Actualité informatique
Test comparatif matériel informatique
Jeux vidéo
Astuces informatique
Vidéo
Télécharger
Services en ligne
Forum informatique
01Business

|-  SECURITE


|||-  

probléme avec lo.st sur windos 7

 

pépère. et 60 utilisateurs inconnus
Ajouter une réponse
 

 
Page photos
 
 Mot :  Pseudo :  
Vider la liste des messages à citer
 
 Page :
1
Auteur
 Sujet :

probléme avec lo.st sur windos 7

Prévenir les modérateurs en cas d'abus 
entente95
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 26/12/2009 à 15:36:13  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
bonjour tout le monde,

 je rencontre un probléme avec lo.st il apparaisait en page d'accueil j'ai donc changer l'adresse,
 j'ai suprimer le programme dans installer/desinstaller,
 ainsi que le dossier dans programme files

 malheureusement quand je clique sur nouvel onglet je me retrouve avec lo.st

 comment puis je faire pour le suprimer definitivement
 en vous remerciant d'avance pour vos réponse
 bonne journé

Profil : Equipe sécurité
dedetraque
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 26/12/2009 à 15:46:59  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Salut entente95


 On va vérifier cela, télécharge RSIT (de random/random) sur le bureau ici :
 http://images.malwareremoval.com/random/RSIT.exe

 - Double clique sur RSIT.exe qui est sur le bureau
 - Clique sur Continue dans la fenêtre
 - RSIT téléchargera HijackThis si il n’est pas présent où détecté, alors il faudra accepter la licence
 - Poste le contenue des deux rapports, log.txt et info.txt(réduit dans la barre des tâches) à la fin de l’analyse

 Les rapports sont dans le dossier ici C:\rsit


 @++   :)

(Publicité)
entente95
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 26/12/2009 à 15:53:43  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
bonjour dédétraqué, je te remercie de me repondre tout d'abord ,

 lorsque je clique sur continue
 jai une barre running hijackthis

 mais j'obtient autolt error

 line1:
 error: variable used without being declared

entente95
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 26/12/2009 à 15:53:58  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
bonjour dédétraqué, je te remercie de me repondre tout d'abord ,

 lorsque je clique sur continue
 jai une barre running hijackthis

 mais j'obtient autolt error

 line1:
 error: variable used without being declared

Profil : Equipe sécurité
dedetraque
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 26/12/2009 à 16:10:49  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Salut entente95


 Désactive le contrôle des comptes utilisateurs UAC (tu le réactiveras après le scan):

 - Va dans démarrer puis panneau de configuration
 - Double Clique sur l'icône "Comptes d'utilisateurs"
 - Clique ensuite sur désactiver et valide.


 
  • Télécharge AD-Remover (de Cyrildu17 / C_XX) sur ton Bureau.

 [:blue_fire:9] Déconnecte-toi et ferme toutes applications en cours  [:blue_fire:9]

 
  • Double-clique sur le programme d'installation, installe-le dans son emplacement par défaut (C:\Program files).
  • Faire un clique droit sur l'icône AD-Remover située sur ton Bureau et choisir exécuter en tant qu'administrateur.
  • Au menu principal, choisis l'option L.
  • Poste le rapport qui apparaît à la fin.

 (Le rapport est sauvegardé aussi sous C:\Ad-report(date).log)

 (CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)

 Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus comme une infection, ne pas en tenir compte, il s'agit d'un faux positif, continue la procédure

 Aide : http://commentcestfait.forumac [...] r-t775.htm


 @++  :)

(Publicité)
entente95
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 26/12/2009 à 17:13:03  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 

 [jai desactivé le controle des comptes mais aprés avoir executer ad-r en tant qu'administrateur et avoir apuyer sur L et entré la page se ferme

 jai trouvé le rapport rist :

 Logfile of random's system information tool 1.06 (written by random/random)
 Run by vincent at 2009-12-26 16:09:47
 Microsoft Windows 7 Édition Familiale Premium  
 System drive C: has 426 GB (91%) free of 470 GB
 Total RAM: 4095 MB (65% free)

 Logfile of Trend Micro HijackThis v2.0.2
 Scan saved at 16:10:02, on 26/12/2009
 Platform: Unknown Windows (WinNT 6.01.3504)
 MSIE: Internet Explorer v8.00 (8.00.7600.16385)
 Boot mode: Normal

 Running processes:
 C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe
 C:\Program Files (x86)\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatch​er.exe
 C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
 C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
 C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe
 C:\Program Files (x86)\McAfee.com\Agent\mcagent​.exe
 C:\Program Files (x86)\iTunes\iTunesHelper.exe
 C:\Program Files (x86)\Norton Internet Security\Engine\16.7.2.11\ccSv​cHst.exe
 C:\Program Files (x86)\Internet Explorer\iexplore.exe
 C:\Program Files (x86)\Internet Explorer\iexplore.exe
 C:\Program Files (x86)\Internet Explorer\iexplore.exe
 C:\Users\vincent\Desktop\RSIT.​exe
 C:\Program Files (x86)\trend micro\vincent.exe

 R1 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.a [...] 5bg7612l03
 R1 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Search Bar = Preserve
 R1 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://homepage.acer.com/rdr.a [...] 5bg7612l03
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.a [...] 5bg7612l03
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Default_Search_U​RL = http://go.microsoft.com/fwlink/?LinkId=54896
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://homepage.acer.com/rdr.a [...] 5bg7612l03
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Search,SearchAssistan​t =
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Search,CustomizeSearc​h =
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Toolbar,LinksFolderNa​me =
 R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516AB​ECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mc​ieplg.dll
 F2 - REG:system.ini: UserInit=userinit.exe
 O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578​C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\Ac​roIEHelperShim.dll
 O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AF​E6163AB} - c:\PROGRA~2\mcafee\msk\mskapbh​o.dll
 O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7​942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.​dll
 O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988​571CECB} - (no file)
 O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC​4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\16.7.2.11\coIE​Plg.dll
 O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628​F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\16.7.2.11\IPSB​HO.DLL
 O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F​01C5231} - c:\PROGRA~2\mcafee\VIRUSS~1\sc​riptsn.dll
 O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-51647​60863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
 O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF105​77473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
 O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B​5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNoti​fier\5.4.4525.1752\swg.dll
 O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E​90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mc​ieplg.dll
 O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516AB​ECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mc​ieplg.dll
 O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
 O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09​D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\16.7.2.11\coIE​Plg.dll
 O4 - HKLM\..\Run: [BackupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k
 O4 - HKLM\..\Run: [Hotkey Utility] C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
 O4 - HKLM\..\Run: [EgisTecLiveUpdate] "C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe"
 O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
 O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivati​on.exe" UNATTENDED
 O4 - HKLM\..\Run: [mcagent_exe] "C:\Program Files (x86)\McAfee.com\Agent\mcagent​.exe" /runkey
 O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
 O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
 O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
 O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe"
 O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
 O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
 O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.e​xe (User 'SERVICE LOCAL')
 O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
 O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.e​xe (User 'SERVICE RÉSEAU')
 O4 - Startup: Outil de détection de support PMB.lnk = C:\Program Files (x86)\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatch​er.exe
 O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCD​DC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExten​sion.dll
 O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCD​DC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExten​sion.dll
 O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663E​E0C6C49} - C:\PROGRA~2\MICROS~1\Office12\​ONBttnIE.dll
 O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663E​E0C6C49} - C:\PROGRA~2\MICROS~1\Office12\​ONBttnIE.dll
 O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C5​71A8263} - C:\PROGRA~2\MICROS~1\Office12\​REFIEBAR.DLL
 O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB​36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.​dll
 O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB​36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.​dll
 O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
 O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
 O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
 O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
 O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
 O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
 O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
 O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
 O13 - Gopher Prefix:
 O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-06739​4E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mc​ieplg.dll
 O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-06739​4E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mc​ieplg.dll
 O18 - Protocol: symres - {AA1061FE-6C41-421F-9344-69640​C9732AB} - C:\Program Files (x86)\Norton Internet Security\Engine\16.7.2.11\coIE​Plg.dll
 O23 - Service: @%SystemRoot%\system32\Alg.exe​,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
 O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceS​ervice.exe
 O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.ex​e
 O23 - Service: @%SystemRoot%\system32\efssvc.​dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
 O23 - Service: @%systemroot%\system32\fxsresm​.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
 O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManag​er\bin32\nSvcAppFlt.exe
 O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GregHS​RW.exe
 O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.e​xe
 O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
 O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
 O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files (x86)\McAfee\SiteAdvisor\McSAC​ore.exe
 O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~2\McAfee\MSC\mcmscsv​c.exe
 O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~2\COMMON~1\mcafee\mn​a\mcnasvc.exe
 O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mc​ods.exe
 O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~2\COMMON~1\mcafee\mc​proxy\mcproxy.exe
 O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mc​shield.exe
 O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~2\McAfee\VIRUSS~1\mc​sysmon.exe
 O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files (x86)\McAfee\MPF\MPFSrv.exe
 O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
 O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files (x86)\McAfee\MSK\MskSrver.exe
 O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
 O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
 O23 - Service: @%SystemRoot%\System32\netlogo​n.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
 O23 - Service: Norton Internet Security - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\16.7.2.11\ccSv​cHst.exe
 O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManag​er\bin32\nSvcIp.exe
 O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
 O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
 O23 - Service: @%systemroot%\system32\psbase.​dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
 O23 - Service: @%systemroot%\system32\Locator​.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.ex​e (file missing)
 O23 - Service: @%SystemRoot%\system32\samsrv.​dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
 O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
 O23 - Service: @%SystemRoot%\system32\snmptra​p.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.e​xe (file missing)
 O23 - Service: @%systemroot%\system32\spoolsv​.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.ex​e (file missing)
 O23 - Service: @%SystemRoot%\system32\sppsvc.​exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
 O23 - Service: @%SystemRoot%\system32\ui0dete​ct.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.​exe (file missing)
 O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
 O23 - Service: @%SystemRoot%\system32\vaultsv​c.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
 O23 - Service: @%SystemRoot%\system32\vds.exe​,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
 O23 - Service: @%systemroot%\system32\vssvc.e​xe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
 O23 - Service: @%systemroot%\system32\wbengin​e.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.e​xe (file missing)
 O23 - Service: @%Systemroot%\system32\wbem\wm​iapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiAp​Srv.exe (file missing)
 O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

 --
 End of file - 13334 bytes

 ======Scheduled tasks folder======

 C:\Windows\tasks\McDefragTask.​job
 C:\Windows\tasks\McQcTask.job

 ======Registry dump======

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
 Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\Ac​roIEHelperShim.dll [2009-02-27 75128]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{27B4851A-3207-45A2-B947-BE8AFE6163AB}]
 McAfee Phishing Filter - c:\PROGRA~2\mcafee\msk\mskapbh​o.dll [2009-10-02 246800]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
 Spybot-S&D IE Protection - C:\PROGRA~2\SPYBOT~1\SDHelper.​dll [2009-01-26 1879896]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
 Symantec NCO BHO - C:\Program Files (x86)\Norton Internet Security\Engine\16.7.2.11\coIE​Plg.dll [2009-08-26 378736]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
 Symantec Intrusion Prevention - C:\Program Files (x86)\Norton Internet Security\Engine\16.7.2.11\IPSB​HO.DLL [2009-08-26 107896]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
 scriptproxy - c:\PROGRA~2\mcafee\VIRUSS~1\sc​riptsn.dll [2009-11-04 62784]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
 Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
 Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2009-12-04 263280]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
 Google Toolbar Notifier BHO - C:\Program Files (x86)\Google\GoogleToolbarNoti​fier\5.4.4525.1752\swg.dll [2009-12-07 764912]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
 McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\mc​ieplg.dll [2009-11-23 204048]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Internet Explorer\Toolbar]
 {0EBBBE48-BAD4-4B4C-8E5A-516AB​ECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\mc​ieplg.dll [2009-11-23 204048]
 Locked
 {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2009-12-04 263280]
 {7FEBEFE3-6B19-4349-98D2-FFB09​D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\16.7.2.11\coIE​Plg.dll [2009-08-26 378736]

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Run]
 "BackupManagerTray"=C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [2009-08-12 261888]
 "Hotkey Utility"=C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [2009-08-10 629280]
 "EgisTecLiveUpdate"=C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe [2009-08-04 199464]
 "Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-28 35696]
 "NortonOnlineBackupReminder"=C​:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivati​on.exe [2009-07-25 588648]
 "mcagent_exe"=C:\Program Files (x86)\McAfee.com\Agent\mcagent​.exe [2009-10-29 1218008]
 "QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2009-11-10 417792]
 "iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2009-11-12 141600]
 "EoEngine"= []

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Windows\CurrentVersion\​Run]
 "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072]
 "uTorrent"=C:\Program Files (x86)\uTorrent\uTorrent.exe [2009-12-16 289584]
 "SpybotSD TeaTimer"=C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]

 C:\Users\vincent\AppData\Roami​ng\Microsoft\Windows\Start Menu\Programs\Startup
 Outil de détection de support PMB.lnk - C:\Program Files (x86)\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatch​er.exe

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\ShellServiceObjectDelayLoad]
 WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA0​05127ED}

 [HKEY_LOCAL_MACHINE\system\curr​entcontrolset\control\security​providers]
 "SecurityProviders"=credssp.dl​l

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\AppInfo]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\AppMgmt]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\Base]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\Boot Bus Extender]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\Boot file system]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\CryptSvc]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\DcomLaunch]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\EFS]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\EventLog]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\File system]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\Filter]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\HelpSvc]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\KeyIso]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\mcmscsvc]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\MCODS]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\Netlogon]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\NTDS]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\PCI Configuration]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\PlugPlay]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\PNP Filter]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\Power]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\Primary disk]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\ProfSvc]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\RpcEptMapper]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\RpcSs]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\sacsvr]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\SCSI Class]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\sermouse.sys]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\SWPRV]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\SymEFA.sys]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\System Bus Extender]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\TabletInputService]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\TBS]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\TrustedInstaller]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\VDS]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\vga.sys]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\vgasave.sys]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\vmms]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\volmgr.sys]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\volmgrx.sys]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\WinDefend]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\WinMgmt]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\WudfPf]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\WudfRd]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\WudfSvc]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\{36FC9E60-C465-11CF-8​056-444553540000}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\{4D36E965-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\{4D36E967-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\{4D36E969-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\{4D36E96A-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\{4D36E96B-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\{4D36E96F-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\{4D36E977-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\{4D36E97B-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\{4D36E97D-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\{4D36E980-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\{533C5B84-EC70-11D2-9​505-00C04F79DEAF}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\{6BDD1FC1-810F-11D0-B​EC7-08002BE2092F}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\{71A27CDD-812A-11D0-B​EC7-08002BE2092F}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\{745A17A0-74D3-11D0-B​6FE-00A0C90F57DA}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\{D48179BE-EC20-11D1-B​6B8-00C04FA372A7}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\Minimal\{D94EE5D8-D189-4994-8​3D2-F68D7D41B0E6}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\AFD]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\AppInfo]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\AppMgmt]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\Base]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\BFE]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\Boot Bus Extender]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\Boot file system]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\bowser]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\Browser]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\CryptSvc]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\DcomLaunch]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\dfsc]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\Dhcp]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\DnsCache]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\Dot3Svc]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\Eaphost]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\EFS]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\EventLog]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\File system]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\Filter]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\HelpSvc]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\IKEEXT]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\ipnat.sys]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\KeyIso]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\LanmanServer]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\LanmanWorkstation]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\LmHosts]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\mcmscsvc]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\MCODS]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\Messenger]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\MpfService]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\MPSDrv]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\MPSSvc]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\mrxsmb]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\mrxsmb10]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\mrxsmb20]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\NativeWifiP]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\NDIS]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\NDIS Wrapper]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\ndiscap]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\Ndisuio]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\NetBIOS]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\NetBIOSGroup]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\NetBT]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\NetDDEGroup]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\Netlogon]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\NetMan]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\netprofm]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\Network]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\NetworkProvider]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\NlaSvc]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\Nsi]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\nsiproxy.sys]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\NTDS]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\PCI Configuration]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\PlugPlay]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\PNP Filter]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\PNP_TDI]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\PolicyAgent]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\Power]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\Primary disk]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\ProfSvc]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\rdbss]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\rdpencdd.sys]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\rdsessmgr]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\RpcEptMapper]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\RpcSs]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\sacsvr]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\SCardSvr]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\SCSI Class]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\sermouse.sys]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\SharedAccess]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\Streams Drivers]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\SWPRV]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\SymEFA.sys]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\System Bus Extender]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\TabletInputService]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\TBS]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\Tcpip]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\TDI]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\TrustedInstaller]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\VaultSvc]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\VDS]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\vga.sys]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\vgasave.sys]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\vmms]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\volmgr.sys]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\volmgrx.sys]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\WinDefend]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\WinMgmt]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\Wlansvc]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\WudfPf]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\WudfRd]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\WudfSvc]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\WudfUsbccidDriver]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\{36FC9E60-C465-11CF-8​056-444553540000}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\{4D36E965-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\{4D36E967-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\{4D36E969-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\{4D36E96A-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\{4D36E96B-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\{4D36E96F-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\{4D36E972-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\{4D36E973-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\{4D36E974-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\{4D36E975-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\{4D36E977-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\{4D36E97B-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\{4D36E97D-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\{4D36E980-E325-11CE-B​FC1-08002BE10318}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\{50DD5230-BA8A-11D1-B​F5D-0000F805F530}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\{533C5B84-EC70-11D2-9​505-00C04F79DEAF}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\{6BDD1FC1-810F-11D0-B​EC7-08002BE2092F}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\{71A27CDD-812A-11D0-B​EC7-08002BE2092F}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\{745A17A0-74D3-11D0-B​6FE-00A0C90F57DA}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\{D48179BE-EC20-11D1-B​6B8-00C04FA372A7}]

 [HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\SafeBoot​\network\{D94EE5D8-D189-4994-8​3D2-F68D7D41B0E6}]

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Policies\System]
 "ConsentPromptBehaviorAdmin"=0
 "ConsentPromptBehaviorUser"=3
 "EnableLUA"=0
 "EnableUIADesktopToggle"=0
 "PromptOnSecureDesktop"=0
 "dontdisplaylastusername"=0
 "legalnoticecaption"=
 "legalnoticetext"=
 "shutdownwithoutlogon"=1
 "undockwithoutlogon"=1

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Windows\CurrentVersion\​Policies\explorer]
 "NoDriveTypeAutoRun"=149

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Policies\explorer]
 "NoActiveDesktop"=
 "NoActiveDesktopChanges"=
 "ForceActiveDesktopOn"=

 [HKEY_LOCAL_MACHINE\system\curr​entcontrolset\services\shareda​ccess\parameters\firewallpolic​y\standardprofile\authorizedap​plications\list]

 [HKEY_LOCAL_MACHINE\system\curr​entcontrolset\services\shareda​ccess\parameters\firewallpolic​y\domainprofile\authorizedappl​ications\list]

 ======File associations======

 .js - edit - C:\Windows\System32\Notepad.ex​e %1
 .js - open - C:\Windows\System32\WScript.ex​e "%1" %*

 ======List of files/folders created in the last 1 months======

 2009-12-26 16:09:48 ----D---- C:\Program Files (x86)\trend micro
 2009-12-26 16:09:47 ----D---- C:\rsit
 2009-12-26 16:07:33 ----D---- C:\Program Files (x86)\Ad-Remover
 2009-12-25 22:36:29 ----D---- C:\ProgramData\Spybot - Search & Destroy
 2009-12-25 22:36:29 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy
 2009-12-25 14:06:59 ----D---- C:\Program Files (x86)\Common Files\Symantec Shared
 2009-12-25 13:35:55 ----D---- C:\Program Files (x86)\Norton Internet Security
 2009-12-25 13:35:20 ----D---- C:\Program Files (x86)\NortonInstaller
 2009-12-25 11:41:51 ----D---- C:\Users\vincent\AppData\Roami​ng\ZoomBrowser EX
 2009-12-24 14:09:01 ----D---- C:\ProgramData\ZoomBrowser
 2009-12-24 14:08:48 ----D---- C:\Program Files (x86)\Canon
 2009-12-24 14:07:27 ----D---- C:\Program Files (x86)\Common Files\Canon
 2009-12-24 14:06:49 ----D---- C:\Users\vincent\AppData\Roami​ng\Sony Corporation
 2009-12-24 14:02:59 ----A---- C:\Windows\system32\d3dx9_30.d​ll
 2009-12-24 13:57:58 ----D---- C:\Program Files (x86)\Common Files\Sonic Shared
 2009-12-24 13:57:58 ----D---- C:\Program Files (x86)\Common Files\PX Storage Engine
 2009-12-24 13:56:25 ----D---- C:\Program Files (x86)\Sony
 2009-12-24 13:54:35 ----D---- C:\ProgramData\Sony Corporation
 2009-12-24 13:54:28 ----D---- C:\Users\vincent\AppData\Roami​ng\InstallShield
 2009-12-23 23:49:30 ----D---- C:\Users\vincent\AppData\Roami​ng\WinRAR
 2009-12-16 14:33:55 ----D---- C:\Users\vincent\AppData\Roami​ng\dvdcss
 2009-12-16 14:27:22 ----D---- C:\Users\vincent\AppData\Roami​ng\SharePod
 2009-12-16 14:17:59 ----D---- C:\Users\vincent\AppData\Roami​ng\vlc
 2009-12-16 14:16:48 ----D---- C:\Program Files (x86)\VideoLAN
 2009-12-16 13:12:16 ----D---- C:\Program Files (x86)\uTorrent
 2009-12-16 13:11:03 ----D---- C:\Users\vincent\AppData\Roami​ng\uTorrent
 2009-12-15 12:47:29 ----D---- C:\Users\vincent\AppData\Roami​ng\EoRezo
 2009-12-09 11:58:48 ----A---- C:\Windows\system32\mshtml.dll
 2009-12-09 11:58:48 ----A---- C:\Windows\system32\msfeedsbs.​dll
 2009-12-06 15:31:06 ----D---- C:\ProgramData\Norton
 2009-12-06 15:30:24 ----D---- C:\ProgramData\NortonInstaller
 2009-12-04 09:48:52 ----D---- C:\Users\vincent\AppData\Roami​ng\Apple Computer
 2009-12-04 09:48:43 ----A---- C:\Windows\system32\GEARAspi.d​ll
 2009-12-04 09:48:17 ----D---- C:\ProgramData\{0DD0EEEE-2A7C-​411C-9243-1AE62F445FC3}
 2009-12-04 09:48:17 ----D---- C:\Program Files (x86)\iTunes
 2009-12-04 09:46:55 ----D---- C:\Program Files (x86)\Bonjour
 2009-12-04 09:46:26 ----D---- C:\ProgramData\Apple Computer
 2009-12-04 09:46:26 ----D---- C:\Program Files (x86)\QuickTime
 2009-12-04 09:46:15 ----D---- C:\Program Files (x86)\Apple Software Update
 2009-12-04 09:45:40 ----D---- C:\ProgramData\Apple
 2009-12-04 09:45:40 ----D---- C:\Program Files (x86)\Common Files\Apple
 2009-12-04 09:35:58 ----A---- C:\Windows\system32\tzres.dll
 2009-12-04 09:34:18 ----A---- C:\Windows\system32\msv1_0.dll
 2009-12-04 09:31:51 ----D---- C:\Users\vincent\AppData\Roami​ng\WindSolutions
 2009-12-04 09:14:24 ----A---- C:\Windows\system32\wmp.dll
 2009-12-04 09:14:23 ----A---- C:\Windows\system32\fontsub.dl​l
 2009-12-04 09:14:23 ----A---- C:\Windows\system32\explorer.e​xe
 2009-12-04 09:14:23 ----A---- C:\Windows\system32\CertEnroll​.dll
 2009-12-04 09:14:23 ----A---- C:\Windows\explorer.exe
 2009-12-04 09:14:22 ----A---- C:\Windows\system32\wmploc.DLL
 2009-12-04 09:14:22 ----A---- C:\Windows\system32\t2embed.dl​l
 2009-12-04 09:14:22 ----A---- C:\Windows\system32\atmfd.dll
 2009-12-04 09:14:03 ----A---- C:\Windows\system32\msasn1.dll
 2009-12-03 20:16:30 ----D---- C:\ProgramData\AWEM
 2009-12-03 20:16:13 ----AD---- C:\ProgramData\TEMP
 2009-12-03 20:15:38 ----D---- C:\Users\vincent\AppData\Roami​ng\GameConsole
 2009-12-03 20:15:27 ----SHD---- C:\Users\vincent\AppData\Roami​ng\.#
 2009-12-03 19:34:45 ----A---- C:\Windows\system32\d3dx9_32.d​ll
 2009-12-03 19:33:40 ----D---- C:\Program Files (x86)\Microsoft
 2009-12-03 17:15:27 ----D---- C:\Users\vincent\AppData\Roami​ng\Nero
 2009-12-03 17:09:27 ----D---- C:\Users\vincent\AppData\Roami​ng\Google
 2009-12-03 17:08:45 ----D---- C:\Users\vincent\AppData\Roami​ng\Adobe
 2009-12-03 16:58:35 ----D---- C:\Users\vincent\AppData\Roami​ng\Macromedia
 2009-12-03 16:58:12 ----D---- C:\Users\vincent\AppData\Roami​ng\Identities
 2009-12-03 16:57:39 ----D---- C:\Program Files (x86)\OEM
 2009-12-03 16:57:23 ----SD---- C:\Users\vincent\AppData\Roami​ng\Microsoft
 2009-12-03 16:57:23 ----D---- C:\Users\vincent\AppData\Roami​ng\Media Center Programs
 2009-12-03 16:57:15 ----SHD---- C:\Recovery
 2009-12-03 16:57:15 ----SHD---- C:\ProgramData\Modèles
 2009-12-03 16:57:15 ----SHD---- C:\ProgramData\Menu Démarrer
 2009-12-03 16:57:15 ----SHD---- C:\ProgramData\Favoris
 2009-12-03 16:57:15 ----SHD---- C:\ProgramData\Bureau

 ======List of files/folders modified in the last 1 months======

 2009-12-26 16:09:52 ----D---- C:\Windows\Temp
 2009-12-26 16:09:48 ----RD---- C:\Program Files (x86)
 2009-12-26 16:01:19 ----D---- C:\Windows\System32
 2009-12-26 16:01:18 ----D---- C:\Windows\inf
 2009-12-26 15:55:41 ----D---- C:\Windows
 2009-12-26 14:47:46 ----D---- C:\Windows\SysWOW64
 2009-12-26 14:47:39 ----SHD---- C:\System Volume Information
 2009-12-26 13:45:46 ----SD---- C:\ProgramData\Microsoft
 2009-12-25 22:36:29 ----HD---- C:\ProgramData
 2009-12-25 22:35:44 ----D---- C:\Windows\Prefetch
 2009-12-25 14:06:59 ----D---- C:\Program Files (x86)\Common Files
 2009-12-25 13:37:51 ----D---- C:\ProgramData\Symantec
 2009-12-25 13:36:43 ----RD---- C:\Program Files
 2009-12-25 10:56:15 ----D---- C:\Windows\Tasks
 2009-12-25 10:33:50 ----D---- C:\ProgramData\Partner
 2009-12-24 14:03:03 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
 2009-12-24 14:01:33 ----D---- C:\Windows\Logs
 2009-12-24 13:57:59 ----SHD---- C:\Windows\Installer
 2009-12-24 13:55:54 ----D---- C:\Windows\winsxs
 2009-12-23 08:47:58 ----D---- C:\Program Files (x86)\McAfee
 2009-12-19 21:03:14 ----D---- C:\Windows\rescache
 2009-12-16 20:49:48 ----D---- C:\Program Files (x86)\Internet Explorer
 2009-12-15 17:51:32 ----SHD---- C:\$RECYCLE.BIN
 2009-12-15 08:45:23 ----D---- C:\ProgramData\McAfee
 2009-12-09 12:10:35 ----D---- C:\ProgramData\Microsoft Help
 2009-12-05 15:47:30 ----RSD---- C:\Windows\assembly
 2009-12-05 15:47:30 ----D---- C:\Windows\Microsoft.NET
 2009-12-04 13:35:56 ----D---- C:\Program Files (x86)\Microsoft Silverlight
 2009-12-04 10:15:06 ----D---- C:\Windows\system32\fr-FR
 2009-12-04 10:15:06 ----D---- C:\Windows\ehome
 2009-12-04 10:15:06 ----D---- C:\Program Files (x86)\Windows Media Player
 2009-12-04 10:15:02 ----D---- C:\Windows\AppPatch
 2009-12-04 10:05:18 ----HD---- C:\OEM
 2009-12-04 09:35:25 ----D---- C:\Program Files (x86)\Microsoft Works
 2009-12-04 09:30:55 ----D---- C:\Windows\debug
 2009-12-04 09:27:35 ----A---- C:\Windows\win.ini
 2009-12-04 09:26:36 ----D---- C:\Windows\SoftwareDistributio​n
 2009-12-03 19:35:52 ----D---- C:\Program Files (x86)\Windows Live
 2009-12-03 16:58:09 ----D---- C:\ProgramData\OEM
 2009-12-03 16:58:06 ----D---- C:\Windows\system32\OEM
 2009-12-03 16:57:23 ----RD---- C:\Users

entente95
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 26/12/2009 à 17:16:53  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
rapport hitjackthis :
 Logfile of Trend Micro HijackThis v2.0.2
 Scan saved at 16:10:02, on 26/12/2009
 Platform: Unknown Windows (WinNT 6.01.3504)
 MSIE: Internet Explorer v8.00 (8.00.7600.16385)
 Boot mode: Normal

 Running processes:
 C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe
 C:\Program Files (x86)\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatch​er.exe
 C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
 C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
 C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe
 C:\Program Files (x86)\McAfee.com\Agent\mcagent​.exe
 C:\Program Files (x86)\iTunes\iTunesHelper.exe
 C:\Program Files (x86)\Norton Internet Security\Engine\16.7.2.11\ccSv​cHst.exe
 C:\Program Files (x86)\Internet Explorer\iexplore.exe
 C:\Program Files (x86)\Internet Explorer\iexplore.exe
 C:\Program Files (x86)\Internet Explorer\iexplore.exe
 C:\Users\vincent\Desktop\RSIT.​exe
 C:\Program Files (x86)\trend micro\vincent.exe

 R1 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.a [...] 5bg7612l03
 R1 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Search Bar = Preserve
 R1 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://homepage.acer.com/rdr.a [...] 5bg7612l03
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.a [...] 5bg7612l03
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Default_Search_U​RL = http://go.microsoft.com/fwlink/?LinkId=54896
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://homepage.acer.com/rdr.a [...] 5bg7612l03
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Search,SearchAssistan​t =
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Search,CustomizeSearc​h =
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Toolbar,LinksFolderNa​me =
 R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516AB​ECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mc​ieplg.dll
 F2 - REG:system.ini: UserInit=userinit.exe
 O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578​C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\Ac​roIEHelperShim.dll
 O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AF​E6163AB} - c:\PROGRA~2\mcafee\msk\mskapbh​o.dll
 O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7​942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.​dll
 O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988​571CECB} - (no file)
 O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC​4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\16.7.2.11\coIE​Plg.dll
 O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628​F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\16.7.2.11\IPSB​HO.DLL
 O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F​01C5231} - c:\PROGRA~2\mcafee\VIRUSS~1\sc​riptsn.dll
 O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-51647​60863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
 O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF105​77473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
 O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B​5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNoti​fier\5.4.4525.1752\swg.dll
 O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E​90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mc​ieplg.dll
 O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516AB​ECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mc​ieplg.dll
 O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
 O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09​D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\16.7.2.11\coIE​Plg.dll
 O4 - HKLM\..\Run: [BackupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k
 O4 - HKLM\..\Run: [Hotkey Utility] C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
 O4 - HKLM\..\Run: [EgisTecLiveUpdate] "C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe"
 O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
 O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivati​on.exe" UNATTENDED
 O4 - HKLM\..\Run: [mcagent_exe] "C:\Program Files (x86)\McAfee.com\Agent\mcagent​.exe" /runkey
 O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
 O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
 O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
 O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe"
 O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
 O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
 O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.e​xe (User 'SERVICE LOCAL')
 O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
 O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.e​xe (User 'SERVICE RÉSEAU')
 O4 - Startup: Outil de détection de support PMB.lnk = C:\Program Files (x86)\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatch​er.exe
 O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCD​DC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExten​sion.dll
 O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCD​DC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExten​sion.dll
 O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663E​E0C6C49} - C:\PROGRA~2\MICROS~1\Office12\​ONBttnIE.dll
 O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663E​E0C6C49} - C:\PROGRA~2\MICROS~1\Office12\​ONBttnIE.dll
 O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C5​71A8263} - C:\PROGRA~2\MICROS~1\Office12\​REFIEBAR.DLL
 O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB​36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.​dll
 O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB​36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.​dll
 O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
 O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
 O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
 O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
 O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
 O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
 O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
 O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll
 O13 - Gopher Prefix:
 O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-06739​4E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mc​ieplg.dll
 O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-06739​4E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mc​ieplg.dll
 O18 - Protocol: symres - {AA1061FE-6C41-421F-9344-69640​C9732AB} - C:\Program Files (x86)\Norton Internet Security\Engine\16.7.2.11\coIE​Plg.dll
 O23 - Service: @%SystemRoot%\system32\Alg.exe​,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
 O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceS​ervice.exe
 O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.ex​e
 O23 - Service: @%SystemRoot%\system32\efssvc.​dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
 O23 - Service: @%systemroot%\system32\fxsresm​.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
 O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManag​er\bin32\nSvcAppFlt.exe
 O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GregHS​RW.exe
 O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.e​xe
 O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
 O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
 O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files (x86)\McAfee\SiteAdvisor\McSAC​ore.exe
 O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~2\McAfee\MSC\mcmscsv​c.exe
 O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~2\COMMON~1\mcafee\mn​a\mcnasvc.exe
 O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mc​ods.exe
 O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~2\COMMON~1\mcafee\mc​proxy\mcproxy.exe
 O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mc​shield.exe
 O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~2\McAfee\VIRUSS~1\mc​sysmon.exe
 O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files (x86)\McAfee\MPF\MPFSrv.exe
 O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
 O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files (x86)\McAfee\MSK\MskSrver.exe
 O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
 O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
 O23 - Service: @%SystemRoot%\System32\netlogo​n.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
 O23 - Service: Norton Internet Security - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\16.7.2.11\ccSv​cHst.exe
 O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManag​er\bin32\nSvcIp.exe
 O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
 O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
 O23 - Service: @%systemroot%\system32\psbase.​dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
 O23 - Service: @%systemroot%\system32\Locator​.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.ex​e (file missing)
 O23 - Service: @%SystemRoot%\system32\samsrv.​dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
 O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
 O23 - Service: @%SystemRoot%\system32\snmptra​p.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.e​xe (file missing)
 O23 - Service: @%systemroot%\system32\spoolsv​.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.ex​e (file missing)
 O23 - Service: @%SystemRoot%\system32\sppsvc.​exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
 O23 - Service: @%SystemRoot%\system32\ui0dete​ct.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.​exe (file missing)
 O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
 O23 - Service: @%SystemRoot%\system32\vaultsv​c.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
 O23 - Service: @%SystemRoot%\system32\vds.exe​,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
 O23 - Service: @%systemroot%\system32\vssvc.e​xe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
 O23 - Service: @%systemroot%\system32\wbengin​e.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.e​xe (file missing)
 O23 - Service: @%Systemroot%\system32\wbem\wm​iapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiAp​Srv.exe (file missing)
 O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

 --
 End of file - 13334 bytes

 merci beaucoup

Profil : Equipe sécurité
dedetraque
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 26/12/2009 à 17:40:10  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Salut entente95


 Télécharge ST_Fix (de Batch_Man) sur le bureau :

 http://batchdhelus.open-web.fr [...] ST_Fix.bat


 Important : Ferme tous les navigateurs

 Faire un clique droit sur ST_Fix Beta.bat située sur ton Bureau et choisir exécuter en tant qu'administrateur.  pour lancer le logiciel
 - Il va scanner l'ordinateur à la recherche de l'infection
 - A la fin, un rapport va apparaitre

 Copie/colle le contenue du rapport


 @++     :)

(Publicité)
entente95
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 26/12/2009 à 17:43:08  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
voila le rapport :

 ##############################​##############################​############
 #
 # ST_Fix v.2.05 par Batch_Man
 # Mise à jour le 06/08/2009
 # Début a 16:41 le 26/12/2009
 # Système d'exploitation: Windows 7 Home Premium
 # Mode de boot: Normal
 # Lancé de C:\Users\vincent\Desktop\ST_Fi​x.bat
 #
 ##############################​## Suppression ##############################​#
 #
 # SUPPRIMÉ - HKEY_USERS\S-1-5-21-3912048143​-1706352181-1834011684-1000\So​ftware\EoRezo
 # SUPPRIMÉ - HKEY_USERS\S-1-5-21-3912048143​-1706352181-1834011684-1000\So​ftware\Microsoft\Windows\Curre​ntVersion\Explorer\StartPage\N​ewShortcuts
 # SUPPRIMÉ - HKEY_USERS\S-1-5-21-3912048143​-1706352181-1834011684-1000\So​ftware\Classes\Local Settings\Software\Microsoft\Wi​ndows\Shell\MuiCache
 # SUPPRIMÉ - C:\Users\vincent\AppData\Roami​ng\EoRezo
 #
 ##############################​#### Terminé ##############################​##

Profil : Equipe sécurité
dedetraque
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 26/12/2009 à 18:03:58  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Salut entente95


 As-tu encore le souci?


 @++   :)

entente95
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 26/12/2009 à 18:24:21  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
lorsque je veux un nouvel onglet (ctrl+t) je tombe encore sur lo.st.fr,
 désolé,
 merci encore de m'aider

(Publicité)
Profil : Equipe sécurité
dedetraque
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 26/12/2009 à 19:24:38  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Salut entente95


 Désactive le contrôle des comptes utilisateurs UAC (tu le réactiveras après le scan):

 - Va dans démarrer puis panneau de configuration
 - Double Clique sur l'icône "Comptes d'utilisateurs"
 - Clique ensuite sur désactiver et valide.

 Télécharge SystemLook sur ton Bureau :
 http://jpshortstuff.247fixes.com/SystemLook.exe

 - Faire un clique droit sur SystemLook.exe présent sur le bureau et choisir exécuter en tant qu'administrateur pour le lancer.

 - Copie le contenu du cadre ci-dessous et colle-le dans la zone texte de SystemLook :

 



 :reg
 HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main /s
 HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Internet Explorer\AboutURLs /s
 :regfind
 IO.st
 lo.st




 - Clique sur le bouton Look pour démarrer l'examen.
 - A la fin, le Bloc-notes s'ouvre avec le résultat de l'analyse. Copie-colle le rapport dans ta prochaine réponse.


 @++   :)

entente95
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 26/12/2009 à 20:47:00  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
voila pour system look, merci :

 SystemLook v1.0 by jpshortstuff (29.08.09)
 Log created at 19:45 on 26/12/2009 by vincent (Administrator - Elevation successful)

 ========== reg ==========

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main]
 "AdminTabProcs"= 0x0000000001 (1)
 "AlwaysShowMenus"= 0000000000 (0)
 "Anchor Underline"="yes"
 "Cache_Update_Frequency"="Once​_Per_Session"
 "Cleanup HTCs"= 0000000000 (0)
 "CompatibilityFlags"= 0000000000 (0)
 "CSS_Compat"="doctype"
 "Default_Page_URL"="http://hom​epage.acer.com/rdr.aspx?b=ACAW​&l=040c&m=aspire_x1301&r=17361​209ln07973880ki5bg7612l03"
 "Disable Script Debugger"="yes"
 "DisableFirstRunCustomize"= 0x0000000001 (1)
 "DisableScriptDebuggerIE"="yes​"
 "Display Inline Images"="yes"
 "Display Inline Videos"= 0x0000000001 (1)
 "Do404Search"=01 00 00 00  (REG_BINARY)
 "DOMStorage"= 0x0000000001 (1)
 "Enable AutoImageResize"="yes"
 "Enable Browser Extensions"="yes"
 "Expand Alt Text"="no"
 "Force Offscreen Composition"= 0000000000 (0)
 "ForceGDIPlus"= 0000000000 (0)
 "FormSuggest Passwords"=""
 "FormSuggest PW Ask"="yes"
 "FrameMerging"= 0x0000000001 (1)
 "FrameShutdownDelay"= 0000000000 (0)
 "FrameTabWindow"= 0x0000000001 (1)
 "FullScreen"="no"
 "HangResistance"= 0000000000 (0)
 "IE8RunOnceLastShown"= 0000000000 (0)
 "IE8RunOncePerInstallCompleted​"= 0000000000 (0)
 "IE8TourNoShow"= 0000000000 (0)
 "IE8TourShown"= 0000000000 (0)
 "Local Page"="C:\Windows\system32\bla​nk.htm"
 "Move System Caret"="no"
 "NotifyDownloadComplete"="yes"
 "NoUpdateCheck"= 0x0000000001 (1)
 "Page_Transitions"= 0x0000000001 (1)
 "Play_Animations"="yes"
 "Play_Background_Sounds"="yes"
 "Print_Background"="no"
 "Q300829"= 0000000000 (0)
 "Save_Session_History_On_Exit"​="no"
 "Search Bar"="Preserve"
 "Search Page"="http://go.microsoft.com​/fwlink/?LinkId=54896"
 "SearchControlWidth"= 0x000000012c (300)
 "SessionMerging"= 0x0000000001 (1)
 "Show image placeholders"= 0000000000 (0)
 "Show_FullURL"="no"
 "Show_StatusBar"="yes"
 "Show_ToolBar"="yes"
 "Show_URLinStatusBar"="yes"
 "Show_URLToolBar"="yes"
 "SmoothScroll"= 0x0000000001 (1)
 "Start Page"="http://homepage.acer.co​m/rdr.aspx?b=ACAW&l=040c&m=asp​ire_x1301&r=17361209ln07973880​ki5bg7612l03"
 "StatusBarWeb"= 0x0000000001 (1)
 "SuppressScriptDebuggerDialog"​= 0000000000 (0)
 "TabShutdownDelay"= 0x000000ea60 (60000)
 "Use FormSuggest"="yes"
 "Use Stylesheets"= 0x0000000001 (1)
 "UseClearType"="yes"
 "UseHR"= 0000000000 (0)
 "UseThemes"= 0x0000000001 (1)
 "Use_DlgBox_Colors"="yes"
 "Window_Placement"=2c 00 00 00 02 00 00 00 03 00 00 00 ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff a6 00 00 00 21 00 00 00 c8 04 00 00 92 03 00 00  (REG_BINARY)
 "XDomainRequest"= 0x0000000001 (1)
 "XMLHTTP"= 0x0000000001 (1)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\Default Feeds]
 (No values found)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\Default Feeds\{7CB04A7D-AE89-407A-BFC6-BD6572865028}]
 "Title"="Microsoft Feeds\Microsoft at Home"
 "Url"="http://go.microsoft.com​/fwlink/?LinkID=68928"

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\Default Feeds\{A9447536-90B7-4E56-AE9D-3DA99BA64CC1}]
 "Title"="Microsoft Feeds\MSNBC News"
 "Url"="http://go.microsoft.com​/fwlink/?LinkID=68929"

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\FeatureControl]
 (No values found)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_MODE]
 "iexplore.exe"= 0x0000000008 (8)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]
 (No values found)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN\Settings]
 (No values found)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\Touch]
 "FlickEducatorInfo"= 0000000000 (0)
 "TouchDragBuffer"= 0x0000000007 (7)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\WindowsSearch]
 "AutoCompleteGroups"= 0x0000000005 (5)
 "Cleared"= 0x0000000001 (1)
 "Cleared_TIMESTAMP"=90 f4 d3 e8 57 86 ca 01  (REG_BINARY)
 "ConfiguredScopes"= 0x0000000005 (5)
 "Disabled"= 0000000000 (0)
 "EnabledScopes"= 0x0000000005 (5)
 "LastCrawl"=80 e7 dc 0e a6 85 ca 01  (REG_BINARY)
 "UpgradeTime"=30 f9 c6 e7 57 86 ca 01  (REG_BINARY)
 "User Favorites Path"="file:///C:\Users\vincen​t\Favorites\"
 "Version"="6.1.7600.16385"


 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Internet Explorer\AboutURLs]
 "blank"="res://mshtml.dll/blan​k.htm"
 "DesktopItemNavigationFailure"​="res://ieframe.dll/navcancl.h​tm"
 "Home"= 0x000000010e (270)
 "InPrivate"="res://ieframe.dll​/inprivate.htm"
 "NavigationCanceled"="res://ie​frame.dll/navcancl.htm"
 "NavigationFailure"="res://ief​rame.dll/navcancl.htm"
 "NoAdd-ons"="res://ieframe.dll​/noaddon.htm"
 "NoAdd-onsInfo"="res://ieframe​.dll/noaddoninfo.htm"
 "OfflineInformation"="res://ie​frame.dll/offcancl.htm"
 "PostNotCached"="res://ieframe​.dll/repost.htm"
 "SecurityRisk"="res://ieframe.​dll/securityatrisk.htm"
 "Tabs"="http://y.lo.st"


 ========== regfind ==========

 Searching for "IO.st "

entente95
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 27/12/2009 à 01:45:11  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
voila:

 SystemLook v1.0 by jpshortstuff (29.08.09)
 Log created at 20:16 on 26/12/2009 by vincent (Administrator - Elevation successful)

 ========== reg ==========

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main]
 "AdminTabProcs"= 0x0000000001 (1)
 "AlwaysShowMenus"= 0000000000 (0)
 "Anchor Underline"="yes"
 "Cache_Update_Frequency"="Once​_Per_Session"
 "Cleanup HTCs"= 0000000000 (0)
 "CompatibilityFlags"= 0000000000 (0)
 "CSS_Compat"="doctype"
 "Default_Page_URL"="http://hom​epage.acer.com/rdr.aspx?b=ACAW​&l=040c&m=aspire_x1301&r=17361​209ln07973880ki5bg7612l03"
 "Disable Script Debugger"="yes"
 "DisableFirstRunCustomize"= 0x0000000001 (1)
 "DisableScriptDebuggerIE"="yes​"
 "Display Inline Images"="yes"
 "Display Inline Videos"= 0x0000000001 (1)
 "Do404Search"=01 00 00 00  (REG_BINARY)
 "DOMStorage"= 0x0000000001 (1)
 "Enable AutoImageResize"="yes"
 "Enable Browser Extensions"="yes"
 "Expand Alt Text"="no"
 "Force Offscreen Composition"= 0000000000 (0)
 "ForceGDIPlus"= 0000000000 (0)
 "FormSuggest Passwords"=""
 "FormSuggest PW Ask"="yes"
 "FrameMerging"= 0x0000000001 (1)
 "FrameShutdownDelay"= 0000000000 (0)
 "FrameTabWindow"= 0x0000000001 (1)
 "FullScreen"="no"
 "HangResistance"= 0000000000 (0)
 "IE8RunOnceLastShown"= 0000000000 (0)
 "IE8RunOncePerInstallCompleted​"= 0000000000 (0)
 "IE8TourNoShow"= 0000000000 (0)
 "IE8TourShown"= 0000000000 (0)
 "Local Page"="C:\Windows\system32\bla​nk.htm"
 "Move System Caret"="no"
 "NotifyDownloadComplete"="yes"
 "NoUpdateCheck"= 0x0000000001 (1)
 "Page_Transitions"= 0x0000000001 (1)
 "Play_Animations"="yes"
 "Play_Background_Sounds"="yes"
 "Print_Background"="no"
 "Q300829"= 0000000000 (0)
 "Save_Session_History_On_Exit"​="no"
 "Search Bar"="Preserve"
 "Search Page"="http://go.microsoft.com​/fwlink/?LinkId=54896"
 "SearchControlWidth"= 0x000000012c (300)
 "SessionMerging"= 0x0000000001 (1)
 "Show image placeholders"= 0000000000 (0)
 "Show_FullURL"="no"
 "Show_StatusBar"="yes"
 "Show_ToolBar"="yes"
 "Show_URLinStatusBar"="yes"
 "Show_URLToolBar"="yes"
 "SmoothScroll"= 0x0000000001 (1)
 "Start Page"="about:blank"
 "StatusBarWeb"= 0x0000000001 (1)
 "SuppressScriptDebuggerDialog"​= 0000000000 (0)
 "TabShutdownDelay"= 0x000000ea60 (60000)
 "Use FormSuggest"="yes"
 "Use Stylesheets"= 0x0000000001 (1)
 "UseClearType"="yes"
 "UseHR"= 0000000000 (0)
 "UseThemes"= 0x0000000001 (1)
 "Use_DlgBox_Colors"="yes"
 "Window_Placement"=2c 00 00 00 00 00 00 00 01 00 00 00 ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff c3 00 00 00 3e 00 00 00 e5 04 00 00 af 03 00 00  (REG_BINARY)
 "XDomainRequest"= 0x0000000001 (1)
 "XMLHTTP"= 0x0000000001 (1)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\Default Feeds]
 (No values found)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\Default Feeds\{7CB04A7D-AE89-407A-BFC6-BD6572865028}]
 "Title"="Microsoft Feeds\Microsoft at Home"
 "Url"="http://go.microsoft.com​/fwlink/?LinkID=68928"

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\Default Feeds\{A9447536-90B7-4E56-AE9D-3DA99BA64CC1}]
 "Title"="Microsoft Feeds\MSNBC News"
 "Url"="http://go.microsoft.com​/fwlink/?LinkID=68929"

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\FeatureControl]
 (No values found)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_MODE]
 "iexplore.exe"= 0x0000000008 (8)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]
 (No values found)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN\Settings]
 (No values found)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\Touch]
 "FlickEducatorInfo"= 0000000000 (0)
 "TouchDragBuffer"= 0x0000000007 (7)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\WindowsSearch]
 "AutoCompleteGroups"= 0x0000000005 (5)
 "Cleared"= 0x0000000001 (1)
 "Cleared_TIMESTAMP"=a0 6e c7 f7 5c 86 ca 01  (REG_BINARY)
 "ConfiguredScopes"= 0x0000000005 (5)
 "Disabled"= 0000000000 (0)
 "EnabledScopes"= 0x0000000005 (5)
 "LastCrawl"=80 e7 dc 0e a6 85 ca 01  (REG_BINARY)
 "UpgradeTime"=00 ff 5f f6 5c 86 ca 01  (REG_BINARY)
 "User Favorites Path"="file:///C:\Users\vincen​t\Favorites\"
 "Version"="6.1.7600.16385"


 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Internet Explorer\AboutURLs]
 "blank"="res://mshtml.dll/blan​k.htm"
 "DesktopItemNavigationFailure"​="res://ieframe.dll/navcancl.h​tm"
 "Home"= 0x000000010e (270)
 "InPrivate"="res://ieframe.dll​/inprivate.htm"
 "NavigationCanceled"="res://ie​frame.dll/navcancl.htm"
 "NavigationFailure"="res://ief​rame.dll/navcancl.htm"
 "NoAdd-ons"="res://ieframe.dll​/noaddon.htm"
 "NoAdd-onsInfo"="res://ieframe​.dll/noaddoninfo.htm"
 "OfflineInformation"="res://ie​frame.dll/offcancl.htm"
 "PostNotCached"="res://ieframe​.dll/repost.htm"
 "SecurityRisk"="res://ieframe.​dll/securityatrisk.htm"
 "Tabs"="http://y.lo.st"


 ========== regfind ==========

 Searching for "IO.st "
 ps: j'ai des probléme pour acceder au forum le temps de charge est trés long seulement ici

(Publicité)
entente95
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 27/12/2009 à 01:45:40  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
voila:

 SystemLook v1.0 by jpshortstuff (29.08.09)
 Log created at 20:16 on 26/12/2009 by vincent (Administrator - Elevation successful)

 ========== reg ==========

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main]
 "AdminTabProcs"= 0x0000000001 (1)
 "AlwaysShowMenus"= 0000000000 (0)
 "Anchor Underline"="yes"
 "Cache_Update_Frequency"="Once​_Per_Session"
 "Cleanup HTCs"= 0000000000 (0)
 "CompatibilityFlags"= 0000000000 (0)
 "CSS_Compat"="doctype"
 "Default_Page_URL"="http://hom​epage.acer.com/rdr.aspx?b=ACAW​&l=040c&m=aspire_x1301&r=17361​209ln07973880ki5bg7612l03"
 "Disable Script Debugger"="yes"
 "DisableFirstRunCustomize"= 0x0000000001 (1)
 "DisableScriptDebuggerIE"="yes​"
 "Display Inline Images"="yes"
 "Display Inline Videos"= 0x0000000001 (1)
 "Do404Search"=01 00 00 00  (REG_BINARY)
 "DOMStorage"= 0x0000000001 (1)
 "Enable AutoImageResize"="yes"
 "Enable Browser Extensions"="yes"
 "Expand Alt Text"="no"
 "Force Offscreen Composition"= 0000000000 (0)
 "ForceGDIPlus"= 0000000000 (0)
 "FormSuggest Passwords"=""
 "FormSuggest PW Ask"="yes"
 "FrameMerging"= 0x0000000001 (1)
 "FrameShutdownDelay"= 0000000000 (0)
 "FrameTabWindow"= 0x0000000001 (1)
 "FullScreen"="no"
 "HangResistance"= 0000000000 (0)
 "IE8RunOnceLastShown"= 0000000000 (0)
 "IE8RunOncePerInstallCompleted​"= 0000000000 (0)
 "IE8TourNoShow"= 0000000000 (0)
 "IE8TourShown"= 0000000000 (0)
 "Local Page"="C:\Windows\system32\bla​nk.htm"
 "Move System Caret"="no"
 "NotifyDownloadComplete"="yes"
 "NoUpdateCheck"= 0x0000000001 (1)
 "Page_Transitions"= 0x0000000001 (1)
 "Play_Animations"="yes"
 "Play_Background_Sounds"="yes"
 "Print_Background"="no"
 "Q300829"= 0000000000 (0)
 "Save_Session_History_On_Exit"​="no"
 "Search Bar"="Preserve"
 "Search Page"="http://go.microsoft.com​/fwlink/?LinkId=54896"
 "SearchControlWidth"= 0x000000012c (300)
 "SessionMerging"= 0x0000000001 (1)
 "Show image placeholders"= 0000000000 (0)
 "Show_FullURL"="no"
 "Show_StatusBar"="yes"
 "Show_ToolBar"="yes"
 "Show_URLinStatusBar"="yes"
 "Show_URLToolBar"="yes"
 "SmoothScroll"= 0x0000000001 (1)
 "Start Page"="about:blank"
 "StatusBarWeb"= 0x0000000001 (1)
 "SuppressScriptDebuggerDialog"​= 0000000000 (0)
 "TabShutdownDelay"= 0x000000ea60 (60000)
 "Use FormSuggest"="yes"
 "Use Stylesheets"= 0x0000000001 (1)
 "UseClearType"="yes"
 "UseHR"= 0000000000 (0)
 "UseThemes"= 0x0000000001 (1)
 "Use_DlgBox_Colors"="yes"
 "Window_Placement"=2c 00 00 00 00 00 00 00 01 00 00 00 ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff c3 00 00 00 3e 00 00 00 e5 04 00 00 af 03 00 00  (REG_BINARY)
 "XDomainRequest"= 0x0000000001 (1)
 "XMLHTTP"= 0x0000000001 (1)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\Default Feeds]
 (No values found)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\Default Feeds\{7CB04A7D-AE89-407A-BFC6-BD6572865028}]
 "Title"="Microsoft Feeds\Microsoft at Home"
 "Url"="http://go.microsoft.com​/fwlink/?LinkID=68928"

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\Default Feeds\{A9447536-90B7-4E56-AE9D-3DA99BA64CC1}]
 "Title"="Microsoft Feeds\MSNBC News"
 "Url"="http://go.microsoft.com​/fwlink/?LinkID=68929"

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\FeatureControl]
 (No values found)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_MODE]
 "iexplore.exe"= 0x0000000008 (8)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]
 (No values found)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN\Settings]
 (No values found)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\Touch]
 "FlickEducatorInfo"= 0000000000 (0)
 "TouchDragBuffer"= 0x0000000007 (7)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\WindowsSearch]
 "AutoCompleteGroups"= 0x0000000005 (5)
 "Cleared"= 0x0000000001 (1)
 "Cleared_TIMESTAMP"=a0 6e c7 f7 5c 86 ca 01  (REG_BINARY)
 "ConfiguredScopes"= 0x0000000005 (5)
 "Disabled"= 0000000000 (0)
 "EnabledScopes"= 0x0000000005 (5)
 "LastCrawl"=80 e7 dc 0e a6 85 ca 01  (REG_BINARY)
 "UpgradeTime"=00 ff 5f f6 5c 86 ca 01  (REG_BINARY)
 "User Favorites Path"="file:///C:\Users\vincen​t\Favorites\"
 "Version"="6.1.7600.16385"


 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Internet Explorer\AboutURLs]
 "blank"="res://mshtml.dll/blan​k.htm"
 "DesktopItemNavigationFailure"​="res://ieframe.dll/navcancl.h​tm"
 "Home"= 0x000000010e (270)
 "InPrivate"="res://ieframe.dll​/inprivate.htm"
 "NavigationCanceled"="res://ie​frame.dll/navcancl.htm"
 "NavigationFailure"="res://ief​rame.dll/navcancl.htm"
 "NoAdd-ons"="res://ieframe.dll​/noaddon.htm"
 "NoAdd-onsInfo"="res://ieframe​.dll/noaddoninfo.htm"
 "OfflineInformation"="res://ie​frame.dll/offcancl.htm"
 "PostNotCached"="res://ieframe​.dll/repost.htm"
 "SecurityRisk"="res://ieframe.​dll/securityatrisk.htm"
 "Tabs"="http://y.lo.st"


 ========== regfind ==========

 Searching for "IO.st "
 ps: j'ai des probléme pour acceder au forum le temps de charge est trés long seulement ici

entente95
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 27/12/2009 à 02:07:24  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
SystemLook v1.0 by jpshortstuff (29.08.09)
 Log created at 20:16 on 26/12/2009 by vincent (Administrator - Elevation successful)

 ========== reg ==========

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main]
 "AdminTabProcs"= 0x0000000001 (1)
 "AlwaysShowMenus"= 0000000000 (0)
 "Anchor Underline"="yes"
 "Cache_Update_Frequency"="Once​_Per_Session"
 "Cleanup HTCs"= 0000000000 (0)
 "CompatibilityFlags"= 0000000000 (0)
 "CSS_Compat"="doctype"
 "Default_Page_URL"="http://hom​epage.acer.com/rdr.aspx?b=ACAW​&l=040c&m=aspire_x1301&r=17361​209ln07973880ki5bg7612l03"
 "Disable Script Debugger"="yes"
 "DisableFirstRunCustomize"= 0x0000000001 (1)
 "DisableScriptDebuggerIE"="yes​"
 "Display Inline Images"="yes"
 "Display Inline Videos"= 0x0000000001 (1)
 "Do404Search"=01 00 00 00  (REG_BINARY)
 "DOMStorage"= 0x0000000001 (1)
 "Enable AutoImageResize"="yes"
 "Enable Browser Extensions"="yes"
 "Expand Alt Text"="no"
 "Force Offscreen Composition"= 0000000000 (0)
 "ForceGDIPlus"= 0000000000 (0)
 "FormSuggest Passwords"=""
 "FormSuggest PW Ask"="yes"
 "FrameMerging"= 0x0000000001 (1)
 "FrameShutdownDelay"= 0000000000 (0)
 "FrameTabWindow"= 0x0000000001 (1)
 "FullScreen"="no"
 "HangResistance"= 0000000000 (0)
 "IE8RunOnceLastShown"= 0000000000 (0)
 "IE8RunOncePerInstallCompleted​"= 0000000000 (0)
 "IE8TourNoShow"= 0000000000 (0)
 "IE8TourShown"= 0000000000 (0)
 "Local Page"="C:\Windows\system32\bla​nk.htm"
 "Move System Caret"="no"
 "NotifyDownloadComplete"="yes"
 "NoUpdateCheck"= 0x0000000001 (1)
 "Page_Transitions"= 0x0000000001 (1)
 "Play_Animations"="yes"
 "Play_Background_Sounds"="yes"
 "Print_Background"="no"
 "Q300829"= 0000000000 (0)
 "Save_Session_History_On_Exit"​="no"
 "Search Bar"="Preserve"
 "Search Page"="http://go.microsoft.com​/fwlink/?LinkId=54896"
 "SearchControlWidth"= 0x000000012c (300)
 "SessionMerging"= 0x0000000001 (1)
 "Show image placeholders"= 0000000000 (0)
 "Show_FullURL"="no"
 "Show_StatusBar"="yes"
 "Show_ToolBar"="yes"
 "Show_URLinStatusBar"="yes"
 "Show_URLToolBar"="yes"
 "SmoothScroll"= 0x0000000001 (1)
 "Start Page"="about:blank"
 "StatusBarWeb"= 0x0000000001 (1)
 "SuppressScriptDebuggerDialog"​= 0000000000 (0)
 "TabShutdownDelay"= 0x000000ea60 (60000)
 "Use FormSuggest"="yes"
 "Use Stylesheets"= 0x0000000001 (1)
 "UseClearType"="yes"
 "UseHR"= 0000000000 (0)
 "UseThemes"= 0x0000000001 (1)
 "Use_DlgBox_Colors"="yes"
 "Window_Placement"=2c 00 00 00 00 00 00 00 01 00 00 00 ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff c3 00 00 00 3e 00 00 00 e5 04 00 00 af 03 00 00  (REG_BINARY)
 "XDomainRequest"= 0x0000000001 (1)
 "XMLHTTP"= 0x0000000001 (1)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\Default Feeds]
 (No values found)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\Default Feeds\{7CB04A7D-AE89-407A-BFC6-BD6572865028}]
 "Title"="Microsoft Feeds\Microsoft at Home"
 "Url"="http://go.microsoft.com​/fwlink/?LinkID=68928"

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\Default Feeds\{A9447536-90B7-4E56-AE9D-3DA99BA64CC1}]
 "Title"="Microsoft Feeds\MSNBC News"
 "Url"="http://go.microsoft.com​/fwlink/?LinkID=68929"

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\FeatureControl]
 (No values found)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_MODE]
 "iexplore.exe"= 0x0000000008 (8)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]
 (No values found)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN\Settings]
 (No values found)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\Touch]
 "FlickEducatorInfo"= 0000000000 (0)
 "TouchDragBuffer"= 0x0000000007 (7)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\WindowsSearch]
 "AutoCompleteGroups"= 0x0000000005 (5)
 "Cleared"= 0x0000000001 (1)
 "Cleared_TIMESTAMP"=a0 6e c7 f7 5c 86 ca 01  (REG_BINARY)
 "ConfiguredScopes"= 0x0000000005 (5)
 "Disabled"= 0000000000 (0)
 "EnabledScopes"= 0x0000000005 (5)
 "LastCrawl"=80 e7 dc 0e a6 85 ca 01  (REG_BINARY)
 "UpgradeTime"=00 ff 5f f6 5c 86 ca 01  (REG_BINARY)
 "User Favorites Path"="file:///C:\Users\vincen​t\Favorites\"
 "Version"="6.1.7600.16385"


 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Internet Explorer\AboutURLs]
 "blank"="res://mshtml.dll/blan​k.htm"
 "DesktopItemNavigationFailure"​="res://ieframe.dll/navcancl.h​tm"
 "Home"= 0x000000010e (270)
 "InPrivate"="res://ieframe.dll​/inprivate.htm"
 "NavigationCanceled"="res://ie​frame.dll/navcancl.htm"
 "NavigationFailure"="res://ief​rame.dll/navcancl.htm"
 "NoAdd-ons"="res://ieframe.dll​/noaddon.htm"
 "NoAdd-onsInfo"="res://ieframe​.dll/noaddoninfo.htm"
 "OfflineInformation"="res://ie​frame.dll/offcancl.htm"
 "PostNotCached"="res://ieframe​.dll/repost.htm"
 "SecurityRisk"="res://ieframe.​dll/securityatrisk.htm"
 "Tabs"="http://y.lo.st"


 ========== regfind ==========

 Searching for "IO.st "

entente95
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 27/12/2009 à 02:08:31  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
SystemLook v1.0 by jpshortstuff (29.08.09)
 Log created at 20:16 on 26/12/2009 by vincent (Administrator - Elevation successful)

 ========== reg ==========

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main]
 "AdminTabProcs"= 0x0000000001 (1)
 "AlwaysShowMenus"= 0000000000 (0)
 "Anchor Underline"="yes"
 "Cache_Update_Frequency"="Once​_Per_Session"
 "Cleanup HTCs"= 0000000000 (0)
 "CompatibilityFlags"= 0000000000 (0)
 "CSS_Compat"="doctype"
 "Default_Page_URL"="http://hom​epage.acer.com/rdr.aspx?b=ACAW​&l=040c&m=aspire_x1301&r=17361​209ln07973880ki5bg7612l03"
 "Disable Script Debugger"="yes"
 "DisableFirstRunCustomize"= 0x0000000001 (1)
 "DisableScriptDebuggerIE"="yes​"
 "Display Inline Images"="yes"
 "Display Inline Videos"= 0x0000000001 (1)
 "Do404Search"=01 00 00 00  (REG_BINARY)
 "DOMStorage"= 0x0000000001 (1)
 "Enable AutoImageResize"="yes"
 "Enable Browser Extensions"="yes"
 "Expand Alt Text"="no"
 "Force Offscreen Composition"= 0000000000 (0)
 "ForceGDIPlus"= 0000000000 (0)
 "FormSuggest Passwords"=""
 "FormSuggest PW Ask"="yes"
 "FrameMerging"= 0x0000000001 (1)
 "FrameShutdownDelay"= 0000000000 (0)
 "FrameTabWindow"= 0x0000000001 (1)
 "FullScreen"="no"
 "HangResistance"= 0000000000 (0)
 "IE8RunOnceLastShown"= 0000000000 (0)
 "IE8RunOncePerInstallCompleted​"= 0000000000 (0)
 "IE8TourNoShow"= 0000000000 (0)
 "IE8TourShown"= 0000000000 (0)
 "Local Page"="C:\Windows\system32\bla​nk.htm"
 "Move System Caret"="no"
 "NotifyDownloadComplete"="yes"
 "NoUpdateCheck"= 0x0000000001 (1)
 "Page_Transitions"= 0x0000000001 (1)
 "Play_Animations"="yes"
 "Play_Background_Sounds"="yes"
 "Print_Background"="no"
 "Q300829"= 0000000000 (0)
 "Save_Session_History_On_Exit"​="no"
 "Search Bar"="Preserve"
 "Search Page"="http://go.microsoft.com​/fwlink/?LinkId=54896"
 "SearchControlWidth"= 0x000000012c (300)
 "SessionMerging"= 0x0000000001 (1)
 "Show image placeholders"= 0000000000 (0)
 "Show_FullURL"="no"
 "Show_StatusBar"="yes"
 "Show_ToolBar"="yes"
 "Show_URLinStatusBar"="yes"
 "Show_URLToolBar"="yes"
 "SmoothScroll"= 0x0000000001 (1)
 "Start Page"="about:blank"
 "StatusBarWeb"= 0x0000000001 (1)
 "SuppressScriptDebuggerDialog"​= 0000000000 (0)
 "TabShutdownDelay"= 0x000000ea60 (60000)
 "Use FormSuggest"="yes"
 "Use Stylesheets"= 0x0000000001 (1)
 "UseClearType"="yes"
 "UseHR"= 0000000000 (0)
 "UseThemes"= 0x0000000001 (1)
 "Use_DlgBox_Colors"="yes"
 "Window_Placement"=2c 00 00 00 00 00 00 00 01 00 00 00 ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff c3 00 00 00 3e 00 00 00 e5 04 00 00 af 03 00 00  (REG_BINARY)
 "XDomainRequest"= 0x0000000001 (1)
 "XMLHTTP"= 0x0000000001 (1)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\Default Feeds]
 (No values found)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\Default Feeds\{7CB04A7D-AE89-407A-BFC6-BD6572865028}]
 "Title"="Microsoft Feeds\Microsoft at Home"
 "Url"="http://go.microsoft.com​/fwlink/?LinkID=68928"

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\Default Feeds\{A9447536-90B7-4E56-AE9D-3DA99BA64CC1}]
 "Title"="Microsoft Feeds\MSNBC News"
 "Url"="http://go.microsoft.com​/fwlink/?LinkID=68929"

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\FeatureControl]
 (No values found)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_MODE]
 "iexplore.exe"= 0x0000000008 (8)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]
 (No values found)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN\Settings]
 (No values found)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\Touch]
 "FlickEducatorInfo"= 0000000000 (0)
 "TouchDragBuffer"= 0x0000000007 (7)

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Main\WindowsSearch]
 "AutoCompleteGroups"= 0x0000000005 (5)
 "Cleared"= 0x0000000001 (1)
 "Cleared_TIMESTAMP"=a0 6e c7 f7 5c 86 ca 01  (REG_BINARY)
 "ConfiguredScopes"= 0x0000000005 (5)
 "Disabled"= 0000000000 (0)
 "EnabledScopes"= 0x0000000005 (5)
 "LastCrawl"=80 e7 dc 0e a6 85 ca 01  (REG_BINARY)
 "UpgradeTime"=00 ff 5f f6 5c 86 ca 01  (REG_BINARY)
 "User Favorites Path"="file:///C:\Users\vincen​t\Favorites\"
 "Version"="6.1.7600.16385"


 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Internet Explorer\AboutURLs]
 "blank"="res://mshtml.dll/blan​k.htm"
 "DesktopItemNavigationFailure"​="res://ieframe.dll/navcancl.h​tm"
 "Home"= 0x000000010e (270)
 "InPrivate"="res://ieframe.dll​/inprivate.htm"
 "NavigationCanceled"="res://ie​frame.dll/navcancl.htm"
 "NavigationFailure"="res://ief​rame.dll/navcancl.htm"
 "NoAdd-ons"="res://ieframe.dll​/noaddon.htm"
 "NoAdd-onsInfo"="res://ieframe​.dll/noaddoninfo.htm"
 "OfflineInformation"="res://ie​frame.dll/offcancl.htm"
 "PostNotCached"="res://ieframe​.dll/repost.htm"
 "SecurityRisk"="res://ieframe.​dll/securityatrisk.htm"
 "Tabs"="http://y.lo.st"


 ========== regfind ==========

 Searching for "IO.st "

entente95
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 27/12/2009 à 23:06:05  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
bonsoir dédétraqué,
 peut tu me dire ce que je dosi continuer de faire,
 lo.st persiste quand jouvre un nouvel onglet
 te remerciant
 entente

Profil : Equipe sécurité
dedetraque
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 28/12/2009 à 05:28:24  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Salut entente95


 Désolé le forum a beaucoup été non disponible

 - Clique sur le menu démarrer/Exécuter, tape notepad à l’invite de commande et OK.

 - Copie/colle ce qui est en citation ci-dessous dans le Bloc-Notes :

 



Windows Registry Editor Version 5.00

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Internet Explorer\AboutURLs]
 "Tabs"="res://ieframe.dll/tabs​welcome.htm"





 - Enregistre ce fichier sur le bureau (Impératif)

 -Nom du fichier : iost.reg
 -Type du fichier : tous les fichiers

 - Clique sur Enregistrer et quitte le Bloc Notes

 - Faire un double clique sur iost.reg qui est sur le bureau et acceptes la fusion avec le registre.


 @++   :)

entente95
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 28/12/2009 à 17:37:01  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
bonjour,

 effectué en suivant bien toute les indications malheuresement le probléme persiste
 

 Page :
1

Aller à :
 

Sujets relatifs
Plus de sujets relatifs à : probléme avec lo.st sur windos 7

Les 5 sujets de discussion précédents Nombre de réponses Dernier message
Adware, dqncynk.exe 15
Lenteur sur internet et plantage PC 0
Ca tourne au ralentit.... 3
Rootkit asc3550p.sys 1
Infection Win7upd.exe et hekoufyh.exe 5