Actualité informatique
Test comparatif matériel informatique
Jeux vidéo
Astuces informatique
Vidéo
Télécharger
Services en ligne
Forum informatique
01Business

|-  SECURITE


|||-  

Pages de publicité indésirable (RÉSOLU)

 

8 utilisateurs inconnus
Ajouter une réponse
 

 
Page photos
 
     
Vider la liste des messages à citer
 
 Page :
1
Auteur
 Sujet :

Pages de publicité indésirable (RÉSOLU)

Prévenir les modérateurs en cas d'abus 
nordine21
nordine21
Présent de temps en temps (De 50 à 99 messages postés)
  1. Posté le 26/11/2012 à 20:57:02  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Bonjour , Quand je navigue sur internet "Google chrome" plusieurs s'ouvrent simultanément.C'est gênant.
 Pourriez-vous m'aider s'il vous plait.

Profil : Equipe sécurité
dedetraque
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 26/11/2012 à 21:36:29  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Salut nordine21


 Télécharge AdwCleaner ( d'Xplode ) sur ton bureau.
 http://general-changelog-team. [...] adwcleaner

 Lance le, clique sur [Suppression] puis patiente le temps du scan.
 Une fois le scan fini, un rapport s'ouvrira, poste le contenu de ce rapport.
 Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt


 -----


 On va vérifier le PC :

 Télécharge OTL (de OldTimer) et enregistre-le sur ton Bureau.

 - Quitte les applications en cours afin de ne pas interrompre le scan.
 - Faire double clique sur OTL.exe présent sur le bureau pour lancer le programme
 Vista/Seven -- Faire un clique droit sur OTL.exe présent sur le bureau et choisir exécuter en tant qu'administrateur pour lancer le programme
 - Une fenêtre apparaît. Dans la section Rapport en haut de cette fenêtre, coche "Rapport standard". Fais de même avec "Tous les utilisateurs" à coté.
 - Coche également les cases à côté de "Recherche LOP" et "Recherche Purity".

 Ne modifie pas les autres paramètres !

 Copie la liste qui se trouve en gras ci-dessous, et colle-la dans la zone sous " Personnalisation "

 netsvcs
 msconfig
 safebootminimal
 safebootnetwork
 activex
 drivers32
 %SYSTEMDRIVE%\*.*
 %SYSTEMDRIVE%\*.exe
 %PROGRAMFILES%\*.*
 %PROGRAMFILES%\*.
 /md5start
 consrv.dll
 volsnap.sys
 hidserv.dll
 appmgmts.dll
 eventlog.dll
 winlogon.exe
 scecli.dll
 netlogon.dll
 cngaudit.dll
 sceclt.dll
 ntelogon.dll
 logevent.dll
 iaStor.sys
 nvstor.sys
 atapi.sys
 IdeChnDr.sys
 viasraid.sys
 AGP440.sys
 vaxscsi.sys
 nvatabus.sys
 viamraid.sys
 wininet.dll
 wininit.exe
 nvata.sys
 nvgts.sys
 iastorv.sys
 ViPrt.sys
 eNetHook.dll
 explorer.exe
 svchost.exe
 userinit.exe
 qmgr.dll
 ws2_32.dll
 proquota.exe
 imm32.dll
 kernel32.dll
 ndis.sys
 autochk.exe
 spoolsv.exe
 xmlprov.dll
 ntmssvc.dll
 mswsock.dll
 Beep.SYS
 ntfs.sys
 termsrv.dll
 sfcfiles.dll
 st3shark.sys
 winlogon.exe
 wininit.ini
 /md5stop
 HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\Session Manager\SubSystems /s
 SAVEMBR:0
 %systemroot%\*. /mp /s
 %systemroot%\system32\*.dll /lockedfiles
 %systemroot%\Tasks\*.job /lockedfiles
 %systemroot%\system32\drivers\​*.sys /lockedfiles
 %systemroot%\System32\config\*​.sav
 c:\$recycle.bin\*.* /s


 - Clique sur le bouton Analyse.
 - Une fois l'analyse terminée, deux fenêtres vont s'ouvrir dans le Bloc-notes : OTL.txt et Extras.txt. Ils se trouvent au même endroit que OTListIT2 (donc par défaut sur le Bureau).

 Utilise cjoint.com pour poster en lien tes rapports :
 http://cjoint.com/

 - Clique sur Parcourir pour aller chercher le rapport OTL.txt sur le bureau
 - Clique sur Ouvrir ensuite sur Créer le lien Cjoint

 - Fais un copier/coller du lien qui est devant Le lien a été créé: dans ta prochaine réponse.

 Après fais de même avec l'autre rapport Extras.txt


 @++   :)

(Publicité)
nordine21
Présent de temps en temps (De 50 à 99 messages postés)
  1. Posté le 27/11/2012 à 10:49:27  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Bonjour et Merci voici le rapport.

 

 # AdwCleaner v2.009 - Rapport créé le 27/11/2012 à 10:30:54
 # Mis à jour le 24/11/2012 par Xplode
 # Système d'exploitation : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
 # Nom d'utilisateur : Nourdhine - PC-DE-NOURDHINE
 # Mode de démarrage : Normal
 # Exécuté depuis : C:\Users\Nourdhine\Downloads\a​dwcleaner.exe
 # Option [Suppression]


 ***** [Services] *****

 Arrêté & Supprimé : Browser Manager
 Arrêté & Supprimé : supdate
 Arrêté & Supprimé : WajamUpdater

 ***** [Fichiers / Dossiers] *****

 Dossier Supprimé : C:\Program Files\BabylonToolbar
 Dossier Supprimé : C:\Program Files\Boxore
 Dossier Supprimé : C:\Program Files\Conduit
 Dossier Supprimé : C:\Program Files\ConduitEngine
 Dossier Supprimé : C:\Program Files\DealPly
 Dossier Supprimé : C:\Program Files\DVDVideoSoftTB
 Dossier Supprimé : C:\Program Files\Iminent
 Dossier Supprimé : C:\Program Files\IMinent toolbar
 Dossier Supprimé : C:\Program Files\Object
 Dossier Supprimé : C:\Program Files\Software
 Dossier Supprimé : C:\Program Files\Wajam
 Dossier Supprimé : C:\Program Files\Yontoo
 Dossier Supprimé : C:\ProgramData\Babylon
 Dossier Supprimé : C:\ProgramData\blekko toolbars
 Dossier Supprimé : C:\ProgramData\Iminent
 Dossier Supprimé : C:\ProgramData\Microsoft\Windo​ws\Start Menu\Programs\DealPly
 Dossier Supprimé : C:\ProgramData\Microsoft\Windo​ws\Start Menu\Programs\Iminent
 Dossier Supprimé : C:\ProgramData\SweetIM
 Dossier Supprimé : C:\ProgramData\Tarma Installer
 Dossier Supprimé : C:\Users\NOURDH~1\AppData\Loca​l\Temp\AskBarDis
 Dossier Supprimé : C:\Users\NOURDH~1\AppData\Loca​l\Temp\Iminent
 Dossier Supprimé : C:\Users\Nourdhine\AppData\Loc​al\Conduit
 Dossier Supprimé : C:\Users\Nourdhine\AppData\Loc​al\lollipop
 Dossier Supprimé : C:\Users\Nourdhine\AppData\Loc​al\Software
 Dossier Supprimé : C:\Users\Nourdhine\AppData\Loc​al\Wajam
 Dossier Supprimé : C:\Users\Nourdhine\AppData\Loc​alLow\BabylonToolbar
 Dossier Supprimé : C:\Users\Nourdhine\AppData\Loc​alLow\Conduit
 Dossier Supprimé : C:\Users\Nourdhine\AppData\Loc​alLow\ConduitEngine
 Dossier Supprimé : C:\Users\Nourdhine\AppData\Loc​alLow\DVDVideoSoftTB
 Dossier Supprimé : C:\Users\Nourdhine\AppData\Loc​alLow\PriceGong
 Dossier Supprimé : C:\Users\Nourdhine\AppData\Loc​alLow\SweetIM
 Dossier Supprimé : C:\Users\Nourdhine\AppData\Loc​alLow\Toolbar4
 Dossier Supprimé : C:\Users\Nourdhine\AppData\Roa​ming\Iminent
 Dossier Supprimé : C:\Users\Nourdhine\AppData\Roa​ming\Microsoft\Windows\Start Menu\Programs\Wajam
 Dossier Supprimé : C:\Users\Nourdhine\AppData\Roa​ming\Nosibay
 Dossier Supprimé : C:\Users\Nourdhine\AppData\Roa​ming\OpenCandy
 Dossier Supprimé : C:\Windows\Installer\{EF8FC2FA​-BE02-444B-8355-08C75A6D7E3A}
 Fichier Supprimé : C:\user.js
 Fichier Supprimé : C:\Windows\Tasks\SoftwareUpdat​eTaskMachineCore.job
 Fichier Supprimé : C:\Windows\Tasks\SoftwareUpdat​eTaskMachineUA.job
 Supprimé au redémarrage : C:\Program Files\SweetIM
 Supprimé au redémarrage : C:\ProgramData\Browser Manager

 ***** [Registre] *****

 Clé Supprimée : HKCU\Software\AppDataLow\Softw​are\Conduit
 Clé Supprimée : HKCU\Software\AppDataLow\Softw​are\conduitEngine
 Clé Supprimée : HKCU\Software\AppDataLow\Softw​are\DVDVideoSoftTB
 Clé Supprimée : HKCU\Software\AppDataLow\Softw​are\PriceGong
 Clé Supprimée : HKCU\Software\AppDataLow\Softw​are\SmartBar
 Clé Supprimée : HKCU\Software\AppDataLow\Toolb​ar
 Clé Supprimée : HKCU\Software\BrowserMngr
 Clé Supprimée : HKCU\Software\Conduit
 Clé Supprimée : HKCU\Software\DataMngr
 Clé Supprimée : HKCU\Software\DataMngr_Toolbar
 Clé Supprimée : HKCU\Software\Google\Chrome\Ex​tensions\gaiilaahiahdejapggenm​dmafpmbipje
 Clé Supprimée : HKCU\Software\Iminent
 Clé Supprimée : HKCU\Software\lollipop
 Clé Supprimée : HKCU\Software\Microsoft\Babylo​n
 Clé Supprimée : HKCU\Software\Microsoft\Intern​et Explorer\SearchScopes\{0ECDF79​6-C2DC-4D79-A620-CCE0C0A66CC9}
 Clé Supprimée : HKCU\Software\Microsoft\Window​s\CurrentVersion\App Management\ARPCache\{15D2D75C-​9CB2-4EFD-BAD7-B9B4CB4BC693}
 Clé Supprimée : HKCU\Software\Microsoft\Window​s\CurrentVersion\App Management\ARPCache\{889DF117-​14D1-44EE-9F31-C5FB5D47F68B}
 Clé Supprimée : HKCU\Software\Microsoft\Window​s\CurrentVersion\App Management\ARPCache\{A76AA284-​E52D-47E6-9E4F-B85DBF8E35C3}
 Clé Supprimée : HKCU\Software\Microsoft\Window​s\CurrentVersion\App Management\ARPCache\{E55E7026-​EF2A-4A17-AAA7-DB98EA3FD1B1}
 Clé Supprimée : HKCU\Software\Microsoft\Window​s\CurrentVersion\App Management\ARPCache\{EF8FC2FA-​BE02-444B-8355-08C75A6D7E3A}
 Clé Supprimée : HKCU\Software\Microsoft\Window​s\CurrentVersion\App Management\ARPCache\Ask Toolbar_is1
 Clé Supprimée : HKCU\Software\Microsoft\Window​s\CurrentVersion\App Management\ARPCache\BabylonToo​lbar
 Clé Supprimée : HKCU\Software\Microsoft\Window​s\CurrentVersion\App Management\ARPCache\conduitEng​ine
 Clé Supprimée : HKCU\Software\Microsoft\Window​s\CurrentVersion\App Management\ARPCache\DealPly
 Clé Supprimée : HKCU\Software\Microsoft\Window​s\CurrentVersion\App Management\ARPCache\DVDVideoSo​ftTB Toolbar
 Clé Supprimée : HKCU\Software\Microsoft\Window​s\CurrentVersion\App Management\ARPCache\EoRezo_is1
 Clé Supprimée : HKCU\Software\Microsoft\Window​s\CurrentVersion\App Management\ARPCache\IMBoosterA​RP
 Clé Supprimée : HKCU\Software\Microsoft\Window​s\CurrentVersion\App Management\ARPCache\lollipop
 Clé Supprimée : HKCU\Software\Microsoft\Window​s\CurrentVersion\App Management\ARPCache\SoftwareUp​date_is1
 Clé Supprimée : HKCU\Software\Microsoft\Window​s\CurrentVersion\App Management\ARPCache\Wajam
 Clé Supprimée : HKCU\Software\Microsoft\Window​s\CurrentVersion\Ext\bProtectS​ettings
 Clé Supprimée : HKCU\Software\Microsoft\Window​s\CurrentVersion\Ext\Settings\​{201F27D4-3704-41D6-89C1-AA35E​39143ED}
 Clé Supprimée : HKCU\Software\Microsoft\Window​s\CurrentVersion\Ext\Settings\​{30F9B915-B755-4826-820B-08FBA​6BD249D}
 Clé Supprimée : HKCU\Software\Microsoft\Window​s\CurrentVersion\Ext\Settings\​{872B5B88-9DB5-4310-BDD0-AC189​557E5F5}
 Clé Supprimée : HKCU\Software\Microsoft\Window​s\CurrentVersion\Ext\Stats\{20​1F27D4-3704-41D6-89C1-AA35E391​43ED}
 Clé Supprimée : HKCU\Software\Microsoft\Window​s\CurrentVersion\Ext\Stats\{30​F9B915-B755-4826-820B-08FBA6BD​249D}
 Clé Supprimée : HKCU\Software\Microsoft\Window​s\CurrentVersion\Ext\Stats\{87​2B5B88-9DB5-4310-BDD0-AC189557​E5F5}
 Clé Supprimée : HKCU\Software\Nosibay
 Clé Supprimée : HKCU\Software\Softonic
 Clé Supprimée : HKCU\Software\Wajam
 Clé Supprimée : HKLM\Software\Boxore
 Clé Supprimée : HKLM\Software\BrowserMngr
 Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{0​1994268-3C10-4044-A1EA-7A9C1B7​39A11}
 Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{0​9C554C3-109B-483C-A06B-F14172F​1A947}
 Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{1​FAEE6D5-34F4-42AA-8025-3FD8F3E​C4634}
 Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\Eo​EngineBHO.DLL
 Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\es​cort.DLL
 Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\es​cortApp.DLL
 Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\es​cortEng.DLL
 Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\es​corTlbr.DLL
 Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\es​rv.EXE
 Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\Im​inent.WebBooster.InternetExplo​rer.DLL
 Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\Tb​CommonUtils.DLL
 Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\Tb​Helper.EXE
 Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\Yo​ntooIEClient.DLL
 Clé Supprimée : HKLM\SOFTWARE\Classes\b
 Clé Supprimée : HKLM\SOFTWARE\Classes\Babylon.​dskBnd
 Clé Supprimée : HKLM\SOFTWARE\Classes\Babylon.​dskBnd.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\bbylnApp​.appCore
 Clé Supprimée : HKLM\SOFTWARE\Classes\bbylnApp​.appCore.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{0​1A602A0-D0B9-445B-8081-719E417​7C4A7}
 Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{0​2054E11-5113-4BE3-8153-AA8DFB5​D3761}
 Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{0​2C9C7B0-C7C8-4AAC-A9E4-55295BF​60F8F}
 Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{0​398B101-6DA7-473F-A290-17D2FBC​88CC0}
 Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{0​92A2C6B-43EE-4F9F-8F8E-14ED5E1​1C14B}
 Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{0​CC36196-8589-4B80-A771-D659411​D7F90}
 Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{1​0DE7085-6A1E-4D41-A7BF-9AF93E3​51401}
 Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{1​43D96F9-EB64-48B3-B192-91C2C41​A1F43}
 Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{1​4F7D91F-F669-45C9-9F42-BACBFDB​86EAD}
 Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{1​87A6488-6E71-4A2A-B118-7BEFBFE​58257}
 Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{1​C950DE5-D31E-42FB-AFB9-91B0161​633D8}
 Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{2​57A6158-1416-4B31-9BF8-29FF49F​3814F}
 Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3​0F9B915-B755-4826-820B-08FBA6B​D249D}
 Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{8​72B5B88-9DB5-4310-BDD0-AC18955​7E5F5}
 Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{D​3F69D07-0AEE-47AF-87D0-1A67D4F​70C68}
 Clé Supprimée : HKLM\SOFTWARE\Classes\ComObjec​t.DeskbarEnabler
 Clé Supprimée : HKLM\SOFTWARE\Classes\ComObjec​t.DeskbarEnabler.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\Conduit.​Engine
 Clé Supprimée : HKLM\SOFTWARE\Classes\EoEngine​BHO.EOBHO
 Clé Supprimée : HKLM\SOFTWARE\Classes\EoEngine​BHO.EOBHO.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\escort.e​scortIEPane
 Clé Supprimée : HKLM\SOFTWARE\Classes\escort.e​scortIEPane.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\esrv.Bab​ylonESrvc
 Clé Supprimée : HKLM\SOFTWARE\Classes\esrv.Bab​ylonESrvc.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Business.Tinyfying.DownloadArg​s
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Business.Tinyfying.LinkToPromo​teArgs
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Business.Tinyfying.RawDataArgs
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Business.Tinyfying.TinyUrlArgs
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Business.Tinyfying.ViralLinkAr​gs
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.ClientC​allback
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.Contrac​tBase
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.AddToUserContentCommand
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.CheckLoginStatusCommand
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.CleanCacheCommand
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.GameOverCallback
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.GetCreditCommand
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.GetInstallationContextC​ommand
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.GetLoginStatusCommand
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.GetLoginStatusResult
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.GetVariableCommand
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.GetVariableResult
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.InstallationContextResu​lt
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.LoadContentCommand
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.LoadContentCommandResul​t
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.LoginCommand
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.LoginStatusChangedCallb​ack
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.LogoutCommand
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.MergeIdentityCommand
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.MyAccountCommand
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.PlayContentCommand
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.PostContentCallback
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.RecycleViewsCommand
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.SetVariableCommand
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.ShowBrowserWindowComman​d
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.ShowControlCenterComman​d
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.ShowPluginWindowCommand
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.UserContentChangedCallb​ack
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.VariableChangedCallback
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.WarmUpCommand
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.DataCon​tracts.WelcomeCommand
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.ServerC​ommand
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.Communication.ServerR​esult
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.LightContent
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.LightUri
 Clé Supprimée : HKLM\SOFTWARE\Classes\Iminent.​Mediator.MediatorServiceProxy
 Clé Supprimée : HKLM\SOFTWARE\Classes\IminentW​ebBooster.ActiveContentHandle.​1
 Clé Supprimée : HKLM\SOFTWARE\Classes\IminentW​ebBooster.ActiveContentHandler
 Clé Supprimée : HKLM\SOFTWARE\Classes\IminentW​ebBooster.BrowserHelperObject
 Clé Supprimée : HKLM\SOFTWARE\Classes\IminentW​ebBooster.BrowserHelperObject.​1
 Clé Supprimée : HKLM\SOFTWARE\Classes\IminentW​ebBooster.ScriptExtender
 Clé Supprimée : HKLM\SOFTWARE\Classes\IminentW​ebBooster.ScriptExtender.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\IminentW​ebBooster.TinyUrlHandler
 Clé Supprimée : HKLM\SOFTWARE\Classes\IminentW​ebBooster.TinyUrlHandler.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\Installe​r\Features\482AA67AD25E6E74E9F​48BD5FBE8533C
 Clé Supprimée : HKLM\SOFTWARE\Classes\Installe​r\Features\64A6E60055D801F4BB8​AC269354B72B8
 Clé Supprimée : HKLM\SOFTWARE\Classes\Installe​r\Products\482AA67AD25E6E74E9F​48BD5FBE8533C
 Clé Supprimée : HKLM\SOFTWARE\Classes\Installe​r\Products\64A6E60055D801F4BB8​AC269354B72B8
 Clé Supprimée : HKLM\SOFTWARE\Classes\Installe​r\Products\AF2CF8FE20EBB444385​5807CA5D6E7A3
 Clé Supprimée : HKLM\SOFTWARE\Classes\Installe​r\UpgradeCodes\1C875DDE3963600​4CA8CDAEC335B4160
 Clé Supprimée : HKLM\SOFTWARE\Classes\Installe​r\UpgradeCodes\BA086F2D38A8E1A​47912955A68B3AD24
 Clé Supprimée : HKLM\SOFTWARE\Classes\Interfac​e\{01221FCC-4BFB-461C-B08C-F6D​2DF309921}
 Clé Supprimée : HKLM\SOFTWARE\Classes\Interfac​e\{021B4049-F57D-4565-A693-FD3​B04786BFA}
 Clé Supprimée : HKLM\SOFTWARE\Classes\Interfac​e\{0362AA09-808D-48E9-B360-FB5​1A8CBCE09}
 Clé Supprimée : HKLM\SOFTWARE\Classes\Interfac​e\{06844020-CD0B-3D3D-A7FE-371​153013E49}
 Clé Supprimée : HKLM\SOFTWARE\Classes\Interfac​e\{0ADC01BB-303B-3F8E-93DA-12C​140E85460}
 Clé Supprimée : HKLM\SOFTWARE\Classes\Interfac​e\{10D3722F-23E6-3901-B6C1-FF6​567121920}
 Clé Supprimée : HKLM\SOFTWARE\Classes\Interfac​e\{10DE7085-6A1E-4D41-A7BF-9AF​93E351401}
 Clé Supprimée : HKLM\SOFTWARE\Classes\Interfac​e\{1675E62B-F911-3B7B-A046-EB5​7261212F3}
 Clé Supprimée : HKLM\SOFTWARE\Classes\Interfac​e\{192929F2-9273-3894-91B0-F54​671C4C861}
 Clé Supprimée : HKLM\SOFTWARE\Classes\Interfac​e\{1AD27395-1659-4DFF-A319-2CF​A243861A5}
 Clé Supprimée : HKLM\SOFTWARE\Classes\MediaPla​yer.GraphicsUtils
 Clé Supprimée : HKLM\SOFTWARE\Classes\MediaPla​yer.GraphicsUtils.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\MgMediaP​layer.GifAnimator
 Clé Supprimée : HKLM\SOFTWARE\Classes\MgMediaP​layer.GifAnimator.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\MIME\Dat​abase\Content Type\application/x-vnd.softwar​e.oneclickctrl.8
 Clé Supprimée : HKLM\SOFTWARE\Classes\Prod.cap
 Clé Supprimée : HKLM\SOFTWARE\Classes\sim-pack​ages
 Clé Supprimée : HKLM\SOFTWARE\Classes\Software​.OneClickCtrl.8
 Clé Supprimée : HKLM\SOFTWARE\Classes\Software​Update.CoreClass
 Clé Supprimée : HKLM\SOFTWARE\Classes\Software​Update.CoreClass.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\Software​Update.OnDemandCOMClassMachine
 Clé Supprimée : HKLM\SOFTWARE\Classes\Software​Update.OnDemandCOMClassMachine​.1.0
 Clé Supprimée : HKLM\SOFTWARE\Classes\SWEETIE.​IEToolbar
 Clé Supprimée : HKLM\SOFTWARE\Classes\SWEETIE.​IEToolbar.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\sweetim_​urlsearchhook.toolbarurlsearch​hook
 Clé Supprimée : HKLM\SOFTWARE\Classes\sweetim_​urlsearchhook.toolbarurlsearch​hook.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\TbCommon​Utils.CommonUtils
 Clé Supprimée : HKLM\SOFTWARE\Classes\TbCommon​Utils.CommonUtils.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\TbHelper​.TbDownloadManager
 Clé Supprimée : HKLM\SOFTWARE\Classes\TbHelper​.TbDownloadManager.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\TbHelper​.TbPropertyManager
 Clé Supprimée : HKLM\SOFTWARE\Classes\TbHelper​.TbPropertyManager.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\TbHelper​.TbRequest
 Clé Supprimée : HKLM\SOFTWARE\Classes\TbHelper​.TbRequest.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\TbHelper​.TbTask
 Clé Supprimée : HKLM\SOFTWARE\Classes\TbHelper​.TbTask.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\TbHelper​.ToolbarHelper
 Clé Supprimée : HKLM\SOFTWARE\Classes\TbHelper​.ToolbarHelper.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\TBSB0162​0.IEToolbar
 Clé Supprimée : HKLM\SOFTWARE\Classes\TBSB0162​0.IEToolbar.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\TBSB0162​0.TBSB01620
 Clé Supprimée : HKLM\SOFTWARE\Classes\TBSB0162​0.TBSB01620.3
 Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.​CT1098640
 Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.​CT2269050
 Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.​CT2405725
 Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.​CT2851639
 Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar3​.ContextMenuNotifier
 Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar3​.ContextMenuNotifier.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar3​.CustomInternetSecurityImpl
 Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar3​.CustomInternetSecurityImpl.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar3​.sweetie
 Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar3​.sweetie.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar3​.TBSB01620
 Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar3​.TBSB01620.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\​{095BFD3C-4602-4FE1-96F1-AEFAF​BFD067D}
 Clé Supprimée : HKLM\SOFTWARE\Classes\URLSearc​hHook.ToolbarURLSearchHook
 Clé Supprimée : HKLM\SOFTWARE\Classes\URLSearc​hHook.ToolbarURLSearchHook.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\wajam.Wa​jamBHO
 Clé Supprimée : HKLM\SOFTWARE\Classes\wajam.Wa​jamBHO.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\wajam.Wa​jamDownloader
 Clé Supprimée : HKLM\SOFTWARE\Classes\wajam.Wa​jamDownloader.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\YontooIE​Client.Api
 Clé Supprimée : HKLM\SOFTWARE\Classes\YontooIE​Client.Api.1
 Clé Supprimée : HKLM\SOFTWARE\Classes\YontooIE​Client.Layers
 Clé Supprimée : HKLM\SOFTWARE\Classes\YontooIE​Client.Layers.1
 Clé Supprimée : HKLM\Software\Conduit
 Clé Supprimée : HKLM\Software\conduitEngine
 Clé Supprimée : HKLM\Software\DataMngr
 Clé Supprimée : HKLM\Software\DVDVideoSoftTB
 Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Ex​tensions\igdhbblpcellaljokkpfh​cjlagemhgjl
 Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Ex​tensions\jcdgjdiieiljkfkdcloeh​kohchhpekkn
 Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Ex​tensions\jeaihkehdlhkocphopopa​hkfjcfcphef
 Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Ex​tensions\niapdbllcanepiiimjjnd​ipklodoedlc
 Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Ex​tensions\pgafcinpmmpklohkojmll​ohdhomoefph
 Clé Supprimée : HKLM\Software\Iminent
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Intern​et Explorer\Low Rights\ElevationPolicy\{0AF350​D9-3916-454B-AC53-0B0B65F41301​}
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Intern​et Explorer\Low Rights\ElevationPolicy\{51F42E​ED-62AB-4622-BB10-5340B56BCFA5​}
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Intern​et Explorer\Low Rights\ElevationPolicy\{595976​11-041C-48F9-B62B-A4C0A453DD7D​}
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Intern​et Explorer\Low Rights\ElevationPolicy\{E771C3​EC-05EA-4714-9AF4-6A54B459C84C​}
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\App Paths\SweetIM.exe
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Explorer\Brow​ser Helper Objects\{30F9B915-B755-4826-82​0B-08FBA6BD249D}
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Explorer\Brow​ser Helper Objects\{872B5B88-9DB5-4310-BD​D0-AC189557E5F5}
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Ext\PreApprov​ed\{D3F69D07-0AEE-47AF-87D0-1A​67D4F70C68}
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Installer\Upg​radeCodes\1C875DDE39636004CA8C​DAEC335B4160
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Installer\Upg​radeCodes\BA086F2D38A8E1A47912​955A68B3AD24
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Uninstall\{00​6E6A46-8D55-4F10-BBA8-2C9653B4​278B}
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Uninstall\{15​D2D75C-9CB2-4EFD-BAD7-B9B4CB4B​C693}
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Uninstall\{88​9DF117-14D1-44EE-9F31-C5FB5D47​F68B}
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Uninstall\{A7​6AA284-E52D-47E6-9E4F-B85DBF8E​35C3}
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Uninstall\{E5​5E7026-EF2A-4A17-AAA7-DB98EA3F​D1B1}
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Uninstall\{EF​8FC2FA-BE02-444B-8355-08C75A6D​7E3A}
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Uninstall\Bab​ylonToolbar
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Uninstall\con​duitEngine
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Uninstall\Dea​lPly
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Uninstall\DVD​VideoSoftTB Toolbar
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Uninstall\EoR​ezo_is1
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Uninstall\IMB​oosterARP
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Uninstall\Sea​rchTheWebARP
 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Uninstall\Waj​am
 Clé Supprimée : HKLM\SOFTWARE\MozillaPlugins\@​www.dlmanager.net/omaha/tools/​/Software Update;version=8
 Clé Supprimée : HKLM\SOFTWARE\Software
 Clé Supprimée : HKLM\Software\Tarma Installer
 Clé Supprimée : HKLM\Software\Wajam
 Clé Supprimée : HKU\.DEFAULT\Software\Microsof​t\Internet Explorer\SearchScopes\{0ECDF79​6-C2DC-4D79-A620-CCE0C0A66CC9}
 Clé Supprimée : HKU\S-1-5-18\Software\Microsof​t\Internet Explorer\SearchScopes\{0ECDF79​6-C2DC-4D79-A620-CCE0C0A66CC9}
 Clé Supprimée : HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\Software\Mi​crosoft\Internet Explorer\SearchScopes\{0ECDF79​6-C2DC-4D79-A620-CCE0C0A66CC9}
 Donnée Supprimée : HKLM\..\Windows [AppInit_DLLs] = c:\progra~2\browse~1\22643~1.4​1\{16cdf~1\browse~1.dll
 Donnée Supprimée : HKLM\..\Windows [AppInit_DLLs] = c:\progra~2\browse~1\23787~1.4​3\{16cdf~1\browse~1.dll
 Valeur Supprimée : HKCU\Software\Microsoft\Intern​et Explorer\Main [BrowserMngr Start Page]
 Valeur Supprimée : HKCU\Software\Microsoft\Intern​et Explorer\SearchScopes [bProtectorDefaultScope]
 Valeur Supprimée : HKCU\Software\Microsoft\Intern​et Explorer\SearchScopes [BrowserMngrDefaultScope]
 Valeur Supprimée : HKCU\Software\Microsoft\Intern​et Explorer\Toolbar\WebBrowser [{30F9B915-B755-4826-820B-08FBA​6BD249D}]
 Valeur Supprimée : HKCU\Software\Microsoft\Intern​et Explorer\Toolbar\WebBrowser [{872B5B88-9DB5-4310-BDD0-AC189​557E5F5}]
 Valeur Supprimée : HKCU\Software\Microsoft\Intern​et Explorer\URLSearchHooks [{872B5B88-9DB5-4310-BDD0-AC189​557E5F5}]
 Valeur Supprimée : HKCU\Software\Mozilla\Firefox\​Extensions [{b64982b1-d112-42b5-b1e4-d3867​c4533f8}]
 Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Intern​et Explorer\Toolbar [{30F9B915-B755-4826-820B-08FBA​6BD249D}]
 Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Intern​et Explorer\Toolbar [{872B5B88-9DB5-4310-BDD0-AC189​557E5F5}]
 Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Intern​et Explorer\URLSearchHooks [{872B5B88-9DB5-4310-BDD0-AC189​557E5F5}]
 Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Run [Boxore Client]
 Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Run [Iminent]
 Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Run [IminentMessenger]
 Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\Run [SweetIM]
 Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\SharedDLLs [C:\Program Files\SweetIM\Toolbars\Interne​t Explorer\mgHelperApp.exe]
 Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\SharedDLLs [C:\Program Files\SweetIM\Toolbars\Interne​t Explorer\mgToolbarProxy.dll]

 ***** [Navigateurs] *****

 -\\ Internet Explorer v8.0.6001.19328

 Supprimée : [HKCU\Software\Microsoft\Intern​et Explorer\Main - bProtector Start Page]
 Remplacé : [HKLM\SOFTWARE\Microsoft\Intern​et Explorer\AboutURls - Tabs] = hxxp://search.babylon.com/?aff​ID=111020&tt=120912_ccp_3812_1​&babsrc=NT_ss&mntrId=34f44cfd0​0000000000000037ada4516 --> hxxp://www.google.com
 Remplacé : [HKLM\SOFTWARE\Microsoft\Intern​et Explorer\Main - Start Page] = hxxp://home.sweetim.com/?crg=3​.1010000.10025&barid={5A381769​-01C3-11E2-ADD6-00037ADA4516} --> hxxp://www.google.com

 -\\ Google Chrome v23.0.1271.64

 Fichier : C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\User Data\Default\Preferences

 Supprimée [l.21] : urls_to_restore_on_startup = [ "hxxp://safesearchr.lavasoft.c​om/?source=3336ca5f&tbp=homep[...]
 Supprimée [l.65] : keyword = "blekko",
 Supprimée [l.2326] : urls_to_restore_on_startup = [ "hxxp://safesearchr.lavasoft.c​om/?source=3336ca5f&tbp=homepa​ge[...]

 *************************

 AdwCleaner[S1].txt - [25956 octets] - [27/11/2012 10:30:54]

 ########## EOF - C:\AdwCleaner[S1].txt - [26017 octets] ##########

nordine21
Présent de temps en temps (De 50 à 99 messages postés)
  1. Posté le 27/11/2012 à 13:06:39  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
bonjour voici le lien crée.netsvcs
 msconfig
 safebootminimal
 safebootnetwork
 activex
 drivers32
 %SYSTEMDRIVE%\*.*
 %SYSTEMDRIVE%\*.exe
 %PROGRAMFILES%\*.*
 %PROGRAMFILES%\*.
 /md5start
 consrv.dll
 volsnap.sys
 hidserv.dll
 appmgmts.dll
 eventlog.dll
 winlogon.exe
 scecli.dll
 netlogon.dll
 cngaudit.dll
 sceclt.dll
 ntelogon.dll
 logevent.dll
 iaStor.sys
 nvstor.sys
 atapi.sys
 IdeChnDr.sys
 viasraid.sys
 AGP440.sys
 vaxscsi.sys
 nvatabus.sys
 viamraid.sys
 wininet.dll
 wininit.exe
 nvata.sys
 nvgts.sys
 iastorv.sys
 ViPrt.sys
 eNetHook.dll
 explorer.exe
 svchost.exe
 userinit.exe
 qmgr.dll
 ws2_32.dll
 proquota.exe
 imm32.dll
 kernel32.dll
 ndis.sys
 autochk.exe
 spoolsv.exe
 xmlprov.dll
 ntmssvc.dll
 mswsock.dll
 Beep.SYS
 ntfs.sys
 termsrv.dll
 sfcfiles.dll
 st3shark.sys
 winlogon.exe
 wininit.ini
 /md5stop
 HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\Session Manager\SubSystems /s
 SAVEMBR:0
 %systemroot%\*. /mp /s
 %systemroot%\system32\*.dll /lockedfiles
 %systemroot%\Tasks\*.job /lockedfiles
 %systemroot%\system32\drivers\​*.sys /lockedfiles
 %systemroot%\System32\config\*​.sav
 c:\$recycle.bin\*.* /s

nordine21
Présent de temps en temps (De 50 à 99 messages postés)
  1. Posté le 27/11/2012 à 13:13:02  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Rebonjour: l'autre rappot .

 netsvcs
 msconfig
 safebootminimal
 safebootnetwork
 activex
 drivers32
 %SYSTEMDRIVE%\*.*
 %SYSTEMDRIVE%\*.exe
 %PROGRAMFILES%\*.*
 %PROGRAMFILES%\*.
 /md5start
 consrv.dll
 volsnap.sys
 hidserv.dll
 appmgmts.dll
 eventlog.dll
 winlogon.exe
 scecli.dll
 netlogon.dll
 cngaudit.dll
 sceclt.dll
 ntelogon.dll
 logevent.dll
 iaStor.sys
 nvstor.sys
 atapi.sys
 IdeChnDr.sys
 viasraid.sys
 AGP440.sys
 vaxscsi.sys
 nvatabus.sys
 viamraid.sys
 wininet.dll
 wininit.exe
 nvata.sys
 nvgts.sys
 iastorv.sys
 ViPrt.sys
 eNetHook.dll
 explorer.exe
 svchost.exe
 userinit.exe
 qmgr.dll
 ws2_32.dll
 proquota.exe
 imm32.dll
 kernel32.dll
 ndis.sys
 autochk.exe
 spoolsv.exe
 xmlprov.dll
 ntmssvc.dll
 mswsock.dll
 Beep.SYS
 ntfs.sys
 termsrv.dll
 sfcfiles.dll
 st3shark.sys
 winlogon.exe
 wininit.ini
 /md5stop
 HKEY_LOCAL_MACHINE\SYSTEM\Curr​entControlSet\Control\Session Manager\SubSystems /s
 SAVEMBR:0
 %systemroot%\*. /mp /s
 %systemroot%\system32\*.dll /lockedfiles
 %systemroot%\Tasks\*.job /lockedfiles
 %systemroot%\system32\drivers\​*.sys /lockedfiles
 %systemroot%\System32\config\*​.sav
 c:\$recycle.bin\*.* /s


(Publicité)
Profil : Equipe sécurité
dedetraque
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 27/11/2012 à 14:38:39  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Salut nordine21


 Bien relire la procédure pour le rapport OTL, cela n'est pas bon comme rapport, tu m'a posté la liste que tu as a mettre sous " Personnalisation ".


 @++    :)

nordine21
Présent de temps en temps (De 50 à 99 messages postés)
  1. Posté le 30/11/2012 à 09:35:54  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Bonjour dédétraqué . Est-ce celui là . ?


 http://cjoint.com/?BKEj7yoGrHz.

Profil : Equipe sécurité
dedetraque
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 30/11/2012 à 14:25:26  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Salut nordine21


 Je sais pas, ton lien indique ceci :

 Ce lien n'est pas ou n'est plus disponible.


 @++   :)

(Publicité)
nordine21
Présent de temps en temps (De 50 à 99 messages postés)
  1. Posté le 30/11/2012 à 21:12:27  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Bon! et avez-vous une idée de ce que l'on peut faire ?.Ou bien je laisse comme tél. Après tout c'est pas grave j’espère.

Profil : Equipe sécurité
dedetraque
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 30/11/2012 à 21:26:44  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Salut nordine21


 Fais moi un copier/coller de rapport ici sur le forum dans ta prochaine réponse, voir a t'assurer que le rapport soit complet.


 @++   :)

nordine21
Présent de temps en temps (De 50 à 99 messages postés)
  1. Posté le 01/12/2012 à 10:40:33  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Bonjour ! voici le rapport.
 OTL logfile created on: 27/11/2012 11:08:05 - Run 1
 OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Nourdhine\Downloads
 Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
 Internet Explorer (Version = 8.0.6001.19328)
 Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
 
 2,00 Gb Total Physical Memory | 0,92 Gb Available Physical Memory | 46,11% Memory free
 4,23 Gb Paging File | 2,81 Gb Available in Paging File | 66,44% Paging File free
 Paging file location(s): ?:\pagefile.sys [binary data]
 
 %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
 Drive C: | 92,77 Gb Total Space | 42,44 Gb Free Space | 45,74% Space Free | Partition Type: NTFS
 Drive E: | 92,07 Gb Total Space | 91,37 Gb Free Space | 99,24% Space Free | Partition Type: NTFS
 
 Computer Name: PC-DE-NOURDHINE | User Name: Nourdhine | Logged in as Administrator.
 Boot Mode: Normal | Scan Mode: All users
 Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
 ========== Processes (SafeList) ==========
 
 PRC - [2012/11/27 11:03:35 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Nourdhine\Downloads\O​TL.exe
 PRC - [2012/09/20 15:03:20 | 001,236,368 | ---- | M] (Lavasoft Limited) -- C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe
 PRC - [2012/09/20 15:03:16 | 018,941,832 | ---- | M] (Lavasoft Limited) -- C:\PROGRA~1\AD-AWA~1\AdAware.e​xe
 PRC - [2012/08/08 09:17:00 | 000,540,056 | ---- | M] (Lavasoft) -- C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe
 PRC - [2011/12/19 13:20:06 | 003,289,032 | ---- | M] (GFI Software) -- C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe
 PRC - [2011/07/15 06:40:48 | 000,273,544 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\r​ealsched.exe
 PRC - [2010/09/06 08:11:32 | 000,217,088 | ---- | M] (Teruten) -- C:\Windows\System32\FsUsbExSer​vice.Exe
 PRC - [2009/12/23 22:34:20 | 000,370,688 | ---- | M] (StarWind Software) -- E:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE​.exe
 PRC - [2009/04/11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
 PRC - [2009/04/11 07:27:28 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conime.exe
 PRC - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- E:\Spybot - Search & Destroy\SDWinSec.exe
 PRC - [2009/01/08 14:44:06 | 000,070,936 | ---- | M] (Octoshape ApS) -- C:\Users\Nourdhine\AppData\Roa​ming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe
 PRC - [2008/09/30 16:37:52 | 007,418,368 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
 PRC - [2008/09/30 16:35:00 | 007,424,000 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
 PRC - [2007/09/19 11:01:12 | 000,077,824 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
 PRC - [2007/07/27 07:36:38 | 000,200,704 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynToshi​ba.exe
 PRC - [2007/05/22 15:32:52 | 000,538,744 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\FlashCards\TCrdM​ain.exe
 PRC - [2007/03/29 09:39:00 | 000,427,576 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
 PRC - [2007/03/29 09:39:00 | 000,411,192 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
 PRC - [2007/03/07 13:01:18 | 000,274,432 | ---- | M] (TOSHIBA CORPORATION.) -- c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
 PRC - [2007/02/27 19:21:10 | 000,278,528 | ---- | M] (TOSHIBA CORPORATION.) -- c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
 PRC - [2007/02/27 18:57:56 | 000,278,528 | ---- | M] (TOSHIBA CORPORATION.) -- c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
 PRC - [2007/02/27 13:31:34 | 002,756,608 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
 PRC - [2007/02/25 20:55:18 | 000,125,048 | ---- | M] (TOSHIBA CORPORATION) -- c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
 PRC - [2007/02/12 13:38:04 | 000,355,096 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
 PRC - [2007/01/30 16:47:48 | 000,307,200 | ---- | M] (TOSHIBA CORPORATION.) -- c:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
 PRC - [2006/11/14 19:33:10 | 000,040,960 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\TOSHIBA\ConfigFree\CFSvc​s.exe
 PRC - [2006/11/06 16:14:44 | 000,034,352 | ---- | M] () -- C:\Program Files\TOSHIBA\Utilities\KeNoti​fy.exe
 PRC - [2006/10/05 05:10:12 | 000,009,216 | ---- | M] (Agere Systems) -- C:\Windows\System32\agrsmsvc.e​xe
 PRC - [2006/08/23 15:39:48 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
 PRC - [2006/05/25 18:30:16 | 000,114,688 | ---- | M] (TOSHIBA Corporation) -- C:\Windows\System32\TODDSrv.ex​e
 PRC - [2006/01/23 22:14:10 | 000,069,632 | ---- | M] (TOSHIBA CORPORATION.) -- c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
 
 
 ========== Modules (No Company Name) ==========
 
 MOD - [2012/11/21 10:10:33 | 000,519,168 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\TCrdMain\6a49​c7fa65173c7e17c37fb44cede01d\T​CrdMain.ni.exe
 MOD - [2012/11/21 09:49:38 | 012,433,920 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\System.Window​s.Forms\22e554f2c4da53c07e4815​a24e2d50e2\System.Windows.Form​s.ni.dll
 MOD - [2012/11/21 09:49:09 | 001,592,320 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\System.Drawin​g\2c6cd37f29fc76d6c2ed6bbed202​d82c\System.Drawing.ni.dll
 MOD - [2012/11/21 09:47:44 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\PresentationF​ramewo#\39cc0e726e5b80a46337fa​969cde2b66\PresentationFramewo​rk.Aero.ni.dll
 MOD - [2012/11/21 09:47:41 | 014,329,856 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\PresentationF​ramewo#\fb15c044e4e7d611a5cbe5​a1aa6db455\PresentationFramewo​rk.ni.dll
 MOD - [2012/11/21 09:46:55 | 012,219,392 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\PresentationC​ore\09ab834223f9c860f08de8d586​88b1a3\PresentationCore.ni.dll
 MOD - [2012/11/21 09:46:21 | 003,325,952 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\WindowsBase\0​e3cff5f58a9a75de7fcac112c8bbca​0\WindowsBase.ni.dll
 MOD - [2012/11/21 09:46:12 | 007,976,960 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\System\b2052a​cbbbba4f98585196872195e009\Sys​tem.ni.dll
 MOD - [2012/11/21 09:45:18 | 011,492,352 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\mscorlib\7ad9​c44df3b85848590e63f13fc59804\m​scorlib.ni.dll
 MOD - [2012/10/31 23:15:05 | 000,460,312 | ---- | M] () -- C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\Application\2​3.0.1271.64\ppGoogleNaClPlugin​Chrome.dll
 MOD - [2012/10/31 23:15:04 | 012,455,448 | ---- | M] () -- C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\Application\2​3.0.1271.64\PepperFlash\pepfla​shplayer.dll
 MOD - [2012/10/31 23:15:02 | 004,007,448 | ---- | M] () -- C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\Application\2​3.0.1271.64\pdf.dll
 MOD - [2012/10/31 23:13:47 | 000,587,288 | ---- | M] () -- C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\Application\2​3.0.1271.64\libglesv2.dll
 MOD - [2012/10/31 23:13:46 | 000,123,928 | ---- | M] () -- C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\Application\2​3.0.1271.64\libegl.dll
 MOD - [2012/10/31 23:13:35 | 000,156,712 | ---- | M] () -- C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\Application\2​3.0.1271.64\avutil-51.dll
 MOD - [2012/10/31 23:13:34 | 000,274,984 | ---- | M] () -- C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\Application\2​3.0.1271.64\avformat-54.dll
 MOD - [2012/10/31 23:13:32 | 002,168,360 | ---- | M] () -- C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\Application\2​3.0.1271.64\avcodec-54.dll
 MOD - [2012/10/10 12:23:16 | 002,068,504 | ---- | M] () -- c:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-8​61d-48e3-a751-d99a27784753}\br​owsemngr.dll
 MOD - [2009/03/30 05:42:26 | 000,311,296 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\m​scorlib.resources\2.0.0.0_fr_b​77a5c561934e089\mscorlib.resou​rces.dll
 MOD - [2008/07/29 14:55:14 | 000,969,728 | ---- | M] () -- C:\Program Files\OpenOffice.org 3\program\libxml2.dll
 MOD - [2007/09/20 17:43:46 | 000,159,744 | ---- | M] () -- C:\Windows\System32\atitmmxx.d​ll
 MOD - [2007/05/31 15:38:46 | 000,958,464 | ---- | M] () -- C:\Program Files\TOSHIBA\FlashCards\fr\TC​rdMain.resources.dll
 MOD - [2006/12/01 17:55:42 | 000,009,216 | ---- | M] () -- C:\Program Files\Toshiba\TBS\NotifyTBS.dl​l
 MOD - [2006/11/09 17:27:00 | 000,090,112 | ---- | M] () -- C:\Program Files\TOSHIBA\FlashCards\TWarn​Msg\TWarnMsg.dll
 MOD - [2006/11/08 18:08:30 | 000,009,216 | ---- | M] () -- C:\Program Files\Toshiba\PCDiag\NotifyPCD​.dll
 MOD - [2006/11/06 16:14:44 | 000,034,352 | ---- | M] () -- C:\Program Files\TOSHIBA\Utilities\KeNoti​fy.exe
 MOD - [2006/10/10 10:44:16 | 000,009,728 | ---- | M] () -- C:\Program Files\TOSHIBA\TOSHIBA Assist\NotifyX.dll
 MOD - [2006/10/07 11:57:04 | 000,053,248 | ---- | M] () -- C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll
 MOD - [2005/07/22 20:30:20 | 000,065,536 | ---- | M] () -- C:\Windows\System32\TosCommAPI​.dll
 MOD - [2004/10/14 09:18:24 | 000,040,960 | ---- | M] () -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtAfh.dll
 
 
 ========== Services (SafeList) ==========
 
 SRV - File not found [Auto | Running] -- E:\Spybot -- (SBSDWSCService)
 SRV - File not found [Auto | Stopped] -- C:\Program Files\Symantec\LiveUpdate\ALUS​chedulerSvc.exe -- (Planificateur LiveUpdate automatique)
 SRV - File not found [Auto | Stopped] -- C:\Program Files\Freemake\CaptureLib\Capt​ureLibService.exe -- (FreemakeVideoCapture)
 SRV - [2012/11/14 09:53:30 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\F​lash\FlashPlayerUpdateService.​exe -- (AdobeFlashPlayerUpdateSvc)
 SRV - [2012/09/20 15:03:20 | 001,236,368 | ---- | M] (Lavasoft Limited) [Auto | Running] -- C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe -- (Ad-Aware Service)
 SRV - [2012/07/13 12:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.ex​e -- (SkypeUpdate)
 SRV - [2011/12/19 13:20:06 | 003,289,032 | ---- | M] (GFI Software) [Auto | Running] -- C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe -- (SBAMSvc)
 SRV - [2010/09/06 08:11:32 | 000,217,088 | ---- | M] (Teruten) [Auto | Running] -- C:\Windows\System32\FsUsbExSer​vice.Exe -- (FsUsbExService)
 SRV - [2010/06/14 15:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
 SRV - [2009/12/23 22:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Running] -- E:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE​.exe -- (StarWindServiceAE)
 SRV - [2008/01/19 08:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
 SRV - [2007/09/19 11:01:12 | 000,077,824 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe -- (TNaviSrv)
 SRV - [2007/03/29 09:39:00 | 000,427,576 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe -- (TosCoSrv)
 SRV - [2007/02/25 20:55:18 | 000,125,048 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe -- (TOSHIBA Bluetooth Service)
 SRV - [2007/02/12 13:38:04 | 000,355,096 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe -- (IAANTMON)
 SRV - [2006/11/14 19:33:10 | 000,040,960 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files\TOSHIBA\ConfigFree\CFSvc​s.exe -- (CFSvcs)
 SRV - [2006/10/05 05:10:12 | 000,009,216 | ---- | M] (Agere Systems) [Auto | Running] -- C:\Windows\System32\agrsmsvc.e​xe -- (AgereModemAudio)
 SRV - [2006/08/23 15:39:48 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
 SRV - [2006/05/25 18:30:16 | 000,114,688 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Windows\System32\TODDSrv.ex​e -- (TODDSrv)
 
 
 ========== Driver Services (SafeList) ==========
 
 DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\TpChoice.sys -- (TpChoice)
 DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
 DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
 DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
 DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\dgderdrv.sys -- (dgderdrv)
 DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\bl​bdrive.sys -- (blbdrive)
 DRV - File not found [Kernel | On_Demand | Unknown] --  -- (a30ebegw)
 DRV - [2011/12/19 12:44:24 | 000,093,816 | ---- | M] (GFI Software) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sb​hips.sys -- (sbhips)
 DRV - [2011/11/29 06:59:52 | 000,077,816 | ---- | M] (GFI Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\sb​apifs.sys -- (sbapifs)
 DRV - [2011/10/26 14:23:40 | 000,101,112 | ---- | M] (GFI Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\SB​REDrv.sys -- (SBRE)
 DRV - [2011/05/10 19:58:34 | 000,436,792 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sp​td.sys -- (sptd)
 DRV - [2011/02/11 22:23:34 | 000,035,088 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\np​f.sys -- (npf)
 DRV - [2011/01/03 09:38:36 | 000,136,680 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss​admdm.sys -- (ssadmdm)
 DRV - [2011/01/03 09:38:36 | 000,121,192 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss​adbus.sys -- (ssadbus)
 DRV - [2011/01/03 09:38:36 | 000,012,776 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss​admdfl.sys -- (ssadmdfl)
 DRV - [2010/12/21 06:55:02 | 000,132,424 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss​cdmdm.sys -- (sscdmdm)
 DRV - [2010/12/21 06:55:02 | 000,104,648 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss​cdbus.sys -- (sscdbus)
 DRV - [2010/12/21 06:55:02 | 000,014,920 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss​cdmdfl.sys -- (sscdmdfl)
 DRV - [2010/09/06 08:11:32 | 000,036,640 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\FsUsbExDis​k.Sys -- (FsUsbExDisk)
 DRV - [2010/07/30 14:16:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\us​bser_lowerfltj.sys -- (UsbserFilt)
 DRV - [2010/07/30 14:16:44 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\us​bser_lowerflt.sys -- (upperdev)
 DRV - [2010/07/30 14:16:42 | 000,023,040 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\cc​dcmbo.sys -- (nmwcdc)
 DRV - [2010/07/30 14:16:38 | 000,018,048 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\cc​dcmb.sys -- (nmwcd)
 DRV - [2008/08/26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pc​csmcfd.sys -- (pccsmcfd)
 DRV - [2007/09/26 13:12:22 | 002,251,776 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NE​Tw4v32.sys -- (NETw4v32)
 DRV - [2007/09/20 17:56:22 | 003,077,632 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\at​ikmdag.sys -- (atikmdag)
 DRV - [2007/07/26 16:18:04 | 000,285,184 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\to​s_sps32.sys -- (tos_sps32)
 DRV - [2007/04/30 06:42:14 | 000,081,408 | ---- | M] (Realtek Corporation                                            ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rt​lh86.sys -- (RTL8169)
 DRV - [2007/04/16 10:19:10 | 000,011,776 | ---- | M] (Chicony Electronics Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\UV​CFTR_S.SYS -- (UVCFTR)
 DRV - [2007/03/06 14:01:04 | 000,014,848 | ---- | M] (COMPAL ELECTRONIC INC.) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\Cp​lIR.sys -- (CplIR)
 DRV - [2007/03/01 15:53:12 | 000,073,728 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\To​srfhid.sys -- (Tosrfhid)
 DRV - [2007/02/28 21:27:06 | 000,041,344 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\to​srfusb.sys -- (Tosrfusb)
 DRV - [2007/02/22 18:56:24 | 000,113,920 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\to​srfbd.sys -- (tosrfbd)
 DRV - [2007/01/24 13:44:06 | 000,290,304 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ti​fm21.sys -- (tifm21)
 DRV - [2007/01/22 09:43:26 | 000,053,376 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\To​sRfSnd.sys -- (TosRfSnd)
 DRV - [2007/01/18 15:47:18 | 000,211,072 | ---- | M] (TOSHIBA CORPORATION) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\KR​10N.sys -- (KR10N)
 DRV - [2007/01/18 15:40:56 | 000,219,392 | ---- | M] (TOSHIBA CORPORATION) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\KR​10I.sys -- (KR10I)
 DRV - [2006/11/28 08:11:00 | 001,161,888 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AG​RSM.sys -- (AgereSoftModem)
 DRV - [2006/11/20 16:55:16 | 000,036,480 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\to​srfbnp.sys -- (tosrfbnp)
 DRV - [2006/11/02 08:30:54 | 001,781,760 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NE​Tw3v32.sys -- (NETw3v32)
 DRV - [2006/11/02 08:30:52 | 000,467,456 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\at​hr.sys -- (athr)
 DRV - [2006/10/23 15:32:20 | 000,009,216 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\to​srfec.sys -- (tosrfec)
 DRV - [2006/10/18 11:50:04 | 000,016,128 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\td​cmdpst.sys -- (tdcmdpst)
 DRV - [2006/10/10 18:33:00 | 000,041,600 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\to​sporte.sys -- (tosporte)
 DRV - [2006/10/05 21:22:14 | 000,016,768 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\TV​ALZ_O.SYS -- (TVALZ)
 DRV - [2006/07/28 15:25:26 | 000,019,456 | ---- | M] (COMPAL ELECTRONIC INC.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\LP​CFilter.sys -- (LPCFilter)
 DRV - [2005/08/01 15:45:00 | 000,064,896 | ---- | M] (TOSHIBA Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\to​srfcom.sys -- (Tosrfcom)
 DRV - [2005/01/06 12:42:00 | 000,018,612 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\to​srfnds.sys -- (tosrfnds)
 DRV - [1998/06/03 13:59:40 | 000,003,904 | ---- | M] () [Kernel | On_Demand | Stopped] -- E:\Unknown Device Identifier\GWIOPM.SYS -- (gwiopm)
 
 
 ========== Standard Registry (SafeList) ==========
 
 
 ========== Internet Explorer ==========
 
 IE - HKLM\SOFTWARE\Microsoft\Intern​et Explorer\Main,Search bar = http://search.msn.com/spbasic.htm
 IE - HKLM\SOFTWARE\Microsoft\Intern​et Explorer\Main,Start Page = http://www.google.com
 IE - HKLM\..\SearchScopes,DefaultSc​ope =
 IE - HKLM\..\SearchScopes\{4EDA09B5​-569C-420D-A5DB-44D62F5B0B6A}: "URL" = http://www.google.fr/search?q= [...] rceid=ie7;
 IE - HKLM\..\SearchScopes\{afdbddaa​-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/Resu [...] =CT2269050
 IE - HKLM\..\SearchScopes\{BFFED5CA​-8BDF-47CC-AED0-23F4E6D77732}: "URL" = http://search.iminent.com/?app [...] archTerms}
 IE - HKLM\..\SearchScopes\{EEE6C360​-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/sear [...] 37ADA4516}
 
 
 IE - HKU\.DEFAULT\..\SearchScopes,D​efaultScope =
 IE - HKU\.DEFAULT\Software\Microsof​t\Windows\CurrentVersion\Inter​net Settings: "ProxyEnable" = 0
 
 IE - HKU\S-1-5-18\..\SearchScopes,D​efaultScope =
 IE - HKU\S-1-5-18\Software\Microsof​t\Windows\CurrentVersion\Inter​net Settings: "ProxyEnable" = 0
 
 IE - HKU\S-1-5-19\..\SearchScopes,D​efaultScope =
 IE - HKU\S-1-5-19\Software\Microsof​t\Windows\CurrentVersion\Inter​net Settings: "ProxyEnable" = 0
 
 IE - HKU\S-1-5-20\..\SearchScopes,D​efaultScope =
 
 IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\SOFTWARE\Mi​crosoft\Internet Explorer\Main,Start Page = http://safesearchr.lavasoft.co [...] 50B3985537
 IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\SOFTWARE\Mi​crosoft\Internet Explorer\Main,StartPageCache = 1
 IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\URLSearc​hHook: {05eeb91a-aef7-4f8a-978f-fb83e​7b03f8e} - No CLSID value found
 IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\URLSearc​hHook: {6c97a91e-4524-4019-86af-2aa2d​567bf5c} - C:\Program Files\adawaretb\adawareDx.dll ()
 IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\URLSearc​hHook: {84FF7BD6-B47F-46F8-9130-01B26​96B36CB} - No CLSID value found
 IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\SearchSc​opes,bProtectorDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C​0A66CC9}
 IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\SearchSc​opes,DefaultScope =
 IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\SearchSc​opes\${searchCLSID}: "URL" = http://search.live.com/results [...] r:source?}
 IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\SearchSc​opes\{0633EE93-D776-472f-A0FF-​E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={ [...] ORM=IE8SRC
 IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\SearchSc​opes\{4EDA09B5-569C-420D-A5DB-​44D62F5B0B6A}: "URL" = http://www.google.fr/search?q= [...] =ie7;&rlz=
 IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\SearchSc​opes\{9D5BD211-422C-4164-9298-​BB4186A30F31}: "URL" = http://www.bing.com/search?q={ [...] orm=MOAWA1
 IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\SearchSc​opes\{afdbddaa-5d3f-42ee-b79c-​185a7020515b}: "URL" = http://search.conduit.com/Resu [...] =CT2269050
 IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\SearchSc​opes\{BFFED5CA-8BDF-47CC-AED0-​23F4E6D77732}: "URL" = http://search.iminent.com/?app [...] archTerms}
 IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\SearchSc​opes\Plasmoo: "URL" = http://plasmoo.com/index.htm?S [...] archTerms}
 IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\Software\Mi​crosoft\Windows\CurrentVersion​\Internet Settings: "ProxyEnable" = 0
 
 
 ========== FireFox ==========
 
 FF - HKLM\Software\MozillaPlugins\@​adobe.com/FlashPlayer: C:\Windows\system32\Macromed\F​lash\NPSWF32.dll ()
 FF - HKLM\Software\MozillaPlugins\@​divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll (DivX, Inc)
 FF - HKLM\Software\MozillaPlugins\@​java.com/DTPlugin,version=1.6.​0_37: C:\Windows\system32\npdeployJa​va1.dll (Sun Microsystems, Inc.)
 FF - HKLM\Software\MozillaPlugins\@​java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\np​jp2.dll (Sun Microsystems, Inc.)
 FF - HKLM\Software\MozillaPlugins\@​Microsoft.com/NpCtrl,version=1​.0: C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl​.dll ( Microsoft Corporation)
 FF - HKLM\Software\MozillaPlugins\@​microsoft.com/WLPG,version=15.​4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
 FF - HKLM\Software\MozillaPlugins\@​microsoft.com/WLPG,version=15.​4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
 FF - HKLM\Software\MozillaPlugins\@​microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Frame​work\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
 FF - HKLM\Software\MozillaPlugins\@​real.com/nppl3260;version=12.0​.1.647: C:\Program Files\Real\RealPlayer\Netscape​6\nppl3260.dll (RealNetworks, Inc.)
 FF - HKLM\Software\MozillaPlugins\@​real.com/nprjplug;version=12.0​.1.647: C:\Program Files\Real\RealPlayer\Netscape​6\nprjplug.dll (RealNetworks, Inc.)
 FF - HKLM\Software\MozillaPlugins\@​real.com/nprpchromebrowserreco​rdext;version=12.0.1.660: C:\ProgramData\Real\RealPlayer​\BrowserRecordPlugin\MozillaPl​ugins\nprpchromebrowserrecorde​xt.dll (RealNetworks, Inc.)
 FF - HKLM\Software\MozillaPlugins\@​real.com/nprphtml5videoshim;ve​rsion=12.0.1.660: C:\ProgramData\Real\RealPlayer​\BrowserRecordPlugin\MozillaPl​ugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
 FF - HKLM\Software\MozillaPlugins\@​real.com/nprpjplug;version=12.​0.1.660: C:\Program Files\Real\RealPlayer\Netscape​6\nprpjplug.dll (RealNetworks, Inc.)
 FF - HKLM\Software\MozillaPlugins\@​real.com/nsJSRealPlayerPlugin;​version=:  File not found
 FF - HKLM\Software\MozillaPlugins\@​veetle.com/veetleCorePlugin,ve​rsion=0.9.19: E:\Program Files\Veetle\plugins\npVeetle.​dll (Veetle Inc)
 FF - HKLM\Software\MozillaPlugins\@​veetle.com/veetlePlayerPlugin,​version=0.9.18: E:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
 FF - HKLM\Software\MozillaPlugins\A​dobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 FF - HKCU\Software\MozillaPlugins\@​octoshape.com/Octoshape Streaming Services,version=1.0: C:\Users\Nourdhine\AppData\Roa​ming\Octoshape\Octoshape Streaming Services\sua-1101262-0-npoctos​hape.dll (Octoshape ApS)
 FF - HKCU\Software\MozillaPlugins\@​tools.google.com/Google Update;version=3: C:\Users\Nourdhine\AppData\Loc​al\Google\Update\1.3.21.123\np​GoogleUpdate3.dll (Google Inc.)
 FF - HKCU\Software\MozillaPlugins\@​tools.google.com/Google Update;version=9: C:\Users\Nourdhine\AppData\Loc​al\Google\Update\1.3.21.123\np​GoogleUpdate3.dll (Google Inc.)
 
 FF - HKEY_LOCAL_MACHINE\software\mo​zilla\Firefox\Extensions\\{ABD​E892B-13A8-4d1b-88E6-365A6E755​758}: C:\ProgramData\Real\RealPlayer​\BrowserRecordPlugin\Firefox\E​xt [2011/07/15 06:41:15 | 000,000,000 | ---D | M]
 
 [2009/10/24 14:39:47 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Nourdhine\AppData\Roa​ming\mozilla\Extensions
 [2009/10/24 14:39:47 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Nourdhine\AppData\Roa​ming\mozilla\Extensions\mozswi​ng@mozswing.org
 [2009/06/12 08:57:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Nourdhine\AppData\Roa​ming\mozilla\Firefox\extension​s
 [2009/06/12 08:57:07 | 000,000,000 | ---D | M] ("Ask Toolbar for Firefox" ) -- C:\Users\Nourdhine\AppData\Roa​ming\mozilla\Firefox\extension​s\{E9A1DEE0-C623-4439-8932-001​E7D17607D}
 [2012/09/22 18:00:03 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions
 
 ========== Chrome  ==========
 
 CHR - default_search_provider: blekko (Enabled)
 CHR - default_search_provider: search_url = http://safesearchr.lavasoft.co [...] archTerms}
 CHR - default_search_provider: suggest_url =
 CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\Application\2​3.0.1271.64\PepperFlash\pepfla​shplayer.dll
 CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
 CHR - plugin: Native Client (Enabled) = C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\Application\2​3.0.1271.64\ppGoogleNaClPlugin​Chrome.dll
 CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\Application\2​3.0.1271.64\pdf.dll
 CHR - plugin: Conduit Chrome Plugin (Enabled) = C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\User Data\Default\Extensions\plmlpk​fpkijnlijgalnjaacllnjmoamo\10.​11.23.8_0\plugins/ConduitChrom​eApiPlugin.dll
 CHR - plugin: Conduit Radio Plugin (Enabled) = C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\User Data\Default\Extensions\plmlpk​fpkijnlijgalnjaacllnjmoamo\10.​11.23.8_0\plugins/np-cwmp.dll
 CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
 CHR - plugin: Octoshape Streaming Services (Enabled) = C:\Users\Nourdhine\AppData\Roa​ming\Mozilla\plugins\npoctosha​pe.dll
 CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = E:\Program Files\QuickTime\plugins\npqtpl​ugin.dll
 CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = E:\Program Files\QuickTime\plugins\npqtpl​ugin2.dll
 CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = E:\Program Files\QuickTime\plugins\npqtpl​ugin3.dll
 CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = E:\Program Files\QuickTime\plugins\npqtpl​ugin4.dll
 CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = E:\Program Files\QuickTime\plugins\npqtpl​ugin5.dll
 CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = E:\Program Files\QuickTime\plugins\npqtpl​ugin6.dll
 CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = E:\Program Files\QuickTime\plugins\npqtpl​ugin7.dll
 CHR - plugin: DivX Player Netscape Plugin (Enabled) = C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll
 CHR - plugin: Java(TM) Platform SE 6 U37 (Enabled) = C:\Program Files\Java\jre6\bin\plugin2\np​jp2.dll
 CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl​.dll
 CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit)  (Enabled) = C:\Program Files\Real\RealPlayer\Netscape​6\nppl3260.dll
 CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files\Real\RealPlayer\Netscape​6\nprjplug.dll
 CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Real\RealPlayer\Netscape​6\nprpjplug.dll
 CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
 CHR - plugin: RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In (32-bit)  (Enabled) = C:\ProgramData\Real\RealPlayer​\BrowserRecordPlugin\MozillaPl​ugins\nprpchromebrowserrecorde​xt.dll
 CHR - plugin: RealPlayer(tm) HTML5VideoShim Plug-In (32-bit)  (Enabled) = C:\ProgramData\Real\RealPlayer​\BrowserRecordPlugin\MozillaPl​ugins\nprphtml5videoshim.dll
 CHR - plugin: Google Update (Enabled) = C:\Users\Nourdhine\AppData\Loc​al\Google\Update\1.3.21.123\np​GoogleUpdate3.dll
 CHR - plugin: Octoshape Streaming Services (Enabled) = C:\Users\Nourdhine\AppData\Roa​ming\Octoshape\Octoshape Streaming Services\sua-1101262-0-npoctos​hape.dll
 CHR - plugin: Windows Presentation Foundation (Enabled) = C:\Windows\Microsoft.NET\Frame​work\v3.5\Windows Presentation Foundation\NPWPF.dll
 CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\F​lash\NPSWF32.dll
 CHR - plugin: Java Deployment Toolkit 6.0.370.6 (Enabled) = C:\Windows\system32\npdeployJa​va1.dll
 CHR - plugin: Veetle TV Player (Enabled) = E:\Program Files\Veetle\Player\npvlc.dll
 CHR - plugin: Veetle TV Core (Enabled) = E:\Program Files\Veetle\plugins\npVeetle.​dll
 CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\User Data\Default\Extensions\jfmjfh​klogoienhpfnppmbcbjfjnkonk\1.5​_0\
 CHR - Extension: Helper extension = C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\User Data\Default\Extensions\nchpfi​ddbhbdnagofhkjlaiaejmkdcla\1.0​_0\
 CHR - Extension: DVDVideoSoftTB = C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\User Data\Default\Extensions\plmlpk​fpkijnlijgalnjaacllnjmoamo\10.​11.23.8_0\
 CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\User Data\Default\Extensions\jfmjfh​klogoienhpfnppmbcbjfjnkonk\1.5​_0\
 CHR - Extension: Helper extension = C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\User Data\Default\Extensions\nchpfi​ddbhbdnagofhkjlaiaejmkdcla\1.0​_0\
 CHR - Extension: DVDVideoSoftTB = C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\User Data\Default\Extensions\plmlpk​fpkijnlijgalnjaacllnjmoamo\10.​11.23.8_0\
 
 O1 HOSTS File: ([2006/09/18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\et​c\hosts
 O1 - Hosts: 127.0.0.1       localhost
 O1 - Hosts: ::1             localhost
 O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A5​3123C75} - No CLSID value found.
 O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF​802613B} - C:\Program Files\BabylonToolbar\BabylonTo​olbar\1.6.9.12\bh\BabylonToolb​ar.dll File not found
 O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C091​46192CA} - C:\ProgramData\Real\RealPlayer​\BrowserRecordPlugin\IE\rpbrow​serrecordplugin.dll (RealPlayer)
 O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7​942484F} - No CLSID value found.
 O2 - BHO: (TBSB01620 Class) - {58124A0B-DC32-4180-9BFF-E0E21​AE34026} - C:\Program Files\IMinent Toolbar\tbcore3.dll File not found
 O2 - BHO: (Ad-Aware Security Add-on) - {6c97a91e-4524-4019-86af-2aa2d​567bf5c} - C:\Program Files\adawaretb\adawareDx.dll ()
 O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF​1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
 O2 - BHO: (no name) - {84FF7BD6-B47F-46F8-9130-01B26​96B36CB} - No CLSID value found.
 O2 - BHO: (Facetheme) - {9193fbaf-bdaf-4751-a99a-1f5ef​255c35b} - C:\Program Files\Object\bho_project.dll File not found
 O2 - BHO: (IMinent WebBooster (BHO)) - {A09AB6EB-31B5-454C-97EC-9B294​D92EE2A} - C:\Program Files\Iminent\Iminent.WebBoost​er.InternetExplorer.dll File not found
 O2 - BHO: (DealPly) - {A6174F27-1FFF-E1D6-A93F-BA48A​D5DD448} - C:\Program Files\DealPly\DealPlyIE.dll File not found
 O2 - BHO: (Wajam) - {A7A6995D-6EE1-4FD1-A258-49395​D5BF99C} - C:\Program Files\Wajam\IE\priam_bho.dll File not found
 O2 - BHO: (SweetPacks Browser Helper) - {EEE6C35C-6118-11DC-9C72-00132​0C79847} - C:\Program Files\SweetIM\Toolbars\Interne​t Explorer\mgToolbarIE.dll File not found
 O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4​151CAD8} - C:\Program Files\Yontoo\YontooIEClient.dl​l File not found
 O3 - HKLM\..\Toolbar: (Ad-Aware Security Add-on) - {6c97a91e-4524-4019-86af-2aa2d​567bf5c} - C:\Program Files\adawaretb\adawareDx.dll ()
 O3 - HKLM\..\Toolbar: (IMinent Toolbar) - {977AE9CC-AF83-45E8-9E03-E2798​216E2D5} - C:\Program Files\IMinent Toolbar\tbcore3.dll File not found
 O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866​BE87DBC} - C:\Program Files\BabylonToolbar\BabylonTo​olbar\1.6.9.12\BabylonToolbarT​lbr.dll File not found
 O3 - HKLM\..\Toolbar: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-00132​0C79847} - C:\Program Files\SweetIM\Toolbars\Interne​t Explorer\mgToolbarIE.dll File not found
 O3 - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\Toolbar\​WebBrowser: (no name) - {05EEB91A-AEF7-4F8A-978F-FB83E​7B03F8E} - No CLSID value found.
 O3 - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\Toolbar\​WebBrowser: (no name) - {0FC85F5D-6207-4515-A490-45A54​9D285C0} - No CLSID value found.
 O3 - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\Toolbar\​WebBrowser: (IMinent Toolbar) - {977AE9CC-AF83-45E8-9E03-E2798​216E2D5} - C:\Program Files\IMinent Toolbar\tbcore3.dll File not found
 O4 - HKLM..\Run: [00TCrdMain] C:\Program Files\TOSHIBA\FlashCards\TCrdM​ain.exe (TOSHIBA Corporation)
 O4 - HKLM..\Run: [Ad-Aware Antivirus] C:\Program Files\Ad-Aware Antivirus\AdAwareLauncher.exe (Lavasoft Limited)
 O4 - HKLM..\Run: [Ad-Aware Browsing Protection] C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft)
 O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
 O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation)
 O4 - HKLM..\Run: [KeNotify] C:\Program Files\TOSHIBA\Utilities\KeNoti​fy.exe ()
 O4 - HKLM..\Run: [SBRegRebootCleaner] C:\Program Files\Ad-Aware Antivirus\SBRC.exe (GFI Software)
 O4 - HKLM..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPSta​rt.exe (Synaptics, Inc.)
 O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\Update\r​ealsched.exe (RealNetworks, Inc.)
 O4 - HKLM..\Run: [TPwrMain] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE (TOSHIBA Corporation)
 O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
 O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.d​ll (Microsoft Corporation)
 O4 - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000..\Run: [AlcoholAutomount] E:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe (Alcohol Soft Development Team)
 O4 - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000..\Run: [lkpvbae] "c:\users\nourdhine\appdata\lo​cal\lollipop\lkpvbae.exe" lkpvbae File not found
 O4 - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000..\Run: [Octoshape Streaming Services] C:\Users\Nourdhine\AppData\Roa​ming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe (Octoshape ApS)
 O4 - Startup: C:\Users\Invité\AppData\Roamin​g\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffi​ce.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
 O4 - Startup: C:\Users\Nourdhine\AppData\Roa​ming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffi​ce.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
 O6 - HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Expl​orer: NoDriveAutoRun = 255
 O6 - HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Expl​orer: NoDriveTypeAutoRun = 255
 O6 - HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Expl​orer: HonorAutoRunSetting = 0
 O7 - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\policies\Explorer: NoDriveAutoRun = 255
 O7 - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\policies\Explorer: NoDriveTypeAutoRun = 255
 O7 - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\policies\Explorer: HonorAutoRunSetting = 0
 O9 - Extra Button: eBay - Achetez, Vendez - {76577871-04EC-495E-A12B-91F7C​3600AFA} - http://rover.ebay.com/rover/1/709-44555-9400-3/4 File not found
 O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB​36FD2A2} - Reg Error: Key error. File not found
 O13 - gopher Prefix: missing
 O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805​F499D93} http://java.sun.com/update/1.6 [...] s-i586.cab (Java Plug-in 1.6.0_37)
 O16 - DPF: {CAFEEFAC-0016-0000-0000-ABCDE​FFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0)
 O16 - DPF: {CAFEEFAC-0016-0000-0037-ABCDE​FFEDCBA} http://java.sun.com/update/1.6 [...] s-i586.cab (Java Plug-in 1.6.0_37)
 O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDE​FFEDCBA} http://java.sun.com/update/1.6 [...] s-i586.cab (Java Plug-in 1.6.0_37)
 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-44455​3540000} http://fpdownload2.macromedia. [...] wflash.cab (Shockwave Flash Object)
 O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF​37916A7} http://platformdl.adobe.com/NO [...] 1.6/gp.cab (Reg Error: Key error.)
 O17 - HKLM\System\CCS\Services\Tcpip​\Parameters: DhcpNameServer = 194.158.122.10 194.158.122.15
 O17 - HKLM\System\CCS\Services\Tcpip​\Parameters\Interfaces\{336771​9D-EBB6-4548-AD41-2694F0FED860​}: DhcpNameServer = 192.168.1.254
 O17 - HKLM\System\CCS\Services\Tcpip​\Parameters\Interfaces\{59D629​52-1273-40CA-A529-941299E02A6D​}: DhcpNameServer = 194.158.122.10 194.158.122.15
 O17 - HKLM\System\CCS\Services\Tcpip​\Parameters\Interfaces\{BBC430​57-B259-4513-AD64-C7626492DF53​}: DhcpNameServer = 192.168.42.129
 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C​7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKY​PE4~1.DLL (Skype Technologies)
 O20 - AppInit_DLLs: (c:\progra~2\browse~1\23787~1.​43\{16cdf~1\browse~1.dll) - c:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-8​61d-48e3-a751-d99a27784753}\br​owsemngr.dll ()
 O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
 O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.​exe) - C:\Windows\System32\userinit.e​xe (Microsoft Corporation)
 O24 - Desktop WallPaper: C:\Users\Public\Pictures\Sampl​e Pictures\Forest Flowers.jpg
 O24 - Desktop BackupWallPaper: C:\Users\Public\Pictures\Sampl​e Pictures\Forest Flowers.jpg
 O32 - HKLM CDRom: AutoRun - 1
 O32 - AutoRun File - [2006/09/18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
 O32 - AutoRun File - [2010/03/11 18:20:48 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ]
 O32 - AutoRun File - [2010/03/11 18:20:48 | 000,000,000 | RHSD | M] - E:\autorun.inf -- [ NTFS ]
 O34 - HKLM BootExecute: (autocheck autochk *)
 O34 - HKLM BootExecute: (SBBD.exe /d \Device\HarddiskVolume2\Progra​m Files\Ad-Aware Antivirus\Definitions)
 O35 - HKLM\..comfile [open] -- "%1" %*
 O35 - HKLM\..exefile [open] -- "%1" %*
 O37 - HKLM\...com [@ = comfile] -- "%1" %*
 O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDl​lInitialization,3)
 O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDll​Initialization,2)
 
 NetSvcs: FastUserSwitchingCompatibility -  File not found
 NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
 NetSvcs: Nla -  File not found
 NetSvcs: Ntmssvc -  File not found
 NetSvcs: NWCWorkstation -  File not found
 NetSvcs: Nwsapagent -  File not found
 NetSvcs: SRService -  File not found
 NetSvcs: WmdmPmSp -  File not found
 NetSvcs: LogonHours -  File not found
 NetSvcs: PCAudit -  File not found
 NetSvcs: helpsvc -  File not found
 NetSvcs: uploadmgr -  File not found
 
 
 SafeBootMin: Ad-Aware Service - C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited)
 SafeBootMin: AppMgmt - Service
 SafeBootMin: Base - Driver Group
 SafeBootMin: Boot Bus Extender - Driver Group
 SafeBootMin: Boot file system - Driver Group
 SafeBootMin: File system - Driver Group
 SafeBootMin: Filter - Driver Group
 SafeBootMin: HelpSvc - Service
 SafeBootMin: NTDS -  File not found
 SafeBootMin: PCI Configuration - Driver Group
 SafeBootMin: PNP Filter - Driver Group
 SafeBootMin: Primary disk - Driver Group
 SafeBootMin: sacsvr - Service
 SafeBootMin: SBAMSvc - C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software)
 SafeBootMin: SCSI Class - Driver Group
 SafeBootMin: System Bus Extender - Driver Group
 SafeBootMin: WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
 SafeBootMin: {36FC9E60-C465-11CF-8056-44455​3540000} - Universal Serial Bus controllers
 SafeBootMin: {4D36E965-E325-11CE-BFC1-08002​BE10318} - CD-ROM Drive
 SafeBootMin: {4D36E967-E325-11CE-BFC1-08002​BE10318} - DiskDrive
 SafeBootMin: {4D36E969-E325-11CE-BFC1-08002​BE10318} - Standard floppy disk controller
 SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002​BE10318} - Hdc
 SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002​BE10318} - Keyboard
 SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002​BE10318} - Mouse
 SafeBootMin: {4D36E977-E325-11CE-BFC1-08002​BE10318} - PCMCIA Adapters
 SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002​BE10318} - SCSIAdapter
 SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002​BE10318} - System
 SafeBootMin: {4D36E980-E325-11CE-BFC1-08002​BE10318} - Floppy disk drive
 SafeBootMin: {533C5B84-EC70-11D2-9505-00C04​F79DEAF} - Volume shadow copy
 SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002​BE2092F} - IEEE 1394 Bus host controllers
 SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002​BE2092F} - Volume
 SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C​90F57DA} - Human Interface Devices
 SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04​FA372A7} - SBP2 IEEE 1394 Devices
 SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7​D41B0E6} - SecurityDevices
 
 SafeBootNet: Ad-Aware Service - C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited)
 SafeBootNet: AppMgmt - Service
 SafeBootNet: Base - Driver Group
 SafeBootNet: Boot Bus Extender - Driver Group
 SafeBootNet: Boot file system - Driver Group
 SafeBootNet: File system - Driver Group
 SafeBootNet: Filter - Driver Group
 SafeBootNet: HelpSvc - Service
 SafeBootNet: Messenger - Service
 SafeBootNet: NDIS Wrapper - Driver Group
 SafeBootNet: NetBIOSGroup - Driver Group
 SafeBootNet: NetDDEGroup - Driver Group
 SafeBootNet: Network - Driver Group
 SafeBootNet: NetworkProvider - Driver Group
 SafeBootNet: NTDS -  File not found
 SafeBootNet: PCI Configuration - Driver Group
 SafeBootNet: PNP Filter - Driver Group
 SafeBootNet: PNP_TDI - Driver Group
 SafeBootNet: Primary disk - Driver Group
 SafeBootNet: rdsessmgr - Service
 SafeBootNet: sacsvr - Service
 SafeBootNet: SBAMSvc - C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software)
 SafeBootNet: SCSI Class - Driver Group
 SafeBootNet: Streams Drivers - Driver Group
 SafeBootNet: System Bus Extender - Driver Group
 SafeBootNet: TDI - Driver Group
 SafeBootNet: WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
 SafeBootNet: WudfUsbccidDriver - Driver
 SafeBootNet: {36FC9E60-C465-11CF-8056-44455​3540000} - Universal Serial Bus controllers
 SafeBootNet: {4D36E965-E325-11CE-BFC1-08002​BE10318} - CD-ROM Drive
 SafeBootNet: {4D36E967-E325-11CE-BFC1-08002​BE10318} - DiskDrive
 SafeBootNet: {4D36E969-E325-11CE-BFC1-08002​BE10318} - Standard floppy disk controller
 SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002​BE10318} - Hdc
 SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002​BE10318} - Keyboard
 SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002​BE10318} - Mouse
 SafeBootNet: {4D36E972-E325-11CE-BFC1-08002​BE10318} - Net
 SafeBootNet: {4D36E973-E325-11CE-BFC1-08002​BE10318} - NetClient
 SafeBootNet: {4D36E974-E325-11CE-BFC1-08002​BE10318} - NetService
 SafeBootNet: {4D36E975-E325-11CE-BFC1-08002​BE10318} - NetTrans
 SafeBootNet: {4D36E977-E325-11CE-BFC1-08002​BE10318} - PCMCIA Adapters
 SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002​BE10318} - SCSIAdapter
 SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002​BE10318} - System
 SafeBootNet: {4D36E980-E325-11CE-BFC1-08002​BE10318} - Floppy disk drive
 SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F​805F530} - Smart card readers
 SafeBootNet: {533C5B84-EC70-11D2-9505-00C04​F79DEAF} - Volume shadow copy
 SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002​BE2092F} - IEEE 1394 Bus host controllers
 SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002​BE2092F} - Volume
 SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C​90F57DA} - Human Interface Devices
 SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04​FA372A7} - SBP2 IEEE 1394 Devices
 SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7​D41B0E6} - SecurityDevices
 
 ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401​C608500} - Java (Sun)
 ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA0​0B4E220} -
 ActiveX: {22d6f312-b0f6-11d0-94ab-0080c​74c7e95} - Microsoft Windows Media Player 11.0
 ActiveX: {2C7339CF-2B09-4501-B3F3-F3508​C9228ED} - %SystemRoot%\system32\regsvr32​.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.​dll
 ActiveX: {3af36230-a269-11d1-b5bf-0000f​8051515} - Offline Browsing Pack
 ActiveX: {3C3901C5-3455-3E0A-A214-0B093​A5070A6} - .NET Framework
 ActiveX: {44BBA840-CC51-11CF-AAFA-00AA0​0B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
 ActiveX: {44BBA848-CC51-11CF-AAFA-00AA0​0B6015C} -
 ActiveX: {44BBA855-CC51-11CF-AAFA-00AA0​0B6015F} - DirectDrawEx
 ActiveX: {45ea75a0-a269-11d1-b5bf-0000f​8051515} - Internet Explorer Help
 ActiveX: {4f645220-306d-11d2-995d-00c04​f98bbc9} - Microsoft Windows Script 5.6
 ActiveX: {5fd399c0-a70a-11d1-9948-00c04​f98bbc9} - Internet Explorer Setup Tools
 ActiveX: {630b1da0-b465-11d1-9948-00c04​f98bbc9} - Browsing Enhancements
 ActiveX: {6BF52A52-394A-11d3-B153-00C04​F79FAA6} - Microsoft Windows Media Player
 ActiveX: {6fab99d0-bab8-11d1-994a-00c04​f98bbc9} - MSN Site Access
 ActiveX: {7790769C-0471-11d2-AF11-00C04​FA35D02} - Address Book 7
 ActiveX: {7C028AF8-F614-47B3-82DA-BA94E​41B1089} - .NET Framework
 ActiveX: {89820200-ECBD-11cf-8B85-00AA0​05B4340} - regsvr32.exe /s /n /i:U shell32.dll
 ActiveX: {89820200-ECBD-11cf-8B85-00AA0​05B4383} - C:\Windows\system32\ie4uinit.e​xe -BaseSettings
 ActiveX: {89B4C1CD-B018-4511-B0A1-5476D​BF70820} - C:\Windows\system32\Rundll32.e​xe C:\Windows\system32\mscories.d​ll,Install
 ActiveX: {9381D8F2-0288-11D0-9501-00AA0​0B911A5} - Dynamic HTML Data Binding
 ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789​CFEFCDD} - .NET Framework
 ActiveX: {C9E9A340-D1F1-11D0-821E-44455​3540600} - Internet Explorer Core Fonts
 ActiveX: {CDD7975E-60F8-41d5-8149-19E51​D6F71D0} - Windows Movie Maker v2.1
 ActiveX: {D27CDB6E-AE6D-11CF-96B8-44455​3540000} - Adobe Flash Player
 ActiveX: {de5aed00-a4bf-11d1-9948-00c04​f98bbc9} - HTML Help
 ActiveX: {E92B03AB-B707-11d2-9CBD-0000F​87A369E} - Active Directory Service Interface
 ActiveX: >{22d6f312-b0f6-11d0-94ab-0080​c74c7e95} - C:\Windows\system32\unregmp2.e​xe /ShowWMP
 ActiveX: >{26923b43-4d38-484f-9b9e-de46​0746276c} - C:\Windows\system32\ie4uinit.e​xe -UserIconConfig
 ActiveX: >{60B49E34-C7CC-11D0-8953-00A0​C90347FF} - "C:\Windows\System32\rundll32.​exe" "C:\Windows\System32\iedkcs32.​dll",BrandIEActiveSetup SIGNUP
 
 Drivers32: msacm.dvacm - C:\PROGRA~1\COMMON~1\ULEADS~1\​vio\dvacm.acm (Ulead Systems, Inc.)
 Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.a​cm (Fraunhofer Institut Integrierte Schaltungen IIS)
 Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.d​ll (Microsoft Corporation)
 Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
 Drivers32: vidc.DIVX - C:\Windows\System32\DivX.dll (DivX, Inc.)
 Drivers32: vidc.yv12 - C:\Windows\System32\DivX.dll (DivX, Inc.)
 PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
 
 ========== Files/Folders - Created Within 30 Days ==========
 
 [2012/11/26 17:59:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Ad-Aware Antivirus
 [2012/11/26 17:34:33 | 000,000,000 | ---D | C] -- C:\Users\Nourdhine\AppData\Roa​ming\LavasoftStatistics
 [2012/11/26 17:31:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windo​ws\Start Menu\Programs\Ad-Aware Antivirus
 [2012/11/26 17:30:16 | 000,093,816 | ---- | C] (GFI Software) -- C:\Windows\System32\drivers\sb​hips.sys
 [2012/11/26 17:30:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Lavasoft
 [2012/11/26 17:30:12 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\VD​D
 [2012/11/26 17:30:12 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Aware Antivirus
 [2012/11/26 17:27:29 | 000,000,000 | ---D | C] -- C:\Users\Nourdhine\AppData\Loc​al\adawarebp
 [2012/11/26 17:27:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Ad-Aware Browsing Protection
 [2012/11/26 17:27:22 | 000,000,000 | ---D | C] -- C:\Program Files\Toolbar Cleaner
 [2012/11/26 17:27:18 | 000,000,000 | ---D | C] -- C:\Users\Nourdhine\AppData\Roa​ming\blekko
 [2012/11/26 17:27:12 | 000,000,000 | ---D | C] -- C:\Program Files\adawaretb
 [2012/11/26 17:26:00 | 000,000,000 | ---D | C] -- C:\Users\Nourdhine\AppData\Roa​ming\Ad-Aware Antivirus
 [2012/11/25 10:02:41 | 000,000,000 | ---D | C] -- C:\Users\Nourdhine\AppData\Roa​ming\FIXIO PC Utilities
 [2012/11/25 10:01:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windo​ws\Start Menu\Programs\FIXIO PC Utilities
 [2012/11/25 10:01:41 | 000,000,000 | ---D | C] -- C:\Program Files\FIXIO PC Utilities
 [2012/11/17 09:14:23 | 000,157,680 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
 [2012/11/17 09:14:23 | 000,149,488 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
 [2012/11/17 09:14:23 | 000,149,488 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
 [2012/11/15 13:12:22 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\synceng.dl​l
 [2012/11/15 13:12:04 | 002,047,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
 [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
 ========== Files - Modified Within 30 Days ==========
 
 [2012/11/27 11:17:01 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
 [2012/11/27 11:13:22 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
 [2012/11/27 11:12:42 | 000,000,104 | ---- | M] () -- C:\Windows\System32\SBRC.dat
 [2012/11/27 10:42:22 | 000,679,042 | ---- | M] () -- C:\Windows\System32\perfh00C.d​at
 [2012/11/27 10:42:22 | 000,595,996 | ---- | M] () -- C:\Windows\System32\perfh009.d​at
 [2012/11/27 10:42:22 | 000,126,626 | ---- | M] () -- C:\Windows\System32\perfc00C.d​at
 [2012/11/27 10:42:22 | 000,104,070 | ---- | M] () -- C:\Windows\System32\perfc009.d​at
 [2012/11/27 10:38:03 | 000,001,094 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateT​askUserS-1-5-21-56155728-37236​34386-2382273965-1000UA.job
 [2012/11/27 10:36:19 | 000,001,742 | ---- | M] () -- C:\Users\Public\Desktop\Ad-Awa​re Antivirus.lnk
 [2012/11/27 10:35:50 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-3​76B-497e-B012-9C450E1B7327-2P-​1.C7483456-A289-439d-8115-6016​32D005A0
 [2012/11/27 10:35:50 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-3​76B-497e-B012-9C450E1B7327-2P-​0.C7483456-A289-439d-8115-6016​32D005A0
 [2012/11/27 10:35:41 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
 [2012/11/27 10:35:34 | 2145,837,056 | -HS- | M] () -- C:\hiberfil.sys
 [2012/11/26 11:38:00 | 000,001,042 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateT​askUserS-1-5-21-56155728-37236​34386-2382273965-1000Core.job
 [2012/11/25 10:14:12 | 000,000,914 | ---- | M] () -- C:\Users\Nourdhine\Desktop\IMG​_0417.jpg - Raccourci.lnk
 [2012/11/25 10:02:39 | 000,000,996 | ---- | M] () -- C:\Users\Public\Desktop\FIXIO PC Cleaner.lnk
 [2012/11/16 21:53:00 | 000,273,320 | ---- | M] () -- C:\Windows\System32\FNTCACHE.D​AT
 [2012/11/15 21:15:02 | 000,002,067 | ---- | M] () -- C:\Users\Nourdhine\Desktop\Goo​gle Chrome.lnk
 [2012/11/15 21:15:02 | 000,002,029 | ---- | M] () -- C:\Users\Nourdhine\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
 [2012/11/14 10:11:22 | 000,001,892 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
 [2012/11/14 09:53:29 | 000,697,272 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlaye​rApp.exe
 [2012/11/14 09:53:29 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlaye​rCPLApp.cpl
 [2012/11/14 08:01:14 | 000,000,390 | ---- | M] () -- C:\Windows\tasks\ReclaimerResu​meInstall_Nourdhine.job
 [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
 ========== Files Created - No Company Name ==========
 
 [2012/11/27 11:13:22 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
 [2012/11/27 11:12:39 | 000,000,104 | ---- | C] () -- C:\Windows\System32\SBRC.dat
 [2012/11/26 17:31:28 | 000,001,742 | ---- | C] () -- C:\Users\Public\Desktop\Ad-Awa​re Antivirus.lnk
 [2012/11/25 10:14:12 | 000,000,914 | ---- | C] () -- C:\Users\Nourdhine\Desktop\IMG​_0417.jpg - Raccourci.lnk
 [2012/11/25 10:02:39 | 000,000,996 | ---- | C] () -- C:\Users\Public\Desktop\FIXIO PC Cleaner.lnk
 [2012/11/14 10:11:22 | 000,001,892 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
 [2012/10/20 10:00:23 | 000,000,097 | ---- | C] () -- C:\ProgramData\Microsoft.SqlSe​rver.Compact.351.32.bc
 [2012/03/15 12:11:23 | 000,024,206 | ---- | C] () -- C:\Users\Nourdhine\AppData\Roa​ming\UserTile.png
 [2011/04/30 08:16:51 | 000,110,592 | ---- | C] () -- C:\Windows\System32\FsUsbExDev​ice.Dll
 [2011/04/30 08:16:51 | 000,036,640 | ---- | C] () -- C:\Windows\System32\FsUsbExDis​k.Sys
 [2011/04/27 13:19:30 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dl​l
 [2011/04/27 13:19:30 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_b​s-2.3.dll
 [2011/04/27 13:19:30 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_p​e-2.3.dll
 [2011/04/27 13:19:30 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_s​e-2.3.dll
 [2011/02/11 22:23:34 | 000,053,299 | ---- | C] () -- C:\Windows\System32\pthreadVC.​dll
 [2010/03/12 11:56:43 | 000,000,290 | RHS- | C] () -- C:\ProgramData\ntuser.pol
 [2010/02/27 19:31:34 | 000,000,012 | ---- | C] () -- C:\Users\Nourdhine\AppData\Roa​ming\rbuwzv.dat
 [2009/10/29 17:14:26 | 003,179,899 | ---- | C] () -- C:\Users\Nourdhine\sopcast_sop​cast_3.0.1_anglais_19140.zip
 [2009/06/21 19:55:09 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
 [2009/06/21 07:08:33 | 000,000,552 | ---- | C] () -- C:\Users\Nourdhine\AppData\Loc​al\d3d8caps.dat
 [2009/03/13 07:35:42 | 000,000,680 | ---- | C] () -- C:\Users\Nourdhine\AppData\Loc​al\d3d9caps.dat
 [2008/12/18 19:36:22 | 000,068,096 | ---- | C] () -- C:\Users\Nourdhine\AppData\Loc​al\DCBC2A71-70D8-4DAN-EHR8-E0D​61DEA3FDF.ini
 
 ========== ZeroAccess Check ==========
 
 [2006/11/02 13:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.in​i
 
 [HKEY_CURRENT_USER\Software\Cla​sses\clsid\{42aedc87-2188-41fd​-b9a3-0c966feabec1}\InProcServ​er32]
 
 [HKEY_CURRENT_USER\Software\Cla​sses\clsid\{fbeb8a05-beee-4442​-804e-409d6c4515e9}\InProcServ​er32]
 
 [HKEY_LOCAL_MACHINE\Software\Cl​asses\clsid\{42aedc87-2188-41f​d-b9a3-0c966feabec1}\InProcSer​ver32]
 "" = %SystemRoot%\system32\shell32.​dll -- [2012/06/08 18:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation)
 "ThreadingModel" = Apartment
 
 [HKEY_LOCAL_MACHINE\Software\Cl​asses\clsid\{5839FCA9-774D-42A​1-ACDA-D6A79037F57F}\InProcSer​ver32]
 "" = %systemroot%\system32\wbem\fas​tprox.dll -- [2009/04/11 07:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
 "ThreadingModel" = Free
 
 [HKEY_LOCAL_MACHINE\Software\Cl​asses\clsid\{F3130CDB-AA52-4C3​A-AB32-85FFC23AF9C1}\InProcSer​ver32]
 "" = %systemroot%\system32\wbem\wbe​mess.dll -- [2009/04/11 07:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
 "ThreadingModel" = Both
 
 ========== LOP Check ==========
 
 [2011/12/07 13:56:52 | 000,000,000 | ---D | M] -- C:\Users\Invité\AppData\Roamin​g\BitZipper
 [2010/04/26 20:40:42 | 000,000,000 | ---D | M] -- C:\Users\Invité\AppData\Roamin​g\Blender Foundation
 [2011/12/07 19:25:13 | 000,000,000 | ---D | M] -- C:\Users\Invité\AppData\Roamin​g\Iminent
 [2010/05/04 17:29:24 | 000,000,000 | ---D | M] -- C:\Users\Invité\AppData\Roamin​g\LimeWire
 [2010/05/04 17:33:01 | 000,000,000 | ---D | M] -- C:\Users\Invité\AppData\Roamin​g\OpenOffice.org
 [2010/04/25 21:56:55 | 000,000,000 | ---D | M] -- C:\Users\Invité\AppData\Roamin​g\TOSHIBA
 [2012/11/26 21:13:55 | 000,000,000 | ---D | M] -- C:\Users\Nourdhine\AppData\Roa​ming\Ad-Aware Antivirus
 [2011/03/26 08:02:08 | 000,000,000 | ---D | M] -- C:\Users\Nourdhine\AppData\Roa​ming\BitTorrent
 [2012/11/26 17:27:18 | 000,000,000 | ---D | M] -- C:\Users\Nourdhine\AppData\Roa​ming\blekko
 [2012/08/23 14:59:35 | 000,000,000 | ---D | M] -- C:\Users\Nourdhine\AppData\Roa​ming\DVDVideoSoft
 [2012/11/25 10:02:41 | 000,000,000 | ---D | M] -- C:\Users\Nourdhine\AppData\Roa​ming\FIXIO PC Utilities
 [2012/04/26 10:21:50 | 000,000,000 | ---D | M] -- C:\Users\Nourdhine\AppData\Roa​ming\KC Softwares
 [2011/03/26 17:53:40 | 000,000,000 | ---D | M] -- C:\Users\Nourdhine\AppData\Roa​ming\Nokia
 [2009/12/27 22:59:46 | 000,000,000 | ---D | M] -- C:\Users\Nourdhine\AppData\Roa​ming\Octoshape
 [2009/01/06 14:26:35 | 000,000,000 | ---D | M] -- C:\Users\Nourdhine\AppData\Roa​ming\OpenOffice.org
 [2010/06/23 08:51:33 | 000,000,000 | ---D | M] -- C:\Users\Nourdhine\AppData\Roa​ming\PC Suite
 [2012/03/15 12:11:22 | 000,000,000 | ---D | M] -- C:\Users\Nourdhine\AppData\Roa​ming\PeerNetworking
 [2011/07/17 19:56:42 | 000,000,000 | ---D | M] -- C:\Users\Nourdhine\AppData\Roa​ming\Samsung
 [2011/07/10 20:26:23 | 000,000,000 | ---D | M] -- C:\Users\Nourdhine\AppData\Roa​ming\TOSHIBA
 [2012/10/20 23:17:01 | 000,000,000 | ---D | M] -- C:\Users\Nourdhine\AppData\Roa​ming\TuneUp Software
 [2012/04/26 10:54:49 | 000,000,000 | ---D | M] -- C:\Users\Nourdhine\AppData\Roa​ming\uTorrent
 [2012/10/20 10:01:07 | 000,000,000 | ---D | M] -- C:\Users\Nourdhine\AppData\Roa​ming\WebPlayerBdd
 [2011/03/31 08:12:57 | 000,000,000 | ---D | M] -- C:\Users\Nourdhine\AppData\Roa​ming\Windows Live Writer
 
 ========== Purity Check ==========
 
 
 
 ========== Custom Scans ==========
 
 < %SYSTEMDRIVE%\*.*  >
 [2010/03/11 18:56:57 | 000,004,922 | ---- | M] () -- C:\Ad-Report-CLEAN[1].log
 [2012/11/27 10:33:03 | 000,026,087 | ---- | M] () -- C:\AdwCleaner[S1].txt
 [2011/05/06 07:41:53 | 000,002,006 | ---- | M] () -- C:\aqua_bitmap.cpp
 [2006/09/18 22:43:36 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
 [2009/04/11 07:36:36 | 000,333,257 | RHS- | M] () -- C:\bootmgr
 [2007/04/18 06:03:08 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK
 [2006/09/18 22:43:37 | 000,000,010 | ---- | M] () -- C:\config.sys
 [2012/08/17 02:37:53 | 000,000,009 | ---- | M] () -- C:\END
 [2012/11/27 10:35:34 | 2145,837,056 | -HS- | M] () -- C:\hiberfil.sys
 [2010/03/11 22:14:59 | 000,015,216 | ---- | M] () -- C:\JavaRa.log
 [2004/02/29 16:44:34 | 000,052,576 | ---- | M] () -- C:\orange.bmp
 [2012/11/27 10:35:31 | 2459,631,616 | -HS- | M] () -- C:\pagefile.sys
 [2012/11/27 11:13:22 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
 [2007/04/18 06:57:46 | 000,000,420 | ---- | M] () -- C:\RHDSetup.log
 [2007/10/16 05:42:55 | 000,000,282 | -H-- | M] () -- C:\SWSTAMP.TXT
 [2010/03/11 21:31:49 | 000,004,218 | ---- | M] () -- C:\UsbFix.txt
 [2010/03/11 21:31:11 | 004,888,577 | ---- | M] () -- C:\UsbFix_Upload_Me_PC-de-Nour​dhine.zip
 [2007/10/15 16:05:25 | 000,024,504 | ---- | M] () -- C:\_wdsuef.dmp
 
 < %SYSTEMDRIVE%\*.exe  >
 
 < %PROGRAMFILES%\*.*  >
 [2008/11/21 18:23:46 | 000,000,174 | -HS- | M] () -- C:\Program Files\desktop.ini
 
 < %PROGRAMFILES%\*.  >
 [2012/11/27 10:50:39 | 000,000,000 | ---D | M] -- C:\Program Files\Ad-Aware Antivirus
 [2012/11/26 17:27:24 | 000,000,000 | ---D | M] -- C:\Program Files\adawaretb
 [2010/10/13 17:09:49 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe
 [2011/08/13 23:52:22 | 000,000,000 | ---D | M] -- C:\Program Files\Apple Software Update
 [2008/11/10 09:31:27 | 000,000,000 | ---D | M] -- C:\Program Files\ATI
 [2008/11/10 09:33:18 | 000,000,000 | ---D | M] -- C:\Program Files\ATI Technologies
 [2009/06/26 17:31:39 | 000,000,000 | ---D | M] -- C:\Program Files\Audacity
 [2011/11/13 19:57:34 | 000,000,000 | ---D | M] -- C:\Program Files\AVS4YOU
 [2012/10/20 10:20:15 | 000,000,000 | ---D | M] -- C:\Program Files\Best MP4 To MP3 Converter
 [2008/11/10 09:34:29 | 000,000,000 | ---D | M] -- C:\Program Files\Camera Assistant Software for Toshiba
 [2012/09/22 18:02:40 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files
 [2010/06/23 08:39:25 | 000,000,000 | ---D | M] -- C:\Program Files\DIFX
 [2009/04/19 20:24:03 | 000,000,000 | ---D | M] -- C:\Program Files\DivX
 [2008/12/16 19:23:10 | 000,000,000 | ---D | M] -- C:\Program Files\e-Carte Bleue LCL
 [2008/11/10 09:47:24 | 000,000,000 | -HSD | M] -- C:\Program Files\Fichiers communs
 [2012/11/25 10:01:41 | 000,000,000 | ---D | M] -- C:\Program Files\FIXIO PC Utilities
 [2012/11/27 10:24:42 | 000,000,000 | ---D | M] -- C:\Program Files\Freemake
 [2011/09/27 08:53:54 | 000,000,000 | ---D | M] -- C:\Program Files\Google
 [2007/04/18 08:08:02 | 000,000,000 | ---D | M] -- C:\Program Files\IDM
 [2011/07/17 19:56:41 | 000,000,000 | -H-D | M] -- C:\Program Files\InstallShield Installation Information
 [2008/11/10 09:55:32 | 000,000,000 | ---D | M] -- C:\Program Files\Intel
 [2012/11/27 10:24:41 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer
 [2007/07/10 15:49:47 | 000,000,000 | ---D | M] -- C:\Program Files\InterVid

(Publicité)
Profil : Equipe sécurité
dedetraque
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 02/12/2012 à 17:37:11  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Salut nordine21


 Double clic sur OTL.exe pour le lancer.
 (Vista/Seven --> Faire un clique droit sur OTL.exe pour lancer le programme et choisi "Exécuter en tant qu'administrateur".

 * Copie la liste qui se trouve en citation ci-dessous, et colle-la dans la zone sous " Personnalisation "

 



:OTL
 SRV - File not found [Auto | Running] -- E:\Spybot -- (SBSDWSCService)
 SRV - File not found [Auto | Stopped] -- C:\Program Files\Symantec\LiveUpdate\ALUS​chedulerSvc.exe -- (Planificateur LiveUpdate automatique)    
 SRV - File not found [Auto | Stopped] -- C:\Program Files\Freemake\CaptureLib\Capt​ureLibService.exe -- (FreemakeVideoCapture)
 DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\TpChoice.sys -- (TpChoice)
 DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
 DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
 DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
 DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\dgderdrv.sys -- (dgderdrv)
 DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\bl​bdrive.sys -- (blbdrive)    
 DRV - File not found [Kernel | On_Demand | Unknown] -- -- (a30ebegw)
 IE - HKLM\..\SearchScopes\{afdbddaa​-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/Resu [...] =CT2269050    
 IE - HKLM\..\SearchScopes\{BFFED5CA​-8BDF-47CC-AED0-23F4E6D77732}: "URL" = http://search.iminent.com/?app [...] archTerms}
 IE - HKLM\..\SearchScopes\{EEE6C360​-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/sear [...] 37ADA4516}    
 IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\URLSearc​hHook: {05eeb91a-aef7-4f8a-978f-fb83e​7b03f8e} - No CLSID value found    
 IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\URLSearc​hHook: {84FF7BD6-B47F-46F8-9130-01B26​96B36CB} - No CLSID value found
 IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\SearchSc​opes,bProtectorDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C​0A66CC9}    
 IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\SearchSc​opes\{afdbddaa-5d3f-42ee-b79c-​185a7020515b}: "URL" = http://search.conduit.com/Resu [...] =CT2269050    
 IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\SearchSc​opes\{BFFED5CA-8BDF-47CC-AED0-​23F4E6D77732}: "URL" = http://search.iminent.com/?app [...] archTerms}
 O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A5​3123C75} - No CLSID value found.    
 O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF​802613B} - C:\Program Files\BabylonToolbar\BabylonTo​olbar\1.6.9.12\bh\BabylonToolb​ar.dll File not found    
 O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7​942484F} - No CLSID value found.    
 O2 - BHO: (TBSB01620 Class) - {58124A0B-DC32-4180-9BFF-E0E21​AE34026} - C:\Program Files\IMinent Toolbar\tbcore3.dll File not found    
 O2 - BHO: (no name) - {84FF7BD6-B47F-46F8-9130-01B26​96B36CB} - No CLSID value found.
 O2 - BHO: (Facetheme) - {9193fbaf-bdaf-4751-a99a-1f5ef​255c35b} - C:\Program Files\Object\bho_project.dll File not found    
 O2 - BHO: (IMinent WebBooster (BHO)) - {A09AB6EB-31B5-454C-97EC-9B294​D92EE2A} - C:\Program Files\Iminent\Iminent.WebBoost​er.InternetExplorer.dll File not found    
 O2 - BHO: (DealPly) - {A6174F27-1FFF-E1D6-A93F-BA48A​D5DD448} - C:\Program Files\DealPly\DealPlyIE.dll File not found    
 O2 - BHO: (Wajam) - {A7A6995D-6EE1-4FD1-A258-49395​D5BF99C} - C:\Program Files\Wajam\IE\priam_bho.dll File not found
 O2 - BHO: (SweetPacks Browser Helper) - {EEE6C35C-6118-11DC-9C72-00132​0C79847} - C:\Program Files\SweetIM\Toolbars\Interne​t Explorer\mgToolbarIE.dll File not found    
 O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4​151CAD8} - C:\Program Files\Yontoo\YontooIEClient.dl​l File not found    
 O3 - HKLM\..\Toolbar: (IMinent Toolbar) - {977AE9CC-AF83-45E8-9E03-E2798​216E2D5} - C:\Program Files\IMinent Toolbar\tbcore3.dll File not found    
 O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866​BE87DBC} - C:\Program Files\BabylonToolbar\BabylonTo​olbar\1.6.9.12\BabylonToolbarT​lbr.dll File not found    
 O3 - HKLM\..\Toolbar: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-00132​0C79847} - C:\Program Files\SweetIM\Toolbars\Interne​t Explorer\mgToolbarIE.dll File not found    
 O3 - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\Toolbar\​WebBrowser: (no name) - {05EEB91A-AEF7-4F8A-978F-FB83E​7B03F8E} - No CLSID value found.    
 O3 - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\Toolbar\​WebBrowser: (no name) - {0FC85F5D-6207-4515-A490-45A54​9D285C0} - No CLSID value found.
 O3 - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\Toolbar\​WebBrowser: (IMinent Toolbar) - {977AE9CC-AF83-45E8-9E03-E2798​216E2D5} - C:\Program Files\IMinent Toolbar\tbcore3.dll File not found    
 O4 - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\Run: [lkpvbae] "c:\users\nourdhine\appdata\lo​cal\lollipop\lkpvbae.exe" lkpvbae File not found
 O20 - AppInit_DLLs: (c:\progra~2\browse~1\23787~1.​43\{16cdf~1\browse~1.dll) - c:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-8​61d-48e3-a751-d99a27784753}\br​owsemngr.dll ()    
 [2010/02/27 19:31:34 | 000,000,012 | ---- | C] () -- C:\Users\Nourdhine\AppData\Roa​ming\rbuwzv.dat    
 [2011/12/07 19:25:13 | 000,000,000 | ---D | M] -- C:\Users\Invité\AppData\Roamin​g\Iminent    
 [2012/08/17 02:37:53 | 000,000,009 | ---- | M] () -- C:\END    

 :Files
 c:\ProgramData\Browser Manager

 :Commands
 [Emptytemp]





 * Clique sur " Correction " pour lancer la suppression.

 * Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer. Accepte en cliquant sur Oui.

 * Au redémarrage , autorise OTL a s'exécuter.

 * Poste le rapport généré par OTL.


 @++   :)

nordine21
Présent de temps en temps (De 50 à 99 messages postés)
  1. Posté le 02/12/2012 à 23:16:05  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Bonsoir voici le rapport OTL.


 All processes killed
 Error: Unable to interpret <SRV - File not found [Auto | Running] -- E:\Spybot -- (SBSDWSCService) > in the current context!
 Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- C:\Program Files\Symantec\LiveUpdate\ALUS​chedulerSvc.exe -- (Planificateur LiveUpdate automatique) > in the current context!
 Error: Unable to interpret <SRV - File not found [Auto | Stopped] -- C:\Program Files\Freemake\CaptureLib\Capt​ureLibService.exe -- (FreemakeVideoCapture) > in the current context!
 Error: Unable to interpret <DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\TpChoice.sys -- (TpChoice) > in the current context!
 Error: Unable to interpret <DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd) > in the current context!
 Error: Unable to interpret <DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt) > in the current context!
 Error: Unable to interpret <DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp) > in the current context!
 Error: Unable to interpret <DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\dgderdrv.sys -- (dgderdrv) > in the current context!
 Error: Unable to interpret <DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\bl​bdrive.sys -- (blbdrive) > in the current context!
 Error: Unable to interpret <DRV - File not found [Kernel | On_Demand | Unknown] -- -- (a30ebegw) > in the current context!
 Error: Unable to interpret <IE - HKLM\..\SearchScopes\{afdbddaa​-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/Resu [...] =CT2269050 > in the current context!
 Error: Unable to interpret <IE - HKLM\..\SearchScopes\{BFFED5CA​-8BDF-47CC-AED0-23F4E6D77732}: "URL" = http://search.iminent.com/?app [...] archTerms} > in the current context!
 Error: Unable to interpret <IE - HKLM\..\SearchScopes\{EEE6C360​-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/sear [...] 37ADA4516} > in the current context!
 Error: Unable to interpret <IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\URLSearc​hHook: {05eeb91a-aef7-4f8a-978f-fb83e​7b03f8e} - No CLSID value found > in the current context!
 Error: Unable to interpret <IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\URLSearc​hHook: {84FF7BD6-B47F-46F8-9130-01B26​96B36CB} - No CLSID value found > in the current context!
 Error: Unable to interpret <IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\SearchSc​opes,bProtectorDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C​0A66CC9} > in the current context!
 Error: Unable to interpret <IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\SearchSc​opes\{afdbddaa-5d3f-42ee-b79c-​185a7020515b}: "URL" = http://search.conduit.com/Resu [...] =CT2269050 > in the current context!
 Error: Unable to interpret <IE - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\SearchSc​opes\{BFFED5CA-8BDF-47CC-AED0-​23F4E6D77732}: "URL" = http://search.iminent.com/?app [...] archTerms} > in the current context!
 Error: Unable to interpret <O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A5​3123C75} - No CLSID value found. > in the current context!
 Error: Unable to interpret <O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF​802613B} - C:\Program Files\BabylonToolbar\BabylonTo​olbar\1.6.9.12\bh\BabylonToolb​ar.dll File not found > in the current context!
 Error: Unable to interpret <O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7​942484F} - No CLSID value found. > in the current context!
 Error: Unable to interpret <O2 - BHO: (TBSB01620 Class) - {58124A0B-DC32-4180-9BFF-E0E21​AE34026} - C:\Program Files\IMinent Toolbar\tbcore3.dll File not found > in the current context!
 Error: Unable to interpret <O2 - BHO: (no name) - {84FF7BD6-B47F-46F8-9130-01B26​96B36CB} - No CLSID value found. > in the current context!
 Error: Unable to interpret <O2 - BHO: (Facetheme) - {9193fbaf-bdaf-4751-a99a-1f5ef​255c35b} - C:\Program Files\Object\bho_project.dll File not found > in the current context!
 Error: Unable to interpret <O2 - BHO: (IMinent WebBooster (BHO)) - {A09AB6EB-31B5-454C-97EC-9B294​D92EE2A} - C:\Program Files\Iminent\Iminent.WebBoost​er.InternetExplorer.dll File not found > in the current context!
 Error: Unable to interpret <O2 - BHO: (DealPly) - {A6174F27-1FFF-E1D6-A93F-BA48A​D5DD448} - C:\Program Files\DealPly\DealPlyIE.dll File not found > in the current context!
 Error: Unable to interpret <O2 - BHO: (Wajam) - {A7A6995D-6EE1-4FD1-A258-49395​D5BF99C} - C:\Program Files\Wajam\IE\priam_bho.dll File not found > in the current context!
 Error: Unable to interpret <O2 - BHO: (SweetPacks Browser Helper) - {EEE6C35C-6118-11DC-9C72-00132​0C79847} - C:\Program Files\SweetIM\Toolbars\Interne​t Explorer\mgToolbarIE.dll File not found > in the current context!
 Error: Unable to interpret <O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4​151CAD8} - C:\Program Files\Yontoo\YontooIEClient.dl​l File not found > in the current context!
 Error: Unable to interpret <O3 - HKLM\..\Toolbar: (IMinent Toolbar) - {977AE9CC-AF83-45E8-9E03-E2798​216E2D5} - C:\Program Files\IMinent Toolbar\tbcore3.dll File not found > in the current context!
 Error: Unable to interpret <O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866​BE87DBC} - C:\Program Files\BabylonToolbar\BabylonTo​olbar\1.6.9.12\BabylonToolbarT​lbr.dll File not found > in the current context!
 Error: Unable to interpret <O3 - HKLM\..\Toolbar: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-00132​0C79847} - C:\Program Files\SweetIM\Toolbars\Interne​t Explorer\mgToolbarIE.dll File not found > in the current context!
 Error: Unable to interpret <O3 - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\Toolbar\​WebBrowser: (no name) - {05EEB91A-AEF7-4F8A-978F-FB83E​7B03F8E} - No CLSID value found. > in the current context!
 Error: Unable to interpret <O3 - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\Toolbar\​WebBrowser: (no name) - {0FC85F5D-6207-4515-A490-45A54​9D285C0} - No CLSID value found. > in the current context!
 Error: Unable to interpret <O3 - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\Toolbar\​WebBrowser: (IMinent Toolbar) - {977AE9CC-AF83-45E8-9E03-E2798​216E2D5} - C:\Program Files\IMinent Toolbar\tbcore3.dll File not found > in the current context!
 Error: Unable to interpret <O4 - HKU\S-1-5-21-56155728-37236343​86-2382273965-1000\..\Run: [lkpvbae] "c:\users\nourdhine\appdata\lo​cal\lollipop\lkpvbae.exe" lkpvbae File not found > in the current context!
 Error: Unable to interpret <O20 - AppInit_DLLs: (c:\progra~2\browse~1\23787~1.​43\{16cdf~1\browse~1.dll) - c:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-8​61d-48e3-a751-d99a27784753}\br​owsemngr.dll () > in the current context!
 Error: Unable to interpret <[2010/02/27 19:31:34 | 000,000,012 | ---- | C] () -- C:\Users\Nourdhine\AppData\Roa​ming\rbuwzv.dat > in the current context!
 Error: Unable to interpret <[2011/12/07 19:25:13 | 000,000,000 | ---D | M] -- C:\Users\Invité\AppData\Roamin​g\Iminent > in the current context!
 Error: Unable to interpret <[2012/08/17 02:37:53 | 000,000,009 | ---- | M] () -- C:\END > in the current context!
 ========== FILES ==========
 Folder move failed. c:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-8​61d-48e3-a751-d99a27784753} scheduled to be moved on reboot.
 Folder move failed. c:\ProgramData\Browser Manager\2.3.787.43 scheduled to be moved on reboot.
 Folder move failed. c:\ProgramData\Browser Manager scheduled to be moved on reboot.
 ========== COMMANDS ==========
 
 [EMPTYTEMP]
 
 User: All Users
 
 User: Default
 ->Temp folder emptied: 0 bytes
 ->Temporary Internet Files folder emptied: 33170 bytes
 
 User: Default User
 ->Temp folder emptied: 0 bytes
 ->Temporary Internet Files folder emptied: 0 bytes
 
 User: Invité
 ->Temp folder emptied: 59186199 bytes
 ->Temporary Internet Files folder emptied: 60730776 bytes
 ->Java cache emptied: 0 bytes
 ->Flash cache emptied: 5736 bytes
 
 User: Nourdhine
 ->Temp folder emptied: 41953888 bytes
 ->Temporary Internet Files folder emptied: 21339961 bytes
 ->Java cache emptied: 3725276 bytes
 ->Google Chrome cache emptied: 405761848 bytes
 ->Flash cache emptied: 676 bytes
 
 User: Public
 
 %systemdrive% .tmp files removed: 0 bytes
 %systemroot% .tmp files removed: 0 bytes
 %systemroot%\System32 .tmp files removed: 0 bytes
 %systemroot%\System32\drivers .tmp files removed: 0 bytes
 Windows Temp folder emptied: 301125175 bytes
 RecycleBin emptied: 173044804 bytes
 
 Total Files Cleaned = 1 017,00 mb
 
 
 OTL by OldTimer - Version 3.2.69.0 log created on 12022012_230153

 Files\Folders moved on Reboot...
 Folder move failed. c:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-8​61d-48e3-a751-d99a27784753} scheduled to be moved on reboot.
 Folder move failed. c:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-8​61d-48e3-a751-d99a27784753} scheduled to be moved on reboot.
 Folder move failed. c:\ProgramData\Browser Manager\2.3.787.43 scheduled to be moved on reboot.
 Folder move failed. c:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-8​61d-48e3-a751-d99a27784753} scheduled to be moved on reboot.
 Folder move failed. c:\ProgramData\Browser Manager\2.3.787.43 scheduled to be moved on reboot.
 Folder move failed. c:\ProgramData\Browser Manager scheduled to be moved on reboot.

 PendingFileRenameOperations files...

 Registry entries deleted on Reboot...

Profil : Equipe sécurité
dedetraque
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 02/12/2012 à 23:42:13  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Salut nordine21


 Refais la procédure de correction, tu as oublié d'inclure :OTL dans la liste sous " Personnalisation ", faut tout sélectionner...


 @++   :)

(Publicité)
nordine21
Présent de temps en temps (De 50 à 99 messages postés)
  1. Posté le 03/12/2012 à 08:27:25  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Bonjour dédétraqué : Voila le rapport.

 All processes killed
 ========== OTL ==========
 Service SBSDWSCService stopped successfully!
 Service SBSDWSCService deleted successfully!
 File E:\Spybot not found.
 Service Planificateur LiveUpdate automatique stopped successfully!
 Service Planificateur LiveUpdate automatique deleted successfully!
 File C:\Program Files\Symantec\LiveUpdate\ALUS​chedulerSvc.exe not found.
 Service FreemakeVideoCapture stopped successfully!
 Service FreemakeVideoCapture deleted successfully!
 File C:\Program Files\Freemake\CaptureLib\Capt​ureLibService.exe not found.
 Service TpChoice stopped successfully!
 Service TpChoice deleted successfully!
 File system32\DRIVERS\TpChoice.sys not found.
 Service NwlnkFwd stopped successfully!
 Service NwlnkFwd deleted successfully!
 File system32\DRIVERS\nwlnkfwd.sys not found.
 Service NwlnkFlt stopped successfully!
 Service NwlnkFlt deleted successfully!
 File system32\DRIVERS\nwlnkflt.sys not found.
 Service IpInIp stopped successfully!
 Service IpInIp deleted successfully!
 File system32\DRIVERS\ipinip.sys not found.
 Service dgderdrv stopped successfully!
 Service dgderdrv deleted successfully!
 File System32\drivers\dgderdrv.sys not found.
 Service blbdrive stopped successfully!
 Service blbdrive deleted successfully!
 File C:\Windows\system32\drivers\bl​bdrive.sys not found.
 Error: No service named a30ebegw was found to stop!
 Service\Driver key a30ebegw not found.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Internet Explorer\SearchScopes\{afdbdda​a-5d3f-42ee-b79c-185a7020515b}​\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{afdbddaa-5d3f-42e​e-b79c-185a7020515b}\ not found.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Internet Explorer\SearchScopes\{BFFED5C​A-8BDF-47CC-AED0-23F4E6D77732}​\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{BFFED5CA-8BDF-47C​C-AED0-23F4E6D77732}\ not found.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Internet Explorer\SearchScopes\{EEE6C36​0-6118-11DC-9C72-001320C79847}​\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{EEE6C360-6118-11D​C-9C72-001320C79847}\ not found.
 Registry value HKEY_USERS\S-1-5-21-56155728-3​723634386-2382273965-1000\Soft​ware\Microsoft\Internet Explorer\URLSearchHooks\\{05ee​b91a-aef7-4f8a-978f-fb83e7b03f​8e} deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{05eeb91a-aef7-4f8​a-978f-fb83e7b03f8e}\ not found.
 Registry value HKEY_USERS\S-1-5-21-56155728-3​723634386-2382273965-1000\Soft​ware\Microsoft\Internet Explorer\URLSearchHooks\\{84FF​7BD6-B47F-46F8-9130-01B2696B36​CB} deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{84FF7BD6-B47F-46F​8-9130-01B2696B36CB}\ not found.
 HKEY_USERS\S-1-5-21-56155728-3​723634386-2382273965-1000\Soft​ware\Microsoft\Internet Explorer\SearchScopes\\Default​Scope| /E : value set successfully!
 Registry key HKEY_USERS\S-1-5-21-56155728-3​723634386-2382273965-1000\Soft​ware\Microsoft\Internet Explorer\SearchScopes\{afdbdda​a-5d3f-42ee-b79c-185a7020515b}​\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{afdbddaa-5d3f-42e​e-b79c-185a7020515b}\ not found.
 Registry key HKEY_USERS\S-1-5-21-56155728-3​723634386-2382273965-1000\Soft​ware\Microsoft\Internet Explorer\SearchScopes\{BFFED5C​A-8BDF-47CC-AED0-23F4E6D77732}​\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{BFFED5CA-8BDF-47C​C-AED0-23F4E6D77732}\ not found.
 Registry key HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{1E8A6170-7264-4D0F-BE​AE-D42A53123C75}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{1E8A6170-7264-4D0​F-BEAE-D42A53123C75}\ not found.
 Registry key HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4​B6-146BF802613B}\ not found.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{2EECD738-5844-4a9​9-B4B6-146BF802613B}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{53707962-6F74-2D53-26​44-206D7942484F}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{53707962-6F74-2D5​3-2644-206D7942484F}\ not found.
 Registry key HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{58124A0B-DC32-4180-9B​FF-E0E21AE34026}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{58124A0B-DC32-418​0-9BFF-E0E21AE34026}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{84FF7BD6-B47F-46F8-91​30-01B2696B36CB}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{84FF7BD6-B47F-46F​8-9130-01B2696B36CB}\ not found.
 Registry key HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{9193fbaf-bdaf-4751-a9​9a-1f5ef255c35b}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{9193fbaf-bdaf-475​1-a99a-1f5ef255c35b}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97​EC-9B294D92EE2A}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{A09AB6EB-31B5-454​C-97EC-9B294D92EE2A}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{A6174F27-1FFF-E1D6-A9​3F-BA48AD5DD448}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{A6174F27-1FFF-E1D​6-A93F-BA48AD5DD448}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A2​58-49395D5BF99C}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{A7A6995D-6EE1-4FD​1-A258-49395D5BF99C}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C​72-001320C79847}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{EEE6C35C-6118-11D​C-9C72-001320C79847}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A5​8A-0BAB4151CAD8}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{FD72061E-9FDE-484​D-A58A-0BAB4151CAD8}\ deleted successfully.
 Registry value HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Internet Explorer\Toolbar\\{977AE9CC-AF​83-45E8-9E03-E2798216E2D5} deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{977AE9CC-AF83-45E​8-9E03-E2798216E2D5}\ deleted successfully.
 Registry value HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Internet Explorer\Toolbar\\{98889811-44​2D-49dd-99D7-DC866BE87DBC} not found.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{98889811-442D-49d​d-99D7-DC866BE87DBC}\ deleted successfully.
 Registry value HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Internet Explorer\Toolbar\\{EEE6C35B-61​18-11DC-9C72-001320C79847} deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{EEE6C35B-6118-11D​C-9C72-001320C79847}\ deleted successfully.
 Registry value HKEY_USERS\S-1-5-21-56155728-3​723634386-2382273965-1000\Soft​ware\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{​05EEB91A-AEF7-4F8A-978F-FB83E7​B03F8E} deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{05EEB91A-AEF7-4F8​A-978F-FB83E7B03F8E}\ not found.
 Registry value HKEY_USERS\S-1-5-21-56155728-3​723634386-2382273965-1000\Soft​ware\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{​0FC85F5D-6207-4515-A490-45A549​D285C0} deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{0FC85F5D-6207-451​5-A490-45A549D285C0}\ not found.
 Registry value HKEY_USERS\S-1-5-21-56155728-3​723634386-2382273965-1000\Soft​ware\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{​977AE9CC-AF83-45E8-9E03-E27982​16E2D5} deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{977AE9CC-AF83-45E​8-9E03-E2798216E2D5}\ not found.
 Registry value HKEY_USERS\S-1-5-21-56155728-3​723634386-2382273965-1000\\Sof​tware\Microsoft\Windows\Curren​tVersion\Run\\lkpvbae deleted successfully.
 Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows NT\CurrentVersion\Windows\\App​Init_Dlls:c:\progra~2\browse~1​\23787~1.43\{16cdf~1\browse~1.​dll deleted successfully.
 File move failed. c:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-8​61d-48e3-a751-d99a27784753}\br​owsemngr.dll scheduled to be moved on reboot.
 C:\Users\Nourdhine\AppData\Roa​ming\rbuwzv.dat moved successfully.
 C:\Users\Invité\AppData\Roamin​g\Iminent\Mediator\Datas folder moved successfully.
 C:\Users\Invité\AppData\Roamin​g\Iminent\Mediator folder moved successfully.
 C:\Users\Invité\AppData\Roamin​g\Iminent folder moved successfully.
 C:\END moved successfully.
 ========== FILES ==========
 Folder move failed. c:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-8​61d-48e3-a751-d99a27784753} scheduled to be moved on reboot.
 Folder move failed. c:\ProgramData\Browser Manager\2.3.787.43 scheduled to be moved on reboot.
 Folder move failed. c:\ProgramData\Browser Manager scheduled to be moved on reboot.
 ========== COMMANDS ==========
 
 [EMPTYTEMP]
 
 User: All Users
 
 User: Default
 ->Temp folder emptied: 0 bytes
 ->Temporary Internet Files folder emptied: 0 bytes
 
 User: Default User
 ->Temp folder emptied: 0 bytes
 ->Temporary Internet Files folder emptied: 0 bytes
 
 User: Invité
 ->Temp folder emptied: 0 bytes
 ->Temporary Internet Files folder emptied: 0 bytes
 ->Java cache emptied: 0 bytes
 ->Flash cache emptied: 0 bytes
 
 User: Nourdhine
 ->Temp folder emptied: 35148 bytes
 ->Temporary Internet Files folder emptied: 46366 bytes
 ->Java cache emptied: 0 bytes
 ->Google Chrome cache emptied: 61775228 bytes
 ->Flash cache emptied: 0 bytes
 
 User: Public
 
 %systemdrive% .tmp files removed: 0 bytes
 %systemroot% .tmp files removed: 0 bytes
 %systemroot%\System32 .tmp files removed: 0 bytes
 %systemroot%\System32\drivers .tmp files removed: 0 bytes
 Windows Temp folder emptied: 0 bytes
 RecycleBin emptied: 0 bytes
 
 Total Files Cleaned = 59,00 mb
 
 
 OTL by OldTimer - Version 3.2.69.0 log created on 12032012_081650

 Files\Folders moved on Reboot...
 c:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-8​61d-48e3-a751-d99a27784753}\br​owsemngr.dll moved successfully.
 c:\ProgramData\Browser Manager\2.3.787.43\{16cdff19-8​61d-48e3-a751-d99a27784753} folder moved successfully.
 c:\ProgramData\Browser Manager\2.3.787.43 folder moved successfully.
 c:\ProgramData\Browser Manager folder moved successfully.

 PendingFileRenameOperations files...

 Registry entries deleted on Reboot...

Profil : Equipe sécurité
dedetraque
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 03/12/2012 à 14:11:41  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Salut nordine21


 Comment va le PC, d'autre publicité...

 Refais un scan avec OTL comme la première fois(mode Analyse) avec les mêmes paramètres et la même liste sous personnalisation, tu auras seulement un rapport(OTL.txt) a me poster, voir a utilisé cjoint pour poster le rapport.


 @++    :)

nordine21
Présent de temps en temps (De 50 à 99 messages postés)
  1. Posté le 04/12/2012 à 08:58:57  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Bonjour dédétraqué. Le pc fonctionne bien. Je n'ai plus d'intrusions publicitaires. Merci bien de votre aide.Toutefois, J'ai fait l'analyse, ci-joint le rapport.

 OTL logfile created on: 04/12/2012 07:49:51 - Run 2
 OTL by OldTimer - Version 3.2.69.0     Folder = E:\
 Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
 Internet Explorer (Version = 8.0.6001.19328)
 Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
 
 2,00 Gb Total Physical Memory | 0,95 Gb Available Physical Memory | 47,31% Memory free
 4,23 Gb Paging File | 2,93 Gb Available in Paging File | 69,29% Paging File free
 Paging file location(s): ?:\pagefile.sys [binary data]
 
 %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
 Drive C: | 92,77 Gb Total Space | 43,12 Gb Free Space | 46,48% Space Free | Partition Type: NTFS
 Drive E: | 92,07 Gb Total Space | 91,37 Gb Free Space | 99,24% Space Free | Partition Type: NTFS
 
 Computer Name: PC-DE-NOURDHINE | User Name: Nourdhine | Logged in as Administrator.
 Boot Mode: Normal | Scan Mode: Current user
 Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
 ========== Processes (SafeList) ==========
 
 PRC - [2012/12/04 07:48:11 | 000,602,112 | ---- | M] (OldTimer Tools) -- E:\OTL (2).exe
 PRC - [2012/09/20 15:03:20 | 001,236,368 | ---- | M] (Lavasoft Limited) -- C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe
 PRC - [2012/09/20 15:03:16 | 018,941,832 | ---- | M] (Lavasoft Limited) -- C:\PROGRA~1\AD-AWA~1\AdAware.e​xe
 PRC - [2011/12/19 13:20:06 | 003,289,032 | ---- | M] (GFI Software) -- C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe
 PRC - [2011/07/15 06:40:48 | 000,273,544 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\r​ealsched.exe
 PRC - [2010/09/06 08:11:32 | 000,217,088 | ---- | M] (Teruten) -- C:\Windows\System32\FsUsbExSer​vice.Exe
 PRC - [2009/12/23 22:34:20 | 000,370,688 | ---- | M] (StarWind Software) -- E:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE​.exe
 PRC - [2009/04/11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
 PRC - [2009/01/08 14:44:06 | 000,070,936 | ---- | M] (Octoshape ApS) -- C:\Users\Nourdhine\AppData\Roa​ming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe
 PRC - [2008/09/30 16:37:52 | 007,418,368 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
 PRC - [2008/09/30 16:35:00 | 007,424,000 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
 PRC - [2007/09/19 11:01:12 | 000,077,824 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
 PRC - [2007/07/27 07:36:38 | 000,200,704 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynToshi​ba.exe
 PRC - [2007/05/22 15:32:52 | 000,538,744 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\FlashCards\TCrdM​ain.exe
 PRC - [2007/03/29 09:39:00 | 000,427,576 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
 PRC - [2007/03/29 09:39:00 | 000,411,192 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
 PRC - [2007/03/07 13:01:18 | 000,274,432 | ---- | M] (TOSHIBA CORPORATION.) -- c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
 PRC - [2007/02/27 19:21:10 | 000,278,528 | ---- | M] (TOSHIBA CORPORATION.) -- c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
 PRC - [2007/02/27 18:57:56 | 000,278,528 | ---- | M] (TOSHIBA CORPORATION.) -- c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
 PRC - [2007/02/27 13:31:34 | 002,756,608 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
 PRC - [2007/02/25 20:55:18 | 000,125,048 | ---- | M] (TOSHIBA CORPORATION) -- c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
 PRC - [2007/02/12 13:38:04 | 000,355,096 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
 PRC - [2007/02/12 13:37:58 | 000,174,872 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
 PRC - [2007/01/30 16:47:48 | 000,307,200 | ---- | M] (TOSHIBA CORPORATION.) -- c:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
 PRC - [2006/11/14 19:33:10 | 000,040,960 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\TOSHIBA\ConfigFree\CFSvc​s.exe
 PRC - [2006/11/06 16:14:44 | 000,034,352 | ---- | M] () -- C:\Program Files\TOSHIBA\Utilities\KeNoti​fy.exe
 PRC - [2006/10/05 05:10:12 | 000,009,216 | ---- | M] (Agere Systems) -- C:\Windows\System32\agrsmsvc.e​xe
 PRC - [2006/08/23 15:39:48 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
 PRC - [2006/05/25 18:30:16 | 000,114,688 | ---- | M] (TOSHIBA Corporation) -- C:\Windows\System32\TODDSrv.ex​e
 PRC - [2006/01/23 22:14:10 | 000,069,632 | ---- | M] (TOSHIBA CORPORATION.) -- c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
 
 
 ========== Modules (No Company Name) ==========
 
 MOD - [2012/11/28 04:43:17 | 000,460,904 | ---- | M] () -- C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\Application\2​3.0.1271.95\ppGoogleNaClPlugin​Chrome.dll
 MOD - [2012/11/28 04:43:15 | 004,008,040 | ---- | M] () -- C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\Application\2​3.0.1271.95\pdf.dll
 MOD - [2012/11/28 04:42:30 | 000,587,880 | ---- | M] () -- C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\Application\2​3.0.1271.95\libglesv2.dll
 MOD - [2012/11/28 04:42:29 | 000,124,520 | ---- | M] () -- C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\Application\2​3.0.1271.95\libegl.dll
 MOD - [2012/11/28 04:42:22 | 000,157,304 | ---- | M] () -- C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\Application\2​3.0.1271.95\avutil-51.dll
 MOD - [2012/11/28 04:42:21 | 002,168,952 | ---- | M] () -- C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\Application\2​3.0.1271.95\avcodec-54.dll
 MOD - [2012/11/28 04:42:21 | 000,275,576 | ---- | M] () -- C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\Application\2​3.0.1271.95\avformat-54.dll
 MOD - [2012/11/21 10:10:33 | 000,519,168 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\TCrdMain\6a49​c7fa65173c7e17c37fb44cede01d\T​CrdMain.ni.exe
 MOD - [2012/11/21 09:49:38 | 012,433,920 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\System.Window​s.Forms\22e554f2c4da53c07e4815​a24e2d50e2\System.Windows.Form​s.ni.dll
 MOD - [2012/11/21 09:49:09 | 001,592,320 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\System.Drawin​g\2c6cd37f29fc76d6c2ed6bbed202​d82c\System.Drawing.ni.dll
 MOD - [2012/11/21 09:47:44 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\PresentationF​ramewo#\39cc0e726e5b80a46337fa​969cde2b66\PresentationFramewo​rk.Aero.ni.dll
 MOD - [2012/11/21 09:47:41 | 014,329,856 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\PresentationF​ramewo#\fb15c044e4e7d611a5cbe5​a1aa6db455\PresentationFramewo​rk.ni.dll
 MOD - [2012/11/21 09:46:55 | 012,219,392 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\PresentationC​ore\09ab834223f9c860f08de8d586​88b1a3\PresentationCore.ni.dll
 MOD - [2012/11/21 09:46:21 | 003,325,952 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\WindowsBase\0​e3cff5f58a9a75de7fcac112c8bbca​0\WindowsBase.ni.dll
 MOD - [2012/11/21 09:46:12 | 007,976,960 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\System\b2052a​cbbbba4f98585196872195e009\Sys​tem.ni.dll
 MOD - [2012/11/21 09:45:18 | 011,492,352 | ---- | M] () -- C:\Windows\assembly\NativeImag​es_v2.0.50727_32\mscorlib\7ad9​c44df3b85848590e63f13fc59804\m​scorlib.ni.dll
 MOD - [2009/03/30 05:42:26 | 000,311,296 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\m​scorlib.resources\2.0.0.0_fr_b​77a5c561934e089\mscorlib.resou​rces.dll
 MOD - [2008/07/29 14:55:14 | 000,969,728 | ---- | M] () -- C:\Program Files\OpenOffice.org 3\program\libxml2.dll
 MOD - [2007/09/20 17:43:46 | 000,159,744 | ---- | M] () -- C:\Windows\System32\atitmmxx.d​ll
 MOD - [2007/05/31 15:38:46 | 000,958,464 | ---- | M] () -- C:\Program Files\TOSHIBA\FlashCards\fr\TC​rdMain.resources.dll
 MOD - [2006/12/01 17:55:42 | 000,009,216 | ---- | M] () -- C:\Program Files\Toshiba\TBS\NotifyTBS.dl​l
 MOD - [2006/11/09 17:27:00 | 000,090,112 | ---- | M] () -- C:\Program Files\TOSHIBA\FlashCards\TWarn​Msg\TWarnMsg.dll
 MOD - [2006/11/08 18:08:30 | 000,009,216 | ---- | M] () -- C:\Program Files\Toshiba\PCDiag\NotifyPCD​.dll
 MOD - [2006/11/06 16:14:44 | 000,034,352 | ---- | M] () -- C:\Program Files\TOSHIBA\Utilities\KeNoti​fy.exe
 MOD - [2006/10/10 10:44:16 | 000,009,728 | ---- | M] () -- C:\Program Files\TOSHIBA\TOSHIBA Assist\NotifyX.dll
 MOD - [2006/10/07 11:57:04 | 000,053,248 | ---- | M] () -- C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll
 MOD - [2005/07/22 20:30:20 | 000,065,536 | ---- | M] () -- C:\Windows\System32\TosCommAPI​.dll
 MOD - [2004/10/14 09:18:24 | 000,040,960 | ---- | M] () -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtAfh.dll
 
 
 ========== Services (SafeList) ==========
 
 SRV - [2012/11/14 09:53:30 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\F​lash\FlashPlayerUpdateService.​exe -- (AdobeFlashPlayerUpdateSvc)
 SRV - [2012/09/20 15:03:20 | 001,236,368 | ---- | M] (Lavasoft Limited) [Auto | Running] -- C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe -- (Ad-Aware Service)
 SRV - [2012/07/13 12:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.ex​e -- (SkypeUpdate)
 SRV - [2011/12/19 13:20:06 | 003,289,032 | ---- | M] (GFI Software) [Auto | Running] -- C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe -- (SBAMSvc)
 SRV - [2010/09/06 08:11:32 | 000,217,088 | ---- | M] (Teruten) [Auto | Running] -- C:\Windows\System32\FsUsbExSer​vice.Exe -- (FsUsbExService)
 SRV - [2010/06/14 15:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
 SRV - [2009/12/23 22:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Running] -- E:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE​.exe -- (StarWindServiceAE)
 SRV - [2008/01/19 08:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
 SRV - [2007/09/19 11:01:12 | 000,077,824 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe -- (TNaviSrv)
 SRV - [2007/03/29 09:39:00 | 000,427,576 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe -- (TosCoSrv)
 SRV - [2007/02/25 20:55:18 | 000,125,048 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe -- (TOSHIBA Bluetooth Service)
 SRV - [2007/02/12 13:38:04 | 000,355,096 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe -- (IAANTMON)
 SRV - [2006/11/14 19:33:10 | 000,040,960 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files\TOSHIBA\ConfigFree\CFSvc​s.exe -- (CFSvcs)
 SRV - [2006/10/05 05:10:12 | 000,009,216 | ---- | M] (Agere Systems) [Auto | Running] -- C:\Windows\System32\agrsmsvc.e​xe -- (AgereModemAudio)
 SRV - [2006/08/23 15:39:48 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
 SRV - [2006/05/25 18:30:16 | 000,114,688 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Windows\System32\TODDSrv.ex​e -- (TODDSrv)
 
 
 ========== Driver Services (SafeList) ==========
 
 DRV - File not found [Kernel | On_Demand | Unknown] --  -- (a2a3pthz)
 DRV - [2011/12/19 12:44:24 | 000,093,816 | ---- | M] (GFI Software) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sb​hips.sys -- (sbhips)
 DRV - [2011/11/29 06:59:52 | 000,077,816 | ---- | M] (GFI Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\sb​apifs.sys -- (sbapifs)
 DRV - [2011/10/26 14:23:40 | 000,101,112 | ---- | M] (GFI Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\SB​REDrv.sys -- (SBRE)
 DRV - [2011/05/10 19:58:34 | 000,436,792 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sp​td.sys -- (sptd)
 DRV - [2011/02/11 22:23:34 | 000,035,088 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\np​f.sys -- (npf)
 DRV - [2011/01/03 09:38:36 | 000,136,680 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss​admdm.sys -- (ssadmdm)
 DRV - [2011/01/03 09:38:36 | 000,121,192 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss​adbus.sys -- (ssadbus)
 DRV - [2011/01/03 09:38:36 | 000,012,776 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss​admdfl.sys -- (ssadmdfl)
 DRV - [2010/12/21 06:55:02 | 000,132,424 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss​cdmdm.sys -- (sscdmdm)
 DRV - [2010/12/21 06:55:02 | 000,104,648 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss​cdbus.sys -- (sscdbus)
 DRV - [2010/12/21 06:55:02 | 000,014,920 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss​cdmdfl.sys -- (sscdmdfl)
 DRV - [2010/09/06 08:11:32 | 000,036,640 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\FsUsbExDis​k.Sys -- (FsUsbExDisk)
 DRV - [2010/07/30 14:16:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\us​bser_lowerfltj.sys -- (UsbserFilt)
 DRV - [2010/07/30 14:16:44 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\us​bser_lowerflt.sys -- (upperdev)
 DRV - [2010/07/30 14:16:42 | 000,023,040 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\cc​dcmbo.sys -- (nmwcdc)
 DRV - [2010/07/30 14:16:38 | 000,018,048 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\cc​dcmb.sys -- (nmwcd)
 DRV - [2008/08/26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pc​csmcfd.sys -- (pccsmcfd)
 DRV - [2007/09/26 13:12:22 | 002,251,776 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NE​Tw4v32.sys -- (NETw4v32)
 DRV - [2007/09/20 17:56:22 | 003,077,632 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\at​ikmdag.sys -- (atikmdag)
 DRV - [2007/07/26 16:18:04 | 000,285,184 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\to​s_sps32.sys -- (tos_sps32)
 DRV - [2007/04/30 06:42:14 | 000,081,408 | ---- | M] (Realtek Corporation                                            ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rt​lh86.sys -- (RTL8169)
 DRV - [2007/04/16 10:19:10 | 000,011,776 | ---- | M] (Chicony Electronics Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\UV​CFTR_S.SYS -- (UVCFTR)
 DRV - [2007/03/06 14:01:04 | 000,014,848 | ---- | M] (COMPAL ELECTRONIC INC.) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\Cp​lIR.sys -- (CplIR)
 DRV - [2007/03/01 15:53:12 | 000,073,728 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\To​srfhid.sys -- (Tosrfhid)
 DRV - [2007/02/28 21:27:06 | 000,041,344 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\to​srfusb.sys -- (Tosrfusb)
 DRV - [2007/02/22 18:56:24 | 000,113,920 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\to​srfbd.sys -- (tosrfbd)
 DRV - [2007/01/24 13:44:06 | 000,290,304 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ti​fm21.sys -- (tifm21)
 DRV - [2007/01/22 09:43:26 | 000,053,376 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\To​sRfSnd.sys -- (TosRfSnd)
 DRV - [2007/01/18 15:47:18 | 000,211,072 | ---- | M] (TOSHIBA CORPORATION) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\KR​10N.sys -- (KR10N)
 DRV - [2007/01/18 15:40:56 | 000,219,392 | ---- | M] (TOSHIBA CORPORATION) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\KR​10I.sys -- (KR10I)
 DRV - [2006/11/28 08:11:00 | 001,161,888 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AG​RSM.sys -- (AgereSoftModem)
 DRV - [2006/11/20 16:55:16 | 000,036,480 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\to​srfbnp.sys -- (tosrfbnp)
 DRV - [2006/11/02 08:30:54 | 001,781,760 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NE​Tw3v32.sys -- (NETw3v32)
 DRV - [2006/11/02 08:30:52 | 000,467,456 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\at​hr.sys -- (athr)
 DRV - [2006/10/23 15:32:20 | 000,009,216 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\to​srfec.sys -- (tosrfec)
 DRV - [2006/10/18 11:50:04 | 000,016,128 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\td​cmdpst.sys -- (tdcmdpst)
 DRV - [2006/10/10 18:33:00 | 000,041,600 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\to​sporte.sys -- (tosporte)
 DRV - [2006/10/05 21:22:14 | 000,016,768 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\TV​ALZ_O.SYS -- (TVALZ)
 DRV - [2006/07/28 15:25:26 | 000,019,456 | ---- | M] (COMPAL ELECTRONIC INC.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\LP​CFilter.sys -- (LPCFilter)
 DRV - [2005/08/01 15:45:00 | 000,064,896 | ---- | M] (TOSHIBA Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\to​srfcom.sys -- (Tosrfcom)
 DRV - [2005/01/06 12:42:00 | 000,018,612 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\to​srfnds.sys -- (tosrfnds)
 DRV - [1998/06/03 13:59:40 | 000,003,904 | ---- | M] () [Kernel | On_Demand | Stopped] -- E:\Unknown Device Identifier\GWIOPM.SYS -- (gwiopm)
 
 
 ========== Standard Registry (SafeList) ==========
 
 
 ========== Internet Explorer ==========
 
 IE - HKLM\SOFTWARE\Microsoft\Intern​et Explorer\Main,Search bar = http://search.msn.com/spbasic.htm
 IE - HKLM\SOFTWARE\Microsoft\Intern​et Explorer\Main,Start Page = http://www.google.com
 IE - HKLM\..\SearchScopes,DefaultSc​ope =
 IE - HKLM\..\SearchScopes\{4EDA09B5​-569C-420D-A5DB-44D62F5B0B6A}: "URL" = http://www.google.fr/search?q= [...] rceid=ie7;
 
 IE - HKCU\SOFTWARE\Microsoft\Intern​et Explorer\Main,Start Page = http://safesearchr.lavasoft.co [...] 50B3985537
 IE - HKCU\SOFTWARE\Microsoft\Intern​et Explorer\Main,StartPageCache = 1
 IE - HKCU\..\URLSearchHook: {6c97a91e-4524-4019-86af-2aa2d​567bf5c} - No CLSID value found
 IE - HKCU\..\SearchScopes,bProtecto​rDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C​0A66CC9}
 IE - HKCU\..\SearchScopes,DefaultSc​ope =
 IE - HKCU\..\SearchScopes\${searchC​LSID}: "URL" = http://search.live.com/results [...] r:source?}
 IE - HKCU\..\SearchScopes\{0633EE93​-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={ [...] ORM=IE8SRC
 IE - HKCU\..\SearchScopes\{4EDA09B5​-569C-420D-A5DB-44D62F5B0B6A}: "URL" = http://www.google.fr/search?q= [...] =ie7;&rlz=
 IE - HKCU\..\SearchScopes\{9D5BD211​-422C-4164-9298-BB4186A30F31}: "URL" = http://www.bing.com/search?q={ [...] orm=MOAWA1
 IE - HKCU\..\SearchScopes\{F41E0660​-F94C-4B10-8CF9-161020F6B24F}: "URL" = http://safesearchr.lavasoft.co [...] archTerms}
 IE - HKCU\..\SearchScopes\Plasmoo: "URL" = http://plasmoo.com/index.htm?S [...] archTerms}
 IE - HKCU\Software\Microsoft\Window​s\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 ========== FireFox ==========
 
 FF - HKLM\Software\MozillaPlugins\@​adobe.com/FlashPlayer: C:\Windows\system32\Macromed\F​lash\NPSWF32.dll ()
 FF - HKLM\Software\MozillaPlugins\@​divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll (DivX, Inc)
 FF - HKLM\Software\MozillaPlugins\@​java.com/DTPlugin,version=1.6.​0_37: C:\Windows\system32\npdeployJa​va1.dll (Sun Microsystems, Inc.)
 FF - HKLM\Software\MozillaPlugins\@​java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\np​jp2.dll (Sun Microsystems, Inc.)
 FF - HKLM\Software\MozillaPlugins\@​Microsoft.com/NpCtrl,version=1​.0: C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl​.dll ( Microsoft Corporation)
 FF - HKLM\Software\MozillaPlugins\@​microsoft.com/WLPG,version=15.​4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
 FF - HKLM\Software\MozillaPlugins\@​microsoft.com/WLPG,version=15.​4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
 FF - HKLM\Software\MozillaPlugins\@​microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Frame​work\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
 FF - HKLM\Software\MozillaPlugins\@​real.com/nppl3260;version=12.0​.1.647: C:\Program Files\Real\RealPlayer\Netscape​6\nppl3260.dll (RealNetworks, Inc.)
 FF - HKLM\Software\MozillaPlugins\@​real.com/nprjplug;version=12.0​.1.647: C:\Program Files\Real\RealPlayer\Netscape​6\nprjplug.dll (RealNetworks, Inc.)
 FF - HKLM\Software\MozillaPlugins\@​real.com/nprpchromebrowserreco​rdext;version=12.0.1.660: C:\ProgramData\Real\RealPlayer​\BrowserRecordPlugin\MozillaPl​ugins\nprpchromebrowserrecorde​xt.dll (RealNetworks, Inc.)
 FF - HKLM\Software\MozillaPlugins\@​real.com/nprphtml5videoshim;ve​rsion=12.0.1.660: C:\ProgramData\Real\RealPlayer​\BrowserRecordPlugin\MozillaPl​ugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
 FF - HKLM\Software\MozillaPlugins\@​real.com/nprpjplug;version=12.​0.1.660: C:\Program Files\Real\RealPlayer\Netscape​6\nprpjplug.dll (RealNetworks, Inc.)
 FF - HKLM\Software\MozillaPlugins\@​real.com/nsJSRealPlayerPlugin;​version=:  File not found
 FF - HKLM\Software\MozillaPlugins\@​veetle.com/veetleCorePlugin,ve​rsion=0.9.19: E:\Program Files\Veetle\plugins\npVeetle.​dll (Veetle Inc)
 FF - HKLM\Software\MozillaPlugins\@​veetle.com/veetlePlayerPlugin,​version=0.9.18: E:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
 FF - HKLM\Software\MozillaPlugins\A​dobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 FF - HKCU\Software\MozillaPlugins\@​octoshape.com/Octoshape Streaming Services,version=1.0: C:\Users\Nourdhine\AppData\Roa​ming\Octoshape\Octoshape Streaming Services\sua-1101262-0-npoctos​hape.dll (Octoshape ApS)
 FF - HKCU\Software\MozillaPlugins\@​tools.google.com/Google Update;version=3: C:\Users\Nourdhine\AppData\Loc​al\Google\Update\1.3.21.123\np​GoogleUpdate3.dll (Google Inc.)
 FF - HKCU\Software\MozillaPlugins\@​tools.google.com/Google Update;version=9: C:\Users\Nourdhine\AppData\Loc​al\Google\Update\1.3.21.123\np​GoogleUpdate3.dll (Google Inc.)
 
 FF - HKEY_LOCAL_MACHINE\software\mo​zilla\Firefox\Extensions\\{ABD​E892B-13A8-4d1b-88E6-365A6E755​758}: C:\ProgramData\Real\RealPlayer​\BrowserRecordPlugin\Firefox\E​xt [2011/07/15 06:41:15 | 000,000,000 | ---D | M]
 
 [2009/10/24 14:39:47 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Nourdhine\AppData\Roa​ming\mozilla\Extensions
 [2009/10/24 14:39:47 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Nourdhine\AppData\Roa​ming\mozilla\Extensions\mozswi​ng@mozswing.org
 [2009/06/12 08:57:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Nourdhine\AppData\Roa​ming\mozilla\Firefox\extension​s
 [2009/06/12 08:57:07 | 000,000,000 | ---D | M] ("Ask Toolbar for Firefox" ) -- C:\Users\Nourdhine\AppData\Roa​ming\mozilla\Firefox\extension​s\{E9A1DEE0-C623-4439-8932-001​E7D17607D}
 [2012/09/22 18:00:03 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions
 
 ========== Chrome  ==========
 
 CHR - default_search_provider: Google (Enabled)
 CHR - default_search_provider: search_url = {google:baseURL}search?q={sear​chTerms}&{google:RLZ}{google:a​cceptedSuggestion}{google:orig​inalQueryForSuggestion}{google​:assistedQueryStats}{google:se​archFieldtrialParameter}source​id=chrome&ie={inputEncoding}
 CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?​{google:searchFieldtrialParame​ter}client=chrome&hl={language​}&q={searchTerms}&sugkey={goog​le:suggestAPIKeyParameter}
 CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\Application\2​3.0.1271.95\PepperFlash\pepfla​shplayer.dll
 CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
 CHR - plugin: Native Client (Enabled) = C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\Application\2​3.0.1271.95\ppGoogleNaClPlugin​Chrome.dll
 CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\Application\2​3.0.1271.95\pdf.dll
 CHR - plugin: Conduit Chrome Plugin (Enabled) = C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\User Data\Default\Extensions\plmlpk​fpkijnlijgalnjaacllnjmoamo\10.​11.23.8_0\plugins/ConduitChrom​eApiPlugin.dll
 CHR - plugin: Conduit Radio Plugin (Enabled) = C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\User Data\Default\Extensions\plmlpk​fpkijnlijgalnjaacllnjmoamo\10.​11.23.8_0\plugins/np-cwmp.dll
 CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
 CHR - plugin: Octoshape Streaming Services (Enabled) = C:\Users\Nourdhine\AppData\Roa​ming\Mozilla\plugins\npoctosha​pe.dll
 CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = E:\Program Files\QuickTime\plugins\npqtpl​ugin.dll
 CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = E:\Program Files\QuickTime\plugins\npqtpl​ugin2.dll
 CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = E:\Program Files\QuickTime\plugins\npqtpl​ugin3.dll
 CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = E:\Program Files\QuickTime\plugins\npqtpl​ugin4.dll
 CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = E:\Program Files\QuickTime\plugins\npqtpl​ugin5.dll
 CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = E:\Program Files\QuickTime\plugins\npqtpl​ugin6.dll
 CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = E:\Program Files\QuickTime\plugins\npqtpl​ugin7.dll
 CHR - plugin: DivX Player Netscape Plugin (Enabled) = C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll
 CHR - plugin: Java(TM) Platform SE 6 U37 (Enabled) = C:\Program Files\Java\jre6\bin\plugin2\np​jp2.dll
 CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl​.dll
 CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit)  (Enabled) = C:\Program Files\Real\RealPlayer\Netscape​6\nppl3260.dll
 CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files\Real\RealPlayer\Netscape​6\nprjplug.dll
 CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Real\RealPlayer\Netscape​6\nprpjplug.dll
 CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
 CHR - plugin: RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In (32-bit)  (Enabled) = C:\ProgramData\Real\RealPlayer​\BrowserRecordPlugin\MozillaPl​ugins\nprpchromebrowserrecorde​xt.dll
 CHR - plugin: RealPlayer(tm) HTML5VideoShim Plug-In (32-bit)  (Enabled) = C:\ProgramData\Real\RealPlayer​\BrowserRecordPlugin\MozillaPl​ugins\nprphtml5videoshim.dll
 CHR - plugin: Google Update (Enabled) = C:\Users\Nourdhine\AppData\Loc​al\Google\Update\1.3.21.123\np​GoogleUpdate3.dll
 CHR - plugin: Octoshape Streaming Services (Enabled) = C:\Users\Nourdhine\AppData\Roa​ming\Octoshape\Octoshape Streaming Services\sua-1101262-0-npoctos​hape.dll
 CHR - plugin: Windows Presentation Foundation (Enabled) = C:\Windows\Microsoft.NET\Frame​work\v3.5\Windows Presentation Foundation\NPWPF.dll
 CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\F​lash\NPSWF32.dll
 CHR - plugin: Java Deployment Toolkit 6.0.370.6 (Enabled) = C:\Windows\system32\npdeployJa​va1.dll
 CHR - plugin: Veetle TV Player (Enabled) = E:\Program Files\Veetle\Player\npvlc.dll
 CHR - plugin: Veetle TV Core (Enabled) = E:\Program Files\Veetle\plugins\npVeetle.​dll
 CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\User Data\Default\Extensions\jfmjfh​klogoienhpfnppmbcbjfjnkonk\1.5​_0\
 CHR - Extension: DVDVideoSoftTB = C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\User Data\Default\Extensions\plmlpk​fpkijnlijgalnjaacllnjmoamo\10.​13.20.300_0\
 CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\User Data\Default\Extensions\jfmjfh​klogoienhpfnppmbcbjfjnkonk\1.5​_0\
 CHR - Extension: DVDVideoSoftTB = C:\Users\Nourdhine\AppData\Loc​al\Google\Chrome\User Data\Default\Extensions\plmlpk​fpkijnlijgalnjaacllnjmoamo\10.​13.20.300_0\
 
 O1 HOSTS File: ([2006/09/18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\et​c\hosts
 O1 - Hosts: 127.0.0.1       localhost
 O1 - Hosts: ::1             localhost
 O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C091​46192CA} - C:\ProgramData\Real\RealPlayer​\BrowserRecordPlugin\IE\rpbrow​serrecordplugin.dll (RealPlayer)
 O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF​1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
 O4 - HKLM..\Run: [00TCrdMain] C:\Program Files\TOSHIBA\FlashCards\TCrdM​ain.exe (TOSHIBA Corporation)
 O4 - HKLM..\Run: [Ad-Aware Antivirus] C:\Program Files\Ad-Aware Antivirus\AdAwareLauncher.exe (Lavasoft Limited)
 O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
 O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation)
 O4 - HKLM..\Run: [KeNotify] C:\Program Files\TOSHIBA\Utilities\KeNoti​fy.exe ()
 O4 - HKLM..\Run: [SBRegRebootCleaner] C:\Program Files\Ad-Aware Antivirus\SBRC.exe (GFI Software)
 O4 - HKLM..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPSta​rt.exe (Synaptics, Inc.)
 O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\Update\r​ealsched.exe (RealNetworks, Inc.)
 O4 - HKLM..\Run: [TPwrMain] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE (TOSHIBA Corporation)
 O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
 O4 - HKCU..\Run: [AlcoholAutomount] E:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe (Alcohol Soft Development Team)
 O4 - HKCU..\Run: [Octoshape Streaming Services] C:\Users\Nourdhine\AppData\Roa​ming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe (Octoshape ApS)
 O4 - Startup: C:\Users\Nourdhine\AppData\Roa​ming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffi​ce.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
 O6 - HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Expl​orer: NoDriveAutoRun = 255
 O6 - HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Expl​orer: NoDriveTypeAutoRun = 255
 O6 - HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Expl​orer: HonorAutoRunSetting = 0
 O7 - HKCU\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Expl​orer: NoDriveAutoRun = 255
 O7 - HKCU\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Expl​orer: NoDriveTypeAutoRun = 255
 O7 - HKCU\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Expl​orer: HonorAutoRunSetting = 0
 O9 - Extra Button: eBay - Achetez, Vendez - {76577871-04EC-495E-A12B-91F7C​3600AFA} - http://rover.ebay.com/rover/1/709-44555-9400-3/4 File not found
 O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB​36FD2A2} - Reg Error: Key error. File not found
 O13 - gopher Prefix: missing
 O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805​F499D93} http://java.sun.com/update/1.6 [...] s-i586.cab (Java Plug-in 1.6.0_37)
 O16 - DPF: {CAFEEFAC-0016-0000-0000-ABCDE​FFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0)
 O16 - DPF: {CAFEEFAC-0016-0000-0037-ABCDE​FFEDCBA} http://java.sun.com/update/1.6 [...] s-i586.cab (Java Plug-in 1.6.0_37)
 O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDE​FFEDCBA} http://java.sun.com/update/1.6 [...] s-i586.cab (Java Plug-in 1.6.0_37)
 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-44455​3540000} http://fpdownload2.macromedia. [...] wflash.cab (Shockwave Flash Object)
 O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF​37916A7} http://platformdl.adobe.com/NO [...] 1.6/gp.cab (Reg Error: Key error.)
 O17 - HKLM\System\CCS\Services\Tcpip​\Parameters: DhcpNameServer = 109.0.66.10 109.0.66.20
 O17 - HKLM\System\CCS\Services\Tcpip​\Parameters\Interfaces\{336771​9D-EBB6-4548-AD41-2694F0FED860​}: DhcpNameServer = 192.168.1.254
 O17 - HKLM\System\CCS\Services\Tcpip​\Parameters\Interfaces\{59D629​52-1273-40CA-A529-941299E02A6D​}: DhcpNameServer = 109.0.66.10 109.0.66.20
 O17 - HKLM\System\CCS\Services\Tcpip​\Parameters\Interfaces\{BBC430​57-B259-4513-AD64-C7626492DF53​}: DhcpNameServer = 192.168.42.129
 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C​7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKY​PE4~1.DLL (Skype Technologies)
 O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
 O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.​exe) - C:\Windows\System32\userinit.e​xe (Microsoft Corporation)
 O24 - Desktop WallPaper: C:\Users\Public\Pictures\Sampl​e Pictures\Forest Flowers.jpg
 O24 - Desktop BackupWallPaper: C:\Users\Public\Pictures\Sampl​e Pictures\Forest Flowers.jpg
 O32 - HKLM CDRom: AutoRun - 1
 O32 - AutoRun File - [2006/09/18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
 O32 - AutoRun File - [2010/03/11 18:20:48 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ]
 O32 - AutoRun File - [2010/03/11 18:20:48 | 000,000,000 | RHSD | M] - E:\autorun.inf -- [ NTFS ]
 O34 - HKLM BootExecute: (autocheck autochk *)
 O35 - HKLM\..comfile [open] -- "%1" %*
 O35 - HKLM\..exefile [open] -- "%1" %*
 O37 - HKLM\...com [@ = comfile] -- "%1" %*
 O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDl​lInitialization,3)
 O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDll​Initialization,2)
 
 NetSvcs: FastUserSwitchingCompatibility -  File not found
 NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
 NetSvcs: Nla -  File not found
 NetSvcs: Ntmssvc -  File not found
 NetSvcs: NWCWorkstation -  File not found
 NetSvcs: Nwsapagent -  File not found
 NetSvcs: SRService -  File not found
 NetSvcs: WmdmPmSp -  File not found
 NetSvcs: LogonHours -  File not found
 NetSvcs: PCAudit -  File not found
 NetSvcs: helpsvc -  File not found
 NetSvcs: uploadmgr -  File not found
 
 
 SafeBootMin: Ad-Aware Service - C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited)
 SafeBootMin: AppMgmt - Service
 SafeBootMin: Base - Driver Group
 SafeBootMin: Boot Bus Extender - Driver Group
 SafeBootMin: Boot file system - Driver Group
 SafeBootMin: File system - Driver Group
 SafeBootMin: Filter - Driver Group
 SafeBootMin: HelpSvc - Service
 SafeBootMin: NTDS -  File not found
 SafeBootMin: PCI Configuration - Driver Group
 SafeBootMin: PNP Filter - Driver Group
 SafeBootMin: Primary disk - Driver Group
 SafeBootMin: sacsvr - Service
 SafeBootMin: SBAMSvc - C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software)
 SafeBootMin: SCSI Class - Driver Group
 SafeBootMin: System Bus Extender - Driver Group
 SafeBootMin: WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
 SafeBootMin: {36FC9E60-C465-11CF-8056-44455​3540000} - Universal Serial Bus controllers
 SafeBootMin: {4D36E965-E325-11CE-BFC1-08002​BE10318} - CD-ROM Drive
 SafeBootMin: {4D36E967-E325-11CE-BFC1-08002​BE10318} - DiskDrive
 SafeBootMin: {4D36E969-E325-11CE-BFC1-08002​BE10318} - Standard floppy disk controller
 SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002​BE10318} - Hdc
 SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002​BE10318} - Keyboard
 SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002​BE10318} - Mouse
 SafeBootMin: {4D36E977-E325-11CE-BFC1-08002​BE10318} - PCMCIA Adapters
 SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002​BE10318} - SCSIAdapter
 SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002​BE10318} - System
 SafeBootMin: {4D36E980-E325-11CE-BFC1-08002​BE10318} - Floppy disk drive
 SafeBootMin: {533C5B84-EC70-11D2-9505-00C04​F79DEAF} - Volume shadow copy
 SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002​BE2092F} - IEEE 1394 Bus host controllers
 SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002​BE2092F} - Volume
 SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C​90F57DA} - Human Interface Devices
 SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04​FA372A7} - SBP2 IEEE 1394 Devices
 SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7​D41B0E6} - SecurityDevices
 
 SafeBootNet: Ad-Aware Service - C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited)
 SafeBootNet: AppMgmt - Service
 SafeBootNet: Base - Driver Group
 SafeBootNet: Boot Bus Extender - Driver Group
 SafeBootNet: Boot file system - Driver Group
 SafeBootNet: File system - Driver Group
 SafeBootNet: Filter - Driver Group
 SafeBootNet: HelpSvc - Service
 SafeBootNet: Messenger - Service
 SafeBootNet: NDIS Wrapper - Driver Group
 SafeBootNet: NetBIOSGroup - Driver Group
 SafeBootNet: NetDDEGroup - Driver Group
 SafeBootNet: Network - Driver Group
 SafeBootNet: NetworkProvider - Driver Group
 SafeBootNet: NTDS -  File not found
 SafeBootNet: PCI Configuration - Driver Group
 SafeBootNet: PNP Filter - Driver Group
 SafeBootNet: PNP_TDI - Driver Group
 SafeBootNet: Primary disk - Driver Group
 SafeBootNet: rdsessmgr - Service
 SafeBootNet: sacsvr - Service
 SafeBootNet: SBAMSvc - C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software)
 SafeBootNet: SCSI Class - Driver Group
 SafeBootNet: Streams Drivers - Driver Group
 SafeBootNet: System Bus Extender - Driver Group
 SafeBootNet: TDI - Driver Group
 SafeBootNet: WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
 SafeBootNet: WudfUsbccidDriver - Driver
 SafeBootNet: {36FC9E60-C465-11CF-8056-44455​3540000} - Universal Serial Bus controllers
 SafeBootNet: {4D36E965-E325-11CE-BFC1-08002​BE10318} - CD-ROM Drive
 SafeBootNet: {4D36E967-E325-11CE-BFC1-08002​BE10318} - DiskDrive
 SafeBootNet: {4D36E969-E325-11CE-BFC1-08002​BE10318} - Standard floppy disk controller
 SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002​BE10318} - Hdc
 SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002​BE10318} - Keyboard
 SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002​BE10318} - Mouse
 SafeBootNet: {4D36E972-E325-11CE-BFC1-08002​BE10318} - Net
 SafeBootNet: {4D36E973-E325-11CE-BFC1-08002​BE10318} - NetClient
 SafeBootNet: {4D36E974-E325-11CE-BFC1-08002​BE10318} - NetService
 SafeBootNet: {4D36E975-E325-11CE-BFC1-08002​BE10318} - NetTrans
 SafeBootNet: {4D36E977-E325-11CE-BFC1-08002​BE10318} - PCMCIA Adapters
 SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002​BE10318} - SCSIAdapter
 SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002​BE10318} - System
 SafeBootNet: {4D36E980-E325-11CE-BFC1-08002​BE10318} - Floppy disk drive
 SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F​805F530} - Smart card readers
 SafeBootNet: {533C5B84-EC70-11D2-9505-00C04​F79DEAF} - Volume shadow copy
 SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002​BE2092F} - IEEE 1394 Bus host controllers
 SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002​BE2092F} - Volume
 SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C​90F57DA} - Human Interface Devices
 SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04​FA372A7} - SBP2 IEEE 1394 Devices
 SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7​D41B0E6} - SecurityDevices
 
 ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401​C608500} - Java (Sun)
 ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA0​0B4E220} -
 ActiveX: {22d6f312-b0f6-11d0-94ab-0080c​74c7e95} - Microsoft Windows Media Player 11.0
 ActiveX: {2C7339CF-2B09-4501-B3F3-F3508​C9228ED} - %SystemRoot%\system32\regsvr32​.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.​dll
 ActiveX: {3af36230-a269-11d1-b5bf-0000f​8051515} - Offline Browsing Pack
 ActiveX: {3C3901C5-3455-3E0A-A214-0B093​A5070A6} - .NET Framework
 ActiveX: {44BBA840-CC51-11CF-AAFA-00AA0​0B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
 ActiveX: {44BBA848-CC51-11CF-AAFA-00AA0​0B6015C} -
 ActiveX: {44BBA855-CC51-11CF-AAFA-00AA0​0B6015F} - DirectDrawEx
 ActiveX: {45ea75a0-a269-11d1-b5bf-0000f​8051515} - Internet Explorer Help
 ActiveX: {4f645220-306d-11d2-995d-00c04​f98bbc9} - Microsoft Windows Script 5.6
 ActiveX: {5fd399c0-a70a-11d1-9948-00c04​f98bbc9} - Internet Explorer Setup Tools
 ActiveX: {630b1da0-b465-11d1-9948-00c04​f98bbc9} - Browsing Enhancements
 ActiveX: {6BF52A52-394A-11d3-B153-00C04​F79FAA6} - Microsoft Windows Media Player
 ActiveX: {6fab99d0-bab8-11d1-994a-00c04​f98bbc9} - MSN Site Access
 ActiveX: {7790769C-0471-11d2-AF11-00C04​FA35D02} - Address Book 7
 ActiveX: {7C028AF8-F614-47B3-82DA-BA94E​41B1089} - .NET Framework
 ActiveX: {89820200-ECBD-11cf-8B85-00AA0​05B4340} - regsvr32.exe /s /n /i:U shell32.dll
 ActiveX: {89820200-ECBD-11cf-8B85-00AA0​05B4383} - C:\Windows\system32\ie4uinit.e​xe -BaseSettings
 ActiveX: {89B4C1CD-B018-4511-B0A1-5476D​BF70820} - C:\Windows\system32\Rundll32.e​xe C:\Windows\system32\mscories.d​ll,Install
 ActiveX: {9381D8F2-0288-11D0-9501-00AA0​0B911A5} - Dynamic HTML Data Binding
 ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789​CFEFCDD} - .NET Framework
 ActiveX: {C9E9A340-D1F1-11D0-821E-44455​3540600} - Internet Explorer Core Fonts
 ActiveX: {CDD7975E-60F8-41d5-8149-19E51​D6F71D0} - Windows Movie Maker v2.1
 ActiveX: {D27CDB6E-AE6D-11CF-96B8-44455​3540000} - Adobe Flash Player
 ActiveX: {de5aed00-a4bf-11d1-9948-00c04​f98bbc9} - HTML Help
 ActiveX: {E92B03AB-B707-11d2-9CBD-0000F​87A369E} - Active Directory Service Interface
 ActiveX: >{22d6f312-b0f6-11d0-94ab-0080​c74c7e95} - C:\Windows\system32\unregmp2.e​xe /ShowWMP
 ActiveX: >{26923b43-4d38-484f-9b9e-de46​0746276c} - C:\Windows\system32\ie4uinit.e​xe -UserIconConfig
 ActiveX: >{60B49E34-C7CC-11D0-8953-00A0​C90347FF} - "C:\Windows\System32\rundll32.​exe" "C:\Windows\System32\iedkcs32.​dll",BrandIEActiveSetup SIGNUP
 
 Drivers32: msacm.dvacm - C:\PROGRA~1\COMMON~1\ULEADS~1\​vio\dvacm.acm (Ulead Systems, Inc.)
 Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.a​cm (Fraunhofer Institut Integrierte Schaltungen IIS)
 Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.d​ll (Microsoft Corporation)
 Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
 Drivers32: vidc.DIVX - C:\Windows\System32\DivX.dll (DivX, Inc.)
 Drivers32: vidc.yv12 - C:\Windows\System32\DivX.dll (DivX, Inc.)
 PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
 
 ========== Files/Folders - Created Within 30 Days ==========
 
 [2012/11/26 17:59:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Ad-Aware Antivirus
 [2012/11/26 17:34:33 | 000,000,000 | ---D | C] -- C:\Users\Nourdhine\AppData\Roa​ming\LavasoftStatistics
 [2012/11/26 17:31:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windo​ws\Start Menu\Programs\Ad-Aware Antivirus
 [2012/11/26 17:30:16 | 000,093,816 | ---- | C] (GFI Software) -- C:\Windows\System32\drivers\sb​hips.sys
 [2012/11/26 17:30:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Lavasoft
 [2012/11/26 17:30:12 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\VD​D
 [2012/11/26 17:30:12 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Aware Antivirus
 [2012/11/26 17:27:18 | 000,000,000 | ---D | C] -- C:\Users\Nourdhine\AppData\Roa​ming\blekko
 [2012/11/26 17:26:00 | 000,000,000 | ---D | C] -- C:\Users\Nourdhine\AppData\Roa​ming\Ad-Aware Antivirus
 [2012/11/17 09:14:23 | 000,157,680 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
 [2012/11/17 09:14:23 | 000,149,488 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
 [2012/11/17 09:14:23 | 000,149,488 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
 [2012/11/15 13:12:22 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\synceng.dl​l
 [2012/11/15 13:12:04 | 002,047,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
 
 ========== Files - Modified Within 30 Days ==========
 
 [2012/12/04 07:54:59 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
 [2012/12/04 07:39:54 | 000,001,094 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateT​askUserS-1-5-21-56155728-37236​34386-2382273965-1000UA.job
 [2012/12/04 07:36:42 | 000,679,042 | ---- | M] () -- C:\Windows\System32\perfh00C.d​at
 [2012/12/04 07:36:42 | 000,595,996 | ---- | M] () -- C:\Windows\System32\perfh009.d​at
 [2012/12/04 07:36:42 | 000,126,626 | ---- | M] () -- C:\Windows\System32\perfc00C.d​at
 [2012/12/04 07:36:42 | 000,104,070 | ---- | M] () -- C:\Windows\System32\perfc009.d​at
 [2012/12/04 07:32:17 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-3​76B-497e-B012-9C450E1B7327-2P-​1.C7483456-A289-439d-8115-6016​32D005A0
 [2012/12/04 07:32:17 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-3​76B-497e-B012-9C450E1B7327-2P-​0.C7483456-A289-439d-8115-6016​32D005A0
 [2012/12/04 07:32:10 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
 [2012/12/04 07:32:05 | 2145,837,056 | -HS- | M] () -- C:\hiberfil.sys
 [2012/12/03 09:17:15 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
 [2012/12/01 11:38:01 | 000,001,042 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateT​askUserS-1-5-21-56155728-37236​34386-2382273965-1000Core.job
 [2012/11/30 21:46:22 | 000,002,067 | ---- | M] () -- C:\Users\Nourdhine\Desktop\Goo​gle Chrome.lnk
 [2012/11/30 21:46:22 | 000,002,029 | ---- | M] () -- C:\Users\Nourdhine\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
 [2012/11/28 12:09:58 | 000,000,105 | ---- | M] () -- C:\prefs.js
 [2012/11/25 10:14:12 | 000,000,914 | ---- | M] () -- C:\Users\Nourdhine\Desktop\IMG​_0417.jpg - Raccourci.lnk
 [2012/11/16 21:53:00 | 000,273,320 | ---- | M] () -- C:\Windows\System32\FNTCACHE.D​AT
 [2012/11/14 10:11:22 | 000,001,892 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
 [2012/11/14 09:53:29 | 000,697,272 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlaye​rApp.exe
 [2012/11/14 09:53:29 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlaye​rCPLApp.cpl
 [2012/11/14 08:01:14 | 000,000,390 | ---- | M] () -- C:\Windows\tasks\ReclaimerResu​meInstall_Nourdhine.job
 
 ========== Files Created - No Company Name ==========
 
 [2012/11/28 12:09:58 | 000,000,105 | ---- | C] () -- C:\prefs.js
 [2012/11/27 11:13:22 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
 [2012/11/25 10:14:12 | 000,000,914 | ---- | C] () -- C:\Users\Nourdhine\Desktop\IMG​_0417.jpg - Raccourci.lnk
 [2012/11/14 10:11:22 | 000,001,892 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
 [2012/10/20 10:00:23 | 000,000,097 | ---- | C] () -- C:\ProgramData\Microsoft.SqlSe​rver.Compact.351.32.bc
 [2012/03/15 12:11:23 | 000,024,206 | ---- | C] () -- C:\Users\Nourdhine\AppData\Roa​ming\UserTile.png
 [2011/04/30 08:16:51 | 000,110,592 | ---- | C] () -- C:\Windows\System32\FsUsbExDev​ice.Dll
 [2011/04/30 08:16:51 | 000,036,640 | ---- | C] () -- C:\Windows\System32\FsUsbExDis​k.Sys
 [2011/04/27 13:19:30 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dl​l
 [2011/04/27 13:19:30 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_b​s-2.3.dll
 [2011/04/27 13:19:30 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_p​e-2.3.dll
 [2011/04/27 13:19:30 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_s​e-2.3.dll
 [2011/02/11 22:23:34 | 000,053,299 | ---- | C] () -- C:\Windows\System32\pthreadVC.​dll
 [2010/03/12 11:56:43 | 000,000,290 | RHS- | C] () -- C:\ProgramData\ntuser.pol
 [2009/10/29 17:14:26 | 003,179,899 | ---- | C] () -- C:\Users\Nourdhine\sopcast_sop​cast_3.0.1_anglais_19140.zip
 [2009/06/21 19:55:09 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
 [2009/06/21 07:08:33 | 000,000,552 | ---- | C] () -- C:\Users\Nourdhine\AppData\Loc​al\d3d8caps.dat
 [2009/03/13 07:35:42 | 000,000,680 | ---- | C] () -- C:\Users\Nourdhine\AppData\Loc​al\d3d9caps.dat
 [2008/12/18 19:36:22 | 000,068,096 | ---- | C] () -- C:\Users\Nourdhine\AppData\Loc​al\DCBC2A71-70D8-4DAN-EHR8-E0D​61DEA3FDF.ini
 
 ========== ZeroAccess Check ==========
 
 [2006/11/02 13:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.in​i
 
 [HKEY_CURRENT_USER\Software\Cla​sses\clsid\{42aedc87-2188-41fd​-b9a3-0c966feabec1}\InProcServ​er32]
 
 [HKEY_CURRENT_USER\Software\Cla​sses\clsid\{fbeb8a05-beee-4442​-804e-409d6c4515e9}\InProcServ​er32]
 
 [HKEY_LOCAL_MACHINE\Software\Cl​asses\clsid\{42aedc87-2188-41f​d-b9a3-0c966feabec1}\InProcSer​ver32]
 "" = %SystemRoot%\system32\shell32.​dll -- [2012/06/08 18:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation)
 "ThreadingModel" = Apartment
 
 [HKEY_LOCAL_MACHINE\Software\Cl​asses\clsid\{5839FCA9-774D-42A​1-ACDA-D6A79037F57F}\InProcSer​ver32]
 "" = %systemroot%\system32\wbem\fas​tprox.dll -- [2009/04/11 07:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
 "ThreadingModel" = Free
 
 [HKEY_LOCAL_MACHINE\Software\Cl​asses\clsid\{F3130CDB-AA52-4C3​A-AB32-85FFC23AF9C1}\InProcSer​ver32]
 "" = %systemroot%\system32\wbem\wbe​mess.dll -- [2009/04/11 07:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
 "ThreadingModel" = Both
 
 ========== Custom Scans ==========
 
 < %SYSTEMDRIVE%\*.*  >
 [2010/03/11 18:56:57 | 000,004,922 | ---- | M] () -- C:\Ad-Report-CLEAN[1].log
 [2012/11/27 10:33:03 | 000,026,087 | ---- | M] () -- C:\AdwCleaner[S1].txt
 [2011/05/06 07:41:53 | 000,002,006 | ---- | M] () -- C:\aqua_bitmap.cpp
 [2006/09/18 22:43:36 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
 [2009/04/11 07:36:36 | 000,333,257 | RHS- | M] () -- C:\bootmgr
 [2007/04/18 06:03:08 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK
 [2006/09/18 22:43:37 | 000,000,010 | ---- | M] () -- C:\config.sys
 [2012/12/04 07:32:05 | 2145,837,056 | -HS- | M] () -- C:\hiberfil.sys
 [2010/03/11 22:14:59 | 000,015,216 | ---- | M] () -- C:\JavaRa.log
 [2004/02/29 16:44:34 | 000,052,576 | ---- | M] () -- C:\orange.bmp
 [2012/12/04 07:32:03 | 2459,631,616 | -HS- | M] () -- C:\pagefile.sys
 [2012/12/04 07:54:59 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
 [2012/11/28 12:09:58 | 000,000,105 | ---- | M] () -- C:\prefs.js
 [2007/04/18 06:57:46 | 000,000,420 | ---- | M] () -- C:\RHDSetup.log
 [2007/10/16 05:42:55 | 000,000,282 | -H-- | M] () -- C:\SWSTAMP.TXT
 [2010/03/11 21:31:49 | 000,004,218 | ---- | M] () -- C:\UsbFix.txt
 [2010/03/11 21:31:11 | 004,888,577 | ---- | M] () -- C:\UsbFix_Upload_Me_PC-de-Nour​dhine.zip
 [2007/10/15 16:05:25 | 000,024,504 | ---- | M] () -- C:\_wdsuef.dmp
 
 < %SYSTEMDRIVE%\*.exe  >
 
 < %PROGRAMFILES%\*.*  >
 [2008/11/21 18:23:46 | 000,000,174 | -HS- | M] () -- C:\Program Files\desktop.ini
 
 < %PROGRAMFILES%\*.  >
 [2012/11/27 10:50:39 | 000,000,000 | ---D | M] -- C:\Program Files\Ad-Aware Antivirus
 [2010/10/13 17:09:49 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe
 [2011/08/13 23:52:22 | 000,000,000 | ---D | M] -- C:\Program Files\Apple Software Update
 [2008/11/10 09:31:27 | 000,000,000 | ---D | M] -- C:\Program Files\ATI
 [2008/11/10 09:33:18 | 000,000,000 | ---D | M] -- C:\Program Files\ATI Technologies
 [2009/06/26 17:31:39 | 000,000,000 | ---D | M] -- C:\Program Files\Audacity
 [2011/11/13 19:57:34 | 000,000,000 | ---D | M] -- C:\Program Files\AVS4YOU
 [2008/11/10 09:34:29 | 000,000,000 | ---D | M] -- C:\Program Files\Camera Assistant Software for Toshiba
 [2012/09/22 18:02:40 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files
 [2010/06/23 08:39:25 | 000,000,000 | ---D | M] -- C:\Program Files\DIFX
 [2009/04/19 20:24:03 | 000,000,000 | ---D | M] -- C:\Program Files\DivX
 [2008/12/16 19:23:10 | 000,000,000 | ---D | M] -- C:\Program Files\e-Carte Bleue LCL
 [2008/11/10 09:47:24 | 000,000,000 | -HSD | M] -- C:\Program Files\Fichiers communs
 [2012/11/27 10:24:42 | 000,000,000 | ---D | M] -- C:\Program Files\Freemake
 [2011/09/27 08:53:54 | 000,000,000 | ---D | M] -- C:\Program Files\Google
 [2007/04/18 08:08:02 | 000,000,000 | ---D | M] -- C:\Program Files\IDM
 [2011/07/17 19:56:41 | 000,000,000 | -H-D | M] -- C:\Program Files\InstallShield Installation Information
 [2008/11/10 09:55:32 | 000,000,000 | ---D | M] -- C:\Program Files\Intel
 [2012/11/27 10:24:41 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer
 [2007/07/10 15:49:47 | 000,000,000 | ---D | M] -- C:\Program Files\InterVideo
 [2012/11/17 09:14:09 | 000,000,000 | ---D | M] -- C:\Program Files\Java
 [2009/10/22 20:29:10 | 000,000,000 | ---D | M] -- C:\Program Files\LimeWire
 [2007/10/15 18:48:10 | 000,000,000 | ---D | M] -- C:\Program Files\ltmoh
 [2010/04/20 06:41:38 | 000,000,000 | ---D | M] -- C:\Program Files\Malwarebytes' Anti-Malware
 [2011/04/27 09:00:58 | 000,000,000 | ---D | M] -- C:\Program Files\MarkAny
 [2006/11/02 13:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Games
 [2012/05/21 08:46:22 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Silverlight
 [2011/10/22 11:26:01 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft SQL Server Compact Edition
 [2010/10/20 06:38:41 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft.NET
 [2010/08/29 12:59:11 | 000,000,000 | ---D | M] -- C:\Program Files\Movie Maker
 [2012/09/22 19:08:55 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox
 [2006/11/02 13:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\MSBuild
 [2007/07/10 14:49:51 | 000,000,000 | ---D | M] -- C:\Program Files\MSXML 4.0
 [2007/04/18 07:14:40 | 000,000,000 | ---D | M] -- C:\Program Files\My Company Name
 [2007/04/18 08:08:30 | 000,000,000 | ---D | M] -- C:\Program Files\myphotobook
 [2011/01/07 07:54:50 | 000,000,000 | ---D | M] -- C:\Program Files\Nokia
 [2009/01/06 14:24:08 | 000,000,000 | ---D | M] -- C:\Program Files\OpenOffice.org 3
 [2011/05/06 07:50:11 | 000,000,000 | ---D | M] -- C:\Program Files\PC Connectivity Solution
 [2011/07/15 06:41:29 | 000,000,000 | ---D | M] -- C:\Program Files\Real
 [2007/10/15 18:40:34 | 000,000,000 | ---D | M] -- C:\Program Files\Realtek
 [2006/11/02 13:37:34 | 000,000,000 | ---D | M] -- C:\Program Files\Reference Assemblies
 [2011/05/06 07:53:24 | 000,000,000 | ---D | M] -- C:\Program Files\Samsung
 [2012/09/20 08:01:54 | 000,000,000 | R--D | M] -- C:\Program Files\Skype
 [2009/10/29 18:51:23 | 000,000,000 | ---D | M] -- C:\Program Files\SopCast
 [2010/03/11 22:44:24 | 000,000,000 | ---D | M] -- C:\Program Files\Symantec
 [2008/11/10 09:39:40 | 000,000,000 | ---D | M] -- C:\Program Files\Synaptics
 [2010/01/01 14:30:51 | 000,000,000 | ---D | M] -- C:\Program Files\Techcity
 [2008/11/10 09:57:11 | 000,000,000 | ---D | M] -- C:\Program Files\TOSHIBA
 [2010/03/11 19:14:51 | 000,000,000 | ---D | M] -- C:\Program Files\Trend Micro
 [2007/07/10 15:46:32 | 000,000,000 | ---D | M] -- C:\Program Files\Ulead Systems
 [2006/11/02 14:01:55 | 000,000,000 | -H-D | M] -- C:\Program Files\Uninstall Information
 [2012/09/18 20:00:53 | 000,000,000 | ---D | M] -- C:\Program Files\VideoConverter
 [2009/10/20 21:33:44 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Calendar
 [2009/10/20 21:33:40 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Collaboration
 [2009/10/20 21:33:29 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Defender
 [2012/05/21 08:45:18 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Journal
 [2011/10/22 11:21:10 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Live
 [2012/04/26 07:28:55 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Mail
 [2007/04/18 07:46:54 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Components
 [2010/10/14 12:47:25 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Player
 [2008/11/10 09:47:24 | 000,000,000 | ---D | M] -- C:\Program Files\Windows NT
 [2009/10/20 21:33:37 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Photo Gallery
 [2010/02/28 18:27:26 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Portable Devices
 [2009/10/20 21:33:41 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Sidebar
 [2012/10/20 23:09:11 | 000,000,000 | ---D | M] -- C:\Program Files\WinPcap
 [2012/05/25 10:54:21 | 000,000,000 | ---D | M] -- C:\Program Files\WinRAR
 
 < MD5 for: AGP440.SYS  >
 [2008/01/19 08:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37D​B0D360 -- C:\Windows\System32\DriverStor​e\FileRepository\machine.inf_5​1b95d75\AGP440.sys
 [2008/01/19 08:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37D​B0D360 -- C:\Windows\System32\DriverStor​e\FileRepository\machine.inf_f​750e484\AGP440.sys
 [2008/01/19 08:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37D​B0D360 -- C:\Windows\winsxs\x86_machine.​inf_31bf3856ad364e35_6.0.6001.​18000_none_ba12ed3bbeb0d97a\AG​P440.sys
 [2008/01/19 08:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37D​B0D360 -- C:\Windows\winsxs\x86_machine.​inf_31bf3856ad364e35_6.0.6002.​18005_none_bbfe6647bbd2a4c6\AG​P440.sys
 [2006/11/02 10:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825C​EAD7D8 -- C:\Windows\System32\drivers\AG​P440.sys
 [2006/11/02 10:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825C​EAD7D8 -- C:\Windows\System32\DriverStor​e\FileRepository\machine.inf_9​20a2c1f\AGP440.sys
 
 < MD5 for: ATAPI.SYS  >
 [2009/04/11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B​880BC4 -- C:\Windows\System32\drivers\at​api.sys
 [2009/04/11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B​880BC4 -- C:\Windows\System32\DriverStor​e\FileRepository\mshdc.inf_b12​d8e84\atapi.sys
 [2009/04/11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B​880BC4 -- C:\Windows\winsxs\x86_mshdc.in​f_31bf3856ad364e35_6.0.6002.18​005_none_df23a1261eab99e8\atap​i.sys
 [2008/01/19 08:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562D​E40ED9 -- C:\Windows\System32\DriverStor​e\FileRepository\mshdc.inf_cc1​8792d\atapi.sys
 [2008/01/19 08:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562D​E40ED9 -- C:\Windows\winsxs\x86_mshdc.in​f_31bf3856ad364e35_6.0.6001.18​000_none_dd38281a2189ce9c\atap​i.sys
 [2006/11/02 10:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7E​C7300F -- C:\Windows\System32\DriverStor​e\FileRepository\mshdc.inf_c6c​2e699\atapi.sys
 
 < MD5 for: AUTOCHK.EXE  >
 [2009/04/11 07:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E995​09F5E7 -- C:\Windows\System32\autochk.ex​e
 [2009/04/11 07:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E995​09F5E7 -- C:\Windows\winsxs\x86_microsof​t-windows-autochk_31bf3856ad36​4e35_6.0.6002.18005_none_e3df6​655bee2ee3b\autochk.exe
 [2008/01/19 08:33:01 | 000,642,560 | ---- | M] (Microsoft Corporation) MD5=2FC5BE79B51714B479809358E4​908FC3 -- C:\Windows\winsxs\x86_microsof​t-windows-autochk_31bf3856ad36​4e35_6.0.6001.18000_none_e1f3e​d49c1c122ef\autochk.exe
 [2006/11/02 10:44:50 | 000,640,000 | ---- | M] (Microsoft Corporation) MD5=C08D1FE284C3330934E45D6E5F​5B768B -- C:\Windows\winsxs\x86_microsof​t-windows-autochk_31bf3856ad36​4e35_6.0.6000.16386_none_dfbd2​b4dc4d6121b\autochk.exe
 
 < MD5 for: BEEP.SYS  >
 [2008/01/19 06:49:10 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=67E506B75BD5326A3EC7B70BD0​14DFB6 -- C:\Windows\System32\drivers\be​ep.sys
 [2008/01/19 06:49:10 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=67E506B75BD5326A3EC7B70BD0​14DFB6 -- C:\Windows\winsxs\x86_microsof​t-windows-beepsys_31bf3856ad36​4e35_6.0.6001.18000_none_c420a​153079d485b\beep.sys
 [2006/11/02 09:51:03 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=AC3DD1708B22761EBD7CBE14DC​C3B5D7 -- C:\Windows\winsxs\x86_microsof​t-windows-beepsys_31bf3856ad36​4e35_6.0.6000.16386_none_c1e9d​f570ab23787\beep.sys
 
 < MD5 for: CNGAUDIT.DLL  >
 [2006/11/02 10:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D​5FED4D -- C:\Windows\System32\cngaudit.d​ll
 [2006/11/02 10:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D​5FED4D -- C:\Windows\winsxs\x86_microsof​t-windows-cngaudit-dll_31bf385​6ad364e35_6.0.6000.16386_none_​e62d292932a96ce6\cngaudit.dll
 
 < MD5 for: EXPLORER.EXE  >
 [2008/10/29 07:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7A​BF06BE -- C:\Windows\winsxs\x86_microsof​t-windows-explorer_31bf3856ad3​64e35_6.0.6000.16771_none_4f83​bb287ccdb7e3\explorer.exe
 [2008/10/29 07:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5B​A1089D -- C:\Windows\winsxs\x86_microsof​t-windows-explorer_31bf3856ad3​64e35_6.0.6001.18164_none_5177​ca9879e978e8\explorer.exe
 [2008/10/30 04:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3​BC606E -- C:\Windows\winsxs\x86_microsof​t-windows-explorer_31bf3856ad3​64e35_6.0.6001.22298_none_51e4​f8c7931bd1e1\explorer.exe
 [2009/04/11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F​2A1253 -- C:\Windows\explorer.exe
 [2009/04/11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F​2A1253 -- C:\Windows\winsxs\x86_microsof​t-windows-explorer_31bf3856ad3​64e35_6.0.6002.18005_none_53a0​201e76de3a0b\explorer.exe
 [2008/10/28 03:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE​06E5FB -- C:\Windows\winsxs\x86_microsof​t-windows-explorer_31bf3856ad3​64e35_6.0.6000.20947_none_5033​cb5995cd990b\explorer.exe
 [2006/11/02 10:45:07 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=FD8C53FB002217F6F888BCF6F5​D7084D -- C:\Windows\winsxs\x86_microsof​t-windows-explorer_31bf3856ad3​64e35_6.0.6000.16386_none_4f7d​e5167cd15deb\explorer.exe
 [2008/01/19 08:33:10 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E​174F9F -- C:\Windows\winsxs\x86_microsof​t-windows-explorer_31bf3856ad3​64e35_6.0.6001.18000_none_51b4​a71279bc6ebf\explorer.exe
 
 < MD5 for: HIDSERV.DLL  >
 [2009/04/11 07:28:19 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=84067081F3318162797385E11A​8F0582 -- C:\Windows\System32\hidserv.dl​l
 [2009/04/11 07:28:19 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=84067081F3318162797385E11A​8F0582 -- C:\Windows\winsxs\x86_microsof​t-windows-hid-user_31bf3856ad3​64e35_6.0.6002.18005_none_d897​c17984907383\hidserv.dll
 [2006/11/02 10:46:05 | 000,025,600 | ---- | M] (Microsoft Corporation) MD5=8FA640195279ACE21BEA91396A​0054FC -- C:\Windows\winsxs\x86_microsof​t-windows-hid-user_31bf3856ad3​64e35_6.0.6000.16386_none_d475​86718a839763\hidserv.dll
 
 < MD5 for: IASTOR.SYS  >
 [2007/02/12 13:37:22 | 000,537,368 | ---- | M] (Intel Corporation) MD5=2EE127D5407DA3957EE54711C9​AED6EC -- C:\Program Files\Intel\Intel Matrix Storage Manager\driver64\IaStor.sys
 [2007/02/12 13:37:22 | 000,537,368 | ---- | M] (Intel Corporation) MD5=2EE127D5407DA3957EE54711C9​AED6EC -- C:\Toshiba\Drivers\Robson\Wina​ll\Driver64\IaStor.sys
 [2007/02/12 13:36:54 | 000,277,784 | ---- | M] (Intel Corporation) MD5=FD7F9D74C2B35DBDA400804A3F​5ED5D8 -- C:\Program Files\Intel\Intel Matrix S

Profil : Equipe sécurité
dedetraque
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 04/12/2012 à 14:20:32  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Salut nordine21


 Double clic sur OTL.exe pour le lancer.
 (Vista/Seven --> Faire un clique droit sur OTL.exe pour lancer le programme et choisi "Exécuter en tant qu'administrateur".

 * Copie la liste qui se trouve en citation ci-dessous, et colle-la dans la zone sous " Personnalisation "

 



:OTL
 DRV - File not found [Kernel | On_Demand | Unknown] -- -- (a2a3pthz)
 IE - HKCU\..\URLSearchHook: {6c97a91e-4524-4019-86af-2aa2d​567bf5c} - No CLSID value found
 IE - HKCU\..\SearchScopes,bProtecto​rDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C​0A66CC9}    
 [2009/06/12 08:57:07 | 000,000,000 | ---D | M] ("Ask Toolbar for Firefox" ) -- C:\Users\Nourdhine\AppData\Roa​ming\mozilla\Firefox\extension​s\{E9A1DEE0-C623-4439-8932-001​E7D17607D}
 O9 - Extra Button: eBay - Achetez, Vendez - {76577871-04EC-495E-A12B-91F7C​3600AFA} - http://rover.ebay.com/rover/1/709-44555-9400-3/4 File not found    
 O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB​36FD2A2} - Reg Error: Key error. File not found    
 [2012/11/26 17:27:18 | 000,000,000 | ---D | C] -- C:\Users\Nourdhine\AppData\Roa​ming\blekko

 :Commands
 [Emptytemp]





 * Clique sur " Correction " pour lancer la suppression.

 * Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer. Accepte en cliquant sur Oui.

 * Au redémarrage , autorise OTL a s'exécuter.

 * Poste le rapport généré par OTL.


 @++   :)

nordine21
Présent de temps en temps (De 50 à 99 messages postés)
  1. Posté le 05/12/2012 à 10:54:14  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Bonjour dédétraqué: Je t'envoi le rapport:

 All processes killed
 ========== OTL ==========
 Error: No service named a2a3pthz was found to stop!
 Service\Driver key a2a3pthz not found.
 Registry value HKEY_CURRENT_USER\SOFTWARE\Mic​rosoft\Internet Explorer\URLSearchHooks\\{6c97​a91e-4524-4019-86af-2aa2d567bf​5c} deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{6c97a91e-4524-401​9-86af-2aa2d567bf5c}\ not found.
 HKEY_CURRENT_USER\SOFTWARE\Mic​rosoft\Internet Explorer\SearchScopes\\Default​Scope| /E : value set successfully!
 C:\Users\Nourdhine\AppData\Roa​ming\mozilla\Firefox\extension​s\{E9A1DEE0-C623-4439-8932-001​E7D17607D}\META-INF folder moved successfully.
 C:\Users\Nourdhine\AppData\Roa​ming\mozilla\Firefox\extension​s\{E9A1DEE0-C623-4439-8932-001​E7D17607D}\defaults\preference​s folder moved successfully.
 C:\Users\Nourdhine\AppData\Roa​ming\mozilla\Firefox\extension​s\{E9A1DEE0-C623-4439-8932-001​E7D17607D}\defaults folder moved successfully.
 C:\Users\Nourdhine\AppData\Roa​ming\mozilla\Firefox\extension​s\{E9A1DEE0-C623-4439-8932-001​E7D17607D}\chrome folder moved successfully.
 C:\Users\Nourdhine\AppData\Roa​ming\mozilla\Firefox\extension​s\{E9A1DEE0-C623-4439-8932-001​E7D17607D} folder moved successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Internet Explorer\Extensions\{76577871-​04EC-495E-A12B-91F7C3600AFA}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{76577871-04EC-495​E-A12B-91F7C3600AFA}\ not found.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Internet Explorer\Extensions\{DFB852A3-​47F8-48C4-A200-58CAB36FD2A2}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{DFB852A3-47F8-48C​4-A200-58CAB36FD2A2}\ not found.
 C:\Users\Nourdhine\AppData\Roa​ming\blekko folder moved successfully.
 ========== COMMANDS ==========
 
 [EMPTYTEMP]
 
 User: All Users
 
 User: Default
 ->Temp folder emptied: 0 bytes
 ->Temporary Internet Files folder emptied: 0 bytes
 
 User: Default User
 ->Temp folder emptied: 0 bytes
 ->Temporary Internet Files folder emptied: 0 bytes
 
 User: Invité
 ->Temp folder emptied: 0 bytes
 ->Temporary Internet Files folder emptied: 0 bytes
 ->Java cache emptied: 0 bytes
 ->Flash cache emptied: 0 bytes
 
 User: Nourdhine
 ->Temp folder emptied: 46676 bytes
 ->Temporary Internet Files folder emptied: 73987 bytes
 ->Java cache emptied: 0 bytes
 ->Google Chrome cache emptied: 250284129 bytes
 ->Flash cache emptied: 0 bytes
 
 User: Public
 
 %systemdrive% .tmp files removed: 0 bytes
 %systemroot% .tmp files removed: 0 bytes
 %systemroot%\System32 .tmp files removed: 0 bytes
 %systemroot%\System32\drivers .tmp files removed: 0 bytes
 Windows Temp folder emptied: 0 bytes
 RecycleBin emptied: 602112 bytes
 
 Total Files Cleaned = 239,00 mb
 
 
 OTL by OldTimer - Version 3.2.69.0 log created on 12052012_104628

 Files\Folders moved on Reboot...

 PendingFileRenameOperations files...

 Registry entries deleted on Reboot...

Profil : Equipe sécurité
dedetraque
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 05/12/2012 à 14:31:41  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Salut nordine21


 OK cela est bon  ;)


 On va faire un ménage des outils téléchargés pour la désinfection, télécharge Del Fix (de Xplode), sur ton bureau

 http://www.general-changelog-t [...] /26-delfix  

 
  • Double-clique sur l'icône delfix0.exe située sur ton Bureau.
(Vista/Seven - Faire un clique droit sur l'icône delfix0.exe située sur ton Bureau et choisir exécuter en tant qu'administrateur.)

 
  • Sélectionne Suppression

 
  • Copie/colle le contenu du rapport dans ton prochain message.

 Note : Le rapport est sauvegardé à la racine du disque dur ( C:\DelFixSuppr.txt )


 -----


 Je te donne quelques consignes de sécurité :

 herisson41​-7 Windows Update  parfaitement à jour http://www.windowsupdate.com/
 herisson41​-7 Pare-feu bien paramétré pour XP, je te conseil :
 ZoneAlarm, Vista/Seven -- le pare de WINDOWS  est suffisant.
 herisson41​-7 Antivirus bien paramétré et mis à jour régulièrement (quotidiennement s'il le faut) avec un scan complet régulier (journalier s'il le faut).
 herisson41​-7 Une attitude prudente vis à vis de la navigation (pas de sites douteux : cracks, warez, sexe...) et vis à vis de la messagerie (fichiers joints aux messages doivent être scannés avant d'être ouverts)
 herisson41​-7 Pas de téléchargement illégal, qui est le principal facteur d’infection (µTorrent, BitTorrent, eMule, Limewire, etc..)
 Le danger des cracks !
 Les risques sécuritaires du peer-to-peer
 herisson41​-7 Une attitude vigilante (être à l'affût d'un fonctionnement inhabituel de son système)
 herisson41​-7 Nettoyage hebdomadaire du système (suppression des fichiers inutiles, nettoyage de la base de registre, scandisk, defrag)
 herisson41​-7 Scan hebdomadaire antispyware  ( je conseil MalwareByte's Anti-Malware)
 herisson41​-7 Un contrôle régulier de la console JAVA pour s'assurer qu'elle est à jour http://www.java.com/en/download/help/testvm.xml
 herisson41​-7 Faire régulièrement un scan de vulnérabilités afin de vérifier que tes logiciels soit à jour sans failles de sécurités :
 http://www.malekal.com/scan_vulnerabilite.php

 De bonne lecture si tu veux en savoir plus sur la sécurité et le fonctionnement de Windows :
 http://www.malekal.com/menu_windows_general.php
 http://www.malekal.com/menu_windows_securite.php

 Si tu considère ton problème comme résolu, édite http://www.01net.com/imgv6/str​ucture/forumv7_btn_modifier.jp​g ton premier poste et ajoute [résolu] dans le titre.

 Bonne journée/soirée et bon surf   :super:  


 @++  :)

 Page :
1

Aller à :
 

Sujets relatifs
Barre d'outils indésirable... RESOLU - ralentissement et pages porno
pages pubs qui s'ouvrent toutes seules Pages internet anormalement lente à s'ouvrir...
Problème ouverture automatique de publicité internet Infecté par Adware Gibmedia et Ecobar [résolu]
Pages de pubs intempestives et UC à 100%...  
Plus de sujets relatifs à : Pages de publicité indésirable (RÉSOLU)

Les 5 sujets de discussion précédents Nombre de réponses Dernier message
"mystart.incredibar" 28
Ukash 3
probleme affichage et probleme de son 55
mot de passe 1
virus 13