supprimée : HKLMSOFTWAREClassesCLSID{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
    Clé Supprimée : HKLMSOFTWAREClassesCLSID{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
    Clé Supprimée : HKLMSOFTWAREClassesCLSID{FD501041-8EBE-11CE-8183-00AA00577DA2}
    Clé Supprimée : HKLMSOFTWAREClassesCLSID{FE9271F2-6EFD-44B0-A826-84C829536E93}
    Clé Supprimée : HKLMSOFTWAREClassesCLSID{FEFD3AF5-A346-4451-AA23-A3AD54915515}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{23C70BCA-6E23-4A65-AD2E-1389062074F1}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{295CACB4-51F5-46FD-914E-C72BAAE1B672}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{2BEF239C-752E-4001-8048-F256E0D8CD93}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{34C1FDF7-02C1-4F23-B393-F48B16E071D1}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{44B619BC-3D2B-4990-AA4F-9AA366921792}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{54291324-7A3D-4F11-B707-3FB6A2C97BD9}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{C0585B2F-74D7-4734-88DE-6C150C5D4036}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{EEE6C359-6118-11DC-9C72-001320C79847}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{EF0588D6-1621-4A75-B8BE-F4BC34794136}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
    Clé Supprimée : HKLMSOFTWAREClassesInterface{FE0273D1-99DF-4AC0-87D5-1371C6271785}
    Clé Supprimée : HKLMSOFTWAREClassesTypeLib{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
    Clé Supprimée : HKLMSOFTWAREClassesTypeLib{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
    Clé Supprimée : HKLMSOFTWAREClassesTypeLib{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
    Clé Supprimée : HKLMSOFTWAREClassesTypeLib{E2343056-CC08-46AC-B898-BFC7ACF4E755}
    Clé Supprimée : HKCUSoftwareMicrosoftWindowsCurrentVersionExtStats{8736C681-37A0-40C6-A0F0-4C083409151C}
    Clé Supprimée : HKCUSoftwareMicrosoftWindowsCurrentVersionExtStats{9D717F81-9148-4F12-8568-69135F087DB0}
    Clé Supprimée : HKCUSoftwareMicrosoftWindowsCurrentVersionExtStats{C9A6357B-25CC-4BCF-96C1-78736985D412}
    Clé Supprimée : HKLMSOFTWAREMicrosoftWindowsCurrentVersionExtPreApproved{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
    Clé Supprimée : HKLMSOFTWAREMicrosoftInternet ExplorerLow RightsElevationPolicy{31111111-1111-1111-1111-110111991162}
    Clé Supprimée : HKLMSOFTWAREMicrosoftInternet ExplorerLow RightsElevationPolicy{EEE6C367-6118-11DC-9C72-001320C79847}
    Clé Supprimée : HKCUSoftwareMicrosoftInternet ExplorerSearchScopes{8B63A8D6-BBED-4341-8867-790E5F524C96}
    Clé Supprimée : HKCUSoftwareMicrosoftInternet ExplorerSearchScopes{9BB47C17-9C68-4BB3-B188-DD9AF0FD2413}
    Clé Supprimée : HKCUSoftwareMicrosoftInternet ExplorerSearchScopes{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
    Clé Supprimée : HKCUSoftwareMicrosoftInternet ExplorerSearchScopes{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
    Clé Supprimée : HKLMSOFTWAREMicrosoftInternet ExplorerSearchScopes{9BB47C17-9C68-4BB3-B188-DD9AF0FD2413}
    Clé Supprimée : HKLMSOFTWAREMicrosoftInternet ExplorerSearchScopes{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesCLSID{9D717F81-9148-4F12-8568-69135F087DB0}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesCLSID{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesCLSID{CC1AC828-BB47-4361-AFB5-96EEE259DD87}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{0D80F1C5-D17B-4177-AC68-955F3EF9F191}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{1B730ACF-26A3-447B-9994-14AEE0EB72CC}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{23C70BCA-6E23-4A65-AD2E-1389062074F1}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{295CACB4-51F5-46FD-914E-C72BAAE1B672}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{2BEF239C-752E-4001-8048-F256E0D8CD93}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{34C1FDF7-02C1-4F23-B393-F48B16E071D1}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{44B619BC-3D2B-4990-AA4F-9AA366921792}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{54291324-7A3D-4F11-B707-3FB6A2C97BD9}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{C0585B2F-74D7-4734-88DE-6C150C5D4036}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{EEE6C358-6118-11DC-9C72-001320C79847}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{EEE6C359-6118-11DC-9C72-001320C79847}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{EEE6C35A-6118-11DC-9C72-001320C79847}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{EF0588D6-1621-4A75-B8BE-F4BC34794136}
    Clé Supprimée : [x64] HKLMSOFTWAREClassesInterface{FE0273D1-99DF-4AC0-87D5-1371C6271785}
    Clé Supprimée : [x64] HKLMSOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{9D717F81-9148-4F12-8568-69135F087DB0}
    Clé Supprimée : [x64] HKLMSOFTWAREMicrosoftInternet ExplorerSearchScopes{9BB47C17-9C68-4BB3-B188-DD9AF0FD2413}
    Clé Supprimée : HKCUSoftwareConduit
    Clé Supprimée : HKCUSoftwareFreeze.com
    Clé Supprimée : HKCUSoftwareIM
    Clé Supprimée : HKCUSoftwareImInstaller
    Clé Supprimée : HKCUSoftwarelollipop
    Clé Supprimée : HKCUSoftwareMyfree Codec
    Clé Supprimée : HKCUSoftwarepc speed maximizer
    Clé Supprimée : HKCUSoftwareSearchCore for Browsers
    Clé Supprimée : HKCUSoftwareSoftonic
    Clé Supprimée : HKCUSoftwaresystweak
    Clé Supprimée : HKCUSoftwareYahooPartnerToolbar
    Clé Supprimée : HKCUSoftwareAppDataLowSoftwareCrossrider
    Clé Supprimée : HKCUSoftwareAppDataLowSoftwaresearchqutoolbar
    Clé Supprimée : HKLMSoftwareConduit
    Clé Supprimée : HKLMSoftwareFreeze.com
    Clé Supprimée : HKLMSoftwareFunmoods
    Clé Supprimée : HKLMSoftwareImInstaller
    Clé Supprimée : HKLMSoftwareMyfree Codec
    Clé Supprimée : HKLMSoftwareSearchCore for Browsers
    Clé Supprimée : HKLMSoftwareSearchquMediabarTb
    Clé Supprimée : HKLMSoftwareSP Global
    Clé Supprimée : HKLMSoftwareSProtector
    Clé Supprimée : HKLMSoftwareSupreme Savings
    Clé Supprimée : HKLMSoftwaresystweak
    Clé Supprimée : HKCUSoftwareMicrosoftWindowsCurrentVersionUninstallMyFreeCodec
    Clé Supprimée : HKLMSOFTWAREMicrosoftWindowsCurrentVersionUninstall{0C43FE6B-E881-4AFC-B384-4AEBC90047E8}
    Clé Supprimée : HKLMSOFTWAREMicrosoftWindowsCurrentVersionUninstall{A0C9DF2B-89B5-4483-8983-18A68200F1B4}
    Clé Supprimée : HKLMSOFTWAREMicrosoftWindowsCurrentVersionUninstall{c3e85ee9-5892-4142-b537-bceb3dac4c3d}
    Clé Supprimée : HKLMSOFTWAREMicrosoftWindowsCurrentVersionUninstall{ea8fa6be-29be-4af2-9352-841f83215eb0}
    Clé Supprimée : HKLMSOFTWAREMicrosoftWindowsCurrentVersionUninstallDomaIQ Uninstaller
    Clé Supprimée : HKLMSOFTWAREMicrosoftWindowsCurrentVersionUninstallSearchCore for Browsers
    Clé Supprimée : [x64] HKLMSOFTWAREDomaIQ
    Clé Supprimée : [x64] HKLMSOFTWARESearchCore for Browsers
    Clé Supprimée : [x64] HKLMSOFTWAREMicrosoftWindowsCurrentVersionUninstall{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
    Donnée Supprimée : [x64] HKLMSOFTWAREMicrosoftWindows NTCurrentVersionWindows [AppInit_DLLs] – C:PROGRA~2SEARCH~1SEARCH~1x64datamngr.dll
    Clé Supprimée : HKLMSoftwareClassesInstallerFeatures9EE58E3C298524145B73CBBED3CAC4D3
    Clé Supprimée : HKLMSoftwareClassesInstallerFeaturesB2FD9C0A5B9838449838816A28001F4B
    Clé Supprimée : HKLMSoftwareClassesInstallerFeaturesB6EF34C0188ECFA43B48A4BE9C00748E
    Clé Supprimée : HKLMSoftwareClassesInstallerFeaturesEB6AF8AEEB922FA4392548F13812E50B
    Clé Supprimée : HKLMSoftwareClassesInstallerProducts9EE58E3C298524145B73CBBED3CAC4D3
    Clé Supprimée : HKLMSoftwareClassesInstallerProductsB2FD9C0A5B9838449838816A28001F4B
    Clé Supprimée : HKLMSoftwareClassesInstallerProductsB6EF34C0188ECFA43B48A4BE9C00748E
    Clé Supprimée : HKLMSoftwareClassesInstallerProductsEB6AF8AEEB922FA4392548F13812E50B

    ***** [ Navigateurs ] *****

    -\ Internet Explorer v10.0.9200.16720

    -\ Mozilla Firefox v23.0.1 (fr)

    [ Fichier : C:UsersChristianAppDataRoamingMozillaFirefoxProfilesv3d57zdy.defaultprefs.js ]

    Ligne Supprimée : user_pref(“aol_toolbar.default.homepage.check”, false);
    Ligne Supprimée : user_pref(“aol_toolbar.default.search.check”, false);
    Ligne Supprimée : user_pref(“browser.search.defaultenginename,S”, “WebSearch”);
    Ligne Supprimée : user_pref(“browser.search.defaulturl”, “hxxp://websearch.youwillfind.info/?pid=658&r=2013/04/25&hid=3911086148&lg=EN&cc=FR&l=1&q=”);
    Ligne Supprimée : user_pref(“browser.search.order.1,S”, “WebSearch”);
    Ligne Supprimée : user_pref(“browser.search.selectedEngine,S”, “WebSearch”);
    Ligne Supprimée : user_pref(“extensions.BabylonToolbar.prtkDS”, 0);
    Ligne Supprimée : user_pref(“extensions.BabylonToolbar.prtkHmpg”, 0);
    Ligne Supprimée : user_pref(“extensions.crossrider.bic”, “13e47125f51c638fcd6bd30e33d1c7a1”);
    Ligne Supprimée : user_pref(“extensions.funmoods.SimilarSitesStorage-pid2”, “d2ecacb8e2068606”);
    Ligne Supprimée : user_pref(“extensions.funmoods.admin”, false);
    Ligne Supprimée : user_pref(“extensions.funmoods.aflt”, “ironto”);
    Ligne Supprimée : user_pref(“extensions.funmoods.autoRvrt”, “false”);
    Ligne Supprimée : user_pref(“extensions.funmoods.cntry”, “FR”);
    Ligne Supprimée : user_pref(“extensions.funmoods.dfltLng”, “”);
    Ligne Supprimée : user_pref(“extensions.funmoods.dfltSrch”, true);
    Ligne Supprimée : user_pref(“extensions.funmoods.excTlbr”, false);
    Ligne Supprimée : user_pref(“extensions.funmoods.hdrMd5”, “20BFA3F4221BB8FBC6EE8EE489A794FF”);
    Ligne Supprimée : user_pref(“extensions.funmoods.hmpg”, true);
    Ligne Supprimée : user_pref(“extensions.funmoods.id”, “143c1b69000000000000f4ce46036414”);
    Ligne Supprimée : user_pref(“extensions.funmoods.instlDay”, “15434”);
    Ligne Supprimée : user_pref(“extensions.funmoods.instlRef”, “”);
    Ligne Supprimée : user_pref(“extensions.funmoods.isDcmntCmplt”, true);
    Ligne Supprimée : user_pref(“extensions.funmoods.lastVrsnTs”, “1.5.19.38:24:21”);
    Ligne Supprimée : user_pref(“extensions.funmoods.newTab”, true);
    Ligne Supprimée : user_pref(“extensions.funmoods.newTabUrl”, “hxxp://start.funmoods.com/?f=2&a=ironto”);
    Ligne Supprimée : user_pref(“extensions.funmoods.prdct”, “funmoods”);
    Ligne Supprimée : user_pref(“extensions.funmoods.prtnrId”, “funmoods”);
    Ligne Supprimée : user_pref(“extensions.funmoods.sg”, “none”);
    Ligne Supprimée : user_pref(“extensions.funmoods.smplGrp”, “none”);
    Ligne Supprimée : user_pref(“extensions.funmoods.srchPrvdr”, “Search”);
    Ligne Supprimée : user_pref(“extensions.funmoods.tlbrId”, “base”);
    Ligne Supprimée : user_pref(“extensions.funmoods.tlbrSrchUrl”, “hxxp://start.funmoods.com/results.php?f=3&a=ironto&q=”);
    Ligne Supprimée : user_pref(“extensions.funmoods.vrsn”, “1.5.19.3”);
    Ligne Supprimée : user_pref(“extensions.funmoods.vrsnTs”, “1.5.19.38:24:21”);
    Ligne Supprimée : user_pref(“extensions.funmoods.vrsni”, “1.5.19.3”);
    Ligne Supprimée : user_pref(“extensions.funmoods_i.dfltSrch”, true);
    Ligne Supprimée : user_pref(“extensions.funmoods_i.dnsErr”, true);
    Ligne Supprimée : user_pref(“extensions.funmoods_i.hmpg”, true);
    Ligne Supprimée : user_pref(“extensions.funmoods_i.hmpgUrl”, “hxxp://start.funmoods.com/?f=1&a=ironto”);
    Ligne Supprimée : user_pref(“extensions.funmoods_i.newTab”, true);
    Ligne Supprimée : user_pref(“extensions.funmoods_i.smplGrp”, “none”);
    Ligne Supprimée : user_pref(“extensions.funmoods_i.vrsnTs”, “1.5.19.38:24:21”);
    Ligne Supprimée : user_pref(“extensions.wrc.SearchRules.ask.com.url”, “^hxxp(s)?\:\/\/(.+\.)?ask\.com\/.*”);
    Ligne Supprimée : user_pref(“extensions.xnotifier.accounts.[gmail#christian.peri53@gmail.com].inboxOnly”, true);
    Ligne Supprimée : user_pref(“extentions.y2layers.defaultEnableAppsList”, “Buzzdock,BuzzdockTease,DropDownDeals,DropDownDeals,”);
    Ligne Supprimée : user_pref(“extentions.y2layers.installId”, “d5f27a66-4416-4ee6-9a44-d4472ec1f3f6”);
    Ligne Supprimée : user_pref(“gm-notifier.ui.counter.showInbox”, true);
    Ligne Supprimée : user_pref(“speedbit.dap_installed”, true);
    Ligne Supprimée : user_pref(“sweetim.toolbar.previous.browser.search.defaultenginename”, “”);
    Ligne Supprimée : user_pref(“sweetim.toolbar.previous.browser.search.selectedEngine”, “”);
    Ligne Supprimée : user_pref(“sweetim.toolbar.previous.browser.startup.homepage”, “”);
    Ligne Supprimée : user_pref(“sweetim.toolbar.previous.keyword.URL”, “”);
    Ligne Supprimée : user_pref(“sweetim.toolbar.scripts.1.domain-blacklist”, “”);
    Ligne Supprimée : user_pref(“sweetim.toolbar.searchguard.UserRejectedGuard_DS”, “”);
    Ligne Supprimée : user_pref(“sweetim.toolbar.searchguard.UserRejectedGuard_HP”, “”);
    Ligne Supprimée : user_pref(“sweetim.toolbar.searchguard.enable”, “”);

    -\ Google Chrome v30.0.1599.101

    [ Fichier : C:UsersChristianAppDataLocalGoogleChromeUser DataDefaultpreferences ]

    *************************

    AdwCleaner[R0].txt – [24387 octets] – [26/10/2013 18:37:17]
    AdwCleaner[S0].txt – [23221 octets] – [26/10/2013 18:38:10]

    ########## EOF – C:AdwCleanerAdwCleaner[S0].txt – [23282 octets] ##########

  • Anonyme
    Post count: 0

    Nous allons éffectuer un diagnostic de ton ordinateur .

    • Télécharge ZHPDiag (de Nicolas Coolman) sur ton bureau.
    • Installe le logiciel.
    • Lance ZHPDiag, exécuter en tant qu’administrateur sous Windows : 7/8 et Vista

    • Clique sur Configurer
    • Clique sur l’icône représentant une loupe avec un + (« Lancer le diagnostic »)

      Note : Ne pas fermer le programme même si il est indiqué qu’il ne répond plus.

    • Une fois le scan terminé rends toi sur le bureau, le fichier ZHPDiag.txt à été créé.
    • Héberge le rapport ZHPDiag.txt sur SosUpload, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum
  • Photo du profil de smeggysmeggy
    Participant
    Post count: 9

    https://antimalware.top/log/SosUpload.c3edee5ed6640a53eb8bf4962943bd8c.txt” onclick=”window.open(this.href);return false;

  • Anonyme
    Post count: 0

    ce n’est pas le bon rapport :(

    Une fois le scan terminé rends toi sur le bureau, le fichier ZHPDiag.txt à été créé.
    Héberge le rapport ZHPDiag.txt sur SosUpload, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum

  • Photo du profil de smeggysmeggy
    Participant
    Post count: 9

    https://antimalware.top/log/SosUpload.06ca7937beaf10718f039a4560aff82a.txt” onclick=”window.open(this.href);return false;

  • Anonyme
    Post count: 0
    • Séléctionne et copie le script suivant :

      Script ZHPFix
      [HKLMSoftwareGoogleChromeExtensionsfdloijijlkoblmigdofommgnheckmaki] =>PUP.Funmoods^
      [HKLMSYSTEMCurrentControlSetServicesIpsosLSPService] =>Toolbar.Ipsos^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionUninstallAdvanced Driver Updater_is1] =>PUP.AdvancedDriverUpdater^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionUninstall{1F010F2C-50E9-4F1F-ADF4-18CBC4E22DDA}] =>Adware.Browse2Save^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionUninstall{C1C6816E-CBB3-A748-85F9-A8B47B68985B}] =>PUP.OfferWare^
      [HKLMSoftwareMicrosoftShared ToolsMSConfigstartupregDATAMNGR] =>PUP.Datamngr^
      [HKLMSoftwareMicrosoftShared ToolsMSConfigstartupregPC Speed Maximizer] =>Rogue.PCSpeedMaximizer^
      [HKLMSoftwareMicrosoftShared ToolsMSConfigstartupregSweetIM] =>PUP.SweetIM^
      [HKLMSoftwareMicrosoftShared ToolsMSConfigstartupregSweetpacks Communicator] =>PUP.SweetIM^
      [HKCUSoftwareMicrosoftWindowsCurrentVersionExtStats{C9A6357B-25CC-4BCF-96C1-78736985D412}] =>Toolbar.Orange
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsD15DAF33C220F91468A1D7D57C31ACD7] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsD6D0EB9FDBD90C04D92A7E729058F10D] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsA189D17A469616C4688D23E192996267] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components98CC8BF5A4A6E6C4ABF7051DDAB8B058] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components7FFA128C2B0FF414D805FC5627883401] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsD3BA76A44C779424889063D5098ED2D6] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components397C771A7BCAC904697C3EC629ED33ED] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components351716A953E21214898904032EAE2E81] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components2E6768B6932D112438F047C54D180635] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ProductsEB6AF8AEEB922FA4392548F13812E50B] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Products9EE58E3C298524145B73CBBED3CAC4D3] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ProductsB2FD9C0A5B9838449838816A28001F4B] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components2F47BF73B948514FAACADD8CBBDF37D] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components7D5290CDBDAE4242926B8E6CA650501] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components80D9F5E1E95FEE4794CE438E635239E] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsE3D8A5B48622A445A7DF73FEFF32C3F] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUpgradeCodes789034A89BAC50E4782F0A7BDBF75632] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components4318DF19719275242801CBE292063A4C] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components45FC115D1FEAEF849A4E1610D6EC8BF0] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components46A5861A389ADB844AF89E31BC9DF0A1] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components49B0E1A6FF50BBE4289E4E23DE6EA0C7] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components4CCCAC049F34D0540AAC13011398BEDB] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components5C4389D0BFB302C479DE4178BD5D9EBA] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components5D2B09BDEF4FE54418E6F3373CDBC7AC] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components61B65D3397A1FBF4CB1571B5E4F6B5B0] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components68E8A05C60DD9254591DBD16C94EDDBF] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components697E782CF574CC34CBB9566440BA12BC] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components6AE27A8613CF7EA4782F2886F67295E5] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components75D5168E5E176C24981B4E5DBD991078] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components7CE172051F585E04187BCB97570BFA74] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components86A901BA5265452499DCBF719C378EE3] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components8724E58E6C7D00C48A0D4F3345EB2C26] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components88ABD1CD5C40EC84789A7F6EF86DAC5E] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components980289C22F80A7C4BB9323DC61255E4E] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components9A4B7EF3789F871419D9302583B20C15] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsA6C53B0F76C44004A8F36716213017DB] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsAB676B0E1B9EFA049B9F7DDDA9645734] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsB31BBB0B825EDEF45AB0FE7099C68C81] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsB471D8D7319336B4CA89374ED0D7B806] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsB59F2D8189784CC46A4597F2842480B0] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsBC30043663AA2CA4DA1DAA9CA5FDCC75] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsBD746FB95FB8E5B45BF66BE54D5FD91F] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsCCF399FCD6D2D3F46BF02A1378654FC9] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsD149C1355C98DE24E82CEFBD996FE06A] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsDB59FDB786388EA4D897F3EE715683AC] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsDB8DAD19CFBCC2049A4477183787E8C5] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsE1C820A74ED67374BA048B52CB3C3804] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsEC65F200D112357449C8B1BC3CFA03D0] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsF327D0C73C0973644A21E8CC852267A0] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsFA96423FE2B98E248A3B23548D1E22D9] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsFDC83385E6C239F4C876A77A37DF581D] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components34EDDB1BFB3A2D448845F3EFD0F15A43] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components427EA997C413D1D47907CBFC7B2DB432] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUpgradeCodesA97CEC23332751B47BA4B95BAA50C9D0] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsF754C503375A13344B22388E18DFE87E] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components1E264E0A5959A1C46BA9175A878B12EA] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsE4748F9A4181FCE46A23C13B517B9420] =>PUP.SweetIM
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components464AA55239C100F32AF2D438EDDC0F47] =>Adware.IMBooster
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components5652BA3D5FB98AE31B337BF0AF939856] =>Adware.IMBooster
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components86EB95E1AFCBABE3DB9ECCC669B99494] =>Adware.IMBooster
      [HKLMSoftwareClassesIncrediSpooler.DeltaSync] =>Toolbar.DeltaSearch
      [HKLMSoftwareClassesIncrediSpooler.DeltaSync.1] =>Toolbar.DeltaSearch
      [HKLMSoftwareWow6432NodeClassesIncrediSpooler.DeltaSync] =>Toolbar.DeltaSearch
      [HKLMSoftwareWow6432NodeClassesIncrediSpooler.DeltaSync.1] =>Toolbar.DeltaSearch
      [HKLMSoftwareWow6432NodeMicrosoftInternet ExplorerLow RightsElevationPolicy{21111111-1111-1111-1111-110111991162}] =>PUP.CrossRider
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsCA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components8E33F7B61DEFF24BB9673ED7D467636] =>PUP.SweetIM^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsFF2AEFF45EEA0A48A4B33C1973B6094] =>PUP.SweetIM^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components12BF94BD06C95F343A77631402B9556A] =>PUP.SweetIM^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components2124D8A8CF720FD44866190AF560228E] =>PUP.SweetIM^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components27A325ACED8CA4743A30127638591ADB] =>PUP.SweetIM^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components305B09CE8C53A214DB58887F62F25536] =>PUP.SweetIM^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components350D17402BD84234EAF7D32F08172D7C] =>PUP.SweetIM^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components3EE8C5F419057E1478A654868CEE60B5] =>PUP.SweetIM^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components4735D908D66E1BA46B6C2D7185A12B2B] =>PUP.SweetIM^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components69D6A6B2ED56AF24EA6335EAD6E91CA4] =>PUP.SweetIM^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components76D8378E2DDAED3428720A631F6E3BF0] =>PUP.SweetIM^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components86EDC790504E1834DBC20C9A04328FD2] =>PUP.SweetIM^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components97C3D0F82E712E241A2F969F45E3351C] =>PUP.SweetIM^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components9A001B259DB7D694E818BE29B973992C] =>PUP.SweetIM^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18Components9E7F556BF224D804D96A96F0F6344789] =>PUP.SweetIM^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsBAE2EC163C6A68A48921573E0E7E199D] =>PUP.SweetIM^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsBF4F885EDEE45644EB1E0C99E0162399] =>PUP.SweetIM^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsC06C6662FA5B04646829E4A460857770] =>PUP.SweetIM^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsCE21F3FD57B244142880EF15A165A156] =>PUP.SweetIM^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsCEEB3E14ABE8270419B0FD762E18F7C6] =>PUP.SweetIM^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsED1B5E9A3BDB51349BF96E842C062D98] =>PUP.SweetIM^
      [HKLMSoftwareMicrosoftWindowsCurrentVersionInstallerUserDataS-1-5-18ComponentsFECBC2BC14DA6CD459BD59A041709836] =>PUP.SweetIM^
      C:Program Files (x86)Advanced Driver Updater =>PUP.AdvancedDriverUpdater^
      C:ProgramDataInstallMate =>PUP.Tarma^
      C:ProgramDataSoftware =>Adware.Boxore
      C:ProgramDataMicrosoftWindowsStart MenuProgramsAdvanced Driver Updater =>PUP.AdvancedDriverUpdater
      C:UsersChristianAppDataLocalSoftware =>Adware.Boxore
      C:UsersChristianAppDataLocalGoogleChromeUser DataDefaultExtensionsfjjddemkcndmbbeeibicagaobbijjgmm =>Toolbar.RechercheFrance
      C:UsersChristianAppDataLocalGoogleChromeUser DataDefaultExtensionsfdloijijlkoblmigdofommgnheckmaki =>PUP.Funmoods^
      C:WindowsTasksFJDKTMABW.job =>Hijacker.iHaveNet^
      C:Program Files (x86)Advanced Driver Updateradu.exe =>PUP.AdvancedDriverUpdater^
      EmptyCLSID
      Emptytemp
      EmptyFlash

    • Lances ZHPFix, exécuter en tant qu’administrateur sous Windows : 7/8 et Vista

      1. Clique sur Importer
      2. Les lignes précedemment copiées doivent être collées dans le cadre
      3. Si c’est le cas, Clic sur “GO

    • Confirmes les nettoyages des données en cliquant sur “Oui
    • Une fois le scan terminé rends toi sur le bureau, le fichier ZHPFixReport à été crée.
    • Héberge le rapport ZHPFixReport sur SosUpload, puis copie/colle le lien fourni dans ta prochaine réponse.

    [hr:26c17817]

    • Télécharge CTR (de Pierre13) sur ton Bureau et pas ailleurs !.
    • Lance CTR, exécuter en tant qu’administrateur sous Windows : 7/8 et Vista

      Note : Patiente le temps du scan

      Note : A la fin un rapport va s’ouvrir

    • Une fois le scan terminé rends toi sur le bureau, le fichier CTR.txt à été créé.
    • Héberge le rapport CTR.txt sur SosUpload, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum
  • Photo du profil de smeggysmeggy
    Participant
    Post count: 9

    https://antimalware.top/log/SosUpload.26cc4fc71426f7fba0daebf8328589c7.txt” onclick=”window.open(this.href);return false;

  • Photo du profil de smeggysmeggy
    Participant
    Post count: 9

    https://antimalware.top/log/SosUpload.7dce16299ab942f237102ef57e851378.txt” onclick=”window.open(this.href);return false;

  • Anonyme
    Post count: 0

    Hello :hello: ,

    Redémarre l’ordinateur et dis moi comment va le PC stp .

    Refais un scan ZHPDiag et post le nouveau rapport.

  • Photo du profil de smeggysmeggy
    Participant
    Post count: 9

    Pc toujours pareil
    ~ Rapport de ZHPDiag v2013.10.27.68 – Nicolas Coolman (27/10/2013)
    ~ Lancé par Christian (27/10/2013 10:23:44)
    ~ Adresse du Site Web http://nicolascoolman.webs.com” onclick=”window.open(this.href);return false;
    ~ Forums gratuits d’Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/” onclick=”window.open(this.href);return false;
    ~ Traduit par Nicolas Coolman
    ~ Etat de la version :
    ~ Liste blanche : Activée par le programme
    ~ Elévation des Privilèges : OK
    ~ User Account Control (UAC):

    —\ Navigateurs Internet
    MSIE: Internet Explorer v10.0.9200.16721 (Defaut)
    MFIE: Mozilla Firefox 23.0.1
    GCIE: Google Chrome v30.0.1599.101

    —\ Informations sur les produits Windows
    ~ Langage: Français
    Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
    Windows Server License Manager Script : OK
    ~ Windows(R) 7, OEM_SLP channel
    System Locked Preinstallation (OEM_SLP) : OK
    Windows ID Activation : OK
    ~ Windows Partial Key : 3Q6C9
    Windows License : OK
    ~ Windows Remaining Initializations Number : 3
    Software Protection Service (Protection logicielle) : OK
    Windows Automatic Updates : OK
    Windows Activation Technologies : OK

    —\ Logiciels de protection du système
    Malwarebytes Anti-Malware version 1.75.0.1300
    Microsoft Security Client FR-FR Language Pack v2.1.1116.0
    Windows Defender W7

    —\ Logiciels d’optimisation du système

    —\ Logiciels de partage PeerToPeer

    —\ Surveillance de Logiciels
    Adobe Flash Player 11 Plugin
    Adobe Reader XI

    —\ Informations sur le système
    ~ Processor: AMD64 Family 16 Model 6 Stepping 2, AuthenticAMD
    ~ Operating System: 64 Bits
    Boot mode: Normal (Normal boot)
    Total RAM: 4095 MB (67% free)
    System Restore: Désactivé (Disabled)
    System drive C: has 541 GB (58%) free of 920 GB

    —\ Mode de connexion au système
    ~ Computer Name: CHRISTIAN-PC
    ~ User Name: Christian
    ~ All Users Names: HomeGroupUser$, Christian, Administrateur,
    ~ Unselected Option: None
    Logged in as Administrator

    —\ Variables d’environnement
    ~ System Unit : C:
    ~ %AppZHP% : C:UsersChristianAppDataRoamingZHP
    ~ %AppData% : C:UsersChristianAppDataRoaming
    ~ %Desktop% : C:UsersChristianDesktop
    ~ %Favorites% : C:UsersChristianFavorites
    ~ %LocalAppData% : C:UsersChristianAppDataLocal
    ~ %StartMenu% : C:UsersChristianAppDataRoamingMicrosoftWindowsStart Menu
    ~ %Windir% : C:Windows
    ~ %System% : C:WindowsSystem32

    —\ Enumération des unités disques
    C: Hard drive, Flash drive, Thumb drive (Free 541 Go of 920 Go)
    D: Hard drive, Flash drive, Thumb drive (Free 2 Go of 12 Go)
    E: CD-ROM drive (Not Inserted)

    —\ Etat du Centre de Sécurité Windows
    ~ Security Center: 48 Legitimates Filtered in 00mn 00s

    —\ Recherche particulière de fichiers génériques
    [MD5.332FEAB1435662FC6C672E25BEB37BE3] – (.Microsoft Corporation – Explorateur Windows.) (.25/02/2011 – 07:19:30.) — C:WindowsExplorer.exe [2871808]
    [MD5.94355C28C1970635A31B3FE52EB7CEBA] – (.Microsoft Corporation – Application de démarrage de Windows.) (.14/07/2009 – 02:39:52.) — C:WindowsSystem32Wininit.exe [129024]
    [MD5.D28B35DE88D27EFB27DF4B1E8319E3C0] – (.Microsoft Corporation – Extensions Internet pour Win32.) (.22/09/2013 – 23:55:10.) — C:WindowsSystem32wininet.dll [2241024]
    [MD5.1151B1BAA6F350B1DB6598E0FEA7C457] – (.Microsoft Corporation – Application d’ouverture de session Windows.) (.20/11/2010 – 14:25:30.) — C:WindowsSystem32Winlogon.exe [390656]
    [MD5.067FA52BFB59A56110A12312EF9AF243] – (.Microsoft Corporation – Bibliothèque de licences.) (.20/11/2010 – 14:27:26.) — C:WindowsSystem32sppcomapi.dll [232448]
    [MD5.314C17917AC8523EC77A710215012A65] – (.Microsoft Corporation – Ancillary Function Driver for WinSock.) (.14/09/2013 – 02:10:19.) — C:Windowssystem32DriversAFD.sys [497152]
    [MD5.02062C0B390B7729EDC9E69C680A6F3C] – (.Microsoft Corporation – ATAPI IDE Miniport Driver.) (.14/07/2009 – 02:52:21.) — C:Windowssystem32Driversatapi.sys [24128]
    [MD5.B8BD2BB284668C84865658C77574381A] – (.Microsoft Corporation – CD-ROM File System Driver.) (.14/07/2009 – 00:19:47.) — C:Windowssystem32DriversCdfs.sys [92160]
    [MD5.F036CE71586E93D94DAB220D7BDF4416] – (.Microsoft Corporation – SCSI CD-ROM Driver.) (.20/11/2010 – 10:19:21.) — C:Windowssystem32DriversCdrom.sys [147456]
    [MD5.9BB2EF44EAA163B29C4A4587887A0FE4] – (.Microsoft Corporation – DFS Namespace Client Driver.) (.20/11/2010 – 10:26:32.) — C:Windowssystem32DriversDfsC.sys [102400]
    [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] – (.Microsoft Corporation – High Definition Audio Bus Driver.) (.20/11/2010 – 11:43:43.) — C:Windowssystem32DriversHDAudBus.sys [122368]
    [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] – (.Microsoft Corporation – Pilote de port i8042.) (.14/07/2009 – 00:19:57.) — C:Windowssystem32Driversi8042prt.sys [105472]
    [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] – (.Microsoft Corporation – IP Network Address Translator.) (.14/07/2009 – 01:10:03.) — C:Windowssystem32DriversIpNat.sys [116224]
    [MD5.A5D9106A73DC88564C825D317CAC68AC] – (.Microsoft Corporation – Windows NT SMB Minirdr.) (.27/04/2011 – 03:40:40.) — C:Windowssystem32DriversMRxSmb.sys [158208]
    [MD5.09594D1089C523423B32A4229263F068] – (.Microsoft Corporation – MBT Transport driver.) (.20/11/2010 – 10:23:20.) — C:Windowssystem32DriversnetBT.sys [261632]
    [MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] – (.Microsoft Corporation – Pilote du système de fichiers NT.) (.12/04/2013 – 15:45:08.) — C:Windowssystem32Driversntfs.sys [1656680]
    [MD5.0086431C29C35BE1DBC43F52CC273887] – (.Microsoft Corporation – Pilote de port parallèle.) (.14/07/2009 – 01:00:41.) — C:Windowssystem32DriversParport.sys [97280]
    [MD5.471815800AE33E6F1C32FB1B97C490CA] – (.Microsoft Corporation – RAS L2TP mini-port/call-manager driver.) (.20/11/2010 – 11:52:35.) — C:Windowssystem32DriversRasl2tp.sys [129536]
    [MD5.548260A7B8654E024DC30BF8A7C5BAA4] – (.Microsoft Corporation – SMB Transport driver.) (.14/07/2009 – 01:09:09.) — C:Windowssystem32Driverssmb.sys [93184]
    [MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] – (.Microsoft Corporation – TDI Translation Driver.) (.20/11/2010 – 10:21:56.) — C:Windowssystem32Driverstdx.sys [119296]
    [MD5.0D08D2F3B3FF84E433346669B5E0F639] – (.Microsoft Corporation – Pilote de cliché instantané du volume.) (.20/11/2010 – 14:34:02.) — C:Windowssystem32Driversvolsnap.sys [295808]
    ~ Generic Processes: Scanned in 00mn 00s

    —\ Etat des fichiers cachés (Caché/Total)
    ~ Mes images (My Pictures) : 2/1242
    ~ Mes musiques (My Musics) : 5/547
    ~ Mes Videos (My Videos) : 2/1082
    ~ Mes Favoris (My Favorites) : 1/308
    ~ Mes Documents (My Documents) : 3/3687
    ~ Mon Bureau (My Desktop) : 2/49
    ~ Menu demarrer (Programs) : 1/76
    ~ Hidden Files: Scanned in 00mn 12s

    —\ Processus lancés
    [MD5.B80293D462EC959097A940D70C857BC3] – (.Orange – Executable Orange Inside.) — C:UsersChristianAppDataRoamingOrangeOrangeInsideoneOrangeInside.exe [1530008] [PID.1876]
    [MD5.D6D36A01E927480C19333C5A7FB8DE49] – (…) — C:Program Files (x86)OrangeOrange InstallerOrangeInstaller.exe [525248] [PID.1884]
    [MD5.5478A1AA166146E113FB8A517749887F] – (.Orange-France – Le Cloud d’Orange – Transfert de fichiers.) — C:UsersChristianAppDataLocalLe Cloud Orangeomclient.exe [1168160] [PID.1164]
    [MD5.9ABF368A2DA03C6852C353D837D374AB] – (.eMPIA Technology, Inc. – BDA Monitor Application.) — C:Program Files (x86)USB_video_deviceDriverDriver32emmon.exe [81408] [PID.1540]
    [MD5.F0EA603E7B91046CA48EA4B3593A007D] – (.Micro Application – Pas de description.) — C:Program Files (x86)Micro ApplicationLauncherMA.exe [485376] [PID.2068]
    [MD5.554A50B5310E702029D3A675459108FF] – (.Hewlett-Packard – hpsysdrv.) — C:Program Files (x86)Hewlett-PackardHP Odometerhpsysdrv.exe [62768] [PID.2420]
    [MD5.5516C26A6AF8EB4E2CAB48EC98A74398] – (.Hewlett-Packard – hpwuSchd Application.) — C:Program Files (x86)hpHP Software Updatehpwuschd2.exe [54576] [PID.2528]
    [MD5.255E405D801CF01247390F38F92D8042] – (…) — C:Program Files (x86)UnlockerUnlockerAssistant.exe [17408] [PID.2596]
    [MD5.03C217B77BCA3F50A8B8A300C2E5BC4A] – (.IVT Corporation – Bluetooth Application.) — C:Program Files (x86)IVT CorporationBlueSoleilBtTray.exe [319574] [PID.2604]
    [MD5.D1D5DAB39DCB4BE0359943738D87409B] – (.Malwarebytes Corporation – Malwarebytes Anti-Malware.) — C:Program Files (x86)Malwarebytes’ Anti-Malwarembamgui.exe [532040] [PID.2764]
    [MD5.A9A5CDFDA52257DB4488F457C3F4022A] – (.American Power Conversion Corporation – PowerChute system tray power icon.) — C:Program Files (x86)APCAPC PowerChute Personal Editionapcsystray.exe [417855] [PID.4076]
    [MD5.084D14D1283EC4D78A1D0B8C3D0187DD] – (.Nicolas Coolman – ZHPDiag.) — C:Program Files (x86)ZHPDiagZHPDiag.exe [8137728] [PID.456]
    [MD5.ADDA5E1951B90D3D23C56D3CF0622ADC] – (.Adobe Systems Incorporated – Adobe Acrobat Update Service.) — C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe [65640] [PID.1356]
    [MD5.DC45AB27932447B598848B10650313C5] – (.American Power Conversion Corporation – Battery backup management service.) — C:Program Files (x86)APCAPC PowerChute Personal Editionmainserv.exe [176193] [PID.1380]
    [MD5.7EF47644B74EBE721CC32211D3C35E76] – (.Apple Inc. – MobileDeviceService.) — C:Program Files (x86)Common FilesAppleMobile Device SupportAppleMobileDeviceService.exe [55144] [PID.1424]
    [MD5.18D87D378D3C7DFBB045C9753A3632E8] – (.IVT Corporation – Bluetooth Application.) — C:Program Files (x86)IVT CorporationBlueSoleilBlueSoleilCS.exe [1765484] [PID.1936]
    [MD5.CF7B0E597C1F34E528285495721DEEE9] – (.Google Inc. – Google Crash Handler.) — C:Program Files (x86)GoogleUpdate1.3.21.165GoogleCrashHandler.exe [237960] [PID.1976]
    [MD5.1786949693843A089918AE2CC105D7D6] – (.Google Inc. – Processus relatif à l’hôte.) — C:Program Files (x86)GoogleChrome Remote Desktop30.0.1599.56remoting_host.exe [50128] [PID.1580]
    [MD5.2DFB151FD34DF104DAC0ADF070EDA83C] – (.Hewlett-Packard Company – HP Quick Synchronization Service.) — C:Program Files (x86)Hewlett-PackardSharedHPDrvMntSvc.exe [92216] [PID.2404]
    [MD5.2238B91AC1A12CC6CC4C4FED41258B2A] – (.Hewlett-Packard Company – LightScribe Service.) — c:Program Files (x86)Common FilesLightScribeLSSrvc.exe [73728] [PID.2484]
    [MD5.65085456FD9A74D7F1A999520C299ECB] – (.Malwarebytes Corporation – Malwarebytes Anti-Malware.) — C:Program Files (x86)Malwarebytes’ Anti-Malwarembamscheduler.exe [418376] [PID.2568]
    [MD5.E0D7732F2D2E24B2DB3F67B6750295B8] – (.Malwarebytes Corporation – Malwarebytes Anti-Malware.) — C:Program Files (x86)Malwarebytes’ Anti-Malwarembamservice.exe [701512] [PID.2664]
    [MD5.20372BE109FEE1C37E2D5216680DB9EB] – (.pdfforge GmbH – PDF Architect Helper Service.) — C:Program Files (x86)PDF ArchitectHelperService.exe [1320496] [PID.2912]
    [MD5.B90A279073A815A4AA2C45A09EE004FA] – (.pdfforge GmbH – PDF Architect Conversion Service.) — C:Program Files (x86)PDF ArchitectConversionService.exe [799280] [PID.2952]
    [MD5.AE6C778717DE2F6B0C0B5335036D3363] – (.Sony Corporation – Device Information Provider.) — C:Program Files (x86)SonyPMBPMBDeviceInfoProvider.exe [430136] [PID.3012]
    ~ Processes Running: Scanned in 00mn 00s

    —\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
    C:UsersChristianAppDataLocalGoogleChromeUser DataDefaultPreferences
    ~ Google Browser: 0 Legitimates Filtered in 00mn 00s

    —\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
    C:UsersChristianAppDataRoamingMozillaFirefoxProfilesv3d57zdy.defaultprefs.js
    M2 – MFEP: prefs.js [Christian – v3d57zdy.default{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}] [] Forecastfox v2.2.2 (..)
    ~ Firefox Browser: 30 Legitimates Filtered in 00mn 00s

    —\ Internet Explorer, Proxy Management (R5)
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = *.local
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyServer = no key
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyEnable = 0
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,MigrateProxy = 1
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,EnableHttp1_1 = 1
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyHttp1.1 = 1
    R5 – HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,AutoConfigProxy = wininet.dll
    ~ Proxy management: Scanned in 00mn 00s

    —\ Analyse des lignes F0, F1, F2, F3 – IniFiles, Autoloading programs
    F2 – REG:system.ini: USERINIT=C:Windowssystem32userinit.exe,
    F2 – REG:system.ini: Shell=C:Windowsexplorer.exe
    F2 – REG:system.ini: VMApplet=C:WindowsSystem32SystemPropertiesPerformance.exe
    ~ Keys: Scanned in 00mn 00s

    —\ Hosts file redirection (O1)
    ~ Le fichier hosts est sain (The hosts file is clean).
    ~ Hosts File: Scanned in 00mn 00s
    ~ Nombre de lignes (Lines number): 1

    —\ Internet Explorer Toolbars (O3)
    O3 – ToolbarWebBrowser: (no name) [64Bits] – [HKCU]{21FA44EF-376D-4D53-9B0F-8A89D3229068} Clé orpheline
    ~ Toolbar: Scanned in 00mn 00s

    —\ Autres liens utilisateurs (O4)
    O4 – GSDesktop [Public]: Advanced Driver Updater.lnk . (…) — C:Program Files (x86)Advanced Driver Updateradu.exe (.not file.) =>PUP.AdvancedDriverUpdater
    O4 – GSDesktop [Public]: BlueSoleil Space.lnk . (…) — C:Program Files (x86)IVT CorporationBlueSoleilBlueSoleil.exe
    O4 – GSDesktop [Public]: InPixio Photo Clip.lnk . (…) — C:Program Files (x86)InPixio Photo ClipInPixio Photo Clip.exe
    O4 – GSDesktop [Public]: OpenOffice 4.0.0.lnk . (.Apache Software Foundation – OpenOffice 4.0.0.) — C:Program Files (x86)OpenOffice 4programsoffice.exe
    O4 – GSDesktop [Public]: PMB Launcher.lnk . (.Sony Corporation – PMB Launcher.) — C:Program Files (x86)SonyPMBPMBLauncher.exe
    O4 – GSDesktop [Public]: Prism.lnk . (.NCH Software – Prism – Convertisseur de fichiers vidéo.) — C:Program Files (x86)NCH SoftwarePrismprism.exe
    O4 – GSDesktop [Public]: Speccy.lnk . (.Piriform Ltd – Speccy.) — C:Program FilesSpeccySpeccy64.exe
    O4 – GSDesktop [Public]: SUPER ©.lnk . (.eRightSoft – SUPER © – Simplified Universal Player Encod.) — C:Program Files (x86)eRightSoftSUPERSUPER.exe
    O4 – GSProgram [Public]: IncrediMail.lnk . (.IncrediMail, Ltd. – IncrediMail Application.) — C:Program Files (x86)IncrediMailBinIncMail.exe
    O4 – GSProgram [Public]: Magic Desktop.lnk . (.EasyBits Software AS – EasyBits Security Shield.) — C:Program Files (x86)EasyBits For KidsezSecShield.exe =>.EasyBits Software AS
    O4 – GSProgram [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation – Firefox.) — C:Program Files (x86)Mozilla Firefoxfirefox.exe
    O4 – GSProgram [Public]: Switch, Convertisseur de fichiers audio.lnk . (.NCH Software – Switch, Convertisseur de fichiers audio.) — C:Program Files (x86)NCH Swift SoundSwitchswitch.exe
    O4 – GSQuickLaunch [Christian]: Free Ringtone Maker.lnk . (…) — C:Program Files (x86)Free Ringtone MakerFreeRingtoneMaker.exe =>Adware.SPointer
    O4 – GSQuickLaunch [Christian]: Google Chrome.lnk . (.Google Inc. – Google Chrome.) — C:Program Files (x86)GoogleChromeApplicationchrome.exe
    O4 – GSQuickLaunch [Christian]: IncrediMail 2.0.lnk . (.IncrediMail, Ltd. – IncrediMail Application.) — C:Program Files (x86)IncrediMailBinIncMail.exe
    O4 – GSQuickLaunch [Christian]: Jouer à HP Games.lnk . (.WildTangent, Inc. – GameConsole.) — C:Program Files (x86)HP GamesHP Game ConsoleGameConsole-wt.exe
    O4 – GSQuickLaunch [Christian]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation – Internet Explorer.) — C:Program Files (x86)Internet Exploreriexplore.exe
    O4 – GSQuickLaunch [Christian]: Mozilla Firefox.lnk . (.Mozilla Corporation – Firefox.) — C:Program Files (x86)Mozilla Firefoxfirefox.exe
    O4 – GSQuickLaunch [Christian]: RealArcade.lnk . (.RealNetworks – RealArcade.) — C:Program Files (x86)RealRealArcadeRNArcade.exe
    O4 – GSTaskBar [Christian]: Google Chrome.lnk . (.Google Inc. – Google Chrome.) — C:Program Files (x86)GoogleChromeApplicationchrome.exe
    O4 – GSTaskBar [Christian]: HPAdvisor.lnk . (.Hewlett-Packard – HP Advisor.) — C:Program Files (x86)Hewlett-PackardHP AdvisorHPAdvisor.exe
    O4 – GSTaskBar [Christian]: IncrediMail.lnk . (.IncrediMail, Ltd. – IncrediMail Application.) — C:Program Files (x86)IncrediMailBinIncMail.exe
    O4 – GSTaskBar [Christian]: Mozilla Firefox.lnk . (.Mozilla Corporation – Firefox.) — C:Program Files (x86)Mozilla Firefoxfirefox.exe
    O4 – GSProgram [Christian]: Internet Explorer.lnk . (.Microsoft Corporation – Internet Explorer.) — C:Program Files (x86)Internet Exploreriexplore.exe
    O4 – GSSystemTools [Christian]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation – Internet Explorer.) — C:Program Files (x86)Internet Exploreriexplore.exe
    O4 – GSSendTo [Christian]: Bluetooth.lnk – Clé orpheline
    O4 – GSSendTo [Christian]: Unlocker.lnk . (…) — C:Program FilesUnlockerUnlocker.exe
    O4 – GSDesktop [Christian]: amazingadventures.lnk . (.RealNetworks – Wrapper Application.) — C:My GamesAmazing Adventures Around the World(TM)amazingadventures2_r1a.exe
    O4 – GSDesktop [Christian]: aquasphere.lnk . (.RealNetworks – Wrapper Application.) — C:My GamesAquaSphereaquasphere_r1a.exe
    O4 – GSDesktop [Christian]: Assistance Livebox.lnk . (.Orange – Assistance Livebox.) — C:Program Files (x86)OrangeAssistance LiveboxAssistanceLivebox.exe
    O4 – GSDesktop [Christian]: CamApp.lnk . (.UVC – CamApp, Video capture tool.) — C:Program Files (x86)UVC Like DriverCamApp.exe
    O4 – GSDesktop [Christian]: Compte chèques postal.lnk . (…) — C:Program Files (x86)BankPerfectBankPerfectCompte chèques postal.bp (.not file.)
    O4 – GSDesktop [Christian]: DivX Converter.lnk . (.DivX, Inc. – DivX Converter.) — C:Program Files (x86)DivXDivX ConverterDivXConverterLauncher.exe
    O4 – GSDesktop [Christian]: EnigmaAgency_TheCaseofShadowsCE.lnk . (…) — C:UsersChristianDocumentsJeux TéléchargésEnigma Agency – Le Chaos des Ombres Edition CollectorEnigmaAgency_TheCaseofShadowsCE.exe
    O4 – GSDesktop [Christian]: IJ Scan Utility.lnk . (.CANON INC. – Canon IJ Scan Utility.) — C:Program Files (x86)CanonIJ Scan UtilitySCANUTILITY.exe
    O4 – GSDesktop [Christian]: Mallette magique.lnk . (…) — C:UsersChristianDocumentsMallette magique
    O4 – GSDesktop [Christian]: Mystery Case Files.lnk . (.Macromedia, Inc. – Macromedia Projector.) — C:Program FilesZylom GamesMystery Case Filesmysterycasefiles.exe
    O4 – GSDesktop [Christian]: mysterypithenewyorkfortune.lnk . (.RealNetworks – Wrapper Application.) — C:My GamesMystery P.I.(TM) – The New York Fortune – FRmysterypithenewyorkfortune_r1a.exe
    O4 – GSDesktop [Christian]: mysteryville2.lnk . (…) — C:UsersChristianDocumentsJeux Téléchargésmysteryville2.exe
    O4 – GSDesktop [Christian]: Orange mes contenus.lnk . (.F-Secure – Orange mes contenus.) — C:Program FilesOrangeOrange mes contenusOrangeSC.exe
    O4 – GSDesktop [Christian]: Ricochet-LostWorld.lnk . (…) — C:Program Files (x86)BoontyGamesRicochet-LostWorldRicochet.exe
    O4 – GSDesktop [Christian]: Sauvegarde bp.lnk . (…) — C:UsersChristianDocumentsSauvegarde bp.bp
    O4 – GSDesktop [Christian]: Sauvegarde épargne.lnk . (…) — C:UsersChristianDocumentsSauvegarde épargne.bp
    O4 – GSDesktop [Christian]: The Heritage.lnk . (…) — C:Program Files (x86)The HeritageHeritage.exe
    O4 – GSDesktop [Christian]: Transferts vers le Cloud d’Orange.lnk . (…) — C:UsersChristianDocumentsTransferts vers le Cloud d’Orange
    O4 – GSDesktop [Christian]: XtrCtrlEx.lnk . (.Guillemot Corporation S.A. – Hercules Xtra Controller Main Application.) — C:Program Files (x86)HerculesDualPix ExchangeXtrCtrlEx.exe
    ~ Global Startup: 127 Legitimates Filtered in 00mn 03s

    —\ Applications lancées au démarrage du sytème (O4)
    O4 – GSStartup [Public]: APC UPS Status.lnk . (.American Power Conversion Corporation – Startup notification module.) — C:Program Files (x86)APCAPC PowerChute Personal EditionDisplay.exe
    O4 – GSStartup [Public]: emMon.lnk . (.eMPIA Technology, Inc. – BDA Monitor Application.) — C:Program Files (x86)USB_video_deviceDriverDriver32emmon.exe
    O4 – GSStartup [Christian]: Lanceur.lnk . (.Micro Application – Pas de description.) — C:Program Files (x86)Micro ApplicationLauncherMA.exe
    O4 – HKLM..Run: [PC-Doctor for Windows localizer] . (.PC-Doctor, Inc. – Hardware Diagnostic Tools Localizer.) — C:Program FilesPC-Doctor for Windowslocalizer.exe
    O4 – HKCU..Run: [Sidebar] . (.Microsoft Corporation – Gadgets du Bureau Windows.) — C:Program FilesWindows Sidebarsidebar.exe =>.Microsoft Corporation
    O4 – HKCU..Run: [Orange Installer] . (…) — C:Program Files (x86)OrangeOrange InstallerOrangeInstaller.exe
    O4 – HKCU..Run: [Le Cloud d’Orange – Transfert de fichiers Client] . (.Orange-France – Le Cloud d’Orange – Transfert de fichiers.) — C:UsersChristianAppDataLocalLe Cloud Orangeomclient.exe
    O4 – HKCU..Run: [OrangeInside] . (.Orange – Executable Orange Inside.) — C:UsersChristianAppDataRoamingOrangeOrangeInsideoneOrangeInside.exe
    O4 – HKLM..Wow6432NodeRun: [hpsysdrv] . (.Hewlett-Packard – hpsysdrv.) — c:program files (x86)hewlett-packardHP odometerhpsysdrv.exe =>.Hewlett-Packard Co
    O4 – HKLM..Wow6432NodeRun: [StartCCC] . (.Advanced Micro Devices, Inc. – Catalyst® Control Center Launcher.) — C:Program Files (x86)ATI TechnologiesATI.ACECore-StaticCLIStart.exe =>.Advanced Micro Devices, Inc
    O4 – HKLM..Wow6432NodeRun: [HP Software Update] . (.Hewlett-Packard – hpwuSchd Application.) — c:Program Files (x86)HPHP Software UpdateHPWuSchd2.exe =>.Hewlett-Packard Co
    O4 – HKLM..Wow6432NodeRun: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. – Java(TM) Update Scheduler.) — C:Program Files (x86)Common FilesJavaJava Updatejusched.exe =>.Oracle Corporation
    O4 – HKLM..Wow6432NodeRun: [UnlockerAssistant] . (…) — C:Program Files (x86)UnlockerUnlockerAssistant.exe
    O4 – HKLM..Wow6432NodeRun: [HP Remote Solution] . (.Hewlett-Packard – HP Remote Solution.) — C:Program Files (x86)Hewlett-PackardHP Remote SolutionHP_Remote_Solution.exe
    O4 – HKLM..Wow6432NodeRun: [BtTray] . (.IVT Corporation – Bluetooth Application.) — C:Program Files (x86)IVT CorporationBlueSoleilBtTray.exe
    O4 – HKLM..Wow6432NodeRun: [CanonQuickMenu] . (.CANON INC. – Canon Quick Menu.) — C:Program Files (x86)CanonQuick MenuCNQMMAIN.exe
    O4 – HKLM..Wow6432NodeRun: [Adobe ARM] . (.Adobe Systems Incorporated – Adobe Reader and Acrobat Manager.) — C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe =>.Adobe Systems Incorporated
    O4 – HKLM..Wow6432NodeRun: [APSDaemon] . (.Apple Inc. – Apple Push.) — C:Program Files (x86)Common FilesAppleApple Application SupportAPSDaemon.exe
    O4 – HKUSS-1-5-21-1355434068-3653106500-54649249-1000..Run: [Sidebar] . (.Microsoft Corporation – Gadgets du Bureau Windows.) — C:Program FilesWindows Sidebarsidebar.exe =>.Microsoft Corporation
    O4 – HKUSS-1-5-21-1355434068-3653106500-54649249-1000..Run: [Orange Installer] . (…) — C:Program Files (x86)OrangeOrange InstallerOrangeInstaller.exe
    O4 – HKUSS-1-5-21-1355434068-3653106500-54649249-1000..Run: [Le Cloud d’Orange – Transfert de fichiers Client] . (.Orange-France – Le Cloud d’Orange – Transfert de fichiers.) — C:UsersChristianAppDataLocalLe Cloud Orangeomclient.exe
    O4 – HKUSS-1-5-21-1355434068-3653106500-54649249-1000..Run: [OrangeInside] . (.Orange – Executable Orange Inside.) — C:UsersChristianAppDataRoamingOrangeOrangeInsideoneOrangeInside.exe
    ~ Application: Scanned in 00mn 00s

    —\ Boutons situés sur la barre d’outils principale d’Internet Explorer (O9)
    O9 – Extra button: À propos de Digital Connections [64Bits] – {4BEEA052-726D-4A6E-B65D-A6BD07C263F3} — Clé orpheline
    ~ IE Extra Buttons: Scanned in 00mn 00s

    —\ Modification Domaine/Adresses DNS (O17)
    O17 – HKLMSystemCCSServicesTcpip..{ADDD806B-037D-47D0-BCE6-5258DAF3F973}: DhcpNameServer = 192.168.1.1 192.168.1.1
    O17 – HKLMSystemCCSServicesTcpip..{DF9A3147-FFB0-4742-9C97-0716EA467503}: DhcpNameServer = 192.168.42.129
    O17 – HKLMSystemCS1ServicesTcpip..{ADDD806B-037D-47D0-BCE6-5258DAF3F973}: DhcpNameServer = 192.168.1.1 192.168.1.1
    O17 – HKLMSystemCS1ServicesTcpip..{DF9A3147-FFB0-4742-9C97-0716EA467503}: DhcpNameServer = 192.168.42.129
    O17 – HKLMSystemCS2ServicesTcpip..{ADDD806B-037D-47D0-BCE6-5258DAF3F973}: DhcpNameServer = 192.168.1.1 192.168.1.1
    O17 – HKLMSystemCS2ServicesTcpip..{DF9A3147-FFB0-4742-9C97-0716EA467503}: DhcpNameServer = 192.168.42.129
    O17 – HKLMSystemCCSServicesTcpipParameters: DhcpNameServer = 192.168.1.1 192.168.1.1
    ~ Domain: Scanned in 00mn 00s

    —\ Protocole additionnel (O18)
    O18 – Handler: wlpg [64Bits] – {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (…) —
    O18 – Filter: application/x-msdownload [64Bits] – {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation – Microsoft .NET Runtime Execution Engine.) — C:WindowsSystem32mscoree.dll =>.Microsoft Corporation
    ~ Protocole Additionnel: Scanned in 00mn 00s

    —\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
    O20 – AppInit_DLLs: . (…) – C:Program Files (x86)SEARCH~1SEARCH~1x64IEBHO.dll (.not file.)
    ~ AppInit DLL: Scanned in 00mn 00s

    —\ Liste des services NT non Microsoft et non désactivés (O23)
    O23 – Service: Dedicarz Service (Dedicarz Service) . (.Pas de propriétaire – DedicarzService.) – C:Program Files (x86)OrangeAssistance LiveboxdedicarzDedicarzService.exe
    O23 – Service: Skype Updater (SkypeUpdate) . (.Skype Technologies – Skype Updater Service.) – C:Program Files (x86)SkypeUpdaterUpdater.exe
    ~ Services: 22 Legitimates Filtered in 00mn 06s

    —\ Tâches planifiées en automatique (O39)
    O39 – APT:Automatic Planified Task – C:WindowsTasksAdvancedDriverUpdater_UPDATES.job [298]
    [MD5.00000000000000000000000000000000] [APT] [AdvancedDriverUpdater_UPDATES] (…) — C:Program Files (x86)Advanced Driver Updateradu.exe (.not file.) [0] =>PUP.AdvancedDriverUpdater
    [MD5.00000000000000000000000000000000] [APT] [{00D36D3D-D1D8-4D09-B5A9-5FE3497A45BF}] (…) — E:SETUP.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{00EE6F64-E44F-4CA3-86E9-D0ADB0F2F59E}] (…) — C:UsersChristianDownloadsDigital Connections.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{0516A05F-4AEA-4B9B-B422-D380CF02183C}] (…) — C:Program FilesDomaIQ UninstallerDomaIQUninstall.exe (.not file.) [0] =>Adware.DomaIQ
    [MD5.00000000000000000000000000000000] [APT] [{0A59D7A7-772E-4E6C-9C9D-F2A05F0180FB}] (…) — C:UsersChristianDownloadsMystery Case Files-Huntsville-francais.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{14C690F7-E8F9-4888-921A-65BD1A1A1BFA}] (…) — C:UsersChristianDownloadsdap94.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{1BE56B9F-29C9-419B-B827-F5B729500606}] (…) — C:Program Files (x86)palmOneInstapp.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{21622CD9-85B4-457E-B26A-DAB075FF7EF9}] (…) — E:PCPEInstaller.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{43C40039-48AF-4154-8DEB-990A591E4940}] (…) — C:UsersChristianDownloadsPCPEInstaller.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{4A53E3F8-132D-454F-9D01-DDF9FA5D02EB}] (…) — C:UsersChristianDownloadsstubby_en.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{4E7DD52C-4AD7-4ED2-8532-9755B04F5ADC}] (…) — C:UsersChristianDownloadsdotnetfx.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{5797E971-94AC-4042-AE41-D26BB19D7491}] (…) — E:PCPEInstaller.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{5BA6004C-099F-4CCD-A387-ACFAAE869B5C}] (…) — C:UsersChristianDownloadsdotnetfx.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{5EFBC10E-0E76-4619-9E95-0507D0065D0C}] (…) — G:Programma installationzlsSetup_70_462_000_fr.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{60E7439A-90D2-43DC-B6B7-0564338F5674}] (…) — C:UsersChristianDownloadsPCPEInstaller (1).exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{61B1ED3D-2A99-486B-9953-729E5BB8517A}] (…) — C:UsersChristianDownloadsPCPEInstaller.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{626FE451-93E0-416F-8537-E7CAA0A41C9C}] (…) — E:DOTNETdotnetfx.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{7654380F-63B6-4D4D-9588-FA228E755210}] (…) — C:UsersChristianDownloadspictureviz.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{780AFE9D-F765-48B9-AB18-B347CF10CF8B}] (…) — C:UsersChristianDownloadsProgramma installationRicochet-LostWorld_Telecharger%7B179511%7D.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{7CAD1E71-B649-47B8-B3F1-8BFB9C888B39}] (…) — C:Program Files (x86)IncrediGamesDream Vacation Solitaire FREELaunch.exe (.not file.) [0]
    [MD5.D6ABC3C44E97BEEEA534E33E93AE97B4] [APT] [{817FE841-B611-4250-9971-19FA98B561B3}] (…) — C:Program Files (x86)Night Before Christmas 3D Screensaverunins000.exe [673546]
    [MD5.00000000000000000000000000000000] [APT] [{82EE2E95-521B-4609-B5CB-1E901F2B60AC}] (…) — C:UsersChristianDownloadsdotnetfx.exe (.not file.) [0]
    [MD5.D6ABC3C44E97BEEEA534E33E93AE97B4] [APT] [{8DACB896-8B2A-4D41-BCBD-8E279AF6DD37}] (…) — C:Program Files (x86)Night Before Christmas 3D Screensaverunins000.exe [673546]
    [MD5.79F559FB43105EA3969C14AD35239333] [APT] [{964FCB2B-F96F-493F-B3E9-652A47E834E2}] (…) — C:Program Files (x86)InstallShield Installation Information{F193FC0E-9E18-40FC-A974-509A1BDD240A}setup.exe [602208]
    [MD5.00000000000000000000000000000000] [APT] [{9EC6252F-CC35-4C10-A721-AD723E117180}] (…) — C:UsersChristianDownloadsdotnetfx.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{A3D37E0B-00ED-4029-8704-01F43570CDFE}] (…) — C:UsersChristianDownloadsProgramma installationDream_Vacation_Solitaire_FREE-setup.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{B8C53036-D1B6-43C7-B5E8-17450131E324}] (…) — E:DOTNETdotnetfx.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{BA979DF8-E5E5-46AC-B57D-E7AA11A849A7}] (…) — C:UsersChristianDownloadsSoftyVisII.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{C57B2327-3603-4847-A207-8B8C3175C585}] (…) — E:setup.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{C5822018-DE47-4FE9-9F57-7800044C8B6E}] (…) — C:UsersChristianDownloadsPCLEUSB.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{CA8F5EEC-2269-4DC4-95CB-54016F0651F9}] (…) — C:UsersChristianDownloadsConversor.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{D87A1B59-EEFD-43DA-A769-A4694EF2AD72}] (…) — E:setup.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{DC1C9C86-B839-4290-8E51-607C94FAFDFE}] (…) — C:UsersChristianDownloadsConversor.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{DE5BC9DD-4B20-4BAC-98AC-CB4DF0896E19}] (…) — C:UsersChristianDownloadsNetFx64 (1).exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{E20265D3-E0BF-4FA4-9012-219DAF7EFA9F}] (…) — C:UsersChristianDownloadsPCPEInstaller (1).exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{EB03271B-6211-4AF3-9E07-06579FB69ABB}] (…) — E:DOTNETdotnetfx.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{EE9937F2-BC53-4F86-97C9-C3597E6B5101}] (…) — C:UsersChristianDownloadsPVMsetup.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{F7613075-E912-4A32-A723-4762DDB14314}] (…) — E:setup.exe (.not file.) [0]
    ~ Scheduled Task: 63 Legitimates Filtered in 00mn 07s

    —\ Logiciels installés (O42)
    O42 – Logiciel: Advanced Driver Updater – (.Systweak Inc.) [HKLM][64Bits] — Advanced Driver Updater_is1 =>PUP.AdvancedDriverUpdater
    O42 – Logiciel: DAP Plug-in for 64 bit IE – (.SpeedBit.) [HKLM][64Bits] — {E06AF9BE-E1D6-4867-8DBF-74E4BA32BBB3}
    O42 – Logiciel: DAZ|Studio 1.5.1.0 – (.DAZ Productions, Inc..) [HKLM][64Bits] — DAZ|Studio
    O42 – Logiciel: Download Accelerator Plus (DAP) – (.Speedbit Ltd..) [HKLM][64Bits] — Download Accelerator Plus (DAP)
    O42 – Logiciel: IncrediMail – (.IncrediMail.) [HKLM][64Bits] — {5E97F3BD-CDDC-4188-9D98-532E14FABB5D}
    O42 – Logiciel: IncrediMail 2.0 – (.IncrediMail Ltd..) [HKLM][64Bits] — IncrediMail
    O42 – Logiciel: Night Before Christmas 3D Screensaver – (…) [HKLM][64Bits] — Night Before Christmas 3D Screensaver_is1
    O42 – Logiciel: The Heritage – (…) [HKCU][64Bits] — The Heritage
    O42 – Logiciel: UVC Like Driver – (.UVC.) [HKLM][64Bits] — {134F03AE-253D-48E7-B11B-30E7E6F153BD}
    O42 – Logiciel: VersaTimer 1.02 – (.Lux Aeterna Software.) [HKLM][64Bits] — VersaTimer_is1
    O42 – Logiciel: conatiiNuettosaavve – (.continue to save.) [HKLM][64Bits] — {C1C6816E-CBB3-A748-85F9-A8B47B68985B} =>PUP.OfferWare
    ~ Logic: 238 Legitimates Filtered in 00mn 01s

    —\ HKCU & HKLM Software Keys
    [HKCUSoftware3DSavers]
    [HKCUSoftwareAllThatChords]
    [HKCUSoftwareIncrediMail]
    [HKCUSoftwareKextaxqt]
    [HKCUSoftwareLux Aeterna]
    [HKCUSoftwareSpeedBit]
    [HKLMSoftwareSpeedBit]
    [HKLMSoftwareWow6432NodeAPC]
    [HKLMSoftwareWow6432NodeKextaxqt]
    [HKLMSoftwareWow6432NodeM5632]
    [HKLMSoftwareWow6432NodeSpeedBit]
    [HKLMSoftwareWow6432NodeUVC]
    [HKLMSoftwareWow6432NodeWeb]
    ~ Key Software: 403 Legitimates Filtered in 00mn 01s

    —\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
    O43 – CFD: 15/10/2013 – 18:57:02 – [5,930] —-D C:Program Files (x86)APC
    O43 – CFD: 04/04/2012 – 07:24:18 – [13,520] —-D C:Program Files (x86)FoxTabVideoConverter
    O43 – CFD: 17/05/2012 – 09:28:57 – [0,002] —-D C:Program Files (x86)Free 3D Christmas Screensaver
    O43 – CFD: 24/04/2011 – 17:14:25 – [12,510] —-D C:Program Files (x86)Free Ringtone Maker
    O43 – CFD: 10/06/2010 – 16:33:19 – [0] —-D C:Program Files (x86)IncrediGames
    O43 – CFD: 10/06/2010 – 16:33:44 – [0] —-D C:Program Files (x86)Incredijeux
    O43 – CFD: 07/03/2010 – 15:26:09 – [26,001] —-D C:Program Files (x86)IncrediMail
    O43 – CFD: 03/09/2013 – 16:13:32 – [3,449] —-D C:Program Files (x86)InPixio Photo Clip
    O43 – CFD: 26/07/2013 – 16:34:24 – [0,072] —-D C:Program Files (x86)Les Tudors
    O43 – CFD: 03/10/2011 – 08:36:25 – [0] —-D C:Program Files (x86)LimeWire
    O43 – CFD: 19/05/2012 – 08:56:41 – [0,645] —-D C:Program Files (x86)Night Before Christmas 3D Screensaver
    O43 – CFD: 19/05/2012 – 08:56:41 – [94,742] —-D C:Program Files (x86)The Heritage
    O43 – CFD: 09/07/2010 – 09:31:57 – [0,078] —-D C:Program Files (x86)USB_video_device
    O43 – CFD: 09/07/2013 – 15:41:03 – [0,987] —-D C:Program Files (x86)UVC Like Driver
    O43 – CFD: 14/08/2012 – 14:06:58 – [2,573] —-D C:Program Files (x86)Common FilesSpeedBit
    O43 – CFD: 07/12/2010 – 11:08:14 – [31,661] —-D C:ProgramDataBC Soft Games
    O43 – CFD: 07/03/2010 – 15:26:57 – [0] —-D C:ProgramDataIM
    O43 – CFD: 07/03/2010 – 15:26:09 – [15,395] —-D C:ProgramDataIncrediMail
    O43 – CFD: 27/02/2010 – 18:12:06 – [49,759] —-D C:ProgramDataSpeedBit
    O43 – CFD: 30/01/2011 – 12:10:12 – [33,621] —-D C:ProgramData{23D58E70-3B83-4B83-A227-68770F84F5EC}
    O43 – CFD: 10/01/2010 – 04:24:26 – [20,406] —-D C:ProgramData{44AFD825-9603-4521-9447-A6E1C5CA2F3D}
    O43 – CFD: 10/10/2013 – 12:08:29 – [0,215] —-D C:UsersChristianAppDataRoamingDominiGames
    O43 – CFD: 24/04/2011 – 17:14:32 – [0,003] —-D C:UsersChristianAppDataRoamingFree Ringtone Maker
    O43 – CFD: 26/07/2010 – 17:09:46 – [0,038] —-D C:UsersChristianAppDataRoamingRealv1005
    O43 – CFD: 07/03/2010 – 19:04:52 – [34,888] —-D C:UsersChristianAppDataLocalIM
    O43 – CFD: 19/05/2012 – 08:56:42 – [0,002] —-D C:UsersChristianAppDataRoamingMicrosoftWindowsStart MenuProgramsThe Heritage
    ~ Program Folder: 376 Legitimates Filtered in 02mn 45s

    —\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
    O44 – LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] – 24/10/2013 – 14:44:51 —A- . (…) — C:Startvir.txt [0]
    O44 – LFC:[MD5.0277C027A26428DB64EF4F64F52BB4FD] – 24/10/2013 – 15:33:51 —A- . (…) — C:WindowsMBR.exe [208896]
    O44 – LFC:[MD5.F042EE4C8D66248D9B86DCF52ABAE416] – 24/10/2013 – 15:33:51 —A- . (…) — C:WindowsPEV.exe [256000]
    O44 – LFC:[MD5.9E05A9C264C8A908A8E79450FCBFF047] – 24/10/2013 – 15:33:51 —A- . (…) — C:Windowsgrep.exe [80412]
    O44 – LFC:[MD5.2B657A67AEBB84AEA5632C53E61E23BF] – 24/10/2013 – 15:33:51 —A- . (…) — C:Windowssed.exe [98816]
    O44 – LFC:[MD5.5E832F4FAF5F481F2EAF3B3A48F603B8] – 24/10/2013 – 15:33:51 —A- . (…) — C:Windowszip.exe [68096]
    O44 – LFC:[MD5.3CF3D4A45CC2AF973DBC30EC8D33252B] – 25/10/2013 – 09:36:15 —A- . (…) — C:Windowssystem.ini [215]
    O44 – LFC:[MD5.49EE678AD3427E66FB336F9C52C7C83C] – 25/10/2013 – 09:52:36 —A- . (…) — C:ComboFix.txt [39097]
    ~ Files: 29 Legitimates Filtered in 00mn 05s

    —\ Derniers fichiers créés dans Windows Prefetcher (O45)
    O45 – LFCP:[MD5.010FDC47B4CF5DE58B258506E9E72AA2] – 25/10/2013 – 09:52:06 —A- – C:WindowsPrefetchCF14423.3XE-93D6DB77.pf
    O45 – LFCP:[MD5.5B85111AF2A356DF6E71BAD9E8C6971D] – 25/10/2013 – 18:08:12 —A- – C:WindowsPrefetchBOONTYGAMES.0001-22CE5875.pf
    O45 – LFCP:[MD5.ED94ED0AC091C3A5A8DD5541932F4B7F] – 26/10/2013 – 09:45:20 —A- – C:WindowsPrefetchFIND.EXE-9AADDA11.pf
    O45 – LFCP:[MD5.A4C2061C96CC33CCEFCFCF07BC68F70C] – 26/10/2013 – 09:45:24 —A- – C:WindowsPrefetchSAFEBOOTKEYREPAIR.EXE-55B5EBA0.pf
    O45 – LFCP:[MD5.0E9ADF081481C95C251F6FF8BA357F75] – 26/10/2013 – 16:14:19 —A- – C:WindowsPrefetchAPCSYSTRAY.EXE-DA7F5ED2.pf
    O45 – LFCP:[MD5.671CADC05241A8F941AE7B94DC2EB1E3] – 26/10/2013 – 16:18:47 —A- – C:WindowsPrefetchBANKPERFECT.EXE-73B3300B.pf
    O45 – LFCP:[MD5.8DA6062D8B34A3A500A0D75FE8351D48] – 26/10/2013 – 16:19:39 —A- – C:WindowsPrefetchTHESAINTABYSSOFDESPAIR.EXE-07276C38.pf
    O45 – LFCP:[MD5.D28355E40B51206EB9E6139EF786F1BF] – 26/10/2013 – 18:07:07 —A- – C:WindowsPrefetchGAMEINSTALLER.EXE-DA49D578.pf
    O45 – LFCP:[MD5.8316D651E14CB857C07701245D370457] – 26/10/2013 – 18:57:32 —A- – C:WindowsPrefetchBOONTY.EXE-8369BB13.pf
    O45 – LFCP:[MD5.EDF8480314852AD301814CB042B407BE] – 26/10/2013 – 18:57:32 —A- – C:WindowsPrefetchBOONTYGAMES.0001-71D8E700.pf
    O45 – LFCP:[MD5.DCDB89B03E7CDBBBEBDC668C19DD485A] – 26/10/2013 – 18:57:32 —A- – C:WindowsPrefetchRICOCHET.EXE-E0225582.pf
    O45 – LFCP:[MD5.CD24B280E0840CC8D5FF809AEA7B742E] – 27/10/2013 – 09:20:56 —A- – C:WindowsPrefetchBSHELPCS.EXE-509DEB38.pf
    O45 – LFCP:[MD5.F54A7103DCE236E27CF768F6C07D7E4D] – 27/10/2013 – 09:20:56 —A- – C:WindowsPrefetchWLCRDPSYSTEM.EXE-09F2FD97.pf
    O45 – LFCP:[MD5.69B11FF8E551E21333219E10B5C1D145] – 27/10/2013 – 09:35:26 —A- – C:WindowsPrefetchHPSF_TASKS.EXE-9FFDF802.pf
    O45 – LFCP:[MD5.15156B2223DFD823405DF6BDED0F5379] – 27/10/2013 – 09:45:07 —A- – C:WindowsPrefetchCTR.EXE-72D6C1DD.pf
    ~ Prefetcher: 134 Legitimates Filtered in 00mn 00s

    —\ Enumération des clés de registre StartupReg (SMSR) (O53)
    O53 – SMSR:HKLM…startupregGBMLite8AgentLaCie [Key] . (…) — C:Program Files (x86)LaCieGenie Backup AssistantGBMAgent.exe (.not file.)
    O53 – SMSR:HKLM…startupregMobileDocuments [Key] . (…) — C:Program Files (x86)Common FilesAppleInternet Servicesubd.exe (.not file.)
    ~ SMSR Keys: 24 Legitimates Filtered in 00mn 00s

    —\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
    O55 – MWPS:[HKLM…PoliciesSystem] – “EnableUIADesktopToggle”=0
    O55 – MWPS:[HKLM…PoliciesSystem] – “PromptOnSecureDesktop”=0
    O55 – MWPS:[HKLM…PoliciesSystem] – “FilterAdministratorToken”=0
    ~ MWPS: 19 Legitimates Filtered in 00mn 00s

    —\ Liste des pilotes du système (SDL) (O58)
    O58 – SDL:[MD5.C0D50877BB7EC88A953A2A56CEF170FA] – 06/04/2010 – 17:33:10 —A- . (…) — C:WindowsSystem32DriversbtnetBus.sys [30088]
    O58 – SDL:[MD5.3688D4B84E9F98F70A71D5B4B720940E] – 06/07/2009 – 15:33:50 —A- . (.Hauppauge Computer Works, Inc. – hcw95bda HID Remote Control driver.) — C:WindowsSystem32hcw95rc.sys [19456]
    O58 – SDL:[MD5.D0D4F3CA1D3A4400E1F40F36A800CD12] – 13/05/2010 – 06:34:04 —A- . (.Devguru Co., Ltd – Device Error Recovery SDK(x86).) — C:WindowsSysWOW64driversdgderdrv.sys [18136]
    O58 – SDL:[MD5.DDEE99DC54EFA20BD5A442CD733C4462] – 22/05/2013 – 12:34:26 —A- . (…) — C:WindowsSysWOW64FsUsbExDisk.Sys [37344]
    ~ Drivers: 19 Legitimates Filtered in 00mn 00s

    —\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
    O61 – LFC: 01/01/2028 – 10:27:58 R-HA- . (…) — C:UsersChristianDocumentsJeux TéléchargésEnigma Agency – Le Chaos des Ombres Edition CollectorHURLUS.txt [20768]
    O61 – LFC: 24/10/2013 – 10:27:45 —A- . (…) — C:UsersChristianAppDataLocalLe Cloud Orangesynclog.txt [505799]
    O61 – LFC: 24/10/2013 – 10:27:45 —A- . (…) — C:UsersChristianAppDataLocalScreamer Radioscreamer.xml [5021]
    O61 – LFC: 24/10/2013 – 10:27:58 —A- . (…) — C:UsersChristianDocumentsImpotsTaxe habitation 2013.pdf [55918]
    O61 – LFC: 24/10/2013 – 10:27:58 —A- . (…) — C:UsersChristianDownloadselibagla.zip [103711]
    O61 – LFC: 24/10/2013 – 10:27:58 -SHA- . (…) — C:UsersChristianDocumentsImpotsThumbs.db [81408]
    O61 – LFC: 24/10/2013 – 10:27:59 —A- . (…) — C:UsersChristianDownloadsfs-fixbagle.zip [898727]
    O61 – LFC: 25/10/2013 – 10:27:53 —A- . (…) — C:UsersChristianAppDataRoamingfr.orange.assistanceliveboxLocal StoreALB.db [6144] =>.Orange Corporation
    O61 – LFC: 25/10/2013 – 10:27:57 —A- . (…) — C:UsersChristianAppDataRoamingZHPHOSTS.txt [27] =>.Nicolas Coolman
    O61 – LFC: 25/10/2013 – 10:27:57 —A- . (…) — C:UsersChristianDocumentsCartes bancaires.ods [17602]
    O61 – LFC: 26/10/2013 – 10:27:34 —A- . (…) — C:UsersChristianAppDataLocalGoogleChromeUser DataCertificate Revocation Lists [260408]
    O61 – LFC: 26/10/2013 – 10:27:50 —A- . (…) — C:UsersChristianAppDataRoamingAlawarEntertainmentHappyArtistThe Saint Abyss of Despairlog.sflog [7122]
    O61 – LFC: 26/10/2013 – 10:27:50 —A- . (…) — C:UsersChristianAppDataRoamingAlawarEntertainmentHappyArtistThe Saint Abyss of Despairsavesab1f8f289d14b859ed179c056282e15.sav [436160]
    O61 – LFC: 26/10/2013 – 10:27:50 —A- . (…) — C:UsersChristianAppDataRoamingAlawarEntertainmentHappyArtistThe Saint Abyss of Despairsavesoptions.xml [571]
    O61 – LFC: 26/10/2013 – 10:27:50 —A- . (…) — C:UsersChristianAppDataRoamingAlawarEntertainmentHappyArtistThe Saint Abyss of Despairsavessaves.xml [816]
    O61 – LFC: 26/10/2013 – 10:27:50 —A- . (…) — C:UsersChristianAppDataRoamingAlawarEntertainmentHappyArtistThe Saint Abyss of Despairsavessaves.xml.crc [9]
    O61 – LFC: 26/10/2013 – 10:27:57 —A- . (…) — C:UsersChristianAppDataRoamingZHPZHPADSReport.txt [351] =>.Nicolas Coolman
    O61 – LFC: 26/10/2013 – 10:27:57 —A- . (…) — C:UsersChristianAppDataRoamingZHPZHPDiag.txt [74972] =>.Nicolas Coolman
    O61 – LFC: 26/10/2013 – 10:27:58 —A- . (…) — C:UsersChristianDocumentsSauvegarde bp.bp [192086]
    O61 – LFC: 26/10/2013 – 10:27:58 —A- . (…) — C:UsersChristianDownloadsAdwCleaner[S0].txt [47022]
    O61 – LFC: 26/10/2013 – 10:27:58 —A- . (…) — C:UsersChristianDownloadsadwcleaner.exe [1060070]
    O61 – LFC: 26/10/2013 – 10:27:59 —A- . (…) — C:UsersChristianDownloadsSafeBootKeyRepair.exe [288654]
    O61 – LFC: 26/10/2013 – 10:27:59 —A- . (…) — C:UsersChristianDownloadsmbam-log-2013-06-26 (09-58-17).txt [63868]
    O61 – LFC: 26/10/2013 – 10:27:59 —A- . (…) — C:UsersChristianDownloadssafeboot_win7.reg [36536]
    O61 – LFC: 27/10/2013 – 10:27:34 —A- . (…) — C:UsersChristianAppDataLocalGoogleChromeUser Datachrome_shutdown_ms.txt [4]
    O61 – LFC: 27/10/2013 – 10:27:43 —A- . (…) — C:UsersChristianAppDataLocalGoogleChromeUser DataLocal State [72314]
    O61 – LFC: 27/10/2013 – 10:27:45 —A- . (…) — C:UsersChristianAppDataLocalLe Cloud Orangeclient00.svclog [96399]
    O61 – LFC: 27/10/2013 – 10:27:57 —A- . (…) — C:UsersChristianAppDataRoamingZHPLog.txt [41050] =>.Nicolas Coolman
    O61 – LFC: 27/10/2013 – 10:27:57 —A- . (…) — C:UsersChristianAppDataRoamingZHPQuarantinefjdktmabw.job.VIR [316] =>.Nicolas Coolman
    O61 – LFC: 27/10/2013 – 10:27:57 —A- . (…) — C:UsersChristianAppDataRoamingZHPTestsZHPDiag.txt [2962] =>.Nicolas Coolman
    O61 – LFC: 27/10/2013 – 10:27:57 —A- . (…) — C:UsersChristianAppDataRoamingZHPZHPExportRegistry-27-10-2013-09-40-07.txt [4050] =>.Nicolas Coolman
    O61 – LFC: 27/10/2013 – 10:27:57 —A- . (…) — C:UsersChristianAppDataRoamingZHPZHPFixQuarantine.txt [71417] =>.Nicolas Coolman
    O61 – LFC: 27/10/2013 – 10:27:57 —A- . (…) — C:UsersChristianAppDataRoamingZHPZHPFix[R1].txt [47835] =>.Nicolas Coolman
    O61 – LFC: 27/10/2013 – 10:27:58 —A- . (…) — C:UsersChristianDownloadsCTR (1).exe [938001]
    ~ 11 Fichiers temporaires (Temporary files)
    ~ Files: 261 Legitimates Filtered in 00mn 37s

    —\ Liste des outils de désinfection (LATC) (O63)
    O63 – Logiciel: ZHPDiag 2013 – (.Nicolas Coolman.) [HKLM] — ZHPDiag_is1 =>.Nicolas Coolman
    ~ ADS: Scanned in 00mn 00s

    —\ Associations Shell Spawning (O67)
    O67 – Shell Spawning: [HKCU..openCommand] (.Not Key.)
    ~ FASS Keys: 19 Legitimates Filtered in 00mn 00s

    —\ Menu de démarrage Internet (SMI) (O68)
    O68 – StartMenuInternet: [HKLM..ShellopenCommand] (.Mozilla Corporation – Firefox.) — C:Program Files (x86)Mozilla Firefoxfirefox.exe
    O68 – StartMenuInternet: [HKLM..ShellopenCommand] (.Google Inc. – Google Chrome.) — C:Program Files (x86)GoogleChromeApplicationchrome.exe
    O68 – StartMenuInternet: [HKLM..ShellopenCommand] (.Microsoft Corporation – Internet Explorer.) — C:Program Files (x86)Internet Exploreriexplore.exe
    ~ Keys: Scanned in 00mn 00s

    —\ Recherche d’infection sur les navigateurs internet (SBI) (O69)
    O69 – SBI: SearchScopes [HKCU] {15F8D44C-1F6A-4afb-99E1-6DBF38826494} – (SpeedBit Search) – http://search.speedbit.com” onclick=”window.open(this.href);return false;
    O69 – SBI: SearchScopes [HKCU] {62F1AC2A-F452-4F1F-A3A6-33248E1055BF} – (Bing) – http://www.bing.com” onclick=”window.open(this.href);return false;
    O69 – SBI: SearchScopes [HKCU] {814C76CB-2623-43F4-AAD0-58A0E5190A20} – (Orange) – http://r.orange.fr” onclick=”window.open(this.href);return false;
    O69 – SBI: SearchScopes [HKCU] {CA8330BE-D06A-4B02-A42F-D21DC729449A} – (Search) – http://start.funmoods.com” onclick=”window.open(this.href);return false; =>PUP.Funmoods
    ~ Keys: Scanned in 00mn 00s

    —\ Enumère les fichiers Crack & Keygen (CKF) (O82)
    C:UsersChristianDocumentsWinrarRarLab.WinRAR.v5.00.Cracked-EAT.rar
    C:UsersChristianDocumentsWinrarRarLab.WinRAR.v5.00.Cracked-EAT.rar
    ~ Files: Scanned in 00mn 56s

    —\ Recherche particulière à la racine du système (SPRF) (O84)
    [MD5.EC7C9A61B6213C7FD86D949A1CEC73BF] [SPRF][24/09/2013] (…) — C:UsersChristianAppDataLocalLowlpm.dat [10498]
    [MD5.8AE89101D7EC944A27FA7FE1DFD6188F] [SPRF][24/09/2011] (…) — C:UsersChristianAppDataRoamingwklnhst.dat [620]
    [MD5.2267E4E850A6FFC01B7EED3EACFCC93F] [SPRF][27/10/2013] (.Pas de propriétaire – Contrôle et suppression restrictions.) — C:UsersChristianDesktopCTR.exe [938001]
    [MD5.1F706E1F23E4E4A7FBE4F243D0A6D5C4] [SPRF][04/07/2011] (…) — C:Program Files (x86)AssistanceLivebox.exe [147880]
    ~ Files: 6 Legitimates Filtered in 00mn 00s

    —\ Liste des exceptions du parefeu (FirewallRules) (O87)
    O87 – FAEL: “TCP Query User{906C3559-9E77-4149-90B6-C2B4ECBFA1B5}C:program files (x86)limewirelimewire.exe” |In – Private – P6 – TRUE | .(…) — C:program files (x86)limewirelimewire.exe (.not file.)
    O87 – FAEL: “UDP Query User{53CAA8BF-98B1-4503-8AB7-00AF46B2F6E2}C:program files (x86)limewirelimewire.exe” |In – Private – P17 – TRUE | .(…) — C:program files (x86)limewirelimewire.exe (.not file.)
    O87 – FAEL: “TCP Query User{4CC312B8-B5A9-4BA9-8508-1544BF4D4E0E}C:program files (x86)dapdap.exe” | In – Private – P6 – TRUE | .(.Speedbit Ltd. – Download Accelerator Plus (DAP).) — C:program files (x86)dapdap.exe
    O87 – FAEL: “UDP Query User{32241AB4-D707-40F6-9ACF-EBEB3038DBD5}C:program files (x86)dapdap.exe” | In – Private – P17 – TRUE | .(.Speedbit Ltd. – Download Accelerator Plus (DAP).) — C:program files (x86)dapdap.exe
    O87 – FAEL: “{5FE8193C-BA75-4A7D-B4E6-48980A56E08E}” | In – Private – P6 – FALSE | .(.IncrediMail, Ltd. – IncrediMail Application.) — C:Program Files (x86)IncrediMailBinIncMail.exe
    O87 – FAEL: “{C554E12B-DBD1-4638-B601-C103102BE8E2}” | In – Private – P17 – FALSE | .(.IncrediMail, Ltd. – IncrediMail Application.) — C:Program Files (x86)IncrediMailBinIncMail.exe
    O87 – FAEL: “{80E72618-B78E-4FBE-AF4D-56F02A391B77}” | In – Private – P6 – FALSE | .(.IncrediMail, Ltd. – IncrediMail Tray Application.) — C:Program Files (x86)IncrediMailBinImApp.exe
    O87 – FAEL: “{6B9180C8-8A95-4CD1-9060-5E705B03291C}” | In – Private – P17 – FALSE | .(.IncrediMail, Ltd. – IncrediMail Tray Application.) — C:Program Files (x86)IncrediMailBinImApp.exe
    O87 – FAEL: “{8113B4D9-E49B-45AD-8E34-82FF2F819B70}” | In – Private – P6 – FALSE | .(.IncrediMail, Ltd. – IncrediMail Content Importer.) — C:Program Files (x86)IncrediMailBinImpCnt.exe
    O87 – FAEL: “{95FB7AB8-1EF5-49E4-8D92-99A3B21AFBFF}” | In – Private – P17 – FALSE | .(.IncrediMail, Ltd. – IncrediMail Content Importer.) — C:Program Files (x86)IncrediMailBinImpCnt.exe
    O87 – FAEL: “{5E131F23-5FDE-43EE-9397-91B2DC19E74D}” |In – Private – P6 – TRUE | .(…) — C:Program Files (x86)Windows Searchqu ToolbarDatamngrToolBardtUser.exe (.not file.) =>PUP.Datamngr
    O87 – FAEL: “{FA02CA1F-DD23-4BA5-8E71-BC7D7F67C68C}” |In – Private – P17 – TRUE | .(…) — C:Program Files (x86)Windows Searchqu ToolbarDatamngrToolBardtUser.exe (.not file.) =>PUP.Datamngr
    O87 – FAEL: “{8745684C-95A3-40CD-B077-0F924ED6A013}” |In – Private – P6 – TRUE | .(…) — C:Program Files (x86)SweetIMCommunicatorSweetPacksUpdateManager.exe (.not file.) =>PUP.SweetIM
    O87 – FAEL: “{424DA903-288A-4D18-9E32-F974207ACECC}” |In – Private – P17 – TRUE | .(…) — C:Program Files (x86)SweetIMCommunicatorSweetPacksUpdateManager.exe (.not file.) =>PUP.SweetIM
    ~ Firewall: 280 Legitimates Filtered in 00mn 01s

    —\ Enumère les codes produits des logiciels (PUC) (O90)
    O90 – PUC: “DB3F79E5CDDC8814D98935E241AFBBD5” . (.IncrediMail.) — C:WindowsInstaller{5E97F3BD-CDDC-4188-9D98-532E14FABB5D}ARPPRODUCTICON.exe
    O90 – PUC: “F0BBACFFF1EE23245A36FD5976ED5BA2” . (.Chrome Remote Desktop Host.) — C:WindowsInstaller{FFCABB0F-EE1F-4232-A563-DF9567DEB52A}chromoting.ico
    ~ Update Products: 166 Legitimates Filtered in 00mn 00s

    —\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
    [MD5.37567A52FCB048AD2341BA1255A53D95] [WIS][26/05/2011] (.IncrediMail – IncrediMail.) — C:WindowsInstaller10f56b9.msi [2831360]
    [MD5.648FBA78FBBBB8EA6E33020A2220D2A4] [WIS][27/02/2010] (.SpeedBit – DAP Plug-in for 64 bit IE.) — C:WindowsInstaller23e6da.msi [3657728]
    ~ WIS: 173 Legitimates Filtered in 00mn 32s

    —\ Etat général des services not Microsoft (EGS) (SR=Running, SS=Stopped)
    SR – | Auto 11/05/2013 65640 | (AdobeARMservice) . (.Adobe Systems Incorporated.) – C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe
    SS – | Demand 10/10/2013 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) – C:WindowsSysWOW64MacromedFlashFlashPlayerUpdateService.exe
    SS – | Demand 06/07/2012 32768 | (AllShare Framework DMS) . (.Samsung.) – C:Program FilesSamsungAllShare Framework DMS1.1.01AllShareFrameworkManagerDMS.exe
    SR – | Auto 02/12/2009 202752 | (AMD External Events Utility) . (.AMD.) – C:WindowsSystem32atiesrxx.exe
    SR – | Auto 12/12/2005 176193 | (APC UPS Service) . (.American Power Conversion Corporation.) – C:Program Files (x86)APCAPC PowerChute Personal Editionmainserv.exe
    SR – | Auto 26/02/2012 55144 | (Apple Mobile Device) . (.Apple Inc..) – C:Program Files (x86)Common FilesAppleMobile Device SupportAppleMobileDeviceService.exe
    SR – | Auto 26/10/2010 1765484 | (BlueSoleilCS) . (.IVT Corporation.) – C:Program Files (x86)IVT CorporationBlueSoleilBlueSoleilCS.exe
    SR – | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) – C:Program FilesBonjourmDNSResponder.exe
    SS – | Demand 27/07/2012 69120 | (Boonty Games) . (.BOONTY.) – C:Program Files (x86)Common FilesBOONTY SharedServiceBoonty.exe
    SR – | Demand 25/10/2010 192000 | (BsHelpCS) . (.IVT Corporation.) – C:Program Files (x86)IVT CorporationBlueSoleilBsHelpCS.exe
    SR – | Auto 23/09/2013 50128 | (chromoting) . (.Google Inc..) – C:Program Files (x86)GoogleChrome Remote Desktop30.0.1599.56remoting_host.exe
    SS – | Auto 10/06/2013 1966960 | (Dedicarz Service) . (…) – C:Program Files (x86)OrangeAssistance LiveboxdedicarzDedicarzService.exe
    SR – | Auto 13/05/2010 119632 | (dgdersvc) . (.Devguru Co., Ltd..) – C:Windowssystem32dgdersvc.exe
    SR – | Auto 20/07/2012 64384 | (DokanMounter) . (.F-Secure.) – C:Program FilesOrangemes contenus – mon disquemounter.exe
    SR – | Auto 14/07/2009 27136 | C:WindowsSystem32ezsvc7.dll (ezSharedSvc) . (.EasyBits Sofware AS.) – C:WindowsSystem32svchost.exe
    SS – | Demand 24/03/2010 246520 | (GameConsoleService) . (.WildTangent, Inc..) – C:Program Files (x86)HP GamesHP Game ConsoleGameConsoleService.exe
    SS – | Auto 07/03/2010 135664 | (gupdate) . (.Google Inc..) – C:Program Files (x86)GoogleUpdateGoogleUpdate.exe
    SS – | Demand 07/03/2010 135664 | (gupdatem) . (.Google Inc..) – C:Program Files (x86)GoogleUpdateGoogleUpdate.exe
    SR – | Auto 15/11/2010 126520 | (HP Health Check Service) . (.Hewlett-Packard Company.) – C:Program Files (x86)Hewlett-PackardHP Health Checkhphc_service.exe
    SR – | Auto 14/10/2010 92216 | (HPDrvMntSvc.exe) . (.Hewlett-Packard Company.) – C:Program Files (x86)Hewlett-PackardSharedHPDrvMntSvc.exe
    SS – | Demand 14/10/2010 751672 | (hpqwmiex) . (.Hewlett-Packard Company.) – C:Program Files (x86)Hewlett-PackardSharedhpqwmiex.exe
    SS – | Demand 22/10/2004 73728 | (IDriverT) . (.Macrovision Corporation.) – C:Program Files (x86)Common FilesInstallShieldDriver1050Intel 32IDriverT.exe
    SS – | Demand 28/03/2012 140456 | (IJPLMSVC) . (…) – C:Program Files (x86)CanonIJPLMIJPLMSVC.exe
    SS – | Demand 27/03/2012 934760 | (iPod Service) . (.Apple Inc..) – C:Program FilesiPodbiniPodService.exe
    SS – | Demand 10/07/1658 0 | (KiesAllShare) . (…) – C:Program Files (x86)SamsungKiesWiselinkProWiselinkPro.exe
    SR – | Auto 20/08/2009 73728 | (LightScribeService) . (.Hewlett-Packard Company.) – c:Program Files (x86)Common FilesLightScribeLSSrvc.exe
    SR – | Auto 04/04/2013 418376 | (MBAMScheduler) . (.Malwarebytes Corporation.) – C:Program Files (x86)Malwarebytes’ Anti-Malwarembamscheduler.exe
    SR – | Auto 04/04/2013 701512 | (MBAMService) . (.Malwarebytes Corporation.) – C:Program Files (x86)Malwarebytes’ Anti-Malwarembamservice.exe
    SS – | Demand 25/08/2013 117656 | (MozillaMaintenance) . (.Mozilla Foundation.) – C:Program Files (x86)Mozilla Maintenance Servicemaintenanceservice.exe
    SS – | Auto 29/08/2013 1073160 | (Orange update Core Service) . (.Orange SA.) – C:Program Files (x86)OrangeOrangeUpdateServiceOUCore.exe
    SR – | Auto 08/04/2013 1320496 | (PDF Architect Helper Service) . (.pdfforge GmbH.) – C:Program Files (x86)PDF ArchitectHelperService.exe
    SR – | Auto 08/04/2013 799280 | (PDF Architect Service) . (.pdfforge GmbH.) – C:Program Files (x86)PDF ArchitectConversionService.exe
    SR – | Auto 24/08/2011 430136 | (PMBDeviceInfoProvider) . (.Sony Corporation.) – C:Program Files (x86)SonyPMBPMBDeviceInfoProvider.exe
    SR – | Auto 24/04/2012 390632 | (RichVideo64) . (…) – C:Program FilesCyberLinkShared filesRichVideo64.exe
    SR – | Auto 22/09/2010 249136 | (SeaPort) . (.Microsoft Corporation.) – C:Program Files (x86)MicrosoftSearch Enhancement PackSeaPortSeaPort.exe
    SS – | Auto 13/07/2012 160944 | (SkypeUpdate) . (.Skype Technologies.) – C:Program Files (x86)SkypeUpdaterUpdater.exe
    SS – | Disabled 14/07/2009 27136 | C:Program Files (x86)Windows Defendermpsvc.dll (WinDefend) . (.Microsoft Corporation.) – C:WindowsSystem32svchost.exe
    SR – | Auto 10/07/1658 0 | (WMPNetworkSvc) . (…) – C:Program Files (x86)Windows Media Playerwmpnetwk.exe =>.Microsoft Corporation
    SR – | Auto 14/07/2009 27136 | C:WindowsSystem32wuaueng.dll (wuauserv) . (.Microsoft Corporation.) – C:WindowsSystem32svchost.exe
    ~ Services: Scanned in 00mn 34s

    —\ Recherche d’infection sur le Master Boot Record (MBR)(O80)
    Run by Christian at 27/10/2013 10:29:39
    ~ OS 64 not supported by MBR tool
    ~ MBR: 0 Legitimates Filtered in 00mn 00s

    —\ Recherche d’infection sur le Master Boot Record (MBRCheck)(O80)
    Written by ad13, http://ad13.geekstog” onclick=”window.open(this.href);return false;
    Run by Christian at 27/10/2013 10:29:41

    ********* Dump file Name *********
    C:PhysicalDisk0_MBR.bin
    ~ MBR: Scanned in 00mn 02s

    —\ Scan Additionnel (O88)
    Database Version : 12960 – (27/10/2013)
    Clés trouvées (Keys found) : 3
    Valeurs trouvées (Values found) : 2
    Dossiers trouvés (Folders found) : 0
    Fichiers trouvés (Files found) : 0

    [HKLMSoftwareMicrosoftWindowsCurrentVersionUninstallAdvanced Driver Updater_is1] =>PUP.AdvancedDriverUpdater^
    [HKLMSoftwareMicrosoftWindowsCurrentVersionUninstall{C1C6816E-CBB3-A748-85F9-A8B47B68985B}] =>PUP.OfferWare^
    [HKCUSoftwareMicrosoftWindowsCurrentVersionExtStats{C9A6357B-25CC-4BCF-96C1-78736985D412}] =>Toolbar.Orange
    ~ Additionnel Scan: 418207 Items scanned in 00mn 18s

    —\ Récapitulatif des détections trouvées sur votre station
    ~ http://nicolascoolman.webs.com/apps/blog/show/27556476-adware-spointer” onclick=”window.open(this.href);return false; =>Adware.SPointer
    ~ http://nicolascoolman.webs.com/apps/blog/show/30393137-adware-domaiq” onclick=”window.open(this.href);return false; =>Adware.DomaIQ
    ~ http://nicolascoolman.webs.com/apps/blog/show/27332348-pup-offerware” onclick=”window.open(this.href);return false; =>PUP.Offerware
    ~ http://nicolascoolman.webs.com/apps/blog/show/27630986-pup-funmoods” onclick=”window.open(this.href);return false; =>PUP.Funmoods
    ~ http://nicolascoolman.webs.com/apps/blog/show/27583992-pup-datamngr” onclick=”window.open(this.href);return false; =>PUP.Datamngr
    ~ http://nicolascoolman.webs.com/apps/blog/show/29216159-pup-sweetim” onclick=”window.open(this.href);return false; =>PUP.SweetIM
    ~ MSI: 6 link(s) detected in 00mn 18s

    ~ 2120 Legitimates filtered by white list
    End of the scan (682 lines in 06mn 15s)(2)

  • Anonyme
    Post count: 0

    On va vérifier une chose :

    • Télécharges UsbFix (de El Desaparecido) sur ton Bureau !
    • Exécute UsbFix
    • Choisi l’option Listing
    • Copie et Colle le contenu du rapport qui apparaît à la fin du scan dans ta réponse
  • Photo du profil de smeggysmeggy
    Participant
    Post count: 9

    Utilisateur: Christian (Administrateur) # CHRISTIAN-PC
    Mis à jour le 17/10/2013 par El Desaparecido – Team SosVirus
    Lancé à 11:15:27 | 27/10/2013

    Site Web: http://www.usbfix.net/” onclick=”window.open(this.href);return false;
    Forum : https://www.sosvirus.net/” onclick=”window.open(this.href);return false;
    Upload Malware: upload_malware.php
    Contact: http://www.usbfix.net/contact/” onclick=”window.open(this.href);return false;

    PC: PEGATRON CORPORATION (Narra6)
    CPU: AMD Athlon(tm) II X2 215 Processor
    RAM -> [Total : 4095 | Free : 2148]
    Bios: American Megatrends Inc.
    Boot: Normal boot

    OS: Microsoft Windows 7 Édition Familiale Premium (6.1.7601 64-Bit) # Service Pack 1
    WB: Windows Internet Explorer 10.0.9200.16721

    SC: Security Center Service [(!) Disabled]
    WU: Windows Update Service [Enabled]
    AS: Windows Defender [(!) Disabled | Updated]
    FW: Windows FireWall Service [Enabled]

    C: (%systemdrive%) -> Disque fixe # 920 Go (541 Go libre(s) – 59%) [COMPAQ] # NTFS
    D: -> Disque fixe # 12 Go (2 Go libre(s) – 14%) [FACTORY_IMAGE] # NTFS
    E: -> CD-ROM

    ################## | Listing |

    [25/10/2013 – 09:59:18 | D ] C:$RECYCLE.BIN
    [31/03/2013 – 09:33:13 | D ] C:1517026d305382a9369b62ebcd3e
    [31/03/2013 – 09:46:22 | D ] C:4b569151f7f72666f7c74b57
    [25/06/2010 – 19:26:29 | D ] C:7e099a45c2b8b95971725751640a5b
    [26/10/2013 – 17:51:36 | D ] C:AdwCleaner
    [05/05/2013 – 16:45:49 | D ] C:AllShare Play
    [16/11/2010 – 11:57:06 | A | 2006] C:aqua_bitmap.cpp
    [06/08/2010 – 07:57:31 | A | 254] C:Bryce Uninstall.log
    [01/05/2011 – 16:27:58 | D ] C:CanoScan
    [25/10/2013 – 09:52:36 | A | 39097] C:ComboFix.txt
    [24/10/2013 – 12:40:36 | D ] C:Config.Msi
    [22/09/2013 – 10:05:53 | D ] C:divx
    [14/07/2009 – 06:08:56 | SHD ] C:Documents and Settings
    [31/03/2013 – 09:45:07 | D ] C:fb788de12609f32d64af5c4d
    [11/05/2010 – 17:20:04 | A | 250] C:FINIS_IT.TXT
    [04/08/2013 – 08:41:48 | D ] C:GameHouse Games
    [27/10/2013 – 10:18:46 | ASH | 3220676608] C:hiberfil.sys
    [11/05/2010 – 17:20:02 | D ] C:hp
    [01/12/2006 – 23:37:14 | A | 904704] C:msdia80.dll
    [28/02/2012 – 19:28:22 | D ] C:My Download Files
    [04/08/2013 – 08:48:59 | D ] C:My Games
    [14/08/2012 – 08:23:11 | D ] C:My Works
    [27/10/2013 – 10:18:47 | ASH | 4294238208] C:pagefile.sys
    [14/07/2009 – 04:20:08 | D ] C:PerfLogs
    [27/10/2013 – 10:29:39 | A | 512] C:PhysicalDisk0_MBR.bin
    [26/10/2013 – 17:38:12 | RD ] C:Program Files
    [27/10/2013 – 09:39:30 | D ] C:Program Files (x86)
    [27/10/2013 – 09:39:30 | D ] C:ProgramData
    [25/10/2013 – 09:53:08 | D ] C:Qoobox
    [07/12/2012 – 14:37:56 | D ] C:Samsung
    [27/02/2010 – 10:29:21 | D ] C:Securitoo
    [27/02/2010 – 10:30:35 | A | 159] C:Setup.log
    [19/09/2013 – 09:50:36 | D ] C:SkyDriveTemp
    [24/10/2013 – 14:44:51 | A | 0] C:Startvir.txt
    [30/01/2011 – 12:07:57 | AD ] C:swsetup
    [24/10/2013 – 13:55:15 | SHD ] C:System Volume Information
    [30/01/2011 – 12:08:12 | D ] C:SYSTEM.SAV
    [26/03/2013 – 09:57:15 | D ] C:Temp
    [18/08/2012 – 16:47:38 | D ] C:Upload
    [27/10/2013 – 11:15:29 | D ] C:UsbFix
    [27/10/2013 – 11:15:29 | A | 3058] C:UsbFix [Listing 1 ] CHRISTIAN-PC.txt
    [04/04/2012 – 07:24:18 | A | 50] C:user.js
    [21/08/2013 – 10:24:18 | RD ] C:Users
    [26/10/2013 – 18:07:25 | D ] C:Windows
    [27/02/2010 – 10:12:08 | D ] D:$RECYCLE.BIN
    [27/02/2010 – 10:12:05 | D ] D:boot
    [13/07/2009 – 18:39:00 | ASH | 383562] D:bootmgr
    [27/02/2010 – 10:12:04 | SH | 0] D:BT_COMPAQ.FLG
    [10/01/2010 – 14:22:51 | ASH | 485] D:CSP.DAT
    [10/01/2010 – 14:41:01 | ASH | 15541] D:DeployRp.log
    [08/05/2010 – 09:57:28 | D ] D:hp
    [08/05/2010 – 09:57:28 | ASH | 0] D:hpdrcu.prc
    [27/02/2010 – 10:12:04 | ASH | 22] D:language.ini
    [27/02/2010 – 10:12:05 | D ] D:preload
    [27/02/2010 – 10:12:05 | D ] D:Recovery
    [10/01/2010 – 14:40:59 | ASH | 0] D:RPCONFIG.LOG
    [14/10/2013 – 08:27:34 | SHD ] D:System Volume Information

    ################## | E.O.F |

  • Anonyme
    Post count: 0

    Ouvre l’invite de commande :

    Menu démarrer -> accessoire -> clic droit sur Invite de commande -> choisi exécuter en tant qu’administrateur

    Dans la fenêtre noire copie colle cette ligne :

    sc start wscsvc

    Valide par entrée.

    Ensuite copie colle cette ligne :

    sc start WinDefend

    Valide par entrée. Redémarre ensuite le pc et dis moi comment va ton Centre de sécurité stp.

  • Photo du profil de smeggysmeggy
    Participant
    Post count: 9

    A chaque ligne saisie j’obtiens ce message: Le service ne peut pas etre démarré parce qu’il est désactivé ou qu’aucun périphérique active ne lui est associé.

  • Anonyme
    Post count: 0

    :(

    • Télécharges RogueKiller (de Tigzy) sur ton Bureau.
    • Lance RogueKiller, exécuter en tant qu’administrateur sous Windows : 7/8 et Vista

      Note : Attends que le PreScan ait fini.

    • Clique sur Scan.
    • Clique sur Supression
    • Une fois le scan terminé rends toi sur le bureau, le rapport RKreport[X]¤D¤.txt à été créé.
    • Héberge le rapport RKreport[X]¤D¤.txt sur SosUpload, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum

Le sujet ‘Virus Bagle’ est fermé à de nouvelles réponses.