Disparition Icône + multiple pop au démarage

Question

Bonjour à tous et à toute, 

Suite à la demande aimable de mon père de regarder l'état de santé de son ordinateur portable car il à quelques petits problèmes...
En effet, disparition de tous les icônes sauf celui d'internet explorer, l'apparition intempestif de pop de fenêtre pour protéger le PC (vista internet secure...), ou bien sur internet doit servir à faire l'achat du produit ainsi qu'a la vidange du compte en banque...
Bref, j'ai de suite essayer d'éteindre le feu, notamment avec malwerbytes, avira et Combofix.
Cependant je fait appel a vous pour savoir s'il reste des infections et si est possible de récupérer certaines données perdus pendant l'attaque.
Je vous envoie le rapport ZHP et vous remercie d'avance de votre aide :D

Rapport de ZHPDiag v1.27.224 par Nicolas Coolman, Update du 05/06/2011
Run by Didier at 05/06/2011 20:22:46
Web site :  http://www.premiumorange.com/zeb-help-process/zhpdiag.html


---\ Web Browser
MSIE: Internet Explorer v8.0.6001.18904 (Defaut)
MFIE: Mozilla Firefox v3.5.16 (fr)

---\ System Information
Windows Vista Home Premium Edition, 32-bit  (Build 6000)
Processor: x86 Family 15 Model 76 Stepping 2, AuthenticAMD
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 1790 MB (48% free)
System Restore: Activé (Enable)
System drive C: has 15 GB (29%) free of 51 GB

---\ Logged in mode
Computer Name: PC-DE-DIDIER
User Name: Didier
All Users Names: Didier, Administrateur, 
Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator

---\ Environnement Variables
%AppData%=C:\Users\Didier\AppData\Roaming
%LocalAppData%=C:\Users\Didier\AppData\Local
%StartMenu%=C:\Users\Didier\AppData\Roaming\Microsoft\Windows\Start Menu

---\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 15 Go of 51 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 27 Go of 51 Go)
F:\ Floppy drive, Flash card reader, USB Key (Free 1 Go of 2 Go)



---\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK



---\ Recherche particulière de fichiers génériques
[MD5.37440D09DEAE0B672A04DCCF7ABF06BE] - (.Microsoft Corporation - Explorateur Windows.) (.12/06/2009 21:27:16.) -- C:\Windows\Explorer.exe [2923520]
[MD5.D4385B03E8CCCEE6F0EE249F827C1F3E] - (.Microsoft Corporation - Application de démarrage de Windows.) (.02/11/2006 10:45:57.) -- C:\Windows\system32\Wininit.exe [95744]
[MD5.EC3B3E6071E3FCD4290BFD42676EE064] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.23/02/2010 07:39:13.) -- C:\Windows\system32\wininet.dll [916480]
[MD5.9F75392B9128A91ABAFB044EA350BAAD] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.02/11/2006 10:45:57.) -- C:\Windows\system32\Winlogon.exe [308224]
[MD5.B35CFCEF838382AB6490B321C87EDF17] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.12/06/2009 21:28:25.) -- C:\Windows\system32\drivers\atapi.sys [21560]
[MD5.37430AA7A66D7A63407ADC2C0D05E9F6] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.12/06/2009 21:48:00.) -- C:\Windows\system32\drivers
tfs.sys [1060920]



---\ Processus lancés
[MD5.9F52FBE99C749E3F32C75124F09F1B03] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe   [638232]
[MD5.CD94B1501F66744AE1A00668DE36BBF9] - (.Google Inc. - Google Toolbar Broker.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe   [307376]
[MD5.A659F31AC25418738351E5BDF4C85780] - (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe   [4669440]
[MD5.F514CD896583E6C18D011116E3725074] - (.CyberLink - Notification tool for RealTek audio chip.) -- C:\Acer\Empowering Technology\eAudio\eAudio.exe   [1286144]
[MD5.20A098A4D12E49342228D3AFE98EAFDF] - (.Microsoft Corporation - Windows Live Toolbar User Elevation Helper.) -- C:\Program Files\Windows Live\Toolbar\wltuser.exe   [223584]
[MD5.EB269D9F97DDC7BC0E71BDC7726F669E] - (.Dritek System Inc. - Launch Manager.) -- C:\Program Files\Launch Manager\LManager.exe   [772616]
[MD5.F79723565C57374BB8F057E03FC33B50] - (.CyberLink Corp. - CyberLink PlayMovie Resident Program.) -- C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe   [206952]
[MD5.B150D1BCB625600479EEBA51811E33CB] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe   [159744]
[MD5.4B555106290BD117334E9A08761C035A] - (...) -- C:\Windows\System32undll32.exe   [44544]
[MD5.9D5E8B45BD348DF0882C69EED0E83111] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe   [281768]
[MD5.9FED8E2D33238FBDFDE83678B5CEAC8E] - (.Pas de propriétaire - Virtual Printer Agent.) -- C:\Windows\System32\oopmagent.exe   [90112]
[MD5.CAF03357DE72F8F19FA099581A685C1A] - (.Apple Computer, Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe   [282624]
[MD5.6D0BC5A3FD6C94E571E40218F10A319D] - (.Google Inc. - Quick Search Box.) -- C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe   [68592]
[MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe   [39408]
[MD5.E090EE780714E376062198C6625D5B51] - (.HiTRUST - eDataSecurity System Loader( Load and prepa.) -- C:\Acer\Empowering Technology\eDataSecurity\eDSLoader.exe   [457216]
[MD5.77FC13D4560F0C472BDF2EB7A86878EE] - (.Acer Inc. - Acer eNet Tray.) -- C:\Acer\Empowering Technology\ENET\ENMTRAY.EXE   [765952]
[MD5.453BFAA8A4F682924AA0A5070D881504] - (.Acer Inc. - Acer ePower Management DMC.) -- C:\Acer\Empowering Technology\EPOWER\EPOWER_DMC.EXE   [450560]
[MD5.CD2805816F10DA36753018B5E926A79C] - (.Acer Inc. - Acer Empowering Techonology Framework Launc.) -- C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE   [323584]
[MD5.4F779AD993A2975D945EE6985CAC0FEA] - (.Acer Inc. - eRecovery agent.) -- C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE   [397312]
[MD5.5EF87457AB8A58694EBE35E55D093D04] - (.Realtek Semiconductor Corp. - Realtek HD Audio Data Rerouter.) -- C:\Users\Didier\AppData\Local\Temp\RtkBtMnt.exe   [208896]
[MD5.42370C1DE2B83844B253478DB8A907D5] - (.Alps Electric Co., Ltd. - ApMsgFwd.) -- C:\Program Files\Apoint2K\ApMsgFwd.exe   [50736]
[MD5.8D78BE3690DB07A2FD03D2A6B61E3DCD] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver for Windows NT/.) -- C:\Program Files\Apoint2K\Apntex.exe   [49152]
[MD5.62BB79160F86CD962F312C68C6239BFD] - (.Microsoft Corporation - Windows Update.) -- C:\Windows\system32\wuauclt.exe   [53472]
[MD5.05CB3DA78A4BBD9B799A5957F9D101CC] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe   [68608]
[MD5.834A8C26F7A1E803A2EE9798DB432BD7] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe   [657920]



---\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
M3 - MFPP: Plugins - [Didier] -- C:\Users\Didier\AppData\Roaming\Mozilla\Firefox\Profiles\fap4lf0p.default\searchplugins\cherche.xml
M3 - MFPP: Plugins - [Didier] -- C:\Users\Didier\AppData\Roaming\Mozilla\Firefox\Profiles\fap4lf0p.default\searchplugins\iadah.xml
M3 - MFPP: Plugins - [Didier] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Didier] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Didier] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Didier] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Didier] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Didier] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins
pdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins
pnul32.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_23 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin
ew_plugin
pjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60310.0.) -- C:\Program Files\Microsoft Silverlight\4.0.60310.0
pctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.3] - (.Microsoft Corp. - Office Live Update v1.3.) -- C:\Program Files\Microsoft\Office Live
pOLW.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8117.0416] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.57
pGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.57
pGoogleUpdate3.dll
P2 - FPN: [HKCU] [@yahoo.com/BrowserPlus,version=2.5.1] - (.Yahoo! Inc. - BrowserPlus -- Improve your browser! -- https://fr.yahoo.com/?p=us -- C:\Users\Didier\AppData\Local\Yahoo!\BrowserPlus\2.5.1\Plugins
pybrowserplus_2.5.1.dll
M0 - MFSP: prefs.js [Didier - fap4lf0p.default] http://ww38.search-web.net/?subid1=20200207-1536-4930-a96a-738ee46022d1
M2 - MFEP: prefs.js [Didier - fap4lf0p.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.)
M2 - MFEP: prefs.js [Didier - fap4lf0p.default\{635abd67-4fe9-1b23-4f01-e679fa7484c1}] [yahoo.ytff] Yahoo! Toolbar v2.1.0.20090922023629 (.Yahoo!.)



---\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://home.sweetim.com/
R0 - HKUS\S-1-5-21-4163631925-2200661757-807861216-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://ww38.search-web.net/?subid1=20200207-1536-5282-b382-404527b40094
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ww38.search-web.net/?subid1=20200207-1536-5282-b382-404527b40094
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ww38.search-web.net/?subid1=20200207-1536-5282-b382-404527b40094
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.bing.com/?toHttps=1&redig=17DBE7D168544FA98200E890A8051984
R1 - HKUS\S-1-5-21-4163631925-2200661757-807861216-1000\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = search-web.net
R1 - HKUS\S-1-5-21-4163631925-2200661757-807861216-1000\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search-web.net3a%23fffff0%3b&ie=iso-8859-1&oe=iso-8859-1&sa=rechercher&lang=en&q={searchterms}
R1 - HKUS\S-1-5-21-4163631925-2200661757-807861216-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://ww38.search-web.net/?subid1=20200207-1536-5282-b382-404527b40094
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} . (.Yahoo! Inc. - Yahoo! Toolbar.) (2006, 11, 29, 1) -- C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} . (.SweetIM Technologies Ltd. - SweetIM Toolbar Helper Module.) (3, 6, 0, 8) -- C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)) -- C:\Windows\system32\ieframe.dll
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 1



---\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll



---\ ---\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"



---\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} . (.Yahoo! Inc. - Yahoo! Toolbar.) -- C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} . (.HiTRUST - ActiveToolBand Module.) -- C:\Windows\system32\ActiveToolBand.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} . (.SweetIM Technologies Ltd. - SweetIM Toolbar for Internet Explorer.) -- C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll



---\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} . (.HiTRUST - eDStoolbar Module.) -- C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} . (.Yahoo! Inc. - Yahoo! Toolbar.) -- C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} . (.SweetIM Technologies Ltd. - SweetIM Toolbar for Internet Explorer.) -- C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll



---\ ---\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe 
O4 - HKLM\..\Run: [eAudio] . (.CyberLink - Notification tool for RealTek audio chip.) -- C:\Acer\Empowering Technology\eAudio\eAudio.exe 
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe 
O4 - HKLM\..\Run: [LManager] . (.Dritek System Inc. - Launch Manager.) -- C:\PROGRA~1\LAUNCH~1\LManager.exe 
O4 - HKLM\..\Run: [PlayMovie] . (.CyberLink Corp. - CyberLink PlayMovie Resident Program.) -- C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe 
O4 - HKLM\..\Run: [Skytel] . (.Realtek Semiconductor Corp. - Realtek Voice  Manager.) -- C:\Windows\Skytel.exe 
O4 - HKLM\..\Run: [WarReg_PopUp] . (.Acer Inc. - WR_PopUp.) -- C:\Acer\WR_PopUp\WarReg_PopUp.exe 
O4 - HKLM\..\Run: [PLFSetL] . (.sonix - DefaultSettingEXE.) -- C:\Windows\PLFSetL.exe 
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe 
O4 - HKLM\..\Run: [Acer Tour Reminder] . (.Acer Inc. - Acer Tour Reminder.) -- C:\Acer\AcerTour\Reminder.exe 
O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\system32\NvCpl.dll 
O4 - HKLM\..\Run: [NvMediaCenter] . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\Windows\system32\NvMcTray.dll 
O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe 
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (.not file.) 
O4 - HKLM\..\Run: [ooquickpdfv7] . (.Pas de propriétaire - Virtual Printer Agent.) -- C:\Windows\system32\oopmagent.exe 
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Computer, Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe 
O4 - HKLM\..\Run: [Google Quick Search Box] . (.Google Inc. - Quick Search Box.) -- C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe 
O4 - HKLM\..\Run: [MSConfig] . (.Microsoft Corporation - Utilitaire de configuration système.) -- C:\Windows\System32\msconfig.exe 
O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe 
O4 - HKLM\..\Run: [eDataSecurity Loader] . (.HiTRUST - eDataSecurity System Loader( Load and prepa.) -- C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe 
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe 
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe 
O4 - HKCU\..\Run: [binternet] . (...) -- C:\Users\Didier\binternet.jar 
O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - Chargeur CTF.) -- C:\WINDOWS\system32\ctfmon.exe 
O4 - HKCU\..\Run: [WindowsWelcomeCenter]  oobefldr.dll 
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe 
O4 - HKUS\S-1-5-18\..\Run: [Acer Tour Reminder] . (.Acer Inc. - Acer Tour Reminder.) -- C:\Acer\AcerTour\Reminder.exe 
O4 - HKUS\S-1-5-18\..\Run: [Acer Tour Reminder] . (.Acer Inc. - Acer Tour Reminder.) -- C:\Acer\AcerTour\Reminder.exe 
O4 - HKUS\S-1-5-21-4163631925-2200661757-807861216-1000\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe 
O4 - HKUS\S-1-5-21-4163631925-2200661757-807861216-1000\..\Run: [binternet] . (...) -- C:\Users\Didier\binternet.jar 
O4 - HKUS\S-1-5-21-4163631925-2200661757-807861216-1000\..\Run: [ctfmon.exe] . (.Microsoft Corporation - Chargeur CTF.) -- C:\WINDOWS\system32\ctfmon.exe 
O4 - HKUS\S-1-5-21-4163631925-2200661757-807861216-1000\..\Run: [WindowsWelcomeCenter]  oobefldr.dll 
O4 - HKUS\S-1-5-21-4163631925-2200661757-807861216-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe 
O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Empowering Technology Launcher.lnk . (.Acer Inc..)  -- C:\Acer\Empowering Technology\eAPLauncher.exe
O4 - Global Startup: C:\Users\Didier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\binternet.lnk . (...)  -- C:\Users\Didier\binternet.jar



---\ ---\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Didier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Didier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Windows Mail\WinMail.exe
O4 - Global Startup: C:\Users\Didier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Users\Didier\Desktop\Acer GameZone Online.lnk - Clé orpheline
O4 - Global Startup: C:\Users\Didier\Desktop\Backup and Restore Center.lnk . (.Microsoft Corporation.)  -- C:\Windows\System32\control.exe
O4 - Global Startup: C:\Users\Didier\Desktop\Free Music Zilla.lnk . (...)  -- C:\Program Files\Free Music Zilla\FMZilla.exe
O4 - Global Startup: C:\Users\Didier\Desktop\Internet Explorer.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Didier\Desktop\MOVIEMK - Raccourci.lnk . (...)  -- H:\ACER\Program Files\Movie Maker\MOVIEMK.exe (.not file.)
O4 - Global Startup: C:\Users\Didier\Desktop\Notepad.lnk . (.Microsoft Corporation.)  -- C:\Windows\System32
otepad.exe
O4 - Global Startup: C:\Users\Didier\Desktop\Shape Solitaire.lnk . (.Oberon Media Inc..)  -- C:\Program Files\Acer GameZone\Shape Solitaire\Launch.exe
O4 - Global Startup: C:\Users\Didier\Desktop\Transférer des fichiers et des paramètres - Raccourci.lnk - Clé orpheline
O4 - Global Startup: C:\Users\Didier\Desktop\Windows Live Messenger .lnk . (.Microsoft Corporation.)  -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O4 - Global Startup: C:\Users\Didier\Desktop\Windows Vista Recovery.lnk . (...)  -- C:\ProgramData\22601488.exe (.not file.)



---\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: E&xporter vers Microsoft Excel - (.not file.) - C:\PROGRA~1\MICROS~2\Office12\EXCEL.exe
O8 - Extra context menu item: Google Sidewiki... . (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll
O8 - Extra context menu item: Recherche avec search-web . (.Pas de propriétaire - Pas de description.) -- C:\Users\Didier\scriptjava.html



---\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll



---\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32
apinsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll



---\ Site dans la Zone de confiance d'Internet Explorer (O15)
O15 - Trusted Zone: [HKCU\...\Domains] *.chat-land.org
O15 - Trusted Zone: [HKCU\...\Domains\www] *.chat-land.org



---\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} () - http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab



---\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{3DD470C3-1ADF-406E-8B14-C58D3B03567A}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{3DD470C3-1ADF-406E-8B14-C58D3B03567A}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{3DD470C3-1ADF-406E-8B14-C58D3B03567A}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1



---\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll



---\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll



---\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service:  (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service:  (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service:  (CLTNetCnService) - Clé orpheline
O23 - Service: eDSService.exe (eDataSecurity Service) . (.HiTRSUT - eDataSecurity Service.) - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service:  (eLockService) . (.Acer Inc. - Acer eLock Management.) - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
O23 - Service:  (eNet Service) . (.Acer Inc. - acer eNet Management Service.) - C:\Acer\Empowering Technology\eNet\eNet Service.exe
O23 - Service:  (eRecoveryService) . (.Acer Inc. - eRecoveryService.) - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service:  (eSettingsService) . (.Pas de propriétaire - Service.) - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
O23 - Service:  (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service:  (gupdatem) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service:  (gusvc) . (.Google - gusvc.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service:  (LightScribeService) . (.Hewlett-Packard Company - Pas de description.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service:  (MobilityService) . (...) - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service:  (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 177.1.) - C:\Windows\system32
vvsvc.exe
O23 - Service:  (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service:  (WMIService) . (.acer - WMIServi Application.) - C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
O23 - Service:  (XAudioService) . (.Conexant Systems, Inc. - Modem Audio Service.) - C:\Windows\system32\DRIVERS\xaudio.exe
O23 - Service:  ({49DE1C67-83F8-4102-99E0-C16DCC7EEC796}) . (.Cyberlink Corp. - FCL Driver.) - C:\Program Files\Acer Arcade Deluxe\Play Movie\000.fcl



---\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)



---\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\AppleSoftwareUpdate.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.00000000000000000000000000000000] [APT] [3b924fa] (.Pas de propriétaire.) -- C:\Users\Didier\AppData\Local\Temp\3304.exe (.not file.)
[MD5.054F770777DD40F1DBC601EEC92088D3] [APT] [AppleSoftwareUpdate] (.Apple Computer, Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
[MD5.00000000000000000000000000000000] [APT] [ef7fe800] (.Pas de propriétaire.) -- C:\Users\Didier\AppData\Local\Temp\setup837337088.exe (.not file.)
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe



---\ Pilotes lancés au démarrage (O41)
O41 - Driver:  (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver:  (avgio) . (.Avira GmbH - Avira AntiVir Support for Minifilter.) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys
O41 - Driver:  (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\Windows\System32\DRIVERS\avipbb.sys
O41 - Driver:  (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver:  (DfsC) . (.Microsoft Corporation - DFS Client MUP Surrogate Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver:  (DritekPortIO) . (.Dritek System Inc. - General Port I/O.) - C:\PROGRA~1\LAUNCH~1\DPortIO.sys
O41 - Driver:  (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
O41 - Driver:  (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver:  (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys
O41 - Driver:  (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver:  (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS
etbios.sys
O41 - Driver:  (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS
etbt.sys
O41 - Driver:  (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers
siproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver:  (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERSasacd.sys
O41 - Driver:  (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERSdbss.sys
O41 - Driver:  (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver:  (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\driversdpencdd.sys
O41 - Driver: C:\Windows\system32	cpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys
O41 - Driver:  (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\Windows\System32\DRIVERS\ssmdrv.sys
O41 - Driver: C:\Windows\system32	cpipcfg.dll (Tcpip) . (.Microsoft Corporation - TCP/IP Driver.) - C:\Windows\System32\drivers	cpip.sys
O41 - Driver: C:\Windows\system32	cpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS	dx.sys
O41 - Driver:  (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS	ermdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver:  (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys



---\ Logiciels installés (O42)
O42 - Logiciel: ABBYY FineReader 6.0 Sprint - (.ABBYY Software House.) [HKLM] -- {ACF60000-22B9-4CE9-98D6-2CCF359BAC07}
O42 - Logiciel: ALPS Touch Pad Driver - (.Alps Electric.) [HKLM] -- {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}
O42 - Logiciel: Acer Arcade Deluxe - (.CyberLink Corporation.) [HKLM] -- {EFBDC2B0-FAA8-4B78-8DE1-AEBE7958FA37}
O42 - Logiciel: Acer Crystal Eye Webcam Video Class Camera  - (.Suyin.) [HKLM] -- {399C37FB-08AF-493B-BFED-20FBD85EDF7F}
O42 - Logiciel: Acer Crystal Eye webcam - (.SUYIN.) [HKLM] -- {AA047D7C-5E7C-4878-B75C-77589151B563}
O42 - Logiciel: Acer Empowering Technology - (.Acer Inc..) [HKLM] -- {AB6097D9-D722-4987-BD9E-A076E2848EE2}
O42 - Logiciel: Acer GridVista - (.Pas de propriétaire.) [HKLM] -- GridVista
O42 - Logiciel: Acer Mobility Center Plug-In - (.Acer Inc..) [HKLM] -- {11316260-6666-467B-AC34-183FCB5D4335}
O42 - Logiciel: Acer ScreenSaver - (.Acer Inc..) [HKLM] -- {79DD56FC-DB8B-47F5-9C80-78B62E05F9BC}
O42 - Logiciel: Acer Tour - (.Acer Inc..) [HKLM] -- {94389919-B0AA-4882-9BE8-9F0B004ECA35}
O42 - Logiciel: Acer eAudio Management - (.Pas de propriétaire.) [HKLM] -- {57265292-228A-41FA-9AEC-4620CBCC2739}
O42 - Logiciel: Acer eDataSecurity Management - (.HiTRUST Inc..) [HKLM] -- {AEEAE013-92F1-4515-B278-139F1A692A36}
O42 - Logiciel: Acer eLock Management - (.Acer Inc..) [HKLM] -- {116FF17B-1A30-4FC2-9B01-5BC5BD46B0B3}
O42 - Logiciel: Acer eNet Management - (.Acer Inc..) [HKLM] -- {C06554A1-2C1E-4D20-B613-EE62C79927CC}
O42 - Logiciel: Acer ePower Management - (.Acer Inc..) [HKLM] -- {58E5844B-7CE2-413D-83D1-99294BF6C74F}
O42 - Logiciel: Acer ePresentation Management - (.Acer Inc..) [HKLM] -- {BF839132-BD43-4056-ACBF-4377F4A88E2A}
O42 - Logiciel: Acer eSettings Management - (.Acer Inc..) [HKLM] -- {CE65A9A0-9686-45C6-9098-3C9543A412F0}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader 8.1.0 - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1033-7B44-A81000000003}
O42 - Logiciel: Adobe Shockwave Player - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player
O42 - Logiciel: Apple Software Update - (.Apple Computer, Inc..) [HKLM] -- {55FA89BD-21D3-42F7-9249-C94C0094A83C}
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop
O42 - Logiciel: Camera RAW Plug-In for EPSON Creativity Suite - (.SEIKO EPSON CORPORATION.) [HKLM] -- {93EA9C3E-BDFD-4309-A605-9B5BBC0CCEFD}
O42 - Logiciel: EPSON Attach To Email - (.SEIKO EPSON.) [HKLM] -- InstallShield_{20C45B32-5AB6-46A4-94EF-58950CAF05E5}
O42 - Logiciel: EPSON Copy Utility 3 - (.Pas de propriétaire.) [HKLM] -- {67EDD823-135A-4D59-87BD-950616D6E857}
O42 - Logiciel: EPSON Easy Photo Print - (.SEIKO EPSON CORPORATION.) [HKLM] -- {3D78F2A2-C893-4ABD-B5FE-AD7011837755}
O42 - Logiciel: EPSON File Manager - (.Pas de propriétaire.) [HKLM] -- {2EB81825-E9EE-44F4-8F51-1240C3898DC6}
O42 - Logiciel: EPSON Logiciel imprimante - (.SEIKO EPSON Corporation.) [HKLM] -- EPSON Printer and Utilities
O42 - Logiciel: EPSON Scan - (.Pas de propriétaire.) [HKLM] -- EPSON Scanner
O42 - Logiciel: EPSON Scan Assistant - (.Pas de propriétaire.) [HKLM] -- {2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}
O42 - Logiciel: EPSON Stylus CX9300F_DX9400F Manuel - (.Pas de propriétaire.) [HKLM] -- EPSON Stylus CX9300F_DX9400F Guide d'utilisation
O42 - Logiciel: Free Music Zilla - (.FreeMusicZilla.com.) [HKLM] -- Free Music Zilla_is1
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {1EE04769-91C4-4A06-92B7-FCAFE6BABDD9}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HDAUDIO Soft Data Fax Modem with SmartCP - (.Pas de propriétaire.) [HKLM] -- CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFAOR2C06_118
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {133742BA-6F46-4D3E-85AF-78631D9AD8B8}
O42 - Logiciel: Java(TM) 6 Update 23 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216013FF}
O42 - Logiciel: Java(TM) 6 Update 3 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160030}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {8E5233E1-7495-44FB-8DEB-4BE906D59619}
O42 - Logiciel: Launch Manager - (.Pas de propriétaire.) [HKLM] -- LManager
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.0.1200 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra - (.Microsoft Corporation.) [HKLM] -- {3E31821C-7917-367E-938E-E65FC413EA31}
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Office Live Add-in 1.3 - (.Microsoft Corporation.) [HKLM] -- {57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM] -- {4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5}
O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - KB2467175 - (.Microsoft Corporation.) [HKLM] -- {a0fe116e-9a8a-466f-aee0-625cb7c207e3}
O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {86CE85E6-DBAC-3FFD-B977-E4B79F83C909}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack SP1 - fra
O42 - Logiciel: Mozilla Firefox (3.5.16) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.5.16)
O42 - Logiciel: NTI Backup NOW! 4.7 - (.NewTech Infosystems.) [HKLM] -- {67ADE9AF-5CD9-4089-8825-55DE4B366799}
O42 - Logiciel: NTI CD & DVD-Maker - (.NewTech Infosystems.) [HKLM] -- InstallShield_{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Drivers
O42 - Logiciel: OFFICE One 7.0 - (.ISSENDIS.) [HKLM] -- {276CB8D8-4C93-4C1D-95A3-B1B1FFF980A1}
O42 - Logiciel: OFFICE One License v7 - (.ISSENDIS.) [HKLM] -- {74588E42-C78A-42A8-9A3A-9ED6BF747CFE}
O42 - Logiciel: OFFICE One QuickPDF LITE v7 - (.ISSENDIS.) [HKLM] -- {BEF146E0-2264-4DA9-B235-3961313E270E}
O42 - Logiciel: OFFICE One v7 Paint.net - (.ISSENDIS.) [HKLM] -- {820A9A2C-1824-4FCF-9AA5-CCC84724583A}
O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238}
O42 - Logiciel: PowerProducer 3.72 - (.CyberLink Corporation.) [HKLM] -- {B7A0CE06-068E-11D6-97FD-0050BACBF861}
O42 - Logiciel: QuickTime - (.Apple Computer, Inc..) [HKLM] -- {F07B861C-72B9-40A4-8B1A-AAED4C06A7E8}
O42 - Logiciel: RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01 - (.Pas de propriétaire.) [HKLM] -- {59F6A514-9813-47A3-948C-8A155460CC2A}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
O42 - Logiciel: Shape Solitaire - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110261550}
O42 - Logiciel: SweetIM Toolbar for Internet Explorer 3.6 - (.SweetIM Technologies Ltd..) [HKLM] -- {31CF6C0E-51F0-41D2-B088-A6A143C4303C}
O42 - Logiciel: SweetIM for Messenger 2.8 - (.SweetIM Technologies Ltd..) [HKLM] -- {DF6F459C-8B89-4F88-B63F-A2E136BB6B79}
O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707
O42 - Logiciel: VLC media player 1.0.1 - (.VideoLAN Team.) [HKLM] -- VLC media player
O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {B3B487E7-6171-4376-9074-B28082CEB504}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1}
O42 - Logiciel: Windows Live Contrôle parental - (.Microsoft Corporation.) [HKLM] -- {9FF9FDF7-F84A-4F99-B4BB-066B6F95F33D}
O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {76810709-A7D3-468D-9167-A1780C1E766C}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {5DD76286-9BE7-4894-A990-E905E91AC818}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {230B83A5-7D88-4B95-B71E-F44C0C78B002}
O42 - Logiciel: Windows Live Toolbar - (.Microsoft Corporation.) [HKLM] -- {9D6524E6-15CF-4852-BF70-04FE973A3DE1}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {4634B21A-CC07-4396-890C-2B8168661FEA}
O42 - Logiciel: Yahoo! BrowserPlus - (.Yahoo! Inc..) [HKCU] -- Yahoo! BrowserPlus
O42 - Logiciel: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - (.Pas de propriétaire.) [HKLM] -- Yahoo! Companion

---\ HKCU & HKLM Software Keys
[HKCU\Software\ABBYY]
[HKCU\Software\ASProtect]
[HKCU\Software\Acer]
[HKCU\Software\Adobe]
[HKCU\Software\Alps]
[HKCU\Software\AppDataLow\Software\Google]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\Yahoo]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Avira]
[HKCU\Software\Badoo]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Compal]
[HKCU\Software\Cyberlink]
[HKCU\Software\EPSON]
[HKCU\Software\Google]
[HKCU\Software\HookNetwork]
[HKCU\Software\IM Providers]
[HKCU\Software\InnoShock]
[HKCU\Software\JEDI-VCL]
[HKCU\Software\JavaSoft]
[HKCU\Software\Lake]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MimarSinan]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Netscape]
[HKCU\Software\NewTech Infosystems]
[HKCU\Software\ODBC]
[HKCU\Software\Oberon Media]
[HKCU\Software\Poker 770]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\SEIKO EPSON]
[HKCU\Software\SOCID]
[HKCU\Software\Sony Corporation]
[HKCU\Software\SweetIM]
[HKCU\Software\Sysinternals]
[HKCU\Software\Titan Poker]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\VHLD]
[HKCU\Software\Wget]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\Yahoo]
[HKCU\Software\pacificpoker]
[HKCU\Software\pokerinstaller]
[HKLM\Software\ABBYY]
[HKLM\Software\Acer Inc.]
[HKLM\Software\Adobe]
[HKLM\Software\Alps]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Avira]
[HKLM\Software\CXT]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Compal]
[HKLM\Software\Conexant]
[HKLM\Software\CyberLink]
[HKLM\Software\EPSON]
[HKLM\Software\Free Music Zilla]
[HKLM\Software\Google]
[HKLM\Software\InnoShock]
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\LightScribe]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\NewTech Infosystems]
[HKLM\Software\ODBC]
[HKLM\Software\OFFICE One QuickPDF]
[HKLM\Software\Oberon Media]
[HKLM\Software\OpenOffice.org]
[HKLM\Software\PTECH]
[HKLM\Software\Paint.NET]
[HKLM\Software\Poker 770]
[HKLM\Software\Policies]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SONIX]
[HKLM\Software\SRS Labs]
[HKLM\Software\Sonic]
[HKLM\Software\Sony Corporation]
[HKLM\Software\Sun Microsystems]
[HKLM\Software\Suyin]
[HKLM\Software\Swearware]
[HKLM\Software\SweetIM]
[HKLM\Software\Symantec]
[HKLM\Software\Titan Poker]
[HKLM\Software\VideoLAN]
[HKLM\Software\Waves Audio]
[HKLM\Software\Windows]
[HKLM\Software\X-AVCSD]
[HKLM\Software\Yahoo]
[HKLM\Software\acer]
[HKLM\Software\mozilla.org]
[HKLM\Software\muvee Technologies]
[HKLM\Software
Splitter]



---\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 14/06/2009 - 16:42:06 - [124428627] ----D- C:\Program Files\ABBYY FineReader 6.0 Sprint
O43 - CFD: 12/06/2009 - 19:10:34 - [545988882] ----D- C:\Program Files\Acer Arcade Deluxe
O43 - CFD: 12/06/2009 - 19:22:12 - [1316014] ----D- C:\Program Files\ACER Crystal Eye webcam
O43 - CFD: 02/01/2011 - 19:37:18 - [40428224] ----D- C:\Program Files\Acer GameZone
O43 - CFD: 12/06/2009 - 19:30:28 - [1360873] ----D- C:\Program Files\Acer Inc
O43 - CFD: 26/07/2007 - 04:54:08 - [184243601] ----D- C:\Program Files\Adobe
O43 - CFD: 12/06/2009 - 19:24:08 - [11413487] ----D- C:\Program Files\Apoint2K
O43 - CFD: 13/06/2009 - 14:05:56 - [2339579] ----D- C:\Program Files\Apple Software Update
O43 - CFD: 13/06/2009 - 12:01:50 - [178015105] ----D- C:\Program Files\Avira
O43 - CFD: 05/06/2011 - 15:38:50 - [732114302] ----D- C:\Program Files\Common Files
O43 - CFD: 26/07/2007 - 03:29:50 - [741376] ----D- C:\Program Files\CONEXANT
O43 - CFD: 26/07/2007 - 04:13:58 - [172409680] ----D- C:\Program Files\CyberLink
O43 - CFD: 14/06/2009 - 16:43:14 - [151849129] ----D- C:\Program Files\epson
O43 - CFD: 12/06/2009 - 19:02:12 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 06/12/2009 - 12:42:56 - [2957264] ----D- C:\Program Files\Free Music Zilla
O43 - CFD: 08/02/2010 - 10:56:56 - [38305012] ----D- C:\Program Files\Google
O43 - CFD: 21/06/2009 - 19:43:38 - [107171498] --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD: 06/03/2011 - 16:44:04 - [6409670] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 02/01/2011 - 18:06:36 - [172891191] ----D- C:\Program Files\Java
O43 - CFD: 12/06/2009 - 19:08:12 - [2345633] ----D- C:\Program Files\Launch Manager
O43 - CFD: 05/06/2011 - 18:39:18 - [7566408] ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 13/06/2009 - 00:27:46 - [1544075] ----D- C:\Program Files\Microsoft
O43 - CFD: 12/06/2009 - 23:59:22 - [800662] ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2
O43 - CFD: 02/11/2006 - 14:37:36 - [92804023] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 13/06/2009 - 13:31:08 - [4225378] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 28/04/2011 - 16:20:44 - [38388859] ----D- C:\Program Files\Microsoft Silverlight
O43 - CFD: 13/06/2009 - 00:23:54 - [1829877] ----D- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 13/06/2009 - 00:26:42 - [2188837] ----D- C:\Program Files\Microsoft Sync Framework
O43 - CFD: 15/10/2009 - 17:22:08 - [150653090] ----D- C:\Program Files\Microsoft Works
O43 - CFD: 11/03/2010 - 21:37:02 - [99153006] ----D- C:\Program Files\Movie Maker
O43 - CFD: 06/03/2011 - 12:34:00 - [28618176] ----D- C:\Program Files\Mozilla Firefox
O43 - CFD: 02/11/2006 - 14:37:36 - [25757] ----D- C:\Program Files\MSBuild
O43 - CFD: 02/11/2006 - 14:37:36 - [3272760] ----D- C:\Program Files\MSN
O43 - CFD: 12/06/2009 - 21:08:04 - [0] ----D- C:\Program Files\MSXML 4.0
O43 - CFD: 05/06/2011 - 16:16:58 - [0] ----D- C:\Program Files\Navilog1
O43 - CFD: 26/07/2007 - 04:11:52 - [49032259] ----D- C:\Program Files\NewTech Infosystems
O43 - CFD: 13/06/2009 - 13:59:58 - [256198354] ----D- C:\Program Files\OFFICE One 7.0
O43 - CFD: 13/06/2009 - 14:07:50 - [29506029] ----D- C:\Program Files\OFFICE One v7
O43 - CFD: 13/06/2009 - 14:07:26 - [72399970] ----D- C:\Program Files\QuickTime
O43 - CFD: 12/06/2009 - 19:11:58 - [15973452] ----D- C:\Program Files\Realtek
O43 - CFD: 02/11/2006 - 14:37:36 - [38637313] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 12/06/2009 - 19:22:12 - [0] ----D- C:\Program Files\SUYIN
O43 - CFD: 06/12/2009 - 09:33:22 - [6230879] ----D- C:\Program Files\SweetIM
O43 - CFD: 02/11/2006 - 15:01:56 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 23/08/2009 - 19:08:08 - [74466874] ----D- C:\Program Files\VideoLAN
O43 - CFD: 12/06/2009 - 23:13:28 - [1016832] ----D- C:\Program Files\Windows Calendar
O43 - CFD: 02/11/2006 - 14:42:34 - [2761216] ----D- C:\Program Files\Windows Collaboration
O43 - CFD: 26/07/2007 - 04:19:52 - [4486592] ----D- C:\Program Files\Windows Defender
O43 - CFD: 02/11/2006 - 14:42:34 - [7078008] ----D- C:\Program Files\Windows Journal
O43 - CFD: 06/02/2011 - 00:09:10 - [156211900] ----D- C:\Program Files\Windows Live
O43 - CFD: 13/06/2009 - 00:20:48 - [245112] ----D- C:\Program Files\Windows Live SkyDrive
O43 - CFD: 14/04/2010 - 07:44:50 - [9071240] ----D- C:\Program Files\Windows Mail
O43 - CFD: 28/10/2009 - 18:39:36 - [4496487] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 12/06/2009 - 19:02:12 - [7940176] ----D- C:\Program Files\Windows NT
O43 - CFD: 02/11/2006 - 14:42:34 - [13463714] ----D- C:\Program Files\Windows Photo Gallery
O43 - CFD: 12/06/2009 - 23:13:12 - [6503190] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 02/01/2011 - 19:38:26 - [1532145] ----D- C:\Program Files\Yahoo!
O43 - CFD: 05/06/2011 - 20:22:54 - [3898120] ----D- C:\Program Files\ZHPDiag
O43 - CFD: 26/07/2007 - 04:54:18 - [6707262] ----D- C:\Program Files\Common Files\Adobe
O43 - CFD: 14/06/2009 - 16:46:34 - [10900321] ----D- C:\Program Files\Common Files\InstallShield
O43 - CFD: 02/01/2011 - 18:08:24 - [34721981] ----D- C:\Program Files\Common Files\Java
O43 - CFD: 26/07/2007 - 04:11:30 - [7178034] ----D- C:\Program Files\Common Files\LightScribe
O43 - CFD: 13/06/2009 - 13:31:08 - [237637631] ----D- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 26/07/2007 - 04:11:08 - [9706600] ----D- C:\Program Files\Common Files\muvee Technologies
O43 - CFD: 26/07/2007 - 04:11:54 - [2296110] ----D- C:\Program Files\Common Files\NewTech Infosystems
O43 - CFD: 21/11/2010 - 17:05:00 - [354896] ----D- C:\Program Files\Common Files\Oberon Media
O43 - CFD: 02/11/2006 - 13:18:34 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 12/06/2009 - 19:20:20 - [4820842] ----D- C:\Program Files\Common Files\snp2uvc
O43 - CFD: 02/11/2006 - 13:18:34 - [41100711] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 13/06/2009 - 13:56:44 - [458974] ----D- C:\Program Files\Common Files\Symantec Shared
O43 - CFD: 26/07/2007 - 04:19:54 - [15016834] ----D- C:\Program Files\Common Files\System
O43 - CFD: 12/06/2009 - 21:08:32 - [361211404] ----D- C:\Program Files\Common Files\Windows Live
O43 - CFD: 26/07/2007 - 04:54:36 - [752] --H-D- C:\ProgramData\Adobe
O43 - CFD: 13/06/2009 - 14:06:36 - [26662912] --H-D- C:\ProgramData\Apple Computer
O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 13/06/2009 - 12:01:50 - [86639154] --H-D- C:\ProgramData\Avira
O43 - CFD: 12/06/2009 - 19:02:12 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 20/06/2009 - 16:04:18 - [7547] --H-D- C:\ProgramData\CyberLink
O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 14/06/2009 - 16:39:20 - [402917] --H-D- C:\ProgramData\EPSON
O43 - CFD: 12/06/2009 - 19:02:12 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 20/06/2009 - 11:57:54 - [539380] --H-D- C:\ProgramData\Google
O43 - CFD: 05/06/2011 - 18:39:16 - [6804893] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 12/06/2009 - 19:02:12 - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 04/06/2010 - 14:36:06 - [176624346] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 13/06/2009 - 13:31:44 - [57040] ----D- C:\ProgramData\Microsoft Help
O43 - CFD: 12/06/2009 - 19:02:12 - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 23/12/2010 - 13:56:40 - [190394] --H-D- C:\ProgramData\NVIDIA
O43 - CFD: 13/06/2009 - 14:07:52 - [386] --H-D- C:\ProgramData\OFFICE One v7
O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 02/01/2011 - 18:08:28 - [119] --H-D- C:\ProgramData\Sun
O43 - CFD: 15/09/2009 - 20:42:48 - [6795031] --H-D- C:\ProgramData\SweetIM
O43 - CFD: 13/06/2009 - 13:56:18 - [16498] --H-D- C:\ProgramData\Symantec
O43 - CFD: 28/11/2010 - 08:48:44 - [0] --HAD- C:\ProgramData\TEMP
O43 - CFD: 02/11/2006 - 15:02:06 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 14/06/2009 - 16:44:20 - [3184] --H-D- C:\ProgramData\UDL
O43 - CFD: 02/01/2011 - 18:11:26 - [5241] --H-D- C:\ProgramData\Yahoo!
O43 - CFD: 12/06/2009 - 21:23:08 - [109462] --H-D- C:\ProgramData\Yahoo! Companion
O43 - CFD: 04/06/2011 - 01:25:18 - [3507656] --H-D- C:\Users\Didier\AppData\Roaming\Adobe
O43 - CFD: 01/11/2010 - 13:41:30 - [1688] --H-D- C:\Users\Didier\AppData\Roaming\Apple Computer
O43 - CFD: 13/03/2011 - 11:35:36 - [0] --H-D- C:\Users\Didier\AppData\Roaming\Avira
O43 - CFD: 01/11/2010 - 13:03:28 - [11130] --H-D- C:\Users\Didier\AppData\Roaming\CyberLink
O43 - CFD: 28/06/2010 - 18:40:38 - [696] --H-D- C:\Users\Didier\AppData\Roaming\EPSON
O43 - CFD: 06/12/2009 - 12:43:16 - [536] --H-D- C:\Users\Didier\AppData\Roaming\FMZilla
O43 - CFD: 20/06/2009 - 11:57:58 - [22464] --H-D- C:\Users\Didier\AppData\Roaming\Google
O43 - CFD: 12/06/2009 - 19:07:02 - [0] --H-D- C:\Users\Didier\AppData\Roaming\Identities
O43 - CFD: 12/06/2009 - 19:28:44 - [0] --H-D- C:\Users\Didier\AppData\Roaming\InstallShield
O43 - CFD: 13/06/2009 - 14:05:18 - [2115

Lyonnais92 · Answer

Bonjour,

poste les rapports de Malwarebytes, Avira et Combofix.

===

* Télécharge sur le bureau RogueKiller (par tigzy)

https://www.luanagames.com/index.fr.html

* Quitte tous tes programmes en cours
* Lance le.
* Lorsque demandé, tape 6 et valide
* Un rapport (RKreport.txt) a du se créer à côté de l'exécutable, colle son contenu dans la réponse
* Si le programme a été bloqué, ne pas hésiter a essayer plusieurs fois. 

Du mieux ?

Disparition Icône + multiple pop au démarage

1 réponse

Votre réponse

Discussions similaires

Newsletters