Actualité informatique
Test comparatif matériel informatique
Jeux vidéo
Astuces informatique
Vidéo
Télécharger
Services en ligne
Forum informatique
01Business
  


  


  Comment supprimer claro.search

 

Il y a 380 utilisateurs connus et inconnus. Pour voir la liste des connectés connus, cliquez ici
Ajouter une réponse

 Mot :  Pseudo :  
Vider la liste des messages à citer  
 Page :
1  2
Page Suivante
Page Précédente
Auteur
 Sujet :

Comment supprimer claro.search

Prévenir les modérateurs en cas d'abus 
n°580254
gege083
Posté le 16-08-2012 à 09:35:00  answer
Prévenir les modérateurs en cas d'abus
 

Bonjour,
 j'ai depuis quelques jour sur Mozilla firefox ma page d'accueil habituelle remplacée par claro.search et je n'arrive pas à la supprimé en ayant suivi les infos trouvé sur ce forum par d'autres personne pouvez-vous m'aider également.
 Merci par avance

n°772123
Neo-link
Micro Hebdo, on l'aime
Posté le 16-08-2012 à 10:18:05  answer
Prévenir les modérateurs en cas d'abus
 

As-tu essayé de lancer Spybot Search&Destroy en mode sans échec ?


---------------
Avec Micro Hebdo, partageons notre passion de la micro ! Heureux sont les simples d'esprit, car le royaume des cieux leur appartient.
n°772124
gege083
Posté le 16-08-2012 à 19:27:04  answer
Prévenir les modérateurs en cas d'abus
 


 

Neo-link a écrit :

As-tu essayé de lancer Spybot Search&Destroy en mode sans échec ?
 



 J'ai tout essayé. Spybot, Adware, adwcleaner, drweb-cureit, réinitialisation de mozilla. En vain rien ni fait. Il est vrai que je n'ai fait spybot en mode sans échec. Est ce important ? Merci quand même.

n°772125
Jypalou
Modérateur
Profil : Equipe sécurité
Posté le 16-08-2012 à 19:44:33  answer
Prévenir les modérateurs en cas d'abus
 

pepitochocolat:1 Bonjour,fais ceci:
 pepitochocolat:1 jypaloufd3 Télécharge ZHPDiag de Nicolas Coolman sur ton Bureau.
 Double clique sur le fichier d'installation, puis installe le avec les paramètres par défaut Coche "Créer une icône sur le bureau"
 Lance ZHPDiag en double cliquant sur l'icône zhpdiag présente sur ton Bureau.
 Tu dois avoir les raccourcis de  ZHPDiag de ZHPFix et de MBRchek

 919481Capturezhp

 fml:8 - Si le bouton UAC apparaît dans le panel supérieur cela signifie que votre UAC est activée. L'activation de l'UAC gène l'analyse de ZHPDiag sur certains modules (O18,O23,O42,...).
  Aussi pour permettre un scan complet de l'outil, vous devez au préalable cliquer sur ce bouton.
 Ce qui aura pour conséquence de relancer ZHPDiag avec une désactivation temporaire de l'UAC.


 Clique droit "Exécuter en tant qu'Administrateur pour Vista et Seven"
 Clique sur la loupe 861357CaptureLOUPE  en haut à gauche, puis laisse l'outil scanner le PC.
 Une fois le scan terminé, clique sur l'icône en forme de disquette 177320Capturedd et enregistre le fichier sur ton Bureau.
 Impératif car le rapport est trés long
 Poste le contenu du rapport dans ta prochaine réponse en utilisant ce site :
 http://cjoint.com/
 ou celui-ci:
 http://myfile.tk
 A+ antef:4


---------------
jypalou:1
  Il vaut mieux aller plus loin avec quelqu'un que nulle part avec tout le monde
Je n'accepte aucune demande de nettoyage en message privé.
n°772126
gege083
Posté le 16-08-2012 à 20:30:35  answer
Prévenir les modérateurs en cas d'abus
 

Merci je viens de faire le scan et t'envoie le rapport à l'adresse indiquée


 Modération :
 Suppression de l'Edit sur le message précédent.

n°772127
danakil
Profil : Equipe sécurité
Posté le 16-08-2012 à 22:17:19  answer
Prévenir les modérateurs en cas d'abus
 

gege083!

 Merci de consulter le lien ci-dessous afin de répondre directement à Jypalou sans éditer ses messages :
 http://forum.telecharger.01net [...] ges-1.html

 Merci de ta compréhension!


---------------
Une Idéfix? ... Etre et durer.
n°772128
danakil
Profil : Equipe sécurité
Posté le 16-08-2012 à 22:22:48  answer
Prévenir les modérateurs en cas d'abus
 

Salut à tous!

 Jyp  :jap:

 gege083,
 



 
 Merci je viens de faire le scan et t'envoie le rapport à l'adresse indiquée
 



 On te demande d'effectuer cette manipulation avec Cjoint :
 



 
 Comme ce rapport sera long, tu vas l'héberger sur 'Cjoint' en procédant ainsi :
 Connecte toi ici ---)> Cjoint

 1/ Clique sur le bouton [Parcourir] et recherche ton rapport qui devrait être sur le Bureau.
 2/ Clique ensuite sur le bouton [Céer le lien Cjoint] > Rapidement une nouvelle fenêtre s'ouvrira te donnant le lien de partage devant être transmis.
 3/ Effectue un clic droit sur le lien de partage > 'Copier le raccourci' > Colle celui-ci en réponse ici.
 




 Bonne continuation à tous!


---------------
Une Idéfix? ... Etre et durer.
n°772129
gege083
Posté le 17-08-2012 à 11:27:12  answer
Prévenir les modérateurs en cas d'abus
 
n°772130
Jypalou
Modérateur
Profil : Equipe sécurité
Posté le 17-08-2012 à 12:28:36  answer
Prévenir les modérateurs en cas d'abus
 

pepitochocolat:1 Bonjour,Copie le tout le texte présent dans l'encadré ci-dessous (tu le sélectionnes avec ta souris / Clique droit dessus et choisis "copier" ou fait Ctrl+C)

 



[MD5.4C976D5913FF84FBF3ED55F8855641B1] - (.Ask - Ask Updater.) -- C:\Program Files\Ask.com\Updater\Updater.​exe   [1568976] [PID.3576]
 M3 - MFPP: Plugins - [SylGé] -- C:\Users\SylGé\AppData\Roaming​\Mozilla\Firefox\Profiles\ie2f​xgk7.default\searchplugins\Bab​ylonMngr.xml
 M0 - MFSP: prefs.js [SylGé - 43ig6c0r.default-1345065729182] http://isearch.claro-search.com
 R3 - URLSearchHook: (no name) - {00000000-6E41-4FD3-8538-502F5​495E5FC} . (.Microsoft Corporation - Hôte de la fenêtre de la console.) (No version) -- (.not file.)
 R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04​FD64497} . (.Microsoft Corporation - Hôte de la fenêtre de la console.) (No version) -- (.not file.)
 R3 - URLSearchHook: (no name) - {8e5025c2-8ea3-430d-80b8-a1415​1068a6d} . (.Microsoft Corporation - Hôte de la fenêtre de la console.) (No version) -- (.not file.)
 [MD5.4C976D5913FF84FBF3ED55F8855641B1] - (.Ask - Ask Updater.) -- C:\Program Files\Ask.com\Updater\Updater.​exe   [1568976] [PID.3576]
 [MD5.48F87E550B791A6A9FC04EB91647D064] - (.iMesh, Inc - iMesh.) -- C:\Program Files\iMesh Applications\iMesh\iMesh.exe   [25807312] [PID.5308]
 M0 - MFSP: prefs.js [SylGé - 43ig6c0r.default-1345065729182] http://isearch.claro-search.com
 M2 - MFEP: prefs.js [SylGé - 43ig6c0r.default-1345065729182\toolbar@ask.com] [] Avira SearchFree Toolbar plus Web Protection v (.Ask.com.)
 R0 - HKCU\SOFTWARE\Microsoft\Intern​et Explorer\Main,Start Page = http://search.imesh.net
 R3 - URLSearchHook: (no name) - {00000000-6E41-4FD3-8538-502F5​495E5FC} . (.Microsoft Corporation - Hôte de la fenêtre de la console.) (No version) -- (.not file.)
 R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04​FD64497} . (.Microsoft Corporation - Hôte de la fenêtre de la console.) (No version) -- (.not file.)
 R3 - URLSearchHook: (no name) - {8e5025c2-8ea3-430d-80b8-a1415​1068a6d} . (.Microsoft Corporation - Hôte de la fenêtre de la console.) (No version) -- (.not file.)
 O2 - BHO: (no name) - {18DF081C-E8AD-4283-A596-FA578​C2EBDC3} Clé orpheline
 O2 - BHO: Wincore Mediabar - {28387537-e3f9-4ed7-860c-11e69​af4a8a0} Clé orpheline
 O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7​942484F} Clé orpheline
 O2 - BHO: (no name) - {9030D464-4C02-4ABF-8ECC-51647​60863C6} Clé orpheline
 O2 - BHO: (no name) - {BE7A24F5-69CB-4708-B77B-B1EDA​6043B95} Clé orpheline
 O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D​8127440} Clé orpheline
 O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6​AD74ACC} Clé orpheline
 O4 - HKCU\..\RunOnce: [!iMeshDSFF] . (...) -- C:\Users\SylGé\AppData\Local\T​emp\SRAssetsHelper.dll
 O4 - HKCU\..\RunOnce: [!iMeshFFHP] . (...) -- C:\Users\SylGé\AppData\Local\T​emp\Installhelper.dll
 O4 - HKUS\S-1-5-21-432569998-230909​7474-720278831-1000\..\RunOnce​: [!iMeshDSFF] . (...) -- C:\Users\SylGé\AppData\Local\T​emp\SRAssetsHelper.dll
 O4 - HKUS\S-1-5-21-432569998-230909​7474-720278831-1000\..\RunOnce​: [!iMeshFFHP] . (...) -- C:\Users\SylGé\AppData\Local\T​emp\Installhelper.dll
 O4 - Global Startup: C:\Users\SylGé\Desktop\iMesh.l​nk . (.iMesh, Inc.)  -- C:\Program Files\iMesh Applications\iMesh\iMesh.exe
 O4 - Global Startup: C:\Users\SylGé\AppData\Roaming​\Microsoft\Internet Explorer\Quick Launch\iMesh.lnk . (.iMesh, Inc.)  -- C:\Program Files\iMesh Applications\iMesh\iMesh.exe
 [MD5.AC8A678DF2941F76D2E0794BF71688E3] [APT] [Scheduled Update for Ask Toolbar] (...) -- C:\Program Files\Ask.com\UpdateTask.exe
 [MD5.00000000000000000000000000000000] [APT] [{7E42F710-F10C-4AD9-9313-20D49F3C7CBC}] (...) -- E:\SETUP.exe (.not file.)
 O42 - Logiciel: Avira SearchFree Toolbar plus Web Protection Updater - (.Ask.com.) [HKCU] -- {79A765E1-C399-405B-85AF-466F5​2E918B0}
 [HKCU\Software\AppDataLow\Software\AskToolbar]
 [HKCU\Software\Ask.com]
 [HKCU\Software\DataMngr]
 [HKCU\Software\DataMngr_Toolbar]
 [HKCU\Software\iMesh]
 O43 - CFD: 16/08/2012 - 08:26:17 - [4,395] ----D C:\Program Files\Ask.com
 O43 - CFD: 16/08/2012 - 13:57:39 - [63,207] ----D C:\Program Files\iMesh Applications
 O43 - CFD: 16/08/2012 - 13:56:15 - [0,079] ----D C:\ProgramData\iMesh
 O43 - CFD: 12/08/2012 - 18:11:26 - [0] ----D C:\ProgramData\{429CAD59-35B1-​4DBC-BB6D-1DB246563521}
 O43 - CFD: 16/08/2012 - 15:37:37 - [80,926] ----D C:\Users\SylGé\AppData\Local\i​Mesh
 O43 - CFD: 26/07/2012 - 21:31:45 - [0] ----D C:\Users\SylGé\AppData\Local\{​0039A370-6CE3-4D95-BE84-7433F0​C49691}
 O43 - CFD: 12/08/2012 - 22:48:22 - [0] ----D C:\Users\SylGé\AppData\Local\{​081F4E0F-6249-442A-819E-7175FC​FFA0D8}
 O43 - CFD: 05/08/2012 - 10:07:05 - [0] ----D C:\Users\SylGé\AppData\Local\{​08C8519A-2FBE-46E9-B6A8-06B2E5​CB7D5D}
 O43 - CFD: 24/07/2012 - 23:25:53 - [0] ----D C:\Users\SylGé\AppData\Local\{​0C8B7B34-CAA6-4A0D-8542-5F8D57​239DB6}
 O43 - CFD: 11/08/2012 - 22:37:28 - [0] ----D C:\Users\SylGé\AppData\Local\{​0CE15D86-0C96-49C4-BD4C-E8E869​82EE41}
 O43 - CFD: 10/08/2012 - 22:07:59 - [0] ----D C:\Users\SylGé\AppData\Local\{​0EB0341E-814B-45BE-8EC4-E4C87D​E6A89D}
 O43 - CFD: 02/08/2012 - 12:57:43 - [0] ----D C:\Users\SylGé\AppData\Local\{​110C975B-7657-46A3-8686-89E834​295517}
 O43 - CFD: 24/07/2012 - 23:25:41 - [0] ----D C:\Users\SylGé\AppData\Local\{​16F0AA4F-C383-488D-A634-A73C26​315D1D}
 O43 - CFD: 30/07/2012 - 18:04:22 - [0] ----D C:\Users\SylGé\AppData\Local\{​183C508F-DAA5-4F14-9443-15C1F9​9E8B75}
 O43 - CFD: 07/08/2012 - 04:56:07 - [0] ----D C:\Users\SylGé\AppData\Local\{​1D00D207-E550-41B4-A41B-DF2527​6DAB65}
 O43 - CFD: 12/08/2012 - 10:48:04 - [0] ----D C:\Users\SylGé\AppData\Local\{​1F66BE6D-CAB3-4C67-980D-31063E​E85FEB}
 O43 - CFD: 23/07/2012 - 08:16:17 - [0] ----D C:\Users\SylGé\AppData\Local\{​2CBAADC2-4A29-4BF2-9AC2-0DA33B​7A4EB1}
 O43 - CFD: 28/07/2012 - 18:12:41 - [0] ----D C:\Users\SylGé\AppData\Local\{​3D44A795-A13C-4339-8184-AFC2C3​2275DD}
 O43 - CFD: 04/08/2012 - 22:06:18 - [0] ----D C:\Users\SylGé\AppData\Local\{​457B97AA-C47D-4806-8EE6-CE175C​C1F89A}
 O43 - CFD: 26/07/2012 - 09:30:41 - [0] ----D C:\Users\SylGé\AppData\Local\{​4679AD3E-0DE0-48F7-97D9-FDA3F4​D0BE7A}
 O43 - CFD: 09/08/2012 - 09:21:08 - [0] ----D C:\Users\SylGé\AppData\Local\{​537DDBB4-0B98-4766-B323-C7FCF2​EE9F61}
 O43 - CFD: 27/07/2012 - 09:32:21 - [0] ----D C:\Users\SylGé\AppData\Local\{​551617C6-4152-4730-83E5-54531E​C74AB5}
 O43 - CFD: 08/08/2012 - 09:20:19 - [0] ----D C:\Users\SylGé\AppData\Local\{​5A4743FB-9C27-4545-9B72-F1DEB1​8568BB}
 O43 - CFD: 22/07/2012 - 18:12:13 - [0] ----D C:\Users\SylGé\AppData\Local\{​5AE74F6C-11D1-46E3-AA0E-6760A3​D4AA12}
 O43 - CFD: 13/08/2012 - 22:13:47 - [0] ----D C:\Users\SylGé\AppData\Local\{​64854C29-A3C1-46C5-BAF6-3BB191​2B4698}
 O43 - CFD: 07/08/2012 - 04:56:18 - [0] ----D C:\Users\SylGé\AppData\Local\{​6CA1CE69-BC7B-4976-AA1A-6C2C00​BFBDFD}
 O43 - CFD: 12/08/2012 - 22:48:33 - [0] ----D C:\Users\SylGé\AppData\Local\{​6E7C8444-ADB3-4226-AAEE-F4738F​4FE522}
 O43 - CFD: 22/07/2012 - 18:12:43 - [0] ----D C:\Users\SylGé\AppData\Local\{​6F3E8F8A-D5D5-4F65-A9A2-229879​D3211B}
 O43 - CFD: 11/08/2012 - 10:36:49 - [0] ----D C:\Users\SylGé\AppData\Local\{​714B82A9-A6CE-46AE-BFF6-112CE5​161A35}
 O43 - CFD: 23/07/2012 - 20:16:34 - [0] ----D C:\Users\SylGé\AppData\Local\{​78FE4CFA-C04A-4D6C-8ED8-97AB86​EF1F20}
 O43 - CFD: 16/08/2012 - 10:07:15 - [0] ----D C:\Users\SylGé\AppData\Local\{​7CEAC558-B3A0-4EFD-9248-2A038D​FCEEA6}
 O43 - CFD: 11/08/2012 - 10:37:01 - [0] ----D C:\Users\SylGé\AppData\Local\{​7E7783C1-FFAE-42FC-B172-061276​A7EE1D}
 O43 - CFD: 28/07/2012 - 18:12:43 - [0] ----D C:\Users\SylGé\AppData\Local\{​7F2F3AF5-5BF3-484A-9B89-E23716​CDBF59}
 O43 - CFD: 02/08/2012 - 12:57:31 - [0] ----D C:\Users\SylGé\AppData\Local\{​812697D4-3567-4C29-A3C2-31ED84​8956B9}
 O43 - CFD: 08/08/2012 - 21:20:44 - [0] ----D C:\Users\SylGé\AppData\Local\{​842DDBC0-8E02-44E9-8706-394DE5​28131E}
 O43 - CFD: 25/07/2012 - 11:26:35 - [0] ----D C:\Users\SylGé\AppData\Local\{​8B8EB48C-C070-4781-8311-D6FE8C​D62930}
 O43 - CFD: 27/07/2012 - 22:25:54 - [0] ----D C:\Users\SylGé\AppData\Local\{​8ED71C65-EE9D-4CF0-9004-0C72C2​9FE52D}
 O43 - CFD: 10/08/2012 - 22:07:40 - [0] ----D C:\Users\SylGé\AppData\Local\{​910FC2CB-5A49-48F1-9766-C6B436​169E5D}
 O43 - CFD: 04/08/2012 - 22:06:29 - [0] ----D C:\Users\SylGé\AppData\Local\{​968B6877-CF48-4E8A-8620-DC4E51​B0D008}
 O43 - CFD: 06/08/2012 - 16:55:47 - [0] ----D C:\Users\SylGé\AppData\Local\{​9A678DAE-85BC-4D8D-893C-5C5FF7​DE1684}
 O43 - CFD: 30/07/2012 - 18:04:34 - [0] ----D C:\Users\SylGé\AppData\Local\{​9C7426D9-4895-465B-86AA-3CAEF8​4E730E}
 O43 - CFD: 11/08/2012 - 22:37:39 - [0] ----D C:\Users\SylGé\AppData\Local\{​A221E024-E1DA-46D1-9A48-32FF2F​0EBA1F}
 O43 - CFD: 26/07/2012 - 21:31:34 - [0] ----D C:\Users\SylGé\AppData\Local\{​A389E1FB-26D3-417C-B2A8-178721​945C26}
 O43 - CFD: 13/08/2012 - 22:13:35 - [0] ----D C:\Users\SylGé\AppData\Local\{​A8195A51-EE9D-4881-8341-123A82​B75280}
 O43 - CFD: 15/08/2012 - 22:06:20 - [0] ----D C:\Users\SylGé\AppData\Local\{​ACD9C04E-D800-48D4-959F-9DC31F​B5A191}
 O43 - CFD: 16/08/2012 - 10:07:03 - [0] ----D C:\Users\SylGé\AppData\Local\{​AE11F248-57DF-4C75-9773-3C659D​BAAE41}
 O43 - CFD: 15/08/2012 - 22:06:31 - [0] ----D C:\Users\SylGé\AppData\Local\{​AFE35DE1-B1F5-4DE8-BF5C-7AB05A​998AD3}
 O43 - CFD: 25/07/2012 - 11:26:25 - [0] ----D C:\Users\SylGé\AppData\Local\{​B143E97F-4C0E-4CF4-BAB7-AE070F​F5B27A}
 O43 - CFD: 15/08/2012 - 10:05:53 - [0] ----D C:\Users\SylGé\AppData\Local\{​B1DC08FE-35F6-4BD4-93A6-9CA6D2​2B8B62}
 O43 - CFD: 29/07/2012 - 18:03:44 - [0] ----D C:\Users\SylGé\AppData\Local\{​B6CEECEA-A5CD-4CFF-9A56-674FF5​3BF46A}
 O43 - CFD: 09/08/2012 - 21:21:21 - [0] ----D C:\Users\SylGé\AppData\Local\{​B6DBDBB0-B8CC-4394-B561-758ADD​BC2D14}
 O43 - CFD: 05/08/2012 - 10:06:54 - [0] ----D C:\Users\SylGé\AppData\Local\{​B700952A-0C60-4999-9995-D2BA84​80FAD7}
 O43 - CFD: 15/08/2012 - 10:05:40 - [0] ----D C:\Users\SylGé\AppData\Local\{​C1800E4F-ABA1-43E5-9BD1-BD7E37​B4AB50}
 O43 - CFD: 23/07/2012 - 20:16:45 - [0] ----D C:\Users\SylGé\AppData\Local\{​C9B40E1C-4C77-40DD-A8BC-5AFFD2​35EF68}
 O43 - CFD: 04/08/2012 - 10:05:53 - [0] ----D C:\Users\SylGé\AppData\Local\{​CCABBF5F-F50A-4A7F-B753-769A81​EAE755}
 O43 - CFD: 09/08/2012 - 21:21:32 - [0] ----D C:\Users\SylGé\AppData\Local\{​CFFE74CD-C06D-4B81-8E3E-BC9CEE​130A10}
 O43 - CFD: 05/08/2012 - 22:07:43 - [0] ----D C:\Users\SylGé\AppData\Local\{​E97299BA-D9A2-4C05-BBF2-271713​F87174}
 O43 - CFD: 27/07/2012 - 22:25:42 - [0] ----D C:\Users\SylGé\AppData\Local\{​EB07712A-4F66-47D1-89DB-22D4B1​3DBCB7}
 O43 - CFD: 25/07/2012 - 11:26:23 - [0] ----D C:\Users\SylGé\AppData\Local\{​EDEE757E-65C6-43BE-9BAD-3E33C6​3B48D6}
 O43 - CFD: 30/07/2012 - 06:04:09 - [0] ----D C:\Users\SylGé\AppData\Local\{​F47AEDD4-29FB-444B-B52F-56A1BD​CE2969}
 O43 - CFD: 13/08/2012 - 13:17:37 - [0] ----D C:\Users\SylGé\AppData\Local\{​F9C5AF5B-0D08-4C7D-A29C-13E8DC​FBD73C}
 O43 - CFD: 05/08/2012 - 22:07:31 - [0] ----D C:\Users\SylGé\AppData\Local\{​FA7C8678-101E-4511-A67D-5B1FE6​6DC858}
 O69 - SBI: C:\Users\SylGé\AppData\Roaming​\Mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\sea​rchplugins\askcom.xml
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.In​stallDir", "C:\\Program Files\\Ask.com\\" );
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.ap​n_dbr", "ff_14.0.1" );
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.cb​id", "^ABW" );
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.co​nfig-updated", false);
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.cr​umb", "2012.08.15+23.25.02-toolbar009iad-FR-Qm91bG9nbmUtQmlsbGFuY291cnQsRnJhbmNl" );
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.de​fault-channel-url-mask", "http://avira-int.ask.com/web?q={query}&qsrc={qsrc}&o={o}&l={l}&gct=bar&loc[...]
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.do​main", "avira-int.ask.com" );
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.do​mainName", "avira-int.ask.com" );
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.dt​id", "^YYYYYY^YY^FR" );
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.ff​-original-keyword-url", "http://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q=[...]
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.fr​esh-install", false);
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.gu​id", "40d33dea-5188-415b-965c-bdc25ba88a25" );
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.ht​tp-header-whitelist-hosts", "[\"static-dev.en.dev.ask.com\", \"ask.com\", \"www.facebook.com\", \"ww[...]
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.if​", "first" );
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.l"​, "dis" );
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.la​st-config-req", "1345098857191" );
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.lo​cale", "fr_FR" );
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.lo​calePref", true);
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.lo​cation", "Boulogne-Billancourt,France" );
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.no​tification-shown", true);
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.o"​, "APN10398" );
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.ov​erlay-reloaded-using-restart",​ true);
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.qs​rc", "2871" );
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.r"​, "2" );
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.sa​", "YES" );
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.sa​guid", "8F85EA19-A03F-4061-947F-202B8D8F0847" );
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.se​arch-suggestions-enabled", true);
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.si​lent-upgrade-from-pre-newtabs-​build", false);
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.so​cialmini-native-on", true);
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.th​emeid", "" );
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.ti​meinstalled", "16/08/2012 08:26:15" );
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.to​", "" );
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.v"​, "3.15.4.100013" );
 O69 - SBI: prefs.js [SylGé - 43ig6c0r.default-1345065729182] user_pref("extensions.asktb.ve​rsion", "5.15.4.23930" );
 O69 - SBI: prefs.js [SylGé - ie2fxgk7.default] user_pref("extensions.asktb.ff​-original-keyword-url", "" );
 O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C​0A66CC9} [DefaultScope] - (Claro Search) - http://isearch.claro-search.com
 O69 - SBI: SearchScopes [HKCU] {FAF9B6DE-84F3-49F8-98C6-6A87E​39E26A1} - (Ask Search) - http://websearch.ask.com
 [MD5.34E4DA7E4D32B4DC5153D1CEDB6E5F08] [SPRF][29/06/2012] (.Conduit - Pas de description.) -- C:\Users\SylGé\AppData\Local\T​emp\conduitinstaller.exe   [210816]
 [MD5.D15736A1402BCAD54597B0410BB905C2] [SPRF][16/08/2012] (.iMesh Inc. - iMesh.) -- C:\Users\SylGé\AppData\Local\T​emp\iMesh_setup.exe   [2441560]
 [MD5.3B00695C25569F4A487002472CB5465A] [SPRF][10/06/2012] (.Conduit Ltd. - Conduit Toolbar.) -- C:\Users\SylGé\AppData\Local\T​emp\tb01NE.dll   [4414792]
 [HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}]   =>Adware.MyWebSearch
 [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{28387537-e3f9-4ed7-860c-11e69af4a8a0}]   =>PUP.iMesh
 [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{28387537-e3f9-4ed7-860c-11e69af4a8a0}]   =>PUP.iMesh
 [HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}]   =>Toolbar.AskSBar
 [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}]   =>Toolbar.AskSBar
 [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]   =>Toolbar.AskSBar
 [HKCU\Software\APN]   =>Toolbar.Agent
 [HKLM\Software\APN]   =>Toolbar.Agent
 [HKCU\Software\Ask.com]   =>Toolbar.AskBar
 [HKCU\Software\Ask.com]   =>Toolbar.AskBarDis
 [HKCU\Software\AppDataLow\Software\AskToolbar]   =>Toolbar.AskTBar
 [HKCU\Software\DataMngr]   =>Adware.Bandoo
 [HKCU\Software\iMesh]   =>PUP.iMesh
 [HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}]   =>Toolbar.AskBar
 [HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks]:{00000000-6E41-4FD3-8538-502F​5495E5FC}   =>Adware.ShoppingReport2
 C:\Program Files\Ask.com   =>Toolbar.AskBar
 C:\Program Files\iMesh Applications   =>PUP.iMesh
 C:\ProgramData\iMesh   =>PUP.iMesh
 C:\ProgramData\Microsoft\Windo​ws\Start Menu\Programs\iMesh   =>PUP.iMesh
 C:\Users\SylGé\AppData\Local\i​Mesh   =>PUP.iMesh
 C:\Users\SylGé\AppData\LocalLo​w\AskToolbar   =>Toolbar.AskTBar
 C:\Users\SylGé\AppData\Local\T​emp\AskSearch   =>Toolbar.AskBarDis
 C:\Users\SylGé\AppData\Roaming​\Mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\toolbar@ask.com   =>Toolbar.AskTBar

 FirewallRaz
 EmptyFlash
 Emptytemp



 Puis lance ZHPFix 917166Captureddd depuis le raccourci du bureau.

 Clique sur l'icone représentant la lettre H 506137CaptureHH  "coller les lignes Helper"
 - Les lignes se collent automatiquement dans ZHPFix, sinon colle les lignes
 - Clique sur le bouton « GO » pour lancer le nettoyage,
 - Copie/colle la totalité du rapport dans ta prochaine réponse

 -> laisse travailler l'outil et ne touche à rien ...

 Une fois terminée, un nouveau rapport s'affiche : copie/colle le contenu de ce dernier dans ta prochaine réponse ...

 Le rapport est sauvegardé dans le dossier : C:\Program files\ZHPDiag\ZHPFixReport.txt​

 Important : s'il t'est demandé de redémarrer le PC pour finir le nettoyage, fais le de suite !
 A+ antef:4


---------------
jypalou:1
  Il vaut mieux aller plus loin avec quelqu'un que nulle part avec tout le monde
Je n'accepte aucune demande de nettoyage en message privé.
n°772131
gege083
Posté le 17-08-2012 à 14:34:35  answer
Prévenir les modérateurs en cas d'abus
 


 Voila le nouveau lien
 http://cjoint.com/?BHroGeLI0Ih

 Merci

n°772132
Jypalou
Modérateur
Profil : Equipe sécurité
Posté le 17-08-2012 à 14:40:11  answer
Prévenir les modérateurs en cas d'abus
 

pepitochocolat:1 OK,toujours présent claro.search ?
 A+ antef:4


 


---------------
jypalou:1
  Il vaut mieux aller plus loin avec quelqu'un que nulle part avec tout le monde
Je n'accepte aucune demande de nettoyage en message privé.
n°772133
gege083
Posté le 17-08-2012 à 15:37:56  answer
Prévenir les modérateurs en cas d'abus
 

Hélas oui

n°772134
Jypalou
Modérateur
Profil : Equipe sécurité
Posté le 17-08-2012 à 15:54:29  answer
Prévenir les modérateurs en cas d'abus
 

pepitochocolat:1 Il est coriace,essaie de voir avec la métnode de danakil:

 http://forum.telecharger.01net [...] ges-1.html
 A+ antef:4


---------------
jypalou:1
  Il vaut mieux aller plus loin avec quelqu'un que nulle part avec tout le monde
Je n'accepte aucune demande de nettoyage en message privé.
n°772135
gege083
Posté le 17-08-2012 à 16:23:51  answer
Prévenir les modérateurs en cas d'abus
 

Je vais aller voir et je te tiens au courrant

n°772136
gege083
Posté le 17-08-2012 à 16:30:38  answer
Prévenir les modérateurs en cas d'abus
 

Dois je essayer avec OTL car sur le lien je n'ai pas trouvé la ressemblance avec mon problème car claro apparait en page d'accueil et non pas en moteur de recherche

n°772137
Jypalou
Modérateur
Profil : Equipe sécurité
Posté le 17-08-2012 à 18:24:14  answer
Prévenir les modérateurs en cas d'abus
 

pepitochocolat:1 On peut tenter:
 Télécharge OTL sur ton Bureau.
 • Fait un double-clic sur l'icône d' OTL pour le lancer.
 (Sous Vista > Clic droit > Exécuter en tant qu'Administrateur).
 • Assure toi d'avoir fermé toutes les applications en cours de fonctionnement.
 • Quand la fenêtre d'OTL apparaît, assure toi que dans la  section "Rapport" (en haut à droite) la case " Rapport Minimal " soit cochée.
 • Copie et colle le contenu de cette citation dans la partie inférieure d'OTL "Personalisation" :
 



HKLM\SOFTWARE\Microsoft\Intern​et Explorer\MAIN\FeatureControl|FEATURE_BROWSER_EMULATION /rs
 HKEY_USERS\.DEFAULT\Software\M​icrosoft\Internet Explorer\Main\FeatureControl|feature_enable_ie_compression /rs
 HKEY_USERS\S-1-5-18\Software\M​icrosoft\Internet Explorer\Main\FeatureControl|feature_enable_ie_compression /rs
 hklm\software\clients\startmen​uinternet|command /rs
 hklm\software\clients\startmen​uinternet|command /64 /rs
 HKLM\SOFTWARE\Microsoft\Window​s NT\CurrentVersion\Drivers /s
 HKLM\SOFTWARE\Microsoft\Window​s NT\CurrentVersion\Drivers32 /s
 HKLM\SOFTWARE\Microsoft\Window​s NT\CurrentVersion\drivers.desc /s
 %temp%\smtmp\1\*.* /s
 %temp%\smtmp\2\*.* /s
 %temp%\smtmp\4\*.* /s
 nslookup http://www.google.fr /c
 SAVEMBR:0
 NetSvcs
 %systemroot%\system32\drivers\​*.sys /lockedfiles
 msconfig
 safebootminimal
 safebootnetwork
 activex
 drivers32
 %APPDATA%\*.exe /s
 %SYSTEMDRIVE%\*.exe
 netsvcs
 /md5start
 dwm.exe
 taskhost.exe
 taskeng.exe
 wscntfy.exe
 ctfmon.exe
 rdpclip.exe
 volsnap.sys
 sptd.sys
 explorer.exe
 userinit.exe
 winlogon.exe
 wininit.exe
 tcpip.sys
 Sfloppy.sys
 Changer.sys
 cdrom.sys
 disk.sys
 ndis.sys
 usbscan.sys
 usbprint.sys
 tdtcp.sys
 tdpipe.sys
 swmidi.sys
 splitter.sys
 rdpwd.sys
 eventlog.dll
 scecli.dll
 netlogon.dll
 cngaudit.dll
 sceclt.dll
 ntelogon.dll
 logevent.dll
 RASACD.SYS
 iaStor.sys
 nvstor.sys
 atapi.sys
 IdeChnDr.sys
 viasraid.sys
 AGP440.sys
 vaxscsi.sys
 nvatabus.sys
 viamraid.sys
 nvata.sys
 nvgts.sys
 iastorv.sys
 ViPrt.sys
 eNetHook.dll
 ahcix86.sys
 KR10N.sys
 nvstor32.sys
 ahcix86s.sys
 nvrd32.sys
 /md5stop
 %systemroot%\*. /mp /s
 %systemroot%\system32\*.dll /lockedfiles
 %systemroot%\Tasks\*.job /lockedfiles
 createrestorepoint



 • Clique sur l'icône "Analyse" (en haut à gauche).
 • Laisse le scan aller à son terme sans te servir du PC.
 • A la fin du scan deux rapports vont s'ouvrir " OTL.Txt " et " Extras.Txt ".
 Héberge ces rapports afin que je puisse les récupèrer.
 ...

 ... sur le site de cijoint :
 • Clique sur Parcourir pour rechercher le rapport puis sur Cliquez ici pour déposer le fichier
 • Copie et colle ici le lien web qui te sera donné.
 • Il est de type : http://www.cijoint.fr/cjlink.p [...] 8MD0zB.txt
 au cas ou il y a un probleme avec ci-joint fais le ici
 http://mydoc.tk/
 A+ antef:4


---------------
jypalou:1
  Il vaut mieux aller plus loin avec quelqu'un que nulle part avec tout le monde
Je n'accepte aucune demande de nettoyage en message privé.
n°772138
gege083
Posté le 17-08-2012 à 21:06:21  answer
Prévenir les modérateurs en cas d'abus
 

j'ai eu du mal mais voici le premier lien
 http://cjoint.com/?BHrvdmEeYj0

n°772139
gege083
Posté le 17-08-2012 à 21:09:09  answer
Prévenir les modérateurs en cas d'abus
 

et voilà le deuxième lien
 http://cjoint.com/?BHrvioelECu

n°772140
Jypalou
Modérateur
Profil : Equipe sécurité
Posté le 17-08-2012 à 21:54:35  answer
Prévenir les modérateurs en cas d'abus
 

pepitochocolat:1 Relance OTL par un double-clics.
 Dans l'interface d'OTL, vérifie que la case "Rapport minimal" soit bien cochée.
 Copie et colle le contenu de cette citation dans la fenêtre "Personnalisation"

 



 
 :processes
 explorer.exe
 iexplore.exe
 firefox.exe
 msnmsgr.exe
 Teatimer.exe

 :reg
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{28387537-e3f9-4ed7-860c-11e69af4a8a0}]
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{28387537-e3f9-4ed7-860c-11e69af4a8a0}]
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}]
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}]
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}]
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
 "ApnUpdater"=-
 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
 "DATAMNGR"=-

 :files
 c:\program files\imesh applications\mediabar\datamngr​\datamngrui.exe
 c:\program files\ask.com\updater\updater.​exe
 c:\program files\imesha~1\mediabar\datamn​gr\toolbar\wincoreimdtx.dll
 c:\program files\imesha~1\mediabar\datamn​gr\browse~1.dll
 c:\program files\ask.com\genericasktoolba​r.dll
 c:\program files\imesha~1\mediabar\datamn​gr\datamn~1.exe

 :otl
 PRC - C:\Program Files\iMesh Applications\MediaBar\Datamngr​\datamngrUI.exe (iMesh, Inc)    
 PRC - C:\Program Files\Ask.com\Updater\Updater.​exe (Ask)    
 [2012/08/16 13:58:10 | 000,000,000 | ---D | M] (Wincore Mediabar) -- C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}    
 [2012/08/16 13:58:07 | 000,000,000 | ---D | M] (Wincore Mediabar) -- C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}    
 [2012/08/16 13:58:05 | 000,000,000 | ---D | M] (Wincore Mediabar) -- C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}    
 O2 - BHO: (Wincore Mediabar) - {28387537-e3f9-4ed7-860c-11e69​af4a8a0} - C:\PROGRA~1\IMESHA~1\MediaBar\​Datamngr\ToolBar\wincoreimdtx.​dll ()    
 O2 - BHO: (DataMngr) - {BE7A24F5-69CB-4708-B77B-B1EDA​6043B95} - C:\PROGRA~1\IMESHA~1\MediaBar\​Datamngr\BROWSE~1.DLL (iMesh, Inc)    
 O2 - BHO: (Avira SearchFree Toolbar plus Web Protection) - {D4027C7F-154A-4066-A1AD-4243D​8127440} - C:\Program Files\Ask.com\GenericAskToolba​r.dll (Ask)    
 O3 - HKLM\..\Toolbar: (Wincore Mediabar) - {28387537-e3f9-4ed7-860c-11e69​af4a8a0} - C:\PROGRA~1\IMESHA~1\MediaBar\​Datamngr\ToolBar\wincoreimdtx.​dll ()    
 O3 - HKLM\..\Toolbar: (Avira SearchFree Toolbar plus Web Protection) - {D4027C7F-154A-4066-A1AD-4243D​8127440} - C:\Program Files\Ask.com\GenericAskToolba​r.dll (Ask)    
 O4 - HKLM\..\Run: [ApnUpdater] C:\Program Files\Ask.com\Updater\Updater.​exe (Ask)    
 O4 - HKLM\..\Run: [DATAMNGR] C:\PROGRA~1\IMESHA~1\MediaBar\​Datamngr\DATAMN~1.EXE (iMesh, Inc)    
 [2012/08/16 13:56:15 | 000,000,000 | ---D | C] -- C:\Program Files\iMesh Applications    
 [2012/08/16 08:26:10 | 000,000,000 | ---D | C] -- C:\Program Files\Ask.com    
 [2012/08/13 21:34:16 | 000,000,098 | ---- | M] () -- C:\user.js    
 [2012/08/13 21:34:16 | 000,000,098 | ---- | C] () -- C:\user.js    

 :Commands
 [clearallrestorepoints]
 [emptytemp]
 [start explorer]
 [reboot]
 




 Clique sur le bouton "Correction".
 Ton Bureau peut disparaître plusieurs fois durant les corrections, ne t'en inquiètes pas, cela est normal.
 Ne touche plus au PC avant son redémarrage en mode normal.
 A l'ouverture du PC un rapport va s'ouvrir --> 08172012_xxxxxx.log ... Si ce n'est le cas tu le retrouveras sous le même nom sur le Bureau ou alors dans son dossier --> C:\_OTL
 Copie et colle ici en réponse le contenu de ce rapport.
 A+ antef:4


---------------
jypalou:1
  Il vaut mieux aller plus loin avec quelqu'un que nulle part avec tout le monde
Je n'accepte aucune demande de nettoyage en message privé.
n°772141
gege083
Posté le 17-08-2012 à 22:55:25  answer
Prévenir les modérateurs en cas d'abus
 

All processes killed
 ========== OTL ==========
 Process datamngrUI.exe killed successfully!
 No active process named Updater.exe was found!
 Registry key HKEY_CURRENT_USER\SOFTWARE\Mic​rosoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{0ECDF796-C2DC-4d7​9-A620-CCE0C0A66CC9}\ not found.
 Prefs.js: "Ask.com" removed from browser.search.defaultengine
 Prefs.js: "Claro Search" removed from browser.search.defaultenginena​me
 Prefs.js: "Claro Search" removed from browser.search.order.1
 Prefs.js: "http://isearch.claro-search.c​om/?affID=115131&tt=120812_ban​dext_3312_7&babsrc=HP_iclro&mn​trId=90a0f951000000000000902b3​4267ffa" removed from browser.startup.homepage
 Registry key HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{BE7A24F5-69CB-4708-B7​7B-B1EDA6043B95}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{BE7A24F5-69CB-470​8-B77B-B1EDA6043B95}\ deleted successfully.
 C:\PROGRA~1\IMESHA~1\MediaBar\​Datamngr\BROWSE~1.DLL moved successfully.
 Registry key HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1​AD-4243D8127440}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{D4027C7F-154A-406​6-A1AD-4243D8127440}\ deleted successfully.
 C:\Program Files\Ask.com\GenericAskToolba​r.dll moved successfully.
 Registry key HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{FDD3B846-8D59-4ffb-87​58-209B6AD74ACC}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{FDD3B846-8D59-4ff​b-8758-209B6AD74ACC}\ not found.
 Registry value HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Internet Explorer\Toolbar\\{28387537-e3f9-4ed7-860c-11e69af4a8a0} deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{28387537-e3f9-4ed​7-860c-11e69af4a8a0}\ deleted successfully.
 C:\PROGRA~1\IMESHA~1\MediaBar\​Datamngr\ToolBar\wincoreimdtx.​dll moved successfully.
 Registry value HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{D4027C7F-154A-406​6-A1AD-4243D8127440}\ not found.
 File C:\Program Files\Ask.com\GenericAskToolba​r.dll not found.
 Registry value HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Internet Explorer\Toolbar\\10 deleted successfully.
 Registry value HKEY_CURRENT_USER\Software\Mic​rosoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{2318C2B1-4965-11D​4-9B18-009027A5CD4F}\ not found.
 Registry value HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Run\\ deleted successfully.
 Registry value HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Run\\ApnUpdater deleted successfully.
 C:\Program Files\Ask.com\Updater\Updater.​exe moved successfully.
 Registry value HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Run\\DATAMNGR deleted successfully.
 C:\PROGRA~1\IMESHA~1\MediaBar\​Datamngr\DATAMN~1.EXE moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\components folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\skin\searchbar​ folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\skin\options folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\skin\lib\weath​erbutton\panels\images folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\skin\lib\weath​erbutton\panels folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\skin\lib\weath​erbutton\icons folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\skin\lib\weath​erbutton folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\skin\lib\uwa folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\skin\lib\radio​\images folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\skin\lib\radio​\css folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\skin\lib\radio​ folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\skin\lib\panel​s\images folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\skin\lib\panel​s\default\scripts folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\skin\lib\panel​s\default\images folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\skin\lib\panel​s\default\css folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\skin\lib\panel​s\default folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\skin\lib\panel​s\css folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\skin\lib\panel​s folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\skin\lib folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\skin folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\content\widget​s\com.djboxservice.dj.DJBox\th​umbs folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\content\widget​s\com.djboxservice.dj.DJBox folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\content\widget​s folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\content\module​s folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\content\lib folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\content\data\s​earch folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\content\data folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome\content folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar\chrome folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\ToolBar folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\FirefoxExtension\content folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\FirefoxExtension\components folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​\FirefoxExtension folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar\Datamngr​ folder moved successfully.
 C:\Program Files\iMesh Applications\MediaBar folder moved successfully.
 C:\Program Files\iMesh Applications folder moved successfully.
 C:\Program Files\Ask.com\Updater folder moved successfully.
 C:\Program Files\Ask.com\assets\oobe folder moved successfully.
 C:\Program Files\Ask.com\assets folder moved successfully.
 C:\Program Files\Ask.com folder moved successfully.
 File ptytemp] not found.
 File ptyflash] not found.
 File sethosts] not found.
 File boot] not found.
 
 OTL by OldTimer - Version 3.2.57.0 log created on 08172012_224743

 Files\Folders moved on Reboot...

 PendingFileRenameOperations files...

 Registry entries deleted on Reboot...

n°772142
gege083
Posté le 17-08-2012 à 22:56:25  answer
Prévenir les modérateurs en cas d'abus
 

voila le contenu

n°772143
gege083
Posté le 17-08-2012 à 23:00:01  answer
Prévenir les modérateurs en cas d'abus
 

en ouvrant mozilla pour te poster le contenu "surprise" j'ai toujours claro.search en page d'accueil.
 je crois que je vais reformater mon pc.

n°772144
Jypalou
Modérateur
Profil : Equipe sécurité
Posté le 17-08-2012 à 23:07:13  answer
Prévenir les modérateurs en cas d'abus
 

pepitochocolat:1 Est ce que tu as essayé de modifier ta paged'accueil?
 A+ antef:4  


---------------
jypalou:1
  Il vaut mieux aller plus loin avec quelqu'un que nulle part avec tout le monde
Je n'accepte aucune demande de nettoyage en message privé.
n°772145
Jypalou
Modérateur
Profil : Equipe sécurité
Posté le 17-08-2012 à 23:12:55  answer
Prévenir les modérateurs en cas d'abus
 

pepitochocolat:1 Est ce que tu as redémarré le PC?
 A+ antef:4


---------------
jypalou:1
  Il vaut mieux aller plus loin avec quelqu'un que nulle part avec tout le monde
Je n'accepte aucune demande de nettoyage en message privé.
n°772146
gege083
Posté le 17-08-2012 à 23:48:05  answer
Prévenir les modérateurs en cas d'abus
 

J'ai changé ma page d'accueil plusieurs fois en plus elle est noté dans panneau de configuration>réseaux et internet>option internet. J'ai effectivement redémarré le pc, réinitialisé mozillia et dès que je me reconnecte à mozilla hop la fameuse page revient.
 Je te remercie beaucoup du mal que tu te donnes mais ma fois je ne sais plus quoi faire.

n°772147
Jypalou
Modérateur
Profil : Equipe sécurité
Posté le 18-08-2012 à 07:45:39  answer
Prévenir les modérateurs en cas d'abus
 

pepitochocolat:1 Bonjour,j'ai fait modifié le texte d'OTL,peut-être tu la fait avant la modif.relance OTL avec cette citation:
 



:processes
 explorer.exe
 iexplore.exe
 firefox.exe
 msnmsgr.exe
 Teatimer.exe

 :reg
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{28387537-e3f9-4ed7-860c-11e69af4a8a0}]
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{28387537-e3f9-4ed7-860c-11e69af4a8a0}]
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}]
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BE7A24F5-69CB-4708-B77B-B1EDA6043B95}]
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}]
 [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
 "ApnUpdater"=-
 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
 "DATAMNGR"=-

 :files
 c:\program files\imesh applications\mediabar\datamngr​\datamngrui.exe
 c:\program files\ask.com\updater\updater.​exe
 c:\program files\imesha~1\mediabar\datamn​gr\toolbar\wincoreimdtx.dll
 c:\program files\imesha~1\mediabar\datamn​gr\browse~1.dll
 c:\program files\ask.com\genericasktoolba​r.dll
 c:\program files\imesha~1\mediabar\datamn​gr\datamn~1.exe

 :otl
 PRC - C:\Program Files\iMesh Applications\MediaBar\Datamngr​\datamngrUI.exe (iMesh, Inc)
 PRC - C:\Program Files\Ask.com\Updater\Updater.​exe (Ask)
 [2012/08/16 13:58:10 | 000,000,000 | ---D | M] (Wincore Mediabar) -- C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}
 [2012/08/16 13:58:07 | 000,000,000 | ---D | M] (Wincore Mediabar) -- C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}
 [2012/08/16 13:58:05 | 000,000,000 | ---D | M] (Wincore Mediabar) -- C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}
 O2 - BHO: (Wincore Mediabar) - {28387537-e3f9-4ed7-860c-11e69​af4a8a0} - C:\PROGRA~1\IMESHA~1\MediaBar\​Datamngr\ToolBar\wincoreimdtx.​dll ()
 O2 - BHO: (DataMngr) - {BE7A24F5-69CB-4708-B77B-B1EDA​6043B95} - C:\PROGRA~1\IMESHA~1\MediaBar\​Datamngr\BROWSE~1.DLL (iMesh, Inc)
 O2 - BHO: (Avira SearchFree Toolbar plus Web Protection) - {D4027C7F-154A-4066-A1AD-4243D​8127440} - C:\Program Files\Ask.com\GenericAskToolba​r.dll (Ask)
 O3 - HKLM\..\Toolbar: (Wincore Mediabar) - {28387537-e3f9-4ed7-860c-11e69​af4a8a0} - C:\PROGRA~1\IMESHA~1\MediaBar\​Datamngr\ToolBar\wincoreimdtx.​dll ()
 O3 - HKLM\..\Toolbar: (Avira SearchFree Toolbar plus Web Protection) - {D4027C7F-154A-4066-A1AD-4243D​8127440} - C:\Program Files\Ask.com\GenericAskToolba​r.dll (Ask)
 O4 - HKLM\..\Run: [ApnUpdater] C:\Program Files\Ask.com\Updater\Updater.​exe (Ask)
 O4 - HKLM\..\Run: [DATAMNGR] C:\PROGRA~1\IMESHA~1\MediaBar\​Datamngr\DATAMN~1.EXE (iMesh, Inc)
 [2012/08/16 13:56:15 | 000,000,000 | ---D | C] -- C:\Program Files\iMesh Applications
 [2012/08/16 08:26:10 | 000,000,000 | ---D | C] -- C:\Program Files\Ask.com
 [2012/08/13 21:34:16 | 000,000,098 | ---- | M] () -- C:\user.js
 [2012/08/13 21:34:16 | 000,000,098 | ---- | C] () -- C:\user.js

 :Commands
 [clearallrestorepoints]
 [emptytemp]
 [start explorer]
 [reboot]
 



 A+ antef:4


---------------
jypalou:1
  Il vaut mieux aller plus loin avec quelqu'un que nulle part avec tout le monde
Je n'accepte aucune demande de nettoyage en message privé.
n°772148
gege083
Posté le 18-08-2012 à 09:51:11  answer
Prévenir les modérateurs en cas d'abus
 

voila le nouveau rapport et merci de persister

 All processes killed
 ========== PROCESSES ==========
 No active process named explorer.exe was found!
 No active process named iexplore.exe was found!
 No active process named firefox.exe was found!
 Process msnmsgr.exe killed successfully!
 No active process named Teatimer.exe was found!
 ========== REGISTRY ==========
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{28387537-e3f9-4ed​7-860c-11e69af4a8a0}\ not found.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{28387537-e3f9-4ed​7-860c-11e69af4a8a0}\ not found.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{28387537-e3f9-4ed​7-860c-11e69af4a8a0}\ not found.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{BE7A24F5-69CB-470​8-B77B-B1EDA6043B95}\ not found.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{BE7A24F5-69CB-470​8-B77B-B1EDA6043B95}\ not found.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{BE7A24F5-69CB-4708-B7​7B-B1EDA6043B95}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{BE7A24F5-69CB-470​8-B77B-B1EDA6043B95}\ not found.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{D4027C7F-154A-406​6-A1AD-4243D8127440}\ not found.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{D4027C7F-154A-406​6-A1AD-4243D8127440}\ not found.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1​AD-4243D8127440}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{D4027C7F-154A-406​6-A1AD-4243D8127440}\ not found.
 Registry value HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Run\\ApnUpdater not found.
 Registry value HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Run\\DATAMNGR not found.
 ========== FILES ==========
 File\Folder c:\program files\imesh applications\mediabar\datamngr​\datamngrui.exe not found.
 File\Folder c:\program files\ask.com\updater\updater.​exe not found.
 File\Folder c:\program files\imesha~1\mediabar\datamn​gr\toolbar\wincoreimdtx.dll not found.
 File\Folder c:\program files\imesha~1\mediabar\datamn​gr\browse~1.dll not found.
 File\Folder c:\program files\ask.com\genericasktoolba​r.dll not found.
 File\Folder c:\program files\imesha~1\mediabar\datamn​gr\datamn~1.exe not found.
 ========== OTL ==========
 No active process named datamngrUI.exe was found!
 No active process named Updater.exe was found!
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\components folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\s​earchbar folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\o​ptions folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\weatherbutton\panels\images​ folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\weatherbutton\panels folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\weatherbutton\icons folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\weatherbutton folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\uwa folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\radio\images folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\radio\css folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\radio folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\panels\images folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\panels\default\scripts folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\panels\default\images folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\panels\default\css folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\panels\default folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\panels\css folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\panels folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\conten​t\widgets\com.djboxservice.dj.​DJBox\thumbs folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\conten​t\widgets\com.djboxservice.dj.​DJBox folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\conten​t\widgets folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\conten​t\modules folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\conten​t\lib folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\conten​t\data\search folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\conten​t\data folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\conten​t folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0} folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\components folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\s​earchbar folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\o​ptions folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\weatherbutton\panels\images​ folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\weatherbutton\panels folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\weatherbutton\icons folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\weatherbutton folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\uwa folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\radio\images folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\radio\css folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\radio folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\panels\images folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\panels\default\scripts folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\panels\default\images folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\panels\default\css folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\panels\default folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\panels\css folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib\panels folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin\l​ib folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\skin folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\conten​t\widgets\com.djboxservice.dj.​DJBox\thumbs folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\conten​t\widgets\com.djboxservice.dj.​DJBox folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\conten​t\widgets folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\conten​t\modules folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\conten​t\lib folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\conten​t\data\search folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\conten​t\data folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome\conten​t folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\chrome folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0} folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\components folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\skin\searchbar folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\skin\options folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\skin\lib\weatherbutt​on\panels\images folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\skin\lib\weatherbutt​on\panels folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\skin\lib\weatherbutt​on\icons folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\skin\lib\weatherbutt​on folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\skin\lib\uwa folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\skin\lib\radio\image​s folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\skin\lib\radio\css folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\skin\lib\radio folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\skin\lib\panels\imag​es folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\skin\lib\panels\defa​ult\scripts folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\skin\lib\panels\defa​ult\images folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\skin\lib\panels\defa​ult\css folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\skin\lib\panels\defa​ult folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\skin\lib\panels\css folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\skin\lib\panels folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\skin\lib folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\skin folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\content\widgets\com.​djboxservice.dj.DJBox\thumbs folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\content\widgets\com.​djboxservice.dj.DJBox folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\content\widgets folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\content\modules folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\content\lib folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\content\data\search folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\content\data folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome\content folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0}\chrome folder moved successfully.
 C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions\{28387​537-e3f9-4ed7-860c-11e69af4a8a​0} folder moved successfully.
 Registry key HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{28387537-e3f9-4ed7-86​0c-11e69af4a8a0}\ not found.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{28387537-e3f9-4ed​7-860c-11e69af4a8a0}\ not found.
 File C:\PROGRA~1\IMESHA~1\MediaBar\​Datamngr\ToolBar\wincoreimdtx.​dll not found.
 Registry key HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{BE7A24F5-69CB-4708-B7​7B-B1EDA6043B95}\ not found.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{BE7A24F5-69CB-470​8-B77B-B1EDA6043B95}\ not found.
 File C:\PROGRA~1\IMESHA~1\MediaBar\​Datamngr\BROWSE~1.DLL not found.
 Registry key HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1​AD-4243D8127440}\ not found.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{D4027C7F-154A-406​6-A1AD-4243D8127440}\ not found.
 File C:\Program Files\Ask.com\GenericAskToolba​r.dll not found.
 Registry value HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Internet Explorer\Toolbar\\{28387537-e3f9-4ed7-860c-11e69af4a8a0} not found.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{28387537-e3f9-4ed​7-860c-11e69af4a8a0}\ not found.
 File C:\PROGRA~1\IMESHA~1\MediaBar\​Datamngr\ToolBar\wincoreimdtx.​dll not found.
 Registry value HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} not found.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{D4027C7F-154A-406​6-A1AD-4243D8127440}\ not found.
 File C:\Program Files\Ask.com\GenericAskToolba​r.dll not found.
 Registry key HKEY_LOCAL_MACHINE\\Software\M​icrosoft\Windows\CurrentVersio​n\Run not found.
 File C:\Program Files\Ask.com\Updater\Updater.​exe not found.
 Registry key HKEY_LOCAL_MACHINE\\Software\M​icrosoft\Windows\CurrentVersio​n\Run not found.
 File C:\PROGRA~1\IMESHA~1\MediaBar\​Datamngr\DATAMN~1.EXE not found.
 Folder C:\Program Files\iMesh Applications\ not found.
 Folder C:\Program Files\Ask.com\ not found.
 C:\user.js moved successfully.
 File C:\user.js not found.
 ========== COMMANDS ==========
 Restore point Set: OTL Restore Point
 
 [EMPTYTEMP]
 
 User: All Users
 
 User: Default
 ->Temp folder emptied: 0 bytes
 ->Temporary Internet Files folder emptied: 0 bytes
 
 User: Default User
 ->Temp folder emptied: 0 bytes
 ->Temporary Internet Files folder emptied: 0 bytes
 
 User: Public
 
 User: SylGé
 ->Temp folder emptied: 340200984 bytes
 ->Temporary Internet Files folder emptied: 98965582 bytes
 ->FireFox cache emptied: 336283594 bytes
 ->Google Chrome cache emptied: 6374811 bytes
 ->Flash cache emptied: 546 bytes
 
 %systemdrive% .tmp files removed: 0 bytes
 %systemroot% .tmp files removed: 0 bytes
 %systemroot%\System32 .tmp files removed: 0 bytes
 %systemroot%\System32\drivers .tmp files removed: 0 bytes
 Windows Temp folder emptied: 61741111 bytes
 RecycleBin emptied: 593975988 bytes
 
 Total Files Cleaned = 1 371,00 mb
 
 
 OTL by OldTimer - Version 3.2.57.0 log created on 08182012_094037

 Files\Folders moved on Reboot...

 PendingFileRenameOperations files...

 Registry entries deleted on Reboot...

n°772149
Jypalou
Modérateur
Profil : Equipe sécurité
Posté le 18-08-2012 à 09:58:55  answer
Prévenir les modérateurs en cas d'abus
 

pepitochocolat:1 Et claro toujours là?
 pepitochocolat:1


---------------
jypalou:1
  Il vaut mieux aller plus loin avec quelqu'un que nulle part avec tout le monde
Je n'accepte aucune demande de nettoyage en message privé.
n°772150
gege083
Posté le 18-08-2012 à 22:08:11  answer
Prévenir les modérateurs en cas d'abus
 

Je suis de retour et claro aussi est toujours là.
 C'est vraiment une grosse m....

n°772151
gege083
Posté le 18-08-2012 à 23:06:40  answer
Prévenir les modérateurs en cas d'abus
 

je suis désespéré je ne sais plus quoi faire. Je voudrais restaurer mon pc mais là encore je n'arrive pas à retrouver une date de restauration. Que faire je vais très certainement reformater mon pc

n°772152
danakil
Profil : Equipe sécurité
Posté le 18-08-2012 à 23:18:12  answer
Prévenir les modérateurs en cas d'abus
 

Salut!

 Avant que Jypalou ne repasse, effectue ceci :

 Relance OTL > Clic droit dessus > "Exécuter en tant qu'Administrateur".
 Dans l'interface d'OTL, vérifie que la case "Rapport minimal" soit bien cochée.
 Copie et colle le contenu de la citation ci-dessous dans la fenêtre "Personnalisation" :
 



 
 :otl
 IE - HKCU\..\SearchScopes\{0ECDF796​-C2DC-4d79-A620-CCE0C0A66CC9}:​ "URL" = http://isearch.claro-search.co [...] 2b34267ffa
 FF - prefs.js..browser.search.defau​ltenginename: "Claro Search"
 FF - prefs.js..browser.search.order​.1: "Claro Search"
 FF - prefs.js..browser.startup.home​page: "http://isearch.claro-search.com/?affID=115131&tt=120812_bandext_3312_7&babsrc=HP_iclro&mntrId=90a0f951000000000000902b34267ffa"

 :Commands
 [emptytemp]
 



 Clique sur le bouton "Correction".
 Poste ici le rapport que tu obtiendras.
 Précise également si 'Claro' t'embête toujours.


---------------
Une Idéfix? ... Etre et durer.
n°772153
gege083
Posté le 18-08-2012 à 23:33:51  answer
Prévenir les modérateurs en cas d'abus
 

voici le rapport
 La page du forum c'est ouverte dès que j'ai lancé mozilla et j'ose pas relancer de nouveau.

 All processes killed
 ========== OTL ==========
 Registry key HKEY_CURRENT_USER\SOFTWARE\Mic​rosoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ deleted successfully.
 Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Cl​asses\CLSID\{0ECDF796-C2DC-4d7​9-A620-CCE0C0A66CC9}\ not found.
 Prefs.js: "Claro Search" removed from browser.search.defaultenginena​me
 Prefs.js: "Claro Search" removed from browser.search.order.1
 Prefs.js: "http://isearch.claro-search.c​om/?affID=115131&tt=120812_ban​dext_3312_7&babsrc=HP_iclro&mn​trId=90a0f951000000000000902b3​4267ffa" removed from browser.startup.homepage
 ========== COMMANDS ==========
 
 [EMPTYTEMP]
 
 User: All Users
 
 User: Default
 ->Temp folder emptied: 0 bytes
 ->Temporary Internet Files folder emptied: 0 bytes
 
 User: Default User
 ->Temp folder emptied: 0 bytes
 ->Temporary Internet Files folder emptied: 0 bytes
 
 User: Public
 
 User: SylGé
 ->Temp folder emptied: 1141802 bytes
 ->Temporary Internet Files folder emptied: 16018209 bytes
 ->FireFox cache emptied: 40581610 bytes
 ->Google Chrome cache emptied: 0 bytes
 ->Flash cache emptied: 506 bytes
 
 %systemdrive% .tmp files removed: 0 bytes
 %systemroot% .tmp files removed: 0 bytes
 %systemroot%\System32 .tmp files removed: 0 bytes
 %systemroot%\System32\drivers .tmp files removed: 0 bytes
 Windows Temp folder emptied: 0 bytes
 RecycleBin emptied: 127409 bytes
 
 Total Files Cleaned = 55,00 mb
 
 
 OTL by OldTimer - Version 3.2.57.0 log created on 08182012_232833

 Files\Folders moved on Reboot...

 PendingFileRenameOperations files...

 Registry entries deleted on Reboot...

n°772154
gege083
Posté le 18-08-2012 à 23:35:38  answer
Prévenir les modérateurs en cas d'abus
 

je viens de relancer mozilla et ......claro est toujours là

n°772155
gege083
Posté le 18-08-2012 à 23:45:26  answer
Prévenir les modérateurs en cas d'abus
 

je viens une fois de plus de réinitialiser mozilla et dès que je relance mozilla claro s'ouvre avec comme moteur de recherche uniquement "search result"
 dites moi si je dois reformater mon pc et si ça changera quelque chose merci pour tout

n°772156
danakil
Profil : Equipe sécurité
Posté le 19-08-2012 à 00:33:57  answer
Prévenir les modérateurs en cas d'abus
 



je viens une fois de plus de réinitialiser mozilla ...




 Relance le script OTL donné plus haut et ne rénitialise pas FF dans la foulée.  ;)

 



Relance OTL > Clic droit dessus > "Exécuter en tant qu'Administrateur".
 Dans l'interface d'OTL, vérifie que la case "Rapport minimal" soit bien cochée.
 Copie et colle le contenu de la citation ci-dessous dans la fenêtre "Personnalisation" :
 



 
 HKLM\SOFTWARE\Microsoft\Intern​et Explorer\MAIN\FeatureControl|FEATURE_BROWSER_EMULATION /rs
 HKEY_USERS\.DEFAULT\Software\M​icrosoft\Internet Explorer\Main\FeatureControl|feature_enable_ie_compression /rs
 HKEY_USERS\S-1-5-18\Software\M​icrosoft\Internet Explorer\Main\FeatureControl|feature_enable_ie_compression /rs
 hklm\software\clients\startmen​uinternet|command /rs
 hklm\software\clients\startmen​uinternet|command /64 /rs
 HKLM\SOFTWARE\Microsoft\Window​s NT\CurrentVersion\Drivers /s
 HKLM\SOFTWARE\Microsoft\Window​s NT\CurrentVersion\Drivers32 /s
 HKLM\SOFTWARE\Microsoft\Window​s NT\CurrentVersion\drivers.desc /s
 %temp%\smtmp\1\*.* /s
 %temp%\smtmp\2\*.* /s
 %temp%\smtmp\4\*.* /s
 nslookup http://www.google.fr /c
 SAVEMBR:0
 NetSvcs
 %systemroot%\system32\drivers\​*.sys /lockedfiles
 msconfig
 safebootminimal
 safebootnetwork
 activex
 drivers32
 %APPDATA%\*.exe /s
 %SYSTEMDRIVE%\*.exe
 netsvcs
 /md5start
 dwm.exe
 taskhost.exe
 taskeng.exe
 wscntfy.exe
 ctfmon.exe
 rdpclip.exe
 volsnap.sys
 sptd.sys
 explorer.exe
 userinit.exe
 winlogon.exe
 wininit.exe
 tcpip.sys
 Sfloppy.sys
 Changer.sys
 cdrom.sys
 disk.sys
 ndis.sys
 usbscan.sys
 usbprint.sys
 tdtcp.sys
 tdpipe.sys
 swmidi.sys
 splitter.sys
 rdpwd.sys
 eventlog.dll
 scecli.dll
 netlogon.dll
 cngaudit.dll
 sceclt.dll
 ntelogon.dll
 logevent.dll
 RASACD.SYS
 iaStor.sys
 nvstor.sys
 atapi.sys
 IdeChnDr.sys
 viasraid.sys
 AGP440.sys
 vaxscsi.sys
 nvatabus.sys
 viamraid.sys
 nvata.sys
 nvgts.sys
 iastorv.sys
 ViPrt.sys
 eNetHook.dll
 ahcix86.sys
 KR10N.sys
 nvstor32.sys
 ahcix86s.sys
 nvrd32.sys
 /md5stop
 %systemroot%\*. /mp /s
 %systemroot%\system32\*.dll /lockedfiles
 %systemroot%\Tasks\*.job /lockedfiles
 createrestorepoint
 




 Clique sur le bouton "Annalyse".
 Poste ici le rapport que tu obtiendras.




---------------
Une Idéfix? ... Etre et durer.
n°772157
gege083
Posté le 19-08-2012 à 20:27:14  answer
Prévenir les modérateurs en cas d'abus
 


 

danakil a écrit :

 


 



 OTL logfile created on: 19/08/2012 20:14:27 - Run 2
 OTL by OldTimer - Version 3.2.57.0     Folder = C:\Users\SylGé\Downloads
 Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
 Internet Explorer (Version = 9.0.8112.16421)
 Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy
 
 3,25 Gb Total Physical Memory | 1,85 Gb Available Physical Memory | 56,95% Memory free
 6,50 Gb Paging File | 4,88 Gb Available in Paging File | 75,06% Paging File free
 Paging file location(s): ?:\pagefile.sys [binary data]
 
 %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
 Drive C: | 48,73 Gb Total Space | 24,42 Gb Free Space | 50,11% Space Free | Partition Type: NTFS
 Drive D: | 230,63 Gb Total Space | 228,84 Gb Free Space | 99,23% Space Free | Partition Type: NTFS
 Drive F: | 931,51 Gb Total Space | 716,20 Gb Free Space | 76,89% Space Free | Partition Type: NTFS
 
 Computer Name: SYLGÉ-PC | User Name: SylGé | Logged in as Administrator.
 Boot Mode: Normal | Scan Mode: Current user
 Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
 ========== Processes (SafeList) ==========
 
 PRC - C:\Users\SylGé\Downloads\OTL.e​xe (OldTimer Tools)
 PRC - C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE (Avira Operations GmbH & Co. KG)
 PRC - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
 PRC - C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
 PRC - C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
 PRC - C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (Avira Operations GmbH & Co. KG)
 PRC - C:\ProgramData\Browser Manager\2.2.565.25\{16cdff19-8​61d-48e3-a751-d99a27784753}\br​owsemngr.exe ()
 PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 PRC - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe​ (Adobe Systems Incorporated)
 PRC - C:\Users\SylGé\AppData\Roaming​\Microsoft\Outil de notification de cadeaux MSN\msnotif.exe (Microsoft Corporation)
 PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
 PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
 PRC - C:\Program Files\RIFT Technologies\InstallClick Connector\installclick-connect​or.exe ()
 PRC - C:\Program Files\RIFT Technologies\InstallClick Connector\installclick.exe ()
 PRC - C:\Program Files\Lavasoft\Ad-Aware\AAWSer​vice.exe (Lavasoft Limited)
 PRC - C:\Program Files\Lavasoft\Ad-Aware\AAWTra​y.exe (Lavasoft Limited)
 PRC - C:\Windows\System32\conhost.ex​e (Microsoft Corporation)
 PRC - C:\Windows\System32\atieclxx.e​xe (AMD)
 PRC - C:\Windows\System32\atiesrxx.e​xe (AMD)
 PRC - C:\Windows\explorer.exe (Microsoft Corporation)
 PRC - C:\Windows\System32\taskhost.e​xe (Microsoft Corporation)
 PRC - C:\Windows\System32\schtasks.e​xe (Microsoft Corporation)
 PRC - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE​ ()
 PRC - C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE (CANON INC.)
 PRC - C:\Program Files\Logitech\SetPoint\SetPoi​nt.exe (Logitech, Inc.)
 PRC - C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.​EXE (Logitech, Inc.)
 PRC - C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
 PRC - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (Nero AG)
 PRC - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe (Safer Networking Ltd.)
 PRC - C:\Program Files\Nokia\Nokia Software Launcher\NSLauncher.exe ()
 PRC - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
 PRC - C:\Program Files\Microsoft Money\System\mnyexpr.exe (Microsoft Corp.)
 
 
 ========== Modules (No Company Name) ==========
 
 MOD - c:\ProgramData\Browser Manager\2.2.565.25\{16cdff19-8​61d-48e3-a751-d99a27784753}\br​owsemngr.dll ()
 MOD - C:\ProgramData\Browser Manager\2.2.565.25\{16cdff19-8​61d-48e3-a751-d99a27784753}\br​owsemngr.exe ()
 MOD - C:\Program Files\Mozilla Firefox\mozjs.dll ()
 MOD - C:\Windows\assembly\NativeImag​es_v2.0.50727_32\WindowsFormsI​ntegra#\f2f8201dd3453250dfd9ed​1afce630a0\WindowsFormsIntegra​tion.ni.dll ()
 MOD - C:\Windows\assembly\NativeImag​es_v2.0.50727_32\PresentationF​ramewo#\8e56489276063ededde74e​597a121df3\PresentationFramewo​rk.Aero.ni.dll ()
 MOD - C:\Windows\assembly\NativeImag​es_v2.0.50727_32\UIAutomationP​rovider\ca2eff60beb3ba00a529a2​d42dceca22\UIAutomationProvide​r.ni.dll ()
 MOD - C:\Windows\assembly\NativeImag​es_v2.0.50727_32\PresentationF​ramewo#\e717a230496832656b05b5​15eb9f3bc5\PresentationFramewo​rk.ni.dll ()
 MOD - C:\Windows\assembly\NativeImag​es_v2.0.50727_32\PresentationC​ore\14a87218ea49639f38097e278b​98a3da\PresentationCore.ni.dll​ ()
 MOD - C:\Windows\assembly\NativeImag​es_v2.0.50727_32\WindowsBase\4​6fce56db7685a586d3eeb7c373e3c1​c\WindowsBase.ni.dll ()
 MOD - C:\Windows\assembly\NativeImag​es_v2.0.50727_32\System.Core\d​fd33f59a5803a3c73cf408362e6e0b​7\System.Core.ni.dll ()
 MOD - C:\Windows\assembly\NativeImag​es_v2.0.50727_32\System.Window​s.Forms\7b7fbe651c6e72f12099a2​98654c9594\System.Windows.Form​s.ni.dll ()
 MOD - C:\Windows\assembly\NativeImag​es_v2.0.50727_32\System.Drawin​g\6bb439b3f87736d3248ae27d43e2​c0d6\System.Drawing.ni.dll ()
 MOD - C:\Windows\assembly\NativeImag​es_v2.0.50727_32\System.Web\a5​01b7960f6c6e2e39162b83f3303aaa​\System.Web.ni.dll ()
 MOD - C:\Windows\assembly\NativeImag​es_v2.0.50727_32\System.Runtim​e.Remo#\03dee80574f4ec770b6f77​ca030ded6c\System.Runtime.Remo​ting.ni.dll ()
 MOD - C:\Windows\assembly\NativeImag​es_v2.0.50727_32\System.Xml\ba​3d70b651454c7d49b407b93663bfed​\System.Xml.ni.dll ()
 MOD - C:\Windows\assembly\NativeImag​es_v2.0.50727_32\System.Config​uration\cfa9c506bfb9254c89dace​7b83bc9f9d\System.Configuratio​n.ni.dll ()
 MOD - C:\Windows\assembly\NativeImag​es_v2.0.50727_32\System\ce9ff6​baf9053ed2ed673d948179195c\Sys​tem.ni.dll ()
 MOD - C:\Windows\assembly\NativeImag​es_v2.0.50727_32\mscorlib\acfc​1391e45fedd2a359778ea57d914c\m​scorlib.ni.dll ()
 MOD - C:\Windows\assembly\GAC_MSIL\P​resentationFramework.resources​\3.0.0.0_fr_31bf3856ad364e35\P​resentationFramework.resources​.dll ()
 MOD - C:\Windows\assembly\GAC_MSIL\S​ystem.resources\2.0.0.0_fr_b77​a5c561934e089\System.resources​.dll ()
 MOD - C:\Program Files\ATI Technologies\ATI.ACE\Core-Stat​ic\CLI.Aspect.CrossDisplay.Gra​phics.Dashboard.dll ()
 MOD - C:\Windows\assembly\GAC_MSIL\S​ystem.Windows.Forms.resources\​2.0.0.0_fr_b77a5c561934e089\Sy​stem.Windows.Forms.resources.d​ll ()
 MOD - C:\Windows\assembly\GAC_MSIL\m​scorlib.resources\2.0.0.0_fr_b​77a5c561934e089\mscorlib.resou​rces.dll ()
 MOD - C:\Program Files\Logitech\SetPoint\khalwr​apper.dll ()
 MOD - C:\Program Files\Nokia\Nokia Software Launcher\NSLauncher.exe ()
 
 
 ========== Win32 Services (SafeList) ==========
 
 SRV - (SBSDWSCService) -- C:\Program Files\Spybot File not found
 SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\F​lash\FlashPlayerUpdateService.​exe (Adobe Systems Incorporated)
 SRV - (AntiVirWebService) -- C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE (Avira Operations GmbH & Co. KG)
 SRV - (AntiVirService) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG)
 SRV - (AntiVirSchedulerService) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG)
 SRV - (Browser Manager) -- C:\ProgramData\Browser Manager\2.2.565.25\{16cdff19-8​61d-48e3-a751-d99a27784753}\br​owsemngr.exe ()
 SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe​ (Mozilla Foundation)
 SRV - (AdobeARMservice) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe​ (Adobe Systems Incorporated)
 SRV - (MBAMService) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
 SRV - (WatAdminSvc) -- C:\Windows\System32\Wat\WatAdm​inSvc.exe (Microsoft Corporation)
 SRV - (InstallClick) -- C:\Program Files\RIFT Technologies\InstallClick Connector\installclick.exe ()
 SRV - (Lavasoft Ad-Aware Service) -- C:\Program Files\Lavasoft\Ad-Aware\AAWSer​vice.exe (Lavasoft Limited)
 SRV - (AMD External Events Utility) -- C:\Windows\System32\atiesrxx.e​xe (AMD)
 SRV - (IJPLMSVC) -- C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE​ ()
 SRV - (LBTServ) -- C:\Program Files\Common Files\logishrd\Bluetooth\LBTSe​rv.exe (Logitech, Inc.)
 SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.d​ll (Microsoft Corporation)
 SRV - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
 SRV - (Nero BackItUp Scheduler 4.0) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (Nero AG)
 SRV - (ServiceLayer) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
 
 
 ========== Driver Services (SafeList) ==========
 
 DRV - (gdrv) -- C:\Windows\gdrv.sys File not found
 DRV - (avipbb) -- C:\Windows\System32\drivers\av​ipbb.sys (Avira GmbH)
 DRV - (avgntflt) -- C:\Windows\System32\drivers\av​gntflt.sys (Avira GmbH)
 DRV - (MBAMProtector) -- C:\Windows\System32\drivers\mb​am.sys (Malwarebytes Corporation)
 DRV - (avkmgr) -- C:\Windows\System32\drivers\av​kmgr.sys (Avira GmbH)
 DRV - (Lbd) -- C:\Windows\System32\drivers\Lb​d.sys (Lavasoft AB)
 DRV - (Lavasoft Kernexplorer) -- C:\Program Files\Lavasoft\Ad-Aware\KernEx​plorer.sys ()
 DRV - (L1C) -- C:\Windows\System32\drivers\L1​C62x86.sys (Atheros Communications, Inc.)
 DRV - (amdkmdag) -- C:\Windows\System32\drivers\at​ikmdag.sys (ATI Technologies Inc.)
 DRV - (amdkmdap) -- C:\Windows\System32\drivers\at​ikmpag.sys (Advanced Micro Devices, Inc.)
 DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\Ts​UsbFlt.sys (Microsoft Corporation)
 DRV - (TsUsbGD) -- C:\Windows\System32\drivers\Ts​UsbGD.sys (Microsoft Corporation)
 DRV - (AtiHDAudioService) -- C:\Windows\System32\drivers\At​ihdW73.sys (Advanced Micro Devices)
 DRV - (ssmdrv) -- C:\Windows\System32\drivers\ss​mdrv.sys (Avira GmbH)
 DRV - (LVUVC) -- C:\Windows\System32\drivers\lv​uvc.sys (Logitech Inc.)
 DRV - (Serial) -- C:\Windows\System32\drivers\se​rial.sys (Brother Industries Ltd.)
 DRV - (LMouFilt) -- C:\Windows\System32\drivers\LM​ouFilt.Sys (Logitech, Inc.)
 DRV - (LHidFilt) -- C:\Windows\System32\drivers\LH​idFilt.Sys (Logitech, Inc.)
 DRV - (nmwcd) -- C:\Windows\System32\drivers\nm​wcd.sys (Nokia)
 DRV - (nmwcdcm) -- C:\Windows\System32\drivers\nm​wcdcm.sys (Nokia)
 DRV - (nmwcdcj) -- C:\Windows\System32\drivers\nm​wcdcj.sys (Nokia)
 DRV - (nmwcdc) -- C:\Windows\System32\drivers\nm​wcdc.sys (Nokia)
 
 
 ========== Standard Registry (SafeList) ==========
 
 
 ========== Internet Explorer ==========
 
 IE - HKLM\..\SearchScopes,DefaultSc​ope = {9BB47C17-9C68-4BB3-B188-DD9AF​0FD21}
 IE - HKLM\..\SearchScopes\{0633EE93​-D776-472f-A0FF-E1416B8B2E3A}:​ "URL" = http://www.bing.com/search?q={ [...] ORM=IE8SRC
 IE - HKLM\..\SearchScopes\{6A1806CD​-94D4-4689-BA73-E35EA1EA9990}:​ "URL" = http://www.google.com/search?q [...] urceid=ie7
 IE - HKLM\..\SearchScopes\{9BB47C17​-9C68-4BB3-B188-DD9AF0FD21}: "URL" = http://dts.search-results.com/ [...] archTerms}
 
 IE - HKCU\SOFTWARE\Microsoft\Intern​et Explorer\Main,BrowserMngr Start Page = http://www.sfr.fr/portail.html
 IE - HKCU\SOFTWARE\Microsoft\Intern​et Explorer\Main,Start Page = http://www.sfr.fr/portail.html
 IE - HKCU\SOFTWARE\Microsoft\Intern​et Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp
 IE - HKCU\SOFTWARE\Microsoft\Intern​et Explorer\Main,Start Page Redirect Cache AcceptLangs = fr-FR
 IE - HKCU\SOFTWARE\Microsoft\Intern​et Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 85 B0 08 C7 CA 4F CD 01  [binary data]
 IE - HKCU\..\SearchScopes,BrowserMn​grDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C​0A66CC9}
 IE - HKCU\..\SearchScopes,DefaultSc​ope = {0ECDF796-C2DC-4d79-A620-CCE0C​0A66CC9}
 IE - HKCU\..\SearchScopes\{0633EE93​-D776-472f-A0FF-E1416B8B2E3A}:​ "URL" = http://www.bing.com/search?q={ [...] ORM=IE8SRC
 IE - HKCU\..\SearchScopes\{0ECDF796​-C2DC-4d79-A620-CCE0C0A66CC9}:​ "URL" = http://isearch.claro-search.co [...] 2b34267ffa
 IE - HKCU\..\SearchScopes\{6A1806CD​-94D4-4689-BA73-E35EA1EA9990}:​ "URL" = http://www.google.com/search?q [...] 7&rlz=
 IE - HKCU\..\SearchScopes\{9BB47C17​-9C68-4BB3-B188-DD9AF0FD21}: "URL" = http://dts.search-results.com/ [...] archTerms}
 IE - HKCU\..\SearchScopes\{9D5BD211​-422C-4164-9298-BB4186A30F31}:​ "URL" = http://www.bing.com/search?q={ [...] orm=IE0004
 IE - HKCU\Software\Microsoft\Window​s\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 IE - HKCU\Software\Microsoft\Window​s\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
 ========== FireFox ==========
 
 FF - prefs.js..browser.search.defau​ltengine: "Ask.com"
 FF - prefs.js..browser.search.defau​ltenginename: "Claro Search"
 FF - prefs.js..browser.search.order​.1: "Claro Search"
 FF - prefs.js..browser.search.selec​tedEngine: "Wikipédia (fr)"
 FF - prefs.js..browser.search.useDB​ForOrder: true
 FF - prefs.js..browser.startup.home​page: "http://isearch.claro-search.com/?affID=115131&tt=120812_bandext_3312_7&babsrc=HP_iclro&mntrId=90a0f951000000000000902b34267ffa"
 FF - user.js - File not found
 
 FF - HKLM\Software\MozillaPlugins\@​adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll ()
 FF - HKLM\Software\MozillaPlugins\@​microsoft.com/GENUINE: disabled File not found
 FF - HKLM\Software\MozillaPlugins\@​Microsoft.com/NpCtrl,version=1​.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl​.dll ( Microsoft Corporation)
 FF - HKLM\Software\MozillaPlugins\@​videolan.org/vlc,version=2.0.1​: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
 FF - HKLM\Software\MozillaPlugins\A​dobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
 FF - HKEY_LOCAL_MACHINE\software\mo​zilla\Mozilla Firefox 14.0.1\extensions\\Components:​ C:\Program Files\Mozilla Firefox\components [2012/08/18 22:58:20 | 000,000,000 | ---D | M]
 FF - HKEY_LOCAL_MACHINE\software\mo​zilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
 FF - HKEY_CURRENT_USER\software\moz​illa\Firefox\Extensions\\{b649​82b1-d112-42b5-b1e4-d3867c4533​f8}: C:\ProgramData\Browser Manager\2.2.565.25\{16cdff19-8​61d-48e3-a751-d99a27784753}\Fi​refoxExtension [2012/08/13 21:34:23 | 000,000,000 | ---D | M]
 FF - HKEY_CURRENT_USER\software\moz​illa\Mozilla Firefox 14.0.1\extensions\\Components:​ C:\Program Files\Mozilla Firefox\components [2012/08/18 22:58:20 | 000,000,000 | ---D | M]
 FF - HKEY_CURRENT_USER\software\moz​illa\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
 
 [2012/08/16 13:58:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\SylGé\AppData\Roaming​\mozilla\Extensions
 [2012/08/18 09:40:41 | 000,000,000 | ---D | M] (No name found) -- C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\43ig​6c0r.default-1345065729182\Ext​ensions
 [2012/08/19 09:22:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\4t95​bael.default-1345325949597\Ext​ensions
 [2012/08/18 09:40:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\88g3​b0lj.default-1345020158380\Ext​ensions
 [2012/08/19 18:42:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\dn42​dapd.default-1345361823962\Ext​ensions
 [2012/08/18 09:40:47 | 000,000,000 | ---D | M] (No name found) -- C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ie2f​xgk7.default\extensions
 [2012/08/17 22:49:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\ptul​xerq.default-1345213979753\Ext​ensions
 [2012/08/18 23:22:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\SylGé\AppData\Roaming​\mozilla\Firefox\Profiles\vz4p​pu74.default-1345324822531\Ext​ensions
 [2012/08/18 22:34:52 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions
 [2012/08/13 21:34:23 | 000,000,000 | ---D | M] (Browser Manager) -- C:\PROGRAMDATA\BROWSER MANAGER\2.2.565.25\{16CDFF19-8​61D-48E3-A751-D99A27784753}\FI​REFOXEXTENSION
 [2012/07/28 22:57:16 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomp​s.dll
 [2012/08/16 13:57:39 | 000,002,515 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\Search_R​esults.xml
 
 ========== Chrome  ==========
 
 CHR - homepage:
 CHR - homepage:
 CHR - Extension: No name found = C:\Users\SylGé\AppData\Local\G​oogle\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2_0\
 CHR - Extension: No name found = C:\Users\SylGé\AppData\Local\G​oogle\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.14_0\
 CHR - Extension: No name found = C:\Users\SylGé\AppData\Local\G​oogle\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\6.1.3_0\
 
 O1 HOSTS File: ([2009/06/10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\et​c\hosts
 O2 - BHO: (no name) - {28387537-e3f9-4ed7-860c-11e69​af4a8a0} - No CLSID value found.
 O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7​942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
 O2 - BHO: (no name) - {BE7A24F5-69CB-4708-B77B-B1EDA​6043B95} - No CLSID value found.
 O2 - BHO: (no name) - {D4027C7F-154A-4066-A1AD-4243D​8127440} - No CLSID value found.
 O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6​AD74ACC} - No CLSID value found.
 O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
 O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
 O4 - HKLM..\Run: [CanonSolutionMenuEx] C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE (CANON INC.)
 O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech, Inc.)
 O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
 O4 - HKLM..\Run: [NSLauncher] C:\Program Files\Nokia\Nokia Software Launcher\NSLauncher.exe ()
 O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Stat​ic\CLIStart.exe (Advanced Micro Devices, Inc.)
 O4 - HKCU..\Run: [MoneyAgent] C:\Program Files\Microsoft Money\System\mnyexpr.exe (Microsoft Corp.)
 O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
 O4 - Startup: C:\Users\SylGé\AppData\Roaming​\Microsoft\Windows\Start Menu\Programs\Startup\Outil de notification de cadeaux MSN.lnk = C:\Users\SylGé\AppData\Roaming​\Microsoft\Outil de notification de cadeaux MSN\msnotif.exe (Microsoft Corporation)
 O6 - HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Syst​em: ConsentPromptBehaviorAdmin = 5
 O6 - HKLM\SOFTWARE\Microsoft\Window​s\CurrentVersion\policies\Syst​em: ConsentPromptBehaviorUser = 3
 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Off​ice12\EXCEL.EXE/3000 File not found
 O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C5​71A8263} - C:\PROGRA~1\MICROS~4\Office12\​REFIEBAR.DLL (Microsoft Corporation)
 O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB​36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
 O10 - NameSpace_Catalog5\Catalog_Ent​ries\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
 O10 - Protocol_Catalog9\Catalog_Entr​ies\000000000001 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
 O10 - Protocol_Catalog9\Catalog_Entr​ies\000000000002 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
 O10 - Protocol_Catalog9\Catalog_Entr​ies\000000000003 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
 O10 - Protocol_Catalog9\Catalog_Entr​ies\000000000004 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
 O10 - Protocol_Catalog9\Catalog_Entr​ies\000000000005 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
 O10 - Protocol_Catalog9\Catalog_Entr​ies\000000000006 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
 O10 - Protocol_Catalog9\Catalog_Entr​ies\000000000007 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
 O10 - Protocol_Catalog9\Catalog_Entr​ies\000000000008 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
 O10 - Protocol_Catalog9\Catalog_Entr​ies\000000000027 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira Operations GmbH & Co. KG)
 O13 - gopher Prefix: missing
 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-44455​3540000} http://fpdownload2.macromedia. [...] wflash.cab (Shockwave Flash Object)
 O17 - HKLM\System\CCS\Services\Tcpip​\Parameters: DhcpNameServer = 192.168.1.1
 O17 - HKLM\System\CCS\Services\Tcpip​\Parameters\Interfaces\{A89A28​7F-3F54-4E61-9F99-2AFB40189E0F​}: DhcpNameServer = 192.168.1.1
 O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D​022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\​OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
 O20 - AppInit_DLLs: (c:\progra~2\browse~1\22565~1.​25\{16cdf~1\browse~1.dll) - c:\ProgramData\Browser Manager\2.2.565.25\{16cdff19-8​61d-48e3-a751-d99a27784753}\br​owsemngr.dll ()
 O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
 O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.​exe) - C:\Windows\System32\userinit.e​xe (Microsoft Corporation)
 O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.e​xe) - C:\Windows\System32\SystemProp​ertiesPerformance.exe (Microsoft Corporation)
 O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
 O20 - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWl​gn.dll) - c:\program files\common files\logishrd\bluetooth\LBTWl​gn.dll (Logitech, Inc.)
 O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA0​05127ED} - No CLSID value found.
 O32 - HKLM CDRom: AutoRun - 1
 O32 - AutoRun File - [2009/06/10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
 O32 - Unable to obtain root file information for disk F:\
 O34 - HKLM BootExecute: (autocheck autochk *)
 O34 - HKLM BootExecute: (lsdelete)
 O35 - HKLM\..comfile [open] -- "%1" %*
 O35 - HKLM\..exefile [open] -- "%1" %*
 O37 - HKLM\...com [@ = comfile] -- "%1" %*
 O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDl​lInitialization,3)
 O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDll​Initialization,2)
 O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
 Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.a​cm (Fraunhofer Institut Integrierte Schaltungen IIS)
 Drivers32: MSVideo - C:\Windows\System32\vfwwdm32.d​ll (Microsoft Corporation)
 Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.d​ll (Microsoft Corporation)
 Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll​ (Radius Inc.)
 Drivers32: vidc.i420 - C:\Windows\System32\lvcodec2.d​ll (Logitech Inc.)
 PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
 
 NetSvcs: FastUserSwitchingCompatibility​ -  File not found
 NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
 NetSvcs: Nla -  File not found
 NetSvcs: Ntmssvc -  File not found
 NetSvcs: NWCWorkstation -  File not found
 NetSvcs: Nwsapagent -  File not found
 NetSvcs: SRService -  File not found
 NetSvcs: WmdmPmSp -  File not found
 NetSvcs: LogonHours -  File not found
 NetSvcs: PCAudit -  File not found
 NetSvcs: helpsvc -  File not found
 NetSvcs: uploadmgr -  File not found
 
 
 SafeBootMin: AppMgmt - Service
 SafeBootMin: Base - Driver Group
 SafeBootMin: Boot Bus Extender - Driver Group
 SafeBootMin: Boot file system - Driver Group
 SafeBootMin: File system - Driver Group
 SafeBootMin: Filter - Driver Group
 SafeBootMin: HelpSvc - Service
 SafeBootMin: Lavasoft Ad-Aware Service - C:\Program Files\Lavasoft\Ad-Aware\AAWSer​vice.exe (Lavasoft Limited)
 SafeBootMin: NTDS -  File not found
 SafeBootMin: PCI Configuration - Driver Group
 SafeBootMin: PNP Filter - Driver Group
 SafeBootMin: Primary disk - Driver Group
 SafeBootMin: sacsvr - Service
 SafeBootMin: SCSI Class - Driver Group
 SafeBootMin: System Bus Extender - Driver Group
 SafeBootMin: vmms - Service
 SafeBootMin: WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
 SafeBootMin: {36FC9E60-C465-11CF-8056-44455​3540000} - Universal Serial Bus controllers
 SafeBootMin: {4D36E965-E325-11CE-BFC1-08002​BE10318} - CD-ROM Drive
 SafeBootMin: {4D36E967-E325-11CE-BFC1-08002​BE10318} - DiskDrive
 SafeBootMin: {4D36E969-E325-11CE-BFC1-08002​BE10318} - Standard floppy disk controller
 SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002​BE10318} - Hdc
 SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002​BE10318} - Keyboard
 SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002​BE10318} - Mouse
 SafeBootMin: {4D36E977-E325-11CE-BFC1-08002​BE10318} - PCMCIA Adapters
 SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002​BE10318} - SCSIAdapter
 SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002​BE10318} - System
 SafeBootMin: {4D36E980-E325-11CE-BFC1-08002​BE10318} - Floppy disk drive
 SafeBootMin: {533C5B84-EC70-11D2-9505-00C04​F79DEAF} - Volume shadow copy
 SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002​BE2092F} - IEEE 1394 Bus host controllers
 SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002​BE2092F} - Volume
 SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C​90F57DA} - Human Interface Devices
 SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04​FA372A7} - SBP2 IEEE 1394 Devices
 SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7​D41B0E6} - SecurityDevices
 
 SafeBootNet: AppMgmt - Service
 SafeBootNet: Base - Driver Group
 SafeBootNet: Boot Bus Extender - Driver Group
 SafeBootNet: Boot file system - Driver Group
 SafeBootNet: File system - Driver Group
 SafeBootNet: Filter - Driver Group
 SafeBootNet: HelpSvc - Service
 SafeBootNet: Lavasoft Ad-Aware Service - C:\Program Files\Lavasoft\Ad-Aware\AAWSer​vice.exe (Lavasoft Limited)
 SafeBootNet: Messenger - Service
 SafeBootNet: NDIS Wrapper - Driver Group
 SafeBootNet: NetBIOSGroup - Driver Group
 SafeBootNet: NetDDEGroup - Driver Group
 SafeBootNet: Network - Driver Group
 SafeBootNet: NetworkProvider - Driver Group
 SafeBootNet: NTDS -  File not found
 SafeBootNet: PCI Configuration - Driver Group
 SafeBootNet: PNP Filter - Driver Group
 SafeBootNet: PNP_TDI - Driver Group
 SafeBootNet: Primary disk - Driver Group
 SafeBootNet: rdsessmgr - Service
 SafeBootNet: sacsvr - Service
 SafeBootNet: SCSI Class - Driver Group
 SafeBootNet: Streams Drivers - Driver Group
 SafeBootNet: System Bus Extender - Driver Group
 SafeBootNet: TDI - Driver Group
 SafeBootNet: vmms - Service
 SafeBootNet: WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
 SafeBootNet: WudfUsbccidDriver - Driver
 SafeBootNet: {36FC9E60-C465-11CF-8056-44455​3540000} - Universal Serial Bus controllers
 SafeBootNet: {4D36E965-E325-11CE-BFC1-08002​BE10318} - CD-ROM Drive
 SafeBootNet: {4D36E967-E325-11CE-BFC1-08002​BE10318} - DiskDrive
 SafeBootNet: {4D36E969-E325-11CE-BFC1-08002​BE10318} - Standard floppy disk controller
 SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002​BE10318} - Hdc
 SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002​BE10318} - Keyboard
 SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002​BE10318} - Mouse
 SafeBootNet: {4D36E972-E325-11CE-BFC1-08002​BE10318} - Net
 SafeBootNet: {4D36E973-E325-11CE-BFC1-08002​BE10318} - NetClient
 SafeBootNet: {4D36E974-E325-11CE-BFC1-08002​BE10318} - NetService
 SafeBootNet: {4D36E975-E325-11CE-BFC1-08002​BE10318} - NetTrans
 SafeBootNet: {4D36E977-E325-11CE-BFC1-08002​BE10318} - PCMCIA Adapters
 SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002​BE10318} - SCSIAdapter
 SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002​BE10318} - System
 SafeBootNet: {4D36E980-E325-11CE-BFC1-08002​BE10318} - Floppy disk drive
 SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F​805F530} - Smart card readers
 SafeBootNet: {533C5B84-EC70-11D2-9505-00C04​F79DEAF} - Volume shadow copy
 SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002​BE2092F} - IEEE 1394 Bus host controllers
 SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002​BE2092F} - Volume
 SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C​90F57DA} - Human Interface Devices
 SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04​FA372A7} - SBP2 IEEE 1394 Devices
 SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7​D41B0E6} - SecurityDevices
 
 ActiveX: {22d6f312-b0f6-11d0-94ab-0080c​74c7e95} - Microsoft Windows Media Player 12.0
 ActiveX: {2C7339CF-2B09-4501-B3F3-F3508​C9228ED} - %SystemRoot%\system32\regsvr32​.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.​dll
 ActiveX: {3af36230-a269-11d1-b5bf-0000f​8051515} - Offline Browsing Pack
 ActiveX: {3C3901C5-3455-3E0A-A214-0B093​A5070A6} - .NET Framework
 ActiveX: {44BBA840-CC51-11CF-AAFA-00AA0​0B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
 ActiveX: {44BBA855-CC51-11CF-AAFA-00AA0​0B6015F} - DirectDrawEx
 ActiveX: {45ea75a0-a269-11d1-b5bf-0000f​8051515} - Internet Explorer Help
 ActiveX: {4f645220-306d-11d2-995d-00c04​f98bbc9} - Microsoft Windows Script 5.6
 ActiveX: {5fd399c0-a70a-11d1-9948-00c04​f98bbc9} - Internet Explorer Setup Tools
 ActiveX: {630b1da0-b465-11d1-9948-00c04​f98bbc9} - Browsing Enhancements
 ActiveX: {6BF52A52-394A-11d3-B153-00C04​F79FAA6} - Microsoft Windows Media Player
 ActiveX: {6fab99d0-bab8-11d1-994a-00c04​f98bbc9} - MSN Site Access
 ActiveX: {7790769C-0471-11d2-AF11-00C04​FA35D02} - Address Book 7
 ActiveX: {7C028AF8-F614-47B3-82DA-BA94E​41B1089} - .NET Framework
 ActiveX: {89820200-ECBD-11cf-8B85-00AA0​05B4340} - regsvr32.exe /s /n /i:U shell32.dll
 ActiveX: {89820200-ECBD-11cf-8B85-00AA0​05B4383} - C:\Windows\System32\ie4uinit.e​xe -BaseSettings
 ActiveX: {89B4C1CD-B018-4511-B0A1-5476D​BF70820} - C:\Windows\system32\Rundll32.e​xe C:\Windows\system32\mscories.dll,Install
 ActiveX: {9381D8F2-0288-11D0-9501-00AA0​0B911A5} - Dynamic HTML Data Binding
 ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789​CFEFCDD} - .NET Framework
 ActiveX: {C9E9A340-D1F1-11D0-821E-44455​3540600} - Internet Explorer Core Fonts
 ActiveX: {de5aed00-a4bf-11d1-9948-00c04​f98bbc9} - HTML Help
 ActiveX: {E92B03AB-B707-11d2-9CBD-0000F​87A369E} - Active Directory Service Interface
 ActiveX: >{22d6f312-b0f6-11d0-94ab-0080​c74c7e95} - %SystemRoot%\system32\unregmp2​.exe /ShowWMP
 ActiveX: >{26923b43-4d38-484f-9b9e-de46​0746276c} - C:\Windows\System32\ie4uinit.e​xe -UserIconConfig
 ActiveX: >{60B49E34-C7CC-11D0-8953-00A0​C90347FF} - "C:\Windows\System32\rundll32.​exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
 
 Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.a​cm (Fraunhofer Institut Integrierte Schaltungen IIS)
 Drivers32: MSVideo - C:\Windows\System32\vfwwdm32.d​ll (Microsoft Corporation)
 Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.d​ll (Microsoft Corporation)
 Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll​ (Radius Inc.)
 Drivers32: vidc.i420 - C:\Windows\System32\lvcodec2.d​ll (Logitech Inc.)
 
 CREATERESTOREPOINT
 Restore point Set: OTL Restore Point
 
 ========== Files/Folders - Created Within 30 Days ==========
 
 [2012/08/19 11:02:02 | 000,000,000 | ---D | C] -- C:\Users\SylGé\AppData\Local\{​FF65C3C5-FD1A-478E-AB8C-3149B6​B7D211}
 [2012/08/18 23:01:19 | 000,000,000 | ---D | C] -- C:\Users\SylGé\AppData\Local\{​EA58E3AD-B65E-49F0-8A9C-FC02C9​999D82}
 [2012/08/18 23:01:07 | 000,000,000 | ---D | C] -- C:\Users\SylGé\AppData\Local\{​CDF46F1A-D3C6-4DE8-A0D6-F497C1​8A8D8B}
 [2012/08/18 22:09:52 | 000,000,000 | ---D | C] -- C:\Users\SylGé\AppData\Local\{​31C11C56-BAD9-4C34-B3CB-A0F3CA​259555}
 [2012/08/18 10:09:23 | 000,000,000 | ---D | C] -- C:\Users\SylGé\AppData\Local\{​7B8F9859-6F0F-4964-9924-423408​FF53C9}
 [2012/08/18 10:09:12 | 000,000,000 | ---D | C] -- C:\Users\SylGé\AppData\Local\{​BBB0F9B1-875D-4F0B-8BD7-7BF483​B8972D}
 [2012/08/17 22:47:43 | 000,000,000 | ---D | C] -- C:\_OTL
 [2012/08/17 22:08:45 | 000,000,000 | ---D | C] -- C:\Users\SylGé\AppData\Local\{​E52C79D6-F6AA-4EED-B3E1-5A8ABD​BB6884}
 [2012/08/17 22:08:34 | 000,000,000 | ---D | C] -- C:\Users\SylGé\AppData\Local\{​524E631F-D8E9-48B0-BD76-7F82B5​DD19FA}
 [2012/08/17 10:08:08 | 000,000,000 | ---D | C] -- C:\Users\SylGé\AppData\Local\{​2A02155C-B5C0-4EA4-A39F-802444​EA8CA7}
 [2012/08/16 22:07:43 | 000,000,000 | ---D | C] -- C:\Users\SylGé\AppData\Local\{​0F1FD12A-908E-412E-86E9-81B2BB​F14943}
 [2012/08/16 22:07:31 | 000,000,000 | ---D | C] -- C:\Users\SylGé\AppData\Local\{​92E99B13-9342-4862-B989-52C46C​AEF637}
 [2012/08/16 21:41:17 | 000,000,000 | ---D | C] -- C:\ProgramData\boost_interproc​ess
 [2012/08/16 20:22:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windo​ws\Start Menu\Programs\ZHP
 [2012/08/16 20:22:03 | 000,000,000 | ---D | C] -- C:\Program Files\ZHPDiag
 [2012/08/16 20:22:03 | 000,000,000 | ---D | C] -- C:\ZHP
 [2012/08/16 13:57:37 | 000,000,000 | ---D | C] -- C:\Users\SylGé\AppData\Roaming​\MusicNet
 [2012/08/16 13:57:27 | 000,000,000 | ---D | C] -- C:\Users\SylGé\Documents\My Received Files
 [2012/08/16 13:55:40 | 000,000,000 | ---D | C] -- C:\Users\SylGé\AppData\Local\P​ackageAware
 [2012/08/16 09:02:08 | 000,000,000 | ---D | C] -- C:\Users\SylGé\AppData\Roaming​\Malwarebytes
 [2012/08/16 09:02:05 | 000,022,344 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mb​am.sys
 [2012/08/16 09:02:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windo​ws\Start Menu\Programs\Malwarebytes' Anti-Malware
 [2012/08/16 09:02:05 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
 [2012/08/16 09:02:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
 [2012/08/16 08:26:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windo​ws\Start Menu\Programs\Avira
 [2012/08/15 11:24:34 | 000,000,000 | ---D | C] -- C:\Users\SylGé\DoctorWeb
 [2012/08/15 10:31:09 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb​
 [2012/08/15 10:31:08 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
 [2012/08/15 10:31:08 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.ex​e
 [2012/08/15 10:31:07 | 001,800,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.d​ll
 [2012/08/15 10:31:07 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
 [2012/08/15 10:31:07 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dl​l
 [2012/08/15 10:31:06 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cp​l
 [2012/08/15 10:11:27 | 002,345,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys​
 [2012/08/15 10:11:27 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll​
 [2012/08/15 10:11:25 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browcli.dl​l
 [2012/08/13 21:34:29 | 000,000,000 | ---D | C] -- C:\Users\SylGé\Start Menu
 [2012/08/13 21:34:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Browser Manager
 [2012/08/12 22:15:40 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
 [2012/08/12 22:15:32 | 000,000,000 | ---D | C] -- C:\Program Files\AoA Audio Extractor
 [2012/08/12 18:11:29 | 000,000,000 | ---D | C] -- C:\Users\SylGé\AppData\Roaming​\Apple Computer
 [2012/08/12 18:11:29 | 000,000,000 | ---D | C] -- C:\Users\SylGé\AppData\Local\A​pple Computer
 [2012/08/12 18:11:02 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
 [2012/08/12 18:11:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
 [2012/08/12 18:11:02 | 000,000,000 | ---D | C] -- C:\ProgramData\{429CAD59-35B1-​4DBC-BB6D-1DB246563521}
 [2012/08/12 18:10:25 | 000,000,000 | ---D | C] -- C:\Users\SylGé\AppData\Local\A​pple
 [2012/08/12 18:10:24 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
 [2012/08/12 18:10:08 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
 [2012/08/12 18:10:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
 [2012/08/12 18:10:02 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
 [2012/08/11 16:35:49 | 000,000,000 | ---D | C] -- C:\Users\SylGé\AppData\Roaming​\Corel
 [2012/08/11 16:32:08 | 000,000,000 | ---D | C] -- C:\TEMP
 [2012/08/11 16:31:35 | 000,211,456 | ---- | C] (Apple Computer, Inc.) -- C:\Windows\System32\qd3d_ir2.q​3x
 [2012/08/11 16:31:21 | 000,229,376 | ---- | C] (Apple Computer, Inc.) -- C:\Windows\System32\rpza32.qtc​
 [2012/08/11 16:31:00 | 000,070,656 | ---- | C] (Apple Computer, Inc.) -- C:\Windows\System32\3dviewer.d​ll
 [2012/08/11 16:30:49 | 000,165,888 | ---- | C] (Apple Computer, Inc.) -- C:\Windows\System32\smc32.qtc
 [2012/08/11 16:30:49 | 000,032,768 | ---- | C] (Apple Computer, Inc.) -- C:\Windows\System32\cmgr32.dll​
 [2012/08/11 16:30:32 | 000,553,984 | ---- | C] (Apple Computer, Inc.) -- C:\Windows\System32\rave.dll
 [2012/08/11 16:30:11 | 000,083,456 | ---- | C] (Intel(R) Corporation) -- C:\Windows\System32\iv32qt32.q​tc
 [2012/08/11 16:29:53 | 000,024,064 | ---- | C] (Apple Computer, Inc.) -- C:\Windows\System32\dci32.qtc
 [2012/08/11 16:29:41 | 000,035,840 | ---- | C] (Apple Computer, Inc.) -- C:\Windows\System32\navg32.qtc​
 [2012/08/11 16:29:41 | 000,020,480 | ---- | C] (Apple Computer, Inc.) -- C:\Windows\System32\raw32.qtc
 [2012/08/11 16:29:22 | 000,345,600 | ---- | C] (Apple Computer, Inc.) -- C:\Windows\System32\qtim32.dll​
 [2012/08/11 16:29:09 | 000,151,040 | ---- | C] (Apple Computer, Inc.) -- C:\Windows\System32\cvid32.qtc​
 [2012/08/11 16:29:09 | 000,034,816 | ---- | C] (Apple Computer, Inc.) -- C:\Windows\System32\jpeg32.qtc​
 [2012/08/11 16:28:47 | 000,909,312 | ---- | C] (Apple Computer Inc.) -- C:\Windows\System32\qd3d.dll
 [2012/08/11 16:28:32 | 000,128,000 | ---- | C] (Apple Computer, Inc.) -- C:\Windows\System32\mc32.qtc
 [2012/08/11 16:28:12 | 000,565,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcp50.dl​l
 [2012/08/11 16:27:54 | 000,038,912 | ---- | C] (Apple Computer, Inc.) -- C:\Windows\System32\dhio32.qtc​
 [2012/08/11 16:27:15 | 000,103,936 | ---- | C] (Apple Computer, Inc.) -- C:\Windows\System32\rle32.qtc
 [2012/08/11 16:26:51 | 000,000,000 | ---D | C] -- C:\Corel
 [2012/08/11 16:26:16 | 000,000,000 | ---D | C] -- C:\Windows\Corel
 [2012/07/28 21:42:24 | 000,000,000 | ---D | C] -- C:\Users\SylGé\AppData\Roaming​\dvdcss
 [2012/07/22 23:00:40 | 000,000,000 | ---D | C] -- C:\Program Files\Photo Story 3 for Windows
 [2012/07/22 18:11:49 | 000,000,000 | ---D | C] -- C:\Users\SylGé\Tracing
 [2012/07/22 18:07:00 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
 [2012/07/22 18:06:15 | 000,000,000 | ---D | C] -- C:\Users\SylGé\AppData\Local\W​indows Live
 [2012/07/22 18:06:14 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live
 [2012/07/21 09:34:25 | 000,000,000 | ---D | C] -- C:\ProgramData\CanonIJ
 [2012/07/21 09:33:16 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonIJScan
 [2012/07/21 09:32:54 | 000,000,000 | ---D | C] -- C:\Users\SylGé\Desktop\OKCoral​
 [2012/07/21 09:32:16 | 000,000,000 | ---D | C] -- C:\Users\SylGé\AppData\Roaming​\Canon
 
 ========== Files - Modified Within 30 Days ==========
 
 [2012/08/19 20:16:28 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
 [2012/08/19 19:20:00 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
 [2012/08/19 09:37:09 | 000,001,990 | ---- | M] () -- C:\Users\SylGé\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
 [2012/08/19 09:30:15 | 000,028,352 | -H-- | M] () -- C:\Windows\System32\7B296FB0-3​76B-497e-B012-9C450E1B7327-5P-​1.C7483456-A289-439d-8115-6016​32D005A0
 [2012/08/19 09:30:15 | 000,028,352 | -H-- | M] () -- C:\Windows\System32\7B296FB0-3​76B-497e-B012-9C450E1B7327-5P-​0.C7483456-A289-439d-8115-6016​32D005A0
 [2012/08/19 09:27:21 | 000,704,242 | ---- | M] () -- C:\Windows\System32\perfh00C.d​at
 [2012/08/19 09:27:21 | 000,615,810 | ---- | M] () -- C:\Windows\System32\perfh009.d​at
 [2012/08/19 09:27:21 | 000,130,548 | ---- | M] () -- C:\Windows\System32\perfc00C.d​at
 [2012/08/19 09:27:21 | 000,106,190 | ---- | M] () -- C:\Windows\System32\perfc009.d​at
 [2012/08/19 09:22:31 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
 [2012/08/19 09:22:28 | 000,000,000 | ---- | M] () -- C:\Windows\System32\drivers\lv​uvc.hs
 [2012/08/19 09:22:26 | 2616,057,856 | -HS- | M] () -- C:\hiberfil.sys
 [2012/08/17 15:32:52 | 000,000,064 | ---- | M] () -- C:\Windows\System32\rp_stats.d​at
 [2012/08/17 15:32:52 | 000,000,044 | ---- | M] () -- C:\Windows\System32\rp_rules.d​at
 [2012/08/16 09:03:13 | 000,001,067 | ---- | M] () -- C:\Users\Public\Desktop\Malwar​ebytes Anti-Malware.lnk
 [2012/08/15 19:41:40 | 000,001,182 | ---- | M] () -- C:\Users\SylGé\Desktop\Jewel Quest Deluxe.lnk
 [2012/08/15 11:20:27 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlaye​rApp.exe
 [2012/08/15 11:20:27 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlaye​rCPLApp.cpl
 [2012/08/15 10:36:58 | 000,451,224 | ---- | M] () -- C:\Windows\System32\FNTCACHE.D​AT
 [2012/08/13 22:07:38 | 000,137,928 | ---- | M] (Avira GmbH) -- C:\Windows\System32\drivers\av​ipbb.sys
 [2012/08/13 22:07:38 | 000,083,392 | ---- | M] (Avira GmbH) -- C:\Windows\System32\drivers\av​gntflt.sys
 [2012/08/07 08:20:48 | 000,000,918 | ---- | M] () -- C:\Windows\System32\InstallUti​l.InstallLog
 [2012/07/22 18:05:44 | 000,001,104 | ---- | M] () -- C:\Users\SylGé\AppData\Roaming​\Microsoft\Windows\Start Menu\Programs\Startup\Outil de notification de cadeaux MSN.lnk
 
 ========== Files Created - No Company Name ==========
 
 [2012/08/17 19:42:12 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
 [2012/08/16 09:02:05 | 000,001,067 | ---- | C] () -- C:\Users\Public\Desktop\Malwar​ebytes Anti-Malware.lnk
 [2012/08/15 23:05:39 | 000,016,432 | ---- | C] () -- C:\Windows\System32\lsdelete.e​xe
 [2012/08/12 18:10:24 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windo​ws\Start Menu\Programs\Apple Software Update.lnk
 [2012/08/11 16:29:51 | 000,108,032 | ---- | C] () -- C:\Windows\System32\sh33w32.dl​l
 [2012/08/07 08:15:38 | 000,000,918 | ---- | C] () -- C:\Windows\System32\InstallUti​l.InstallLog
 [2012/07/22 23:00:41 | 000,001,712 | ---- | C] () -- C:\ProgramData\Microsoft\Windo​ws\Start Menu\Programs\Photorécit 3 pour Windows.lnk
 [2012/07/22 18:08:37 | 000,002,432 | ---- | C] () -- C:\ProgramData\Microsoft\Windo​ws\Start Menu\Programs\Windows Live Messenger.lnk
 [2012/07/22 18:05:44 | 000,001,104 | ---- | C] () -- C:\Users\SylGé\AppData\Roaming​\Microsoft\Windows\Start Menu\Programs\Startup\Outil de notification de cadeaux MSN.lnk
 [2012/06/24 08:46:18 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
 [2012/06/23 23:33:41 | 000,003,155 | ---- | C] () -- C:\Windows\System32\atipblag.d​at
 [2012/06/22 22:41:32 | 000,000,064 | ---- | C] () -- C:\Windows\System32\rp_stats.d​at
 [2012/06/22 22:41:32 | 000,000,044 | ---- | C] () -- C:\Windows\System32\rp_rules.d​at
 [2012/06/22 17:45:53 | 000,000,118 | ---- | C] () -- C:\Windows\System32\MRT.INI
 [2012/06/20 09:19:04 | 000,393,256 | ---- | C] () -- C:\Windows\System32\CNQ2414N.D​AT
 [2012/06/19 19:27:49 | 000,008,704 | ---- | C] () -- C:\Windows\System32\CNMVS74.DL​L
 [2012/06/19 18:52:33 | 000,004,767 | ---- | C] () -- C:\Windows\Irremote.ini
 [2012/06/19 14:24:50 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
 [2011/04/12 03:35:45 | 000,704,242 | ---- | C] () -- C:\Windows\System32\perfh00C.d​at
 [2011/04/12 03:35:45 | 000,344,522 | ---- | C] () -- C:\Windows\System32\perfi00C.d​at
 [2011/04/12 03:35:45 | 000,130,548 | ---- | C] () -- C:\Windows\System32\perfc00C.d​at
 [2011/04/12 03:35:45 | 000,038,160 | ---- | C] () -- C:\Windows\System32\perfd00C.d​at
 [2011/03/21 19:56:22 | 000,059,904 | ---- | C] () -- C:\Windows\System32\OVDecode.d​ll
 [2011/02/02 00:01:14 | 000,227,586 | ---- | C] () -- C:\Windows\System32\atiicdxx.d​at
 
 ========== Custom Scans ==========
 
 < HKLM\SOFTWARE\Microsoft\Intern​et Explorer\MAIN\FeatureControl|FEATURE_BROWSER_EMULATION /rs >
 HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION\\prevhost.exe: 8000
 HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION\\sllauncher.exe: 8000
 
 < HKEY_USERS\.DEFAULT\Software\M​icrosoft\Internet Explorer\Main\FeatureControl|feature_enable_ie_compression /rs >
 
 < HKEY_USERS\S-1-5-18\Software\M​icrosoft\Internet Explorer\Main\FeatureControl|feature_enable_ie_compression /rs >
 
 < hklm\software\clients\startmen​uinternet|command /rs >
 HKEY_LOCAL_MACHINE\software\cl​ients\startmenuinternet\FIREFO​X.EXE\InstallInfo\\HideIconsCo​mmand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2012/07/28 22:57:15 | 000,867,904 | ---- | M] (Mozilla Corporation)
 HKEY_LOCAL_MACHINE\software\cl​ients\startmenuinternet\FIREFO​X.EXE\InstallInfo\\ShowIconsCo​mmand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2012/07/28 22:57:15 | 000,867,904 | ---- | M] (Mozilla Corporation)
 HKEY_LOCAL_MACHINE\software\cl​ients\startmenuinternet\FIREFO​X.EXE\InstallInfo\\ReinstallCo​mmand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2012/07/28 22:57:15 | 000,867,904 | ---- | M] (Mozilla Corporation)
 HKEY_LOCAL_MACHINE\software\cl​ients\startmenuinternet\FIREFO​X.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2012/07/28 22:57:16 | 000,913,888 | ---- | M] (Mozilla Corporation)
 HKEY_LOCAL_MACHINE\software\cl​ients\startmenuinternet\FIREFO​X.EXE\shell\properties\command​\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2012/07/28 22:57:16 | 000,913,888 | ---- | M] (Mozilla Corporation)
 HKEY_LOCAL_MACHINE\software\cl​ients\startmenuinternet\FIREFO​X.EXE\shell\safemode\command\\​: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2012/07/28 22:57:16 | 000,913,888 | ---- | M] (Mozilla Corporation)
 HKEY_LOCAL_MACHINE\software\cl​ients\startmenuinternet\IEXPLO​RE.EXE\InstallInfo\\ShowIconsC​ommand: "C:\Windows\System32\ie4uinit.exe" -show [2012/06/20 09:09:34 | 000,074,240 | ---- | M] (Microsoft Corporation)
 HKEY_LOCAL_MACHINE\software\cl​ients\startmenuinternet\IEXPLO​RE.EXE\InstallInfo\\ReinstallC​ommand: "C:\Windows\System32\ie4uinit.exe" -reinstall [2012/06/20 09:09:34 | 000,074,240 | ---- | M] (Microsoft Corporation)
 HKEY_LOCAL_MACHINE\software\cl​ients\startmenuinternet\IEXPLO​RE.EXE\InstallInfo\\HideIconsC​ommand: "C:\Windows\System32\ie4uinit.exe" -hide [2012/06/20 09:09:34 | 000,074,240 | ---- | M] (Microsoft Corporation)
 HKEY_LOCAL_MACHINE\software\cl​ients\startmenuinternet\IEXPLO​RE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2012/06/29 03:00:47 | 000,748,664 | ---- | M] (Microsoft Corporation)
 HKEY_LOCAL_MACHINE\software\cl​ients\startmenuinternet\IEXPLO​RE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2012/06/29 03:00:47 | 000,748,664 | ---- | M] (Microsoft Corporation)
 
 < hklm\software\clients\startmen​uinternet|command /64 /rs >
 HKEY_LOCAL_MACHINE\software\cl​ients\startmenuinternet\FIREFO​X.EXE\InstallInfo\\HideIconsCo​mmand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2012/07/28 22:57:15 | 000,867,904 | ---- | M] (Mozilla Corporation)
 HKEY_LOCAL_MACHINE\software\cl​ients\startmenuinternet\FIREFO​X.EXE\InstallInfo\\ShowIconsCo​mmand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2012/07/28 22:57:15 | 000,867,904 | ---- | M] (Mozilla Corporation)
 HKEY_LOCAL_MACHINE\software\cl​ients\startmenuinternet\FIREFO​X.EXE\InstallInfo\\ReinstallCo​mmand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2012/07/28 22:57:15 | 000,867,904 | ---- | M] (Mozilla Corporation)
 HKEY_LOCAL_MACHINE\software\cl​ients\startmenuinternet\FIREFO​X.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2012/07/28 22:57:16 | 000,913,888 | ---- | M] (Mozilla Corporation)
 HKEY_LOCAL_MACHINE\software\cl​ients\startmenuinternet\FIREFO​X.EXE\shell\properties\command​\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2012/07/28 22:57:16 | 000,913,888 | ---- | M] (Mozilla Corporation)
 HKEY_LOCAL_MACHINE\software\cl​ients\startmenuinternet\FIREFO​X.EXE\shell\safemode\command\\​: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2012/07/28 22:57:16 | 000,913,888 | ---- | M] (Mozilla Corporation)
 HKEY_LOCAL_MACHINE\software\cl​ients\startmenuinternet\IEXPLO​RE.EXE\InstallInfo\\ShowIconsC​ommand: "C:\Windows\System32\ie4uinit.exe" -show [2012/06/20 09:09:34 | 000,074,240 | ---- | M] (Microsoft Corporation)
 HKEY_LOCAL_MACHINE\software\cl​ients\startmenuinternet\IEXPLO​RE.EXE\InstallInfo\\ReinstallC​ommand: "C:\Windows\System32\ie4uinit.exe" -reinstall [2012/06/20 09:09:34 | 000,074,240 | ---- | M] (Microsoft Corporation)
 HKEY_LOCAL_MACHINE\software\cl​ients\startmenuinternet\IEXPLO​RE.EXE\InstallInfo\\HideIconsC​ommand: "C:\Windows\System32\ie4uinit.exe" -hide [2012/06/20 09:09:34 | 000,074,240 | ---- | M] (Microsoft Corporation)
 HKEY_LOCAL_MACHINE\software\cl​ients\startmenuinternet\IEXPLO​RE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2012/06/29 03:00:47 | 000,748,664 | ---- | M] (Microsoft Corporation)
 HKEY_LOCAL_MACHINE\software\cl​ients\startmenuinternet\IEXPLO​RE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2012/06/29 03:00:47 | 000,748,664 | ---- | M] (Microsoft Corporation)
 
 < HKLM\SOFTWARE\Microsoft\Window​s NT\CurrentVersion\Drivers /s >
 "timer" = timer.drv -- [2009/07/13 23:41:39 | 000,004,048 | ---- | M] (Microsoft Corporation)
 
 < HKLM\SOFTWARE\Microsoft\Window​s NT\CurrentVersion\drivers.desc /s >
 "C:\Windows\System32\l3codeca.​acm" = Fraunhofer IIS MPEG Layer-3 Codec
 "wdmaud.drv" = AMD High Definition Audio Device
 "vfwwdm32.dll" = WDM Video For Windows Capture Driver (Win32)
 "sirenacm.dll" = Messenger Audio Codec
 
 < %temp%\smtmp\1\*.* /s >
 
 < %temp%\smtmp\2\*.* /s >
 
 < %temp%\smtmp\4\*.* /s >
 
 < nslookup http://www.google.fr /c >
 No captured output from command...
 
 < %systemroot%\system32\drivers\​*.sys /lockedfiles >
 
 < %APPDATA%\*.exe /s >
 [2012/07/22 18:05:44 | 000,183,096 | ---- | M] (Microsoft Corporation) -- C:\Users\SylGé\AppData\Roaming​\Microsoft\Outil de notification de cadeaux MSN\msnotif.exe
 
 < %SYSTEMDRIVE%\*.exe >
 
 < MD5 for: AGP440.SYS  >
 [2009/07/14 03:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D​04DD6E -- C:\Windows\System32\drivers\AG​P440.sys
 [2009/07/14 03:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D​04DD6E -- C:\Windows\System32\DriverStor​e\FileRepository\machine.inf_x​86_neutral_a97a2a0d0fbc6696\AG​P440.sys
 [2009/07/14 03:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D​04DD6E -- C:\Windows\winsxs\x86_machine.​inf_31bf3856ad364e35_6.1.7601.​17514_none_bc1a57271cf2f285\AG​P440.sys
 
 < MD5 for: ATAPI.SYS  >
 [2009/07/14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB97651​9BF59E -- C:\Windows\System32\drivers\at​api.sys
 [2009/07/14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB97651​9BF59E -- C:\Windows\System32\DriverStor​e\FileRepository\mshdc.inf_x86​_neutral_fab873f3e8a3315c\atap​i.sys
 [2009/07/14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB97651​9BF59E -- C:\Windows\winsxs\x86_mshdc.in​f_31bf3856ad364e35_6.1.7601.17​514_none_df3f92057fcbe7a7\atap​i.sys
 
 < MD5 for: CDROM.SYS  >
 [2010/11/20 23:29:03 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18​D5A6C9 -- C:\Windows\System32\drivers\cd​rom.sys
 [2010/11/20 23:29:03 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18​D5A6C9 -- C:\Windows\System32\DriverStor​e\FileRepository\cdrom.inf_x86​_neutral_6381e09675524225\cdro​m.sys
 [2010/11/20 23:29:03 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18​D5A6C9 -- C:\Windows\winsxs\x86_cdrom.in​f_31bf3856ad364e35_6.1.7601.17​514_none_61b0c5ce02098355\cdro​m.sys
 
 < MD5 for: CNGAUDIT.DLL  >
 [2009/07/14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6​FEFD7E -- C:\Windows\System32\cngaudit.d​ll
 [2009/07/14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6​FEFD7E -- C:\Windows\winsxs\x86_microsof​t-windows-cngaudit-dll_31bf385​6ad364e35_6.1.7600.16385_none_​e83a414890e8132b\cngaudit.dll
 
 < MD5 for: CTFMON.EXE  >
 [2009/07/14 03:14:16 | 000,008,704 | ---- | M] (Microsoft Corporation) MD5=4A3CDCEF8ED41B221F3DBEF579​2FB52D -- C:\Windows\System32\ctfmon.exe​
 [2009/07/14 03:14:16 | 000,008,704 | ---- | M] (Microsoft Corporation) MD5=4A3CDCEF8ED41B221F3DBEF579​2FB52D -- C:\Windows\winsxs\x86_microsof​t-windows-t..cesframework-ctfm​on_31bf3856ad364e35_6.1.7600.1​6385_none_9d06e2f6f1e51f98\ctf​mon.exe
 
 < MD5 for: DISK.SYS  >
 [2009/07/14 03:20:27 | 000,057,424 | ---- | M] (Microsoft Corporation) MD5=565003F326F99802E68CA78F2A​68E9FF -- C:\Windows\System32\drivers\di​sk.sys
 [2009/07/14 03:20:27 | 000,057,424 | ---- | M] (Microsoft Corporation) MD5=565003F326F99802E68CA78F2A​68E9FF -- C:\Windows\System32\DriverStor​e\FileRepository\disk.inf_x86_​neutral_b431b61a11f8df6c\disk.​sys
 [2009/07/14 03:20:27 | 000,057,424 | ---- | M] (Microsoft Corporation) MD5=565003F326F99802E68CA78F2A​68E9FF -- C:\Windows\winsxs\x86_disk.inf​_31bf3856ad364e35_6.1.7600.163​85_none_f99cd807d58018cb\disk.​sys
 
 < MD5 for: DWM.EXE  >
 [2009/07/14 03:14:19 | 000,092,672 | ---- | M] (Microsoft Corporation) MD5=505BF4D1CADEB8D4F8BCD08D94​4DE25D -- C:\Windows\System32\dwm.exe
 [2009/07/14 03:14:19 | 000,092,672 | ---- | M] (Microsoft Corporation) MD5=505BF4D1CADEB8D4F8BCD08D94​4DE25D -- C:\Windows\winsxs\x86_microsof​t-windows-d..pwindowmanager-co​re_31bf3856ad364e35_6.1.7601.1​7514_none_8faafe001b741442\dwm​.exe
 
 < MD5 for: EXPLORER.EXE  >
 [2011/02/26 07:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD​67B746 -- C:\Windows\winsxs\x86_microsof​t-windows-explorer_31bf3856ad3​64e35_6.1.7601.21669_none_5414​9f9ef14031fc\explorer.exe
 [2010/11/20 23:29:20 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68​514493 -- C:\Windows\winsxs\x86_microsof​t-windows-explorer_31bf3856ad3​64e35_6.1.7601.17514_none_53bc​10fdd7fe87ca\explorer.exe
 [2011/02/25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498​C02B3E -- C:\Windows\explorer.exe
 [2011/02/25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498​C02B3E -- C:\Windows\winsxs\x86_microsof​t-windows-explorer_31bf3856ad3​64e35_6.1.7601.17567_none_5389​023fd8245f84\explorer.exe
 
 < MD5 for: IASTORV.SYS  >
 [2011/03/11 07:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62​D8B76E -- C:\Windows\System32\drivers\ia​StorV.sys
 [2011/03/11 07:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62​D8B76E -- C:\Windows\System32\DriverStor​e\FileRepository\iastorv.inf_x​86_neutral_0bcee2057afcc090\ia​StorV.sys
 [2011/03/11 07:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62​D8B76E -- C:\Windows\winsxs\x86_iastorv.​inf_31bf3856ad364e35_6.1.7601.​17577_none_b0daddb9e6380745\ia​StorV.sys
 [2011/03/11 07:28:00 | 000,332,160 | ---- | M] (Intel Corporation) MD5=778D0E6D7D9EBA0C403BADBAAD​41DB20 -- C:\Windows\winsxs\x86_iastorv.​inf_31bf3856ad364e35_6.1.7601.​21680_none_b152a892ff64119f\ia​StorV.sys
 [2010/11/20 23:29:03 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF823350​7EE5AD -- C:\Windows\System32\DriverStor​e\FileRepository\iastorv.inf_x​86_neutral_668286aa35d55928\ia​StorV.sys
 [2010/11/20 23:29:03 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF823350​7EE5AD -- C:\Windows\winsxs\x86_iastorv.​inf_31bf3856ad364e35_6.1.7601.​17514_none_b118bc63e60a139a\ia​StorV.sys
 
 < MD5 for: NDIS.SYS  >
 [2010/11/20 23:29:12 | 000,712,576 | ---- | M] (Microsoft Corporation) MD5=E7C54812A2AAF43316EB6930C1​FFA108 -- C:\Windows\System32\drivers\nd​is.sys
 [2010/11/20 23:29:12 | 000,712,576 | ---- | M] (Microsoft Corporation) MD5=E7C54812A2AAF43316EB6930C1​FFA108 -- C:\Windows\winsxs\x86_microsof​t-windows-ndis_31bf3856ad364e3​5_6.1.7601.17514_none_a9ce95b2​7a512623\ndis.sys
 
 < MD5 for: NETLOGON.DLL  >
 [2010/11/20 23:29:12 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C8941​00883B -- C:\Windows\System32\netlogon.d​ll
 [2010/11/20 23:29:12 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C8941​00883B -- C:\Windows\winsxs\x86_microsof​t-windows-security-netlogon_31​bf3856ad364e35_6.1.7601.17514_​none_ffbf212e963c0162\netlogon​.dll
 
 < MD5 for: NVSTOR.SYS  >
 [2011/03/11 07:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF67​19A8A4 -- C:\Windows\System32\drivers\nv​stor.sys
 [2011/03/11 07:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF67​19A8A4 -- C:\Windows\System32\DriverStor​e\FileRepository\nvraid.inf_x8​6_neutral_0276fc3b3ea60d41\nvs​tor.sys
 [2011/03/11 07:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF67​19A8A4 -- C:\Windows\winsxs\x86_nvraid.i​nf_31bf3856ad364e35_6.1.7601.1​7577_none_3ba44e691d6eb11d\nvs​tor.sys
 [2011/03/11 07:28:10 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=66D468654A58594F5F3BA63D5A​D5B1AF -- C:\Windows\winsxs\x86_nvraid.i​nf_31bf3856ad364e35_6.1.7601.2​1680_none_3c1c1942369abb77\nvs​tor.sys
 [2010/11/20 23:29:03 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DA​BCEC82 -- C:\Windows\System32\DriverStor​e\FileRepository\nvraid.inf_x8​6_neutral_dd659ed032d28a14\nvs​tor.sys
 [2010/11/20 23:29:03 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DA​BCEC82 -- C:\Windows\winsxs\x86_nvraid.i​nf_31bf3856ad364e35_6.1.7601.1​7514_none_3be22d131d40bd72\nvs​tor.sys
 
 < MD5 for: RASACD.SYS  >
 [2009/07/14 01:54:40 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=30A81B53C766D0133BB86D234E​5556AB -- C:\Windows\System32\drivers\ra​sacd.sys
 [2009/07/14 01:54:40 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=30A81B53C766D0133BB86D234E​5556AB -- C:\Windows\winsxs\x86_microsof​t-windows-rasautodial_31bf3856​ad364e35_6.1.7600.16385_none_0​fb054d9c6a6b4d4\rasacd.sys
 
 < MD5 for: RDPCLIP.EXE  >
 [2010/11/20 23:29:26 | 000,173,568 | ---- | M] (Microsoft Corporation) MD5=5505592313B74F2E2C87278377​50F66D -- C:\Windows\winsxs\x86_microsof​t-windows-t..lipboardredirecti​on_31bf3856ad364e35_6.1.7601.1​7514_none_03dd7a8e696443c0\rdp​clip.exe
 
 < MD5 for: RDPWD.SYS  >
 [2012/02/17 06:14:08 | 000,183,808 | ---- | M] (Microsoft Corporation) MD5=244C83332F44589AE98FC347F1​1B2693 -- C:\Windows\winsxs\x86_microsof​t-windows-t..dp-winstationdriv​er_31bf3856ad364e35_6.1.7601.1​7779_none_4d4117e93370c20c\rdp​wd.sys
 [2012/02/17 06:09:59 | 000,183,808 | ---- | M] (Microsoft Corporation) MD5=2570D1F85C0CE1096E075F2DE9​6D11D9 -- C:\Windows\winsxs\x86_microsof​t-windows-t..dp-winstationdriv​er_31bf3856ad364e35_6.1.7601.2​1924_none_4dfbc4c44c6a5495\rdp​wd.sys
 [2010/11/20 23:29:06 | 000,183,808 | ---- | M] (Microsoft Corporation) MD5=288B06960D78428FF89E811632​684E20 -- C:\Windows\winsxs\x86_microsof​t-windows-t..dp-winstationdriv​er_31bf3856ad364e35_6.1.7601.1​7514_none_4d7cf2333344a165\rdp​wd.sys
 [2012/04/28 05:17:07 | 000,183,808 | ---- | M] (Microsoft Corporation) MD5=F031683E6D1FEA157ABB2FF260​B51E61 -- C:\Windows\System32\drivers\rd​pwd.sys
 [2012/04/28 05:17:07 | 000,183,808 | ---- | M] (Microsoft Corporation) MD5=F031683E6D1FEA157ABB2FF260​B51E61 -- C:\Windows\winsxs\x86_microsof​t-windows-t..dp-winstationdriv​er_31bf3856ad364e35_6.1.7601.1​7830_none_4d6356e533586b60\rdp​wd.sys
 [2012/04/28 05:08:00 | 000,183,808 | ---- | M] (Microsoft Corporation) MD5=F665ADB892F8002248274D9A22​DDDB00 -- C:\Windows\winsxs\x86_microsof​t-windows-t..dp-winstationdriv​er_31bf3856ad364e35_6.1.7601.2​1982_none_4db8e4a84c9cc98d\rdp​wd.sys
 
 < MD5 for: SCECLI.DLL  >
 [2010/11/20 23:29:07 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B​96AAF4 -- C:\Windows\System32\scecli.dll​
 [2010/11/20 23:29:07 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B​96AAF4 -- C:\Windows\winsxs\x86_microsof​t-windows-s..urationengineclie​nt_31bf3856ad364e35_6.1.7601.1​7514_none_3a154c47375d881d\sce​cli.dll
 
 < MD5 for: SFLOPPY.SYS  >
 [2009/07/14 01:45:52 | 000,013,824 | ---- | M] (Microsoft Corporation) MD5=DB96666CC8312EBC45032F30B0​07A547 -- C:\Windows\System32\drivers\sf​loppy.sys
 [2009/07/14 01:45:52 | 000,013,824 | ---- | M] (Microsoft Corporation) MD5=DB96666CC8312EBC45032F30B0​07A547 -- C:\Windows\System32\DriverStor​e\FileRepository\flpydisk.inf_​x86_neutral_2102f5344367a352\s​floppy.sys
 [2009/07/14 01:45:52 | 000,013,824 | ---- | M] (Microsoft Corporation) MD5=DB96666CC8312EBC45032F30B0​07A547 -- C:\Windows\winsxs\x86_flpydisk​.inf_31bf3856ad364e35_6.1.7600​.16385_none_e6e06650dbcf54b4\s​floppy.sys
 
 < MD5 for: TASKENG.EXE  >
 [2010/11/20 23:29:06 | 000,192,000 | ---- | M] (Microsoft Corporation) MD5=4F2659160AFCCA990305816946​F69407 -- C:\Windows\System32\taskeng.ex​e
 [2010/11/20 23:29:06 | 000,192,000 | ---- | M] (Microsoft Corporation) MD5=4F2659160AFCCA990305816946​F69407 -- C:\Windows\winsxs\x86_microsof​t-windows-taskscheduler-engine​_31bf3856ad364e35_6.1.7601.175​14_none_e7b3b71a1d1c8662\taske​ng.exe
 
 < MD5 for: TASKHOST.EXE  >
 [2010/11/20 23:29:19 | 000,049,152 | ---- | M] (Microsoft Corporation) MD5=7FA8BA5A780E4757964AC9D423​8302B9 -- C:\Windows\System32\taskhost.e​xe
 [2010/11/20 23:29:19 | 000,049,152 | ---- | M] (Microsoft Corporation) MD5=7FA8BA5A780E4757964AC9D423​8302B9 -- C:\Windows\winsxs\x86_microsof​t-windows-taskhost_31bf3856ad3​64e35_6.1.7601.17514_none_2a46​1244b897f204\taskhost.exe
 
 < MD5 for: TCPIP.SYS  >
 [2011/04/25 06:31:30 | 001,290,624 | ---- | M] (Microsoft Corporation) MD5=24326784DF8F3D5F5BBB9F878C​E33C14 -- C:\Windows\winsxs\x86_microsof​t-windows-tcpip-binaries_31bf3​856ad364e35_6.1.7601.17603_non​e_b52f4dc5c4a121e0\tcpip.sys
 [2010/11/20 23:29:20 | 001,290,112 | ---- | M] (Microsoft Corporation) MD5=37E8FA3779668837CA9E2C36D2​415949 -- C:\Windows\winsxs\x86_microsof​t-windows-tcpip-binaries_31bf3​856ad364e35_6.1.7601.17514_non​e_b5257c3dc4a85a01\tcpip.sys
 [2011/04/25 08:31:09 | 001,301,376 | ---- | M] (Microsoft Corporation) MD5=6D4728CFF2724FF3A4654971D6​1D0F1C -- C:\Windows\winsxs\x86_microsof​t-windows-tcpip-binaries_31bf3​856ad364e35_6.1.7601.21712_non​e_b5ad1a5addc7c444\tcpip.sys
 [2012/03/30 12:23:11 | 001,291,632 | ---- | M] (Microsoft Corporation) MD5=7FA2E0F8B072BD04B77B421480​B6CC22 -- C:\Windows\System32\drivers\tc​pip.sys
 [2012/03/30 12:23:11 | 001,291,632 | ---- | M] (Microsoft Corporation) MD5=7FA2E0F8B072BD04B77B421480​B6CC22 -- C:\Windows\winsxs\x86_microsof​t-windows-tcpip-binaries_31bf3​856ad364e35_6.1.7601.17802_non​e_b52e5147c4a202d7\tcpip.sys
 [2012/03/30 11:04:23 | 001,306,480 | ---- | M] (Microsoft Corporation) MD5=88FCDB9923EFECA207B3CEBD24​407126 -- C:\Windows\winsxs\x86_microsof​t-windows-tcpip-binaries_31bf3​856ad364e35_6.1.7601.21954_non​

n°772158
danakil
Profil : Equipe sécurité
Posté le 20-08-2012 à 10:43:49  answer
Prévenir les modérateurs en cas d'abus
 

Salut!

 Voici ce que tu vas réaliser.

 1/ Désinstalle 'Spybot' de ton Seven > Ce logiciel est totalement obsolète et géne le travail des tools nouvellement adaptés aux désinfectionx des PC.

 2/ Ton dernier rapport n'est pas complet, j'aurai dû te prévenir de l'héberger.  :jap:
 Ce rapport est sur ton Bureau (OTL logfile created on: 19/08/2012 20:14:27 - Run 2.)
 Héberge sur 'Cjoint' celui-ci comme te l'a indiqué Jypalou le 17/08 à 18h24.
 Poste moi le lien de partage afin que je puisse le récupérer.


---------------
Une Idéfix? ... Etre et durer.
n°772159
gege083
Posté le 20-08-2012 à 20:01:10  answer
Prévenir les modérateurs en cas d'abus
 

voilà le rapport et encore et encore merci. J'ai désinstallé spybot comme tu me l'as demandé. A+
 http://cjoint.com/?BHut7anlDDP

n°772160
gege083
Posté le 22-08-2012 à 22:09:45  answer
Prévenir les modérateurs en cas d'abus
 

Je voudrais savoir simplement si mon problème est résolvable ou alors je laisse tomber est je reformate mon PC. Et merci beaucoup à tous les intervenants.

n°772161
Jypalou
Modérateur
Profil : Equipe sécurité
Posté le 23-08-2012 à 09:09:34  answer
Prévenir les modérateurs en cas d'abus
 

pepitochocolat:1 Bonjour,peut-être pas insolvable, attends que danakil analyse OTL .
 A+ antef:4


---------------
jypalou:1
  Il vaut mieux aller plus loin avec quelqu'un que nulle part avec tout le monde
Je n'accepte aucune demande de nettoyage en message privé.
 Page :
1  2
Page Suivante
Page Précédente

Aller à :
Ajouter une réponse
  01net

  FORUM high-tech

  SECURITE

  Sécurité

  Comment supprimer claro.search

 

Sujets relatifs
Supprimer websearch.pu-results.infoRESOLU comment supprimer 22find de mon ordinateur?
( RESOLU ) Supprimer 22find sur Google ChromeSupprimer Virus UKASH windows 7 sans mode sans echec
virus system progressive protection comment le supprimer?claro-search [Résolu]
supprimer snap.do [résolu]supprimer virus gendarmerie nationale
SEARCH protectpc infecte par un virus que je n'arrive pas a supprimer
besoin d'aide pour supprimer Trojan Win32Impossible de supprimer "the best offers"
Plus de sujets relatifs à : Comment supprimer claro.search

Les 5 sujets de discussion précédents Nombre de réponses Dernier message
Curseur souris se positionne mal 0 27-07-2012 à 09:56:04
Curseur souris se positionne mal 1 27-07-2012 à 20:47:06
Ouverture pages web 9 25-07-2012 à 07:30:42
Mise à jour Windows Live 0 20-07-2012 à 17:01:52
Page BUZZCUSTOM dans google 1 15-07-2012 à 19:22:58

Recevez toute
l’actu du forum !