Adware et rogue

couperose57 Messages postés 10 Statut Membre -  
couperose57 Messages postés 10 Statut Membre -
Bonjour,


je viens de lancer malwarebytes et il a trouvé cela et je cherche quelqu un pour m aider à suppimer ces problèmes merçi d'avance

Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org

Version de la base de données: 7260

Windows 6.1.7601 Service Pack 1
Internet Explorer 8.0.7601.17514

24/07/2011 10:03:09
mbam-log-2011-07-24 (10-02-34).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 154828
Temps écoulé: 11 minute(s), 27 seconde(s)

Processus mémoire infecté(s): 1
Module(s) mémoire infecté(s): 1
Clé(s) du Registre infectée(s): 25
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 6
Fichier(s) infecté(s): 13

Processus mémoire infecté(s):
c:\program files\freezefrog\bin\1.0.670.0\freezefrogsa.exe (Adware.FreezeFrog) -> 3476 -> No action taken.

Module(s) mémoire infecté(s):
c:\program files\freezefrog\bin\1.0.670.0\freezefrogsahook.dll (Adware.FreezeFrog) -> No action taken.

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\Typelib\{B035BA6B-57CD-4F72-B545-65BE465FCAF6} (Adware.ShoppingReport2) -> No action taken.
HKEY_CLASSES_ROOT\Typelib\{D44FD6F0-9746-484E-B5C4-C66688393872} (Adware.ShoppingReport2) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{0EB3F101-224A-4B2B-9E5B-DF720857529C} (Adware.ShoppingReport2) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7} (Adware.Softomate) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1602F07D-8BF3-4c08-BDD6-DDDB1C48AEDC} (Adware.ClickPotato) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{69725738-CD68-4f36-8D02-8C43722EE5DA} (Adware.Hotbar) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{AC6D819E-AA8F-4418-A3BB-D165C1B18BB5} (Adware.ClickPotato) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B58926D6-CFB0-45D2-9C28-4B5A0F0368AE} (Adware.ClickPotato) -> No action taken.
HKEY_CLASSES_ROOT\FREEzeFrogAx.Info (Adware.FreezeFrog) -> No action taken.
HKEY_CLASSES_ROOT\FREEzeFrogAx.Info.1 (Adware.FreezeFrog) -> No action taken.
HKEY_CLASSES_ROOT\ShoppingReport2.HbAx (Adware.ShopperReports) -> No action taken.
HKEY_CLASSES_ROOT\ShoppingReport2.HbAx.1 (Adware.ShopperReports) -> No action taken.
HKEY_CLASSES_ROOT\ShoppingReport2.HbInfoBand (Adware.ShopperReports) -> No action taken.
HKEY_CLASSES_ROOT\ShoppingReport2.HbInfoBand.1 (Adware.ShopperReports) -> No action taken.
HKEY_CLASSES_ROOT\ShoppingReport2.IEButton (Adware.ShopperReports) -> No action taken.
HKEY_CLASSES_ROOT\ShoppingReport2.IEButton.1 (Adware.ShopperReports) -> No action taken.
HKEY_CLASSES_ROOT\ShoppingReport2.IEButtonA (Adware.ShopperReports) -> No action taken.
HKEY_CLASSES_ROOT\ShoppingReport2.IEButtonA.1 (Adware.ShopperReports) -> No action taken.
HKEY_CLASSES_ROOT\ShoppingReport2.RprtCtrl (Adware.ShopperReports) -> No action taken.
HKEY_CLASSES_ROOT\ShoppingReport2.RprtCtrl.1 (Adware.ShopperReports) -> No action taken.
HKEY_CURRENT_USER\Software\ShoppingReport2 (Adware.ShoppingReport2) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\FREEZEFROGSA (Adware.FreezeFrog) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\ShoppingReport2 (Adware.ShoppingReport2) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FREEzeFrogSA (Adware.FreezeFrog) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ShoppingReport2 (Adware.Hotbar) -> No action taken.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\Software\freezefrogsa\actionurl_current_version (Adware.FreezeFrog) -> Value: actionurl_current_version -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\FREEzeFrogSA (Adware.FreezeFrog) -> Value: FREEzeFrogSA -> No action taken.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
c:\programdata\2aca5cc3-0f83-453d-a079-1076fe1a8b65 (Adware.Seekmo) -> No action taken.
c:\program files\shoppingreport2 (Adware.ShoppingReport2) -> No action taken.
c:\program files\shoppingreport2\Bin (Adware.ShoppingReport2) -> No action taken.
c:\program files\shoppingreport2\Bin\2.7.37 (Adware.ShoppingReport2) -> No action taken.
c:\program files\freezefrog\bin\1.0.670.0 (Adware.FreezeFrog) -> No action taken.
c:\programdata\freezefrogsa (Adware.FreezeFrog) -> No action taken.

Fichier(s) infecté(s):
c:\program files\freezefrog\bin\1.0.670.0\freezefrogsahook.dll (Adware.FreezeFrog) -> No action taken.
c:\Users\ms-home\downloads\vlc-fr (1).exe (Trojan.Dropper) -> No action taken.
c:\Users\ms-home\downloads\vlcsetup (1).exe (Adware.Hotbar) -> No action taken.
c:\Users\ms-home\downloads\VLCSetup.exe (Adware.Hotbar) -> No action taken.
c:\program files\freezefrog\bin\1.0.670.0\freezefrogsa.exe (Adware.FreezeFrog) -> No action taken.
c:\program files\shoppingreport2\Uninst.exe (Adware.ShoppingReport2) -> No action taken.
c:\program files\freezefrog\bin\1.0.670.0\freezefroguninstaller.exe (Adware.FreezeFrog) -> No action taken.
c:\program files\freezefrog\bin\1.0.670.0\launchhelp.dll (Adware.FreezeFrog) -> No action taken.
c:\programdata\freezefrogsa\freezefrogsa.dat (Adware.FreezeFrog) -> No action taken.
c:\programdata\freezefrogsa\freezefrogsaabout.mht (Adware.FreezeFrog) -> No action taken.
c:\programdata\freezefrogsa\freezefrogsaau.dat (Adware.FreezeFrog) -> No action taken.
c:\programdata\freezefrogsa\freezefrogsaeula.mht (Adware.FreezeFrog) -> No action taken.
c:\programdata\freezefrogsa\freezefrogsa_kyf.dat (Adware.FreezeFrog) -> No action taken.

4 réponses

  1. Utilisateur anonyme
     
    Bonjour

    relances Mbam et supprime la sélection.

    Ensuite.

    On va faire une analyse de ton systéme.

    * Télécharge ZHPDiag ( de Nicolas coolman ).
    ou
    ZHPDiag
    ou
    https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html

    Ou le lien FTP en secours :
    ftp://zebulon.fr/ZHPDiag2.exe

    ***********************
    /!\Utilisateurs de Vista et Windows 7 : Clique droit sur le logo de ZHPDiag.exe, " exécuter en tant qu'Administrateur /!\
    * Laisse toi guider lors de l'installation
    * Il se lancera automatiquement à la fin de l'installation
    * Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
    * Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
    * Héberge le rapport ZHPDiag.txt sur le site pjjoint.malekal.com ou cijoint.fr ou toofiles puis copie/colle le lien fournit dans ta prochaine réponse sur le forum
    0
  2. couperose57 Messages postés 10 Statut Membre
     
    https://pjjoint.malekal.com/files.php?id=9e8f1a7ec7v15y9u11m13x9t6q149h5j6b9r11
    Merçi de ton aide
    voiçi le rapport

    Rapport de ZHPDiag v1.27.2424 par Nicolas Coolman, Update du 22/07/2011
    Run by ms-home at 24/07/2011 10:38:48
    Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html

    ---\\ Web Browser
    MSIE: Internet Explorer v8.0.7601.17514
    GCIE: Google Chrome v12.0.742.122 (Defaut)

    ---\\ System Information
    Windows 7 Business Edition, 32-bit Service Pack 1 (Build 7601)
    ~ Processor: x86 Family 15 Model 4 Stepping 1, GenuineIntel
    ~ Operating System: 32 Bits
    ~ Boot mode: ~ Normal (Normal boot)
    Total RAM: 511 MB (12% free)
    ~ System Restore: Activé (Enable)
    System drive C: has 101 GB (55%) free of 181 GB

    ---\\ Logged in mode
    ~ Computer Name: MS-HOME-PC
    ~ User Name: ms-home
    ~ All Users Names: ms-home, HomeGroupUser$, Administrateur,
    ~ Unselected Option: O45,O61,O62,O65,O66,O82
    ~ Logged in as Administrator

    ---\\ Environnement Variables
    ~ %AppData%=C:\Users\ms-home\AppData\Roaming\
    ~ %Desktop%=C:\Users\ms-home\Desktop\
    ~ %Favorites%=C:\Users\ms-home\Favorites\
    ~ %LocalAppData%=C:\Users\ms-home\AppData\Local\
    ~ %StartMenu%=C:\Users\ms-home\AppData\Roaming\Microsoft\Windows\Start Menu\

    ---\\ DOS/Devices
    C:\ Hard drive, Flash drive, Thumb drive (Free 101 Go of 181 Go)
    D:\ CD-ROM drive (Not Inserted)
    E:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
    F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
    G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
    H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
    I:\ CD-ROM drive (Not Inserted)

    ---\\ Security Center & Tools Informations
    [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
    [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
    [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
    [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
    [HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK

    ---\\ Recherche particulière de fichiers génériques
    [MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) (.27/04/2011 - 06:30:54.) -- C:\Windows\Explorer.exe [2616320]
    [MD5.51138BEEA3E2C21EC44D0932C71762A8] - (....) (.14/07/2009 - 02:14:31.) -- C:\Windows\system32\rundll32.exe [44544]
    [MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\system32\Wininit.exe [96256]
    [MD5.2CA020EACDC6DDB2BEA89FEA02C90945] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.15/06/2011 - 20:10:01.) -- C:\Windows\system32\wininet.dll [981504]
    [MD5.6D13E1406F50C66E2A95D97F22C47560] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.09/06/2011 - 13:17:54.) -- C:\Windows\system32\Winlogon.exe [286720]
    [MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\drivers\atapi.sys [21584]
    [MD5.81189C3D7763838E55C397759D49007A] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.27/04/2011 - 06:39:00.) -- C:\Windows\system32\drivers\ntfs.sys [1211264]

    ---\\ Etat des fichiers cachés (Caché/Total)
    ~ Mes images (My Pictures) : 6/154
    ~ Mes musiques (My Musics) : 3/7
    ~ Mes Videos (My Videos) : 1/6
    ~ Mes Favoris (My Favorites) : 3/26
    ~ Mes Documents (My Documents) : 5/35
    ~ Mon Bureau (My Desktop) : 1/29
    ~ Menu demarrer (Programs) : 7/26

    ---\\ Processus lancés
    [MD5.AA16204FD1F75637E8EAEB593A8FA597] - (.PowerISO Computing, Inc. - PowerISO Virtual Drive Manager.) -- C:\Program Files\PowerISO\PWRISOVM.EXE [180224]
    [MD5.40D5D8EEBE614F115B81E677587F1007] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [9210400]
    [MD5.F8D427DAE2984A4968E2D1CB53634784] - (.Nuance Communications, Inc. - OCR Aware.) -- C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe [79400]
    [MD5.1568FF282E268082C67CF0C3EBCC9179] - (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files\Epson Software\Event Manager\EEventManager.exe [976320]
    [MD5.A7810B302294793DE88542AAE177D1B1] - (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424]
    [MD5.CDC5106D846A7006AD3FA099367457C1] - (...) -- C:\Program Files\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe [380416]
    [MD5.53D96678FB89F056D5285101481297D9] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [421160]
    [MD5.688E20975EB4E446A80F47197A10ACBF] - (.MusicLab, LLC - Data Manager.) -- C:\Program Files\BearShare Applications\MediaBar\Datamngr\datamngrUI.exe [1114040]
    [MD5.13E7CFE8E269ED15E7FC9C3EBBCB7E2B] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [254696]
    [MD5.33BFCE71F407F24E5DFDB7DD46CE2D6D] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [449584]
    [MD5.73708319A8673E43670A1A334B2D96AC] - (.Google Inc. - Google Chrome.) -- C:\Users\ms-home\AppData\Local\Google\Chrome\Application\chrome.exe [1012792]
    [MD5.51138BEEA3E2C21EC44D0932C71762A8] - (...) -- C:\Windows\system32\rundll32.exe [44544]
    [MD5.0E8A6A1BC5B08EA29E363EE5E06F7ECB] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [658944]

    ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
    P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.6.) -- C:\Windows\system32\Adobe\Director\np32dsw.dll
    P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
    P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
    P2 - FPN: [HKLM] [@google.com/npPicasa3,version=3.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Google\Picasa3\npPicasa3.dll
    P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_26 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
    P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60531.0.) -- c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
    P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll
    P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll
    P2 - FPN: [HKLM] [@zylom.com/ZylomGamesPlayer] - (.Zylom - Zylom Plugin.) -- C:\ProgramData\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll
    P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.5".) -- C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
    P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\ms-home\AppData\Local\Google\Update\1.3.21.57\npGoogleUpdate3.dll
    P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\ms-home\AppData\Local\Google\Update\1.3.21.57\npGoogleUpdate3.dll

    ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
    C:\Users\ms-home\AppData\Local\Google\Chrome\User Data\Default\Preferences
    G1 - GCS: Preference [User Data\Default] None
    G0 - GCSP: Preference [User Data\Default][HomePage] https://www.google.fr/?gws_rd=ssl

    ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.bearshare.net/
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
    R0 - HKUS\S-1-5-21-3137324842-3722217343-1886870445-1002\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.bearshare.net/
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.google.com/?gws_rd=ssl
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
    R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.google.com/?gws_rd=ssl
    R1 - HKUS\S-1-5-21-3137324842-3722217343-1886870445-1002\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
    R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll
    R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1

    ---\\ Internet Explorer, Proxy Management (R5)
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

    ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
    F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
    F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe

    ---\\ Browser Helper Objects de navigateur (O2)
    O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} Clé orpheline
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: UrlHelper Class - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} . (.MusicLab, LLC - IEHelper.) -- C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\IEBHO.dll
    O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} . (.SEIKO EPSON CORPORATION / CyCom Technology - Epson Easy Photo Print (TBL).) -- C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
    O2 - BHO: MediaBar - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} . (.Pas de propriétaire - dtx Dynamic Link Library.) -- C:\PROGRA~1\BEARSH~1\MediaBar\ToolBar\bsdtxmltbpi.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll

    ---\\ Internet Explorer Toolbars (O3)
    O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} . (.SEIKO EPSON CORPORATION / CyCom Technology - Epson Easy Photo Print (TBL).) -- C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
    O3 - Toolbar: MediaBar - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} . (.Pas de propriétaire - dtx Dynamic Link Library.) -- C:\PROGRA~1\BEARSH~1\MediaBar\ToolBar\bsdtxmltbpi.dll
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

    ---\\ Applications démarrées par registre & par dossier (O4)
    O4 - HKLM\..\Run: [PWRISOVM.EXE] . (.PowerISO Computing, Inc. - PowerISO Virtual Drive Manager.) -- C:\Program Files\PowerISO\PWRISOVM.exe
    O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
    O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
    O4 - HKLM\..\Run: [SSBkgdUpdate] . (.Nuance Communications, Inc. - SSBkgdUpdate.) -- C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe
    O4 - HKLM\..\Run: [OpwareSE4] . (.Nuance Communications, Inc. - OCR Aware.) -- C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe
    O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
    O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe
    O4 - HKLM\..\Run: [EEventManager] . (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files\Epson Software\Event Manager\EEventManager.exe
    O4 - HKLM\..\Run: [ArcSoft Connection Service] . (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
    O4 - HKLM\..\Run: [Philips Device Listener] . (...) -- C:\Program Files\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe
    O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe
    O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
    O4 - HKLM\..\Run: [DATAMNGR] . (.MusicLab, LLC - Data Manager.) -- C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\DATAMN~1.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
    O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
    O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\ms-home\AppData\Local\Google\Update\GoogleUpdate.exe
    O4 - HKCU\..\Run: [EPSON SX125 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGGE.exe
    O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKUS\S-1-5-18\..\Run: [SpywareTerminatorUpdate] C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe (.not file.)
    O4 - HKUS\S-1-5-18\..\Run: [SpywareTerminatorUpdate] C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe (.not file.)
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
    O4 - HKUS\S-1-5-21-3137324842-3722217343-1886870445-1002\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\ms-home\AppData\Local\Google\Update\GoogleUpdate.exe
    O4 - HKUS\S-1-5-21-3137324842-3722217343-1886870445-1002\..\Run: [EPSON SX125 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGGE.exe
    O4 - HKUS\S-1-5-21-3137324842-3722217343-1886870445-1002\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
    O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe

    ---\\ Autres liens utilisateurs (O4)
    O4 - Global Startup: C:\Users\ms-home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
    O4 - Global Startup: C:\Users\ms-home\Desktop\Google Chrome.lnk . (.Google Inc..) -- C:\Users\ms-home\AppData\Local\Google\Chrome\Application\chrome.exe
    O4 - Global Startup: C:\Users\ms-home\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
    O4 - Global Startup: C:\Users\ms-home\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Philips Songbird.lnk . (.Koninklijke Philips Electronics N.V..) -- C:\Program Files\Philips\Philips Songbird\Philips-Songbird.exe
    O4 - Global Startup: C:\Users\ms-home\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Picasa 3.lnk . (.Google Inc..) -- C:\Program Files\Google\Picasa3\Picasa3.exe

    ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
    O8 - Extra context menu item: Add to Google Photos Screensa&ver . (.Google Inc. - Google Photos Screensaver.) -- C:\Windows\system32\GPhotos.scr
    O8 - Extra context menu item: Google Sidewiki... . (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll

    ---\\ Winsock hijacker (Layered Service Provider) (O10)
    O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
    O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
    O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
    O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
    O10 - WLSP:\000000000005\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
    O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
    O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll

    ---\\ Objets ActiveX (Downloaded Program Files)(O16)
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab

    ---\\ Modification Domaine/Adresses DNS (O17)
    O17 - HKLM\System\CCS\Services\Tcpip\..\{E139B1FF-DF47-48B9-9CE4-83ACFFE17D40}: DhcpNameServer = 212.27.40.241 212.27.40.240
    O17 - HKLM\System\CS1\Services\Tcpip\..\{E139B1FF-DF47-48B9-9CE4-83ACFFE17D40}: DhcpNameServer = 212.27.40.241 212.27.40.240
    O17 - HKLM\System\CS2\Services\Tcpip\..\{E139B1FF-DF47-48B9-9CE4-83ACFFE17D40}: DhcpNameServer = 212.27.40.241 212.27.40.240
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.241 212.27.40.240

    ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
    O20 - AppInit_DLLs: . (.MusicLab, LLC - Data Manager.) - C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\datamngr.dll

    ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
    O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.

    ---\\ Liste des services NT non Microsoft et non désactivés (O23)
    O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) . (.ABBYY - ABBYY network license server.) - C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
    O23 - Service: ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc. - ArcSoft Connect Service.) - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
    O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

    ---\\ Enumération Active Desktop & MHTML Editor (O24)
    O24 - Default MHTML Editor: Last - .(...) - (.not file.)

    ---\\ Tâches planifiées en automatique (O39)
    O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
    O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
    O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3137324842-3722217343-1886870445-1002Core.job
    O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3137324842-3722217343-1886870445-1002UA.job
    [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
    [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
    [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-3137324842-3722217343-1886870445-1002Core] (.Google Inc..) -- C:\Users\ms-home\AppData\Local\Google\Update\GoogleUpdate.exe
    [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-3137324842-3722217343-1886870445-1002UA] (.Google Inc..) -- C:\Users\ms-home\AppData\Local\Google\Update\GoogleUpdate.exe
    [MD5.00000000000000000000000000000000] [APT] [RunAsStdUser Task] (...) -- C:\Program Files\FREEzeFrog\bin\1.0.670.0\FREEzeFrogSA.exe (.not file.)
    [MD5.C3E218E92119467B34B0623ED0CA2ACA] [APT] [{2A0AF965-CE42-4E74-88F8-662297CE388D}] (.Realtek Semiconductor Corp..) -- C:\Users\ms-home\Downloads\Vista_Win7_R248.exe
    [MD5.F3F709C2D49DD6636F4EDE5C2CAE5448] [APT] [{469146C1-9DEB-423D-A56F-1400B53093E2}] (.http://www.emule-project.net.) -- C:\Program Files\eMule\emule.exe
    [MD5.C3E218E92119467B34B0623ED0CA2ACA] [APT] [{837B7B08-BAB4-48B9-80D1-B70CF557EAFB}] (.Realtek Semiconductor Corp..) -- C:\Users\ms-home\Downloads\Vista_Win7_R248.exe
    [MD5.00000000000000000000000000000000] [APT] [{A3396BC9-A90F-435E-B12C-15B6E4A1E15B}] (...) -- C:\Program Files\Micro Application\Safari Photo en Afrique\WildEarth.exe (.not file.)
    [MD5.00000000000000000000000000000000] [APT] [{C446C04F-3ED4-4E86-A125-D3380EB6D4C9}] (...) -- C:\Program Files\Micro Application\Safari Photo en Afrique\WildEarth.exe (.not file.)
    [MD5.F13E5FAE03D44D6F04620E6833E35229] [APT] [{DFF310D2-4EB1-4614-8556-3D18CA286C15}] (.Koninklijke Philips Electronics N.V..) -- C:\Program Files\Philips\Philips Songbird\Philips-Songbird.exe
    [MD5.F3F709C2D49DD6636F4EDE5C2CAE5448] [APT] [{F599B32E-552F-4E08-B726-CF84D48D5256}] (.http://www.emule-project.net.) -- C:\Program Files\eMule\emule.exe
    [MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe

    ---\\ Pilotes lancés au démarrage (O41)
    O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
    O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
    O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
    O41 - Driver: C:\Windows\system32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
    O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
    O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
    O41 - Driver: (MpFilter) . (.Microsoft Corporation - Microsoft antimalware file system filter dr.) - C:\Windows\System32\DRIVERS\MpFilter.sys
    O41 - Driver: (MpKsl016b0b88) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E65804A9-6991-4AEC-BB65-92163B2140C4}\MpKsl016b0b88.sys (.not file.)
    O41 - Driver: (MpKsl0c32e4c1) . (. - .) - C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{8E6E878E-2DB2-4D57-98DB-026920BC4CEB}\MpKsl0c32e4c1.sys (.not file.)
    O41 - Driver: (MpKsl0dbb52c3) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{80AA09E6-8944-4DD6-865E-C508133D1909}\MpKsl0dbb52c3.sys (.not file.)
    O41 - Driver: (MpKsl0e481d4a) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{17944FAE-B4EE-442A-8A9D-2FC4F1BFCE3E}\MpKsl0e481d4a.sys (.not file.)
    O41 - Driver: (MpKsl0f537be7) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{13E90170-DF71-4172-8E6E-7549E95D586E}\MpKsl0f537be7.sys (.not file.)
    O41 - Driver: (MpKsl0fb33233) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B07DE47B-3C33-4008-BC01-0C1ADECFAB18}\MpKsl0fb33233.sys (.not file.)
    O41 - Driver: (MpKsl130931cf) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C835D6C2-E48D-48EF-95EA-610D9F362FEA}\MpKsl130931cf.sys (.not file.)
    O41 - Driver: (MpKsl163bb8af) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7CDC6809-B432-4E92-AEBB-BDCFEF15C689}\MpKsl163bb8af.sys (.not file.)
    O41 - Driver: (MpKsl1667dd95) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{603FA69E-96E0-43D1-8BDB-AF212C7A9F90}\MpKsl1667dd95.sys (.not file.)
    O41 - Driver: (MpKsl177ef536) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F9A9F1E8-3E3F-4B76-BE30-2685C8F822E0}\MpKsl177ef536.sys (.not file.)
    O41 - Driver: (MpKsl1e400fa8) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{8B6218E5-B5E5-4CA5-9AF3-23F26D3A9DA7}\MpKsl1e400fa8.sys (.not file.)
    O41 - Driver: (MpKsl1fcbe37f) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{399F0015-6745-450B-B0B5-6B7E47C3BB29}\MpKsl1fcbe37f.sys (.not file.)
    O41 - Driver: (MpKsl20823c74) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A6AC8B03-553F-457C-9D40-D60281DD1376}\MpKsl20823c74.sys (.not file.)
    O41 - Driver: (MpKsl248d9e3e) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9EDD61B2-34DA-460E-8CE5-038E2AA6CA3B}\MpKsl248d9e3e.sys (.not file.)
    O41 - Driver: (MpKsl2adb041d) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A0418B94-F732-492D-8D77-ECC88343CCE6}\MpKsl2adb041d.sys (.not file.)
    O41 - Driver: (MpKsl2b94e296) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{80AA09E6-8944-4DD6-865E-C508133D1909}\MpKsl2b94e296.sys (.not file.)
    O41 - Driver: (MpKsl35cba1f4) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{057383F3-7985-403F-AC5C-FFCB9EB22836}\MpKsl35cba1f4.sys (.not file.)
    O41 - Driver: (MpKsl375a8321) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{04AB762E-7557-427E-8AB4-5DC1F048352F}\MpKsl375a8321.sys (.not file.)
    O41 - Driver: (MpKsl3da8f7ff) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{0D6EC232-AFD1-4BF3-A75D-BD67A65A5587}\MpKsl3da8f7ff.sys (.not file.)
    O41 - Driver: (MpKsl41126ba6) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{5FDB3DA3-372F-4745-AA65-410322413B64}\MpKsl41126ba6.sys (.not file.)
    O41 - Driver: (MpKsl478e87b6) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{EBE23F33-C596-4DF4-8799-E9EAB3F4BB55}\MpKsl478e87b6.sys (.not file.)
    O41 - Driver: (MpKsl484c3f8e) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{24903911-0E16-4909-A81A-3952DFE01931}\MpKsl484c3f8e.sys (.not file.)
    O41 - Driver: (MpKsl49ad20f1) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{73743CB9-E162-45A7-9C82-DB11907FFFD7}\MpKsl49ad20f1.sys (.not file.)
    O41 - Driver: (MpKsl4af92011) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A354E975-6C88-486E-A72E-6DEF91E06637}\MpKsl4af92011.sys (.not file.)
    O41 - Driver: (MpKsl4b88b8f1) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{410A6FD8-9613-4217-9EAE-CCD2845B704B}\MpKsl4b88b8f1.sys (.not file.)
    O41 - Driver: (MpKsl4bc19a4d) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D96F4774-8C50-4EC0-8CEA-FD2CB534F01B}\MpKsl4bc19a4d.sys (.not file.)
    O41 - Driver: (MpKsl4db4357c) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{83C38394-7B0F-4FBE-9997-1C2DA69D71BB}\MpKsl4db4357c.sys (.not file.)
    O41 - Driver: (MpKsl5005bb31) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A3A4D398-D919-428F-B263-5C1A1C5A481A}\MpKsl5005bb31.sys (.not file.)
    O41 - Driver: (MpKsl51f216aa) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{73743CB9-E162-45A7-9C82-DB11907FFFD7}\MpKsl51f216aa.sys (.not file.)
    O41 - Driver: (MpKsl53efcb52) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F546047C-197F-4BD0-B3B9-76AA7407CFED}\MpKsl53efcb52.sys (.not file.)
    O41 - Driver: (MpKsl54153c2a) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CCFF50D0-D4A2-4070-8B8E-F1DF6F537337}\MpKsl54153c2a.sys (.not file.)
    O41 - Driver: (MpKsl5735badd) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7B411C93-DA2F-4130-91E0-AD1CD6E3B9D5}\MpKsl5735badd.sys (.not file.)
    O41 - Driver: (MpKsl580b085b) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{38EC5168-4C74-49AB-9448-652A2C1DC07F}\MpKsl580b085b.sys (.not file.)
    O41 - Driver: (MpKsl5853c14c) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DF37A9A2-378D-471B-927A-D23E4C158F0D}\MpKsl5853c14c.sys (.not file.)
    O41 - Driver: (MpKsl63926daf) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D7C6C734-3696-48F7-95AD-CBD30FE1EF59}\MpKsl63926daf.sys (.not file.)
    O41 - Driver: (MpKsl6944410f) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B9B9F314-5831-4EFE-9312-62485A8FDD84}\MpKsl6944410f.sys (.not file.)
    O41 - Driver: (MpKsl6f431066) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{24903911-0E16-4909-A81A-3952DFE01931}\MpKsl6f431066.sys (.not file.)
    O41 - Driver: (MpKsl765de1cd) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D7C6C734-3696-48F7-95AD-CBD30FE1EF59}\MpKsl765de1cd.sys (.not file.)
    O41 - Driver: (MpKsl79d164be) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F546047C-197F-4BD0-B3B9-76AA7407CFED}\MpKsl79d164be.sys (.not file.)
    O41 - Driver: (MpKsl84dd9d02) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DD611C5D-5A9F-4560-B553-B18E2597CDC3}\MpKsl84dd9d02.sys (.not file.)
    O41 - Driver: (MpKsl86ed4018) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{10342C79-2D69-4F15-8EF9-8C390B9D7A8D}\MpKsl86ed4018.sys (.not file.)
    O41 - Driver: (MpKsl87efe4db) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CA8F926E-042B-4CED-91EB-E27C2D933B10}\MpKsl87efe4db.sys (.not file.)
    O41 - Driver: (MpKsl89ca313a) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{06F8780E-BD2F-476C-BD0F-A55696627F8C}\MpKsl89ca313a.sys (.not file.)
    O41 - Driver: (MpKsl8ccbf81e) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{057383F3-7985-403F-AC5C-FFCB9EB22836}\MpKsl8ccbf81e.sys (.not file.)
    O41 - Driver: (MpKsl8dc54a50) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{92CCF57F-E9F8-4D49-994D-F5D67B4EBC40}\MpKsl8dc54a50.sys (.not file.)
    O41 - Driver: (MpKsl9075bfb4) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{06F8780E-BD2F-476C-BD0F-A55696627F8C}\MpKsl9075bfb4.sys (.not file.)
    O41 - Driver: (MpKsl9269adc7) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E65804A9-6991-4AEC-BB65-92163B2140C4}\MpKsl9269adc7.sys (.not file.)
    O41 - Driver: (MpKsl935846f5) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9ED03A2E-67AA-40B1-8DED-59BFC75B362F}\MpKsl935846f5.sys (.not file.)
    O41 - Driver: (MpKsl963136d4) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A3A4D398-D919-428F-B263-5C1A1C5A481A}\MpKsl963136d4.sys (.not file.)
    O41 - Driver: (MpKsl97a1d9a8) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C80073B1-E687-4AC0-A107-5E7C13E6202A}\MpKsl97a1d9a8.sys (.not file.)
    O41 - Driver: (MpKsl996c4b14) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C628341B-D50D-4914-8830-B5CF0C9F8E55}\MpKsl996c4b14.sys (.not file.)
    O41 - Driver: (MpKsl9e52f77f) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A6AC8B03-553F-457C-9D40-D60281DD1376}\MpKsl9e52f77f.sys (.not file.)
    O41 - Driver: (MpKsla2dd8557) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DA3151A6-19DC-4330-A409-534FA4E1AEE2}\MpKsla2dd8557.sys (.not file.)
    O41 - Driver: (MpKslab446672) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C787463F-E970-4F29-A376-42798E8C38CE}\MpKslab446672.sys (.not file.)
    O41 - Driver: (MpKslb0fa194c) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{99C47986-873C-4F2D-B0F0-FF4FE03E7903}\MpKslb0fa194c.sys (.not file.)
    O41 - Driver: (MpKslb4ec5067) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{231F4BE6-4EBF-424B-BB61-9E0971B2C749}\MpKslb4ec5067.sys (.not file.)
    O41 - Driver: (MpKslb59feff2) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{99C47986-873C-4F2D-B0F0-FF4FE03E7903}\MpKslb59feff2.sys (.not file.)
    O41 - Driver: (MpKslb7e5b188) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{76116402-9AFD-451E-92FE-1E8BB7F65DD3}\MpKslb7e5b188.sys (.not file.)
    O41 - Driver: (MpKslb8e36685) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4233C8CF-9A4F-488A-946A-7202D32ABEC6}\MpKslb8e36685.sys (.not file.)
    O41 - Driver: (MpKslba4ee9b7) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C02DDAC0-90BE-49F5-B8DB-204381668EB2}\MpKslba4ee9b7.sys (.not file.)
    O41 - Driver: (MpKslba7341bb) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{068CFA90-DE9D-4CC8-BF87-48A1882100E0}\MpKslba7341bb.sys (.not file.)
    O41 - Driver: (MpKslbc8e3946) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BE0E55AA-F19C-4570-8823-F6677C58447B}\MpKslbc8e3946.sys (.not file.)
    O41 - Driver: (MpKslc035881f) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D33AE323-06D4-4842-A17E-4454D8B06EFB}\MpKslc035881f.sys (.not file.)
    O41 - Driver: (MpKslc11b837d) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{49128C31-78D8-46AE-B7E6-BCF1B22A0741}\MpKslc11b837d.sys (.not file.)
    O41 - Driver: (MpKslc17d107b) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{5FDB3DA3-372F-4745-AA65-410322413B64}\MpKslc17d107b.sys (.not file.)
    O41 - Driver: (MpKslc53eb0ce) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{80AA09E6-8944-4DD6-865E-C508133D1909}\MpKslc53eb0ce.sys (.not file.)
    O41 - Driver: (MpKslc93143d9) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9826D9B0-6249-44F0-B3B4-B7EC01B4D08F}\MpKslc93143d9.sys (.not file.)
    O41 - Driver: (MpKsld295b865) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{707F3469-D0AE-47CB-82BB-DF706082E2C1}\MpKsld295b865.sys (.not file.)
    O41 - Driver: (MpKsld62fb147) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{71D0DE57-1C6A-4D92-8C2A-4F5BCAD7D902}\MpKsld62fb147.sys (.not file.)
    O41 - Driver: (MpKsld91b9f4f) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C336A8CE-8DFB-4E61-895D-2DB78BC72256}\MpKsld91b9f4f.sys (.not file.)
    O41 - Driver: (MpKslda583d72) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{258C6557-2A74-446A-A360-5C1210283ADA}\MpKslda583d72.sys (.not file.)
    O41 - Driver: (MpKsldea2439d) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{707F3469-D0AE-47CB-82BB-DF706082E2C1}\MpKsldea2439d.sys (.not file.)
    O41 - Driver: (MpKsledac3fc4) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{620A6191-1E27-4B96-981F-FDA9630F4576}\MpKsledac3fc4.sys (.not file.)
    O41 - Driver: (MpKslee5b8897) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{10342C79-2D69-4F15-8EF9-8C390B9D7A8D}\MpKslee5b8897.sys (.not file.)
    O41 - Driver: (MpKslf1c190b1) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7F59FDEF-FE8D-4619-96FE-A35D9C9F5DE8}\MpKslf1c190b1.sys (.not file.)
    O41 - Driver: (MpKslf3a294ca) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F546047C-197F-4BD0-B3B9-76AA7407CFED}\MpKslf3a294ca.sys (.not file.)
    O41 - Driver: (MpKslf6661dff) . (.Microsoft Corporation - KSLDriver.) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BCB17852-6787-47BD-AE0F-E84D1B6002D2}\MpKslf6661dff.sys
    O41 - Driver: (MpKslfa792024) . (.Microsoft Corporation - KSLDriver.) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BCB17852-6787-47BD-AE0F-E84D1B6002D2}\MpKslfa792024.sys
    O41 - Driver: (MpKslfce82a6e) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E5FE36A2-5299-4174-A2BB-EF9BED52DCDC}\MpKslfce82a6e.sys (.not file.)
    O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
    O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
    O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
    O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
    O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
    O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
    O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
    O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
    O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
    O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys
    O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
    O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
    O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
    O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
    O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys

    ---\\ Logiciels installés (O42)
    O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM] -- ABBYY FineReader 9.0 Sprint
    O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM] -- {F9000000-0018-0000-0000-074957833700}
    O42 - Logiciel: Adibou Joue avec les mots et les nombres 5-6 ans - (.Mindscape.) [HKLM] -- {C5866F5C-EBB3-4692-AFAD-CC0C69647EC3}
    O42 - Logiciel: Adiboud'Chou et le Jardin des Surprises - (.Mindscape.) [HKLM] -- {19BA6533-893E-4F17-A95C-4A38043A8721}
    O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
    O42 - Logiciel: Adobe Reader 9.4.5 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A94000000001}
    O42 - Logiciel: Adobe Shockwave Player 11.6 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player
    O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {B3575D00-27EF-49C2-B9E0-14B3D954E992}
    O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {C23CD6DA-1958-43A5-ADD0-59396572E02E}
    O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {C6579A65-9CAE-4B31-8B6B-3306E0630A66}
    O42 - Logiciel: Backup Key Recovery 1.3.4 - (.Nsasoft, LLC..) [HKLM] -- Backup Key Recovery_is1
    O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {C2E4B5BD-32DB-4817-A060-341AB17C3F90}
    O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
    O42 - Logiciel: Contrôle ActiveX Windows Live Devices pour connexions à distance - (.Microsoft Corporation.) [HKLM] -- {E18C7F77-1E6E-4541-A987-1DF3612D21E8}
    O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {52CDDA92-56B6-4BA5-BD8D-E13B186008CB}
    O42 - Logiciel: EPSON SX125 Series Manuel - (.Pas de propriétaire.) [HKLM] -- EPSON SX125 Series Manual
    O42 - Logiciel: EPSON SX125 Series Printer Uninstall - (.SEIKO EPSON Corporation.) [HKLM] -- EPSON SX125 Series
    O42 - Logiciel: EPSON Scan - (.Seiko Epson Corporation.) [HKLM] -- EPSON Scanner
    O42 - Logiciel: Epson Easy Photo Print 2 - (.SEIKO EPSON CORPORATION.) [HKLM] -- {39F58DDB-B2B8-4B86-AF20-4706A80EB30D}
    O42 - Logiciel: Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) - (.SEIKO EPSON CORPORATION.) [HKLM] -- {B2D55EB8-32C5-4B43-9006-9E97DECBA178}
    O42 - Logiciel: Epson Event Manager - (.SEIKO EPSON CORPORATION.) [HKLM] -- {03B8AA32-F23C-4178-B8E6-09ECD07EAA47}
    O42 - Logiciel: Franklin Après l'école - (.Pas de propriétaire.) [HKLM] -- {E1ED58B9-D32C-4EAB-B3F3-1049735041DB}
    O42 - Logiciel: Freeplayer - (.Free.) [HKLM] -- Freeplayer
    O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome
    O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
    O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
    O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
    O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {B3FED300-806C-11E0-A0D0-B8AC6F97B88E}
    O42 - Logiciel: Java(TM) 6 Update 26 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216020FF}
    O42 - Logiciel: L'atelier créatif de Lapin Malin - (.Pas de propriétaire.) [HKLM] -- L'atelier créatif de Lapin Malin
    O42 - Logiciel: Lapin Malin Maternelle 3 - (.Pas de propriétaire.) [HKLM] -- Lapin Malin Maternelle 3
    O42 - Logiciel: Logiciel d'archivage WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver
    O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
    O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
    O42 - Logiciel: Mahjong (Supprimer uniquement) - (.Pas de propriétaire.) [HKLM] -- Mahjong
    O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.1.1800 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
    O42 - Logiciel: MediaBar - (.Musiclab, LLC.) [HKLM] -- BearShare 2 MediaBar
    O42 - Logiciel: MediaImpression 2.0 for PENTAX - (.ArcSoft.) [HKLM] -- {D4C7DAB9-6623-4D86-9B9A-C9F8903BA4D2}
    O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
    O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}
    O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}
    O42 - Logiciel: Microsoft Antimalware - (.Microsoft Corporation.) [HKLM] -- {774088D4-0777-4D78-904D-E435B318F5D2}
    O42 - Logiciel: Microsoft Antimalware Service FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {0450B7B0-AC71-44A4-AB40-4DD678DF3A8C}
    O42 - Logiciel: Microsoft Antimalware Service FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {A4526B5A-89C0-4F4B-9E6E-4F883374D5F9}
    O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM] -- {77A776C4-D10F-416D-88F0-53F2D9DCD9B3}
    O42 - Logiciel: Microsoft Security Client FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {859B9BCA-5376-4566-9F88-C6C9DAA7A925}
    O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM] -- Microsoft Security Client
    O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
    O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
    O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
    O42 - Logiciel: Philips Songbird - (.Koninklijke Philips Electronics N.V..) [HKLM] -- Philips Songbird
    O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM] -- Picasa 3
    O42 - Logiciel: PowerISO - (.PowerISO Computing, Inc..) [HKLM] -- PowerISO
    O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {57752979-A1C9-4C02-856B-FBB27AC4E02C}
    O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
    O42 - Logiciel: ScanSoft OmniPage SE 4 - (.Nuance Communications, Inc..) [HKLM] -- {DEE88727-779B-47A9-ACEF-F87CA5F92A65}
    O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906
    O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
    O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2446708
    O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2478663
    O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2518870
    O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}.KB2478663
    O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}.KB2518870
    O42 - Logiciel: VLC media player 1.1.9 - (.VideoLAN.) [HKLM] -- VLC media player
    O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
    O42 - Logiciel: Zylom Games Player Plugin - (.Zylom Games.) [HKLM] -- Zylom Games Player Plugin
    O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {C897FCB3-2F8B-4185-8035-79E2AF3A92A4}
    O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}

    ---\\ HKCU & HKLM Software Keys
    [HKCU\Software\Adobe]
    [HKCU\Software\AppDataLow\Software\Adobe]
    [HKCU\Software\AppDataLow\Software\Microsoft]
    [HKCU\Software\AppDataLow\Software\ShopperReports3]
    [HKCU\Software\AppDataLow\Software\ShoppingReport2]
    [HKCU\Software\AppDataLow\Software\Yahoo]
    [HKCU\Software\AppDataLow\Software\mediabarbs]
    [HKCU\Software\AppDataLow\Software]
    [HKCU\Software\AppDataLow]
    [HKCU\Software\Apple Computer, Inc.]
    [HKCU\Software\Apple Inc.]
    [HKCU\Software\ArcSoft]
    [HKCU\Software\BearShare]
    [HKCU\Software\Boonty]
    [HKCU\Software\Classes]
    [HKCU\Software\Clients]
    [HKCU\Software\DataMngr]
    [HKCU\Software\DataMngr_Toolbar]
    [HKCU\Software\EPSON]
    [HKCU\Software\FissaSearch]
    [HKCU\Software\Freeplayer]
    [HKCU\Software\Google]
    [HKCU\Software\IM Providers]
    [HKCU\Software\JavaSoft]
    [HKCU\Software\Lavalys]
    [HKCU\Software\Macromedia]
    [HKCU\Software\Magnet]
    [HKCU\Software\Malwarebytes' Anti-Malware]
    [HKCU\Software\MicroApp]
    [HKCU\Software\Mindscape]
    [HKCU\Software\MozillaPlugins]
    [HKCU\Software\Netscape]
    [HKCU\Software\OfferBox]
    [HKCU\Software\Philips Songbird]
    [HKCU\Software\Piriform]
    [HKCU\Software\Policies]
    [HKCU\Software\PowerISO]
    [HKCU\Software\Realtek]
    [HKCU\Software\ScanSoft]
    [HKCU\Software\SecuROM]
    [HKCU\Software\Spointer]
    [HKCU\Software\SweetIM]
    [HKCU\Software\Trolltech]
    [HKCU\Software\VB and VBA Program Settings]
    [HKCU\Software\WideStream]
    [HKCU\Software\WinRAR SFX]
    [HKCU\Software\WinRAR]
    [HKCU\Software\YahooPartnerToolbar]
    [HKCU\Software\Yahoo]
    [HKCU\Software\Zylom]
    [HKLM\Software\ABBYY]
    [HKLM\Software\AMD]
    [HKLM\Software\ATI Technologies]
    [HKLM\Software\Adobe]
    [HKLM\Software\AppDataLow]
    [HKLM\Software\Apple Computer, Inc.]
    [HKLM\Software\Apple Inc.]
    [HKLM\Software\ArcSoft]
    [HKLM\Software\BearShareMediabarTb]
    [HKLM\Software\Boonty]
    [HKLM\Software\Canon]
    [HKLM\Software\Classes]
    [HKLM\Software\Clients]
    [HKLM\Software\Corus Entertainment Inc.]
    [HKLM\Software\CrazyLoader]
    [HKLM\Software\DataMngr]
    [HKLM\Software\DivXNetworks]
    [HKLM\Software\EPSON]
    [HKLM\Software\FREEzeFrog]
    [HKLM\Software\GEAR Software]
    [HKLM\Software\Google]
    [HKLM\Software\InstallShield]
    [HKLM\Software\Intel]
    [HKLM\Software\JavaSoft]
    [HKLM\Software\JreMetrics]
    [HKLM\Software\Macromedia]
    [HKLM\Software\Malwarebytes' Anti-Malware]
    [HKLM\Software\MimarSinan]
    [HKLM\Software\Mindscape]
    [HKLM\Software\MozillaPlugins]
    [HKLM\Software\Mozilla]
    [HKLM\Software\ODBC]
    [HKLM\Software\Piriform]
    [HKLM\Software\Policies]
    [HKLM\Software\Realtek Semiconductor Corp.]
    [HKLM\Software\Realtek]
    [HKLM\Software\RegisteredApplications]
    [HKLM\Software\SEIKO EPSON CORPORATION]
    [HKLM\Software\SRS Labs]
    [HKLM\Software\ScanSoft]
    [HKLM\Software\SecureDigitalServices]
    [HKLM\Software\Songbird]
    [HKLM\Software\Sonic]
    [HKLM\Software\Sony Corporation]
    [HKLM\Software\SweetIM]
    [HKLM\Software\The Learning Company]
    [HKLM\Software\Uniblue]
    [HKLM\Software\VideoLAN]
    [HKLM\Software\WinRAR]
    [HKLM\Software\Windows]
    [HKLM\Software\Yahoo]

    ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
    O43 - CFD: 24/02/2011 - 18:24:44 - [181689461] ----D- C:\Program Files\ABBYY FineReader 9.0 Sprint
    O43 - CFD: 09/04/2011 - 10:52:46 - [162903726] ----D- C:\Program Files\Adobe
    O43 - CFD: 02/09/2010 - 17:40:42 - [0] ----D- C:\Program Files\adslTV
    O43 - CFD: 12/06/2011 - 09:41:32 - [2307582] ----D- C:\Program Files\Apple Software Update
    O43 - CFD: 12/06/2011 - 11:35:42 - [6167142] ----D- C:\Program Files\BearShare Applications
    O43 - CFD: 25/01/2011 - 17:28:50 - [466704] ----D- C:\Program Files\Bing Bar Installer
    O43 - CFD: 12/06/2011 - 09:40:12 - [621225] ----D- C:\Program Files\Bonjour
    O43 - CFD: 10/03/2011 - 18:14:18 - [9293] ----D- C:\Program Files\BoontyGames
    O43 - CFD: 25/01/2011 - 17:29:30 - [10640524] ----D- C:\Program Files\Canon
    O43 - CFD: 02/01/2011 - 17:30:24 - [3514104] ----D- C:\Program Files\CCleaner
    O43 - CFD: 17/06/2011 - 22:03:36 - [486653354] ----D- C:\Program Files\Common Files
    O43 - CFD: 23/01/2011 - 12:47:24 - [61422151] ----D- C:\Program Files\Corus Entertainment Inc
    O43 - CFD: 11/09/2010 - 11:32:08 - [1281696] ----D- C:\Program Files\CrazyLoader
    O43 - CFD: 03/07/2011 - 16:49:46 - [83226644] ----D- C:\Program Files\DVD Maker
    O43 - CFD: 12/06/2011 - 23:06:48 - [5873664] ----D- C:\Program Files\eMule
    O43 - CFD: 24/02/2011 - 18:25:46 - [14910850] ----D- C:\Program Files\epson
    O43 - CFD: 24/02/2011 - 18:33:20 - [168424452] ----D- C:\Program Files\Epson Software
    O43 - CFD: 30/08/2010 - 20:29:16 - [0] -SH-D- C:\Program Files\Fichiers communs
    O43 - CFD: 28/03/2011 - 16:44:44 - [0] ----D- C:\Program Files\Fluendo
    O43 - CFD: 18/12/2010 - 15:27:04 - [40646174] ----D- C:\Program Files\Freeplayer
    O43 - CFD: 12/07/2011 - 18:12:50 - [0] ----D- C:\Program Files\FREEzeFrog
    O43 - CFD: 03/07/2011 - 04:11:56 - [179749780] ----D- C:\Program Files\Google
    O43 - CFD: 24/07/2011 - 09:40:26 - [35634209] --H-D- C:\Program Files\InstallShield Installation Information
    O43 - CFD: 03/07/2011 - 16:49:44 - [5843081] ----D- C:\Program Files\Internet Explorer
    O43 - CFD: 12/06/2011 - 09:46:48 - [1856627] ----D- C:\Program Files\iPod
    O43 - CFD: 12/06/2011 - 09:47:44 - [128332719] ----D- C:\Program Files\iTunes
    O43 - CFD: 17/06/2011 - 22:01:02 - [91881912] ----D- C:\Program Files\Java
    O43 - CFD: 24/07/2011 - 10:03:10 - [6988565] ----D- C:\Program Files\Malwarebytes' Anti-Malware
    O43 - CFD: 24/07/2011 - 09:40:26 - [6221858] ----D- C:\Program Files\Micro Application
    O43 - CFD: 25/01/2011 - 17:28:42 - [0] ----D- C:\Program Files\Microsoft
    O43 - CFD: 27/10/2010 - 20:55:36 - [800662] ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2
    O43 - CFD: 01/09/2010 - 16:16:00 - [240225702] ----D- C:\Program Files\Microsoft Office
    O43 - CFD: 03/02/2011 - 18:19:54 - [18397928] ----D- C:\Program Files\Microsoft Security Client
    O43 - CFD: 15/06/2011 - 20:46:42 - [38411899] ----D- C:\Program Files\Microsoft Silverlight
    O43 - CFD: 30/08/2010 - 20:53:46 - [14904] ----D- C:\Program Files\Microsoft Visual Studio
    O43 - CFD: 30/08/2010 - 20:49:22 - [1387249] ----D- C:\Program Files\Microsoft Visual Studio 8
    O43 - CFD: 26/01/2011 - 07:54:28 - [8053091] ----D- C:\Program Files\Microsoft.NET
    O43 - CFD: 23/01/2011 - 14:02:42 - [2743562431] ----D- C:\Program Files\Mindscape
    O43 - CFD: 30/08/2010 - 20:54:06 - [26521] ----D- C:\Program Files\MSBuild
    O43 - CFD: 27/10/2010 - 20:49:46 - [0] ----D- C:\Program Files\MSXML 4.0
    O43 - CFD: 01/09/2010 - 17:52:26 - [1888105] ----D- C:\Program Files\Nsasoft
    O43 - CFD: 02/01/2011 - 16:54:26 - [29] ----D- C:\Program Files\Objective Tarot
    O43 - CFD: 05/03/2011 - 18:49:26 - [123574558] ----D- C:\Program Files\PENTAX
    O43 - CFD: 11/06/2011 - 21:57:44 - [110595961] ----D- C:\Program Files\Philips
    O43 - CFD: 30/08/2010 - 20:37:58 - [4022452] ----D- C:\Program Files\PowerISO
    O43 - CFD: 12/06/2011 - 09:43:52 - [76322555] ----D- C:\Program Files\QuickTime
    O43 - CFD: 11/09/2010 - 16:40:12 - [15086793] ----D- C:\Program Files\Realtek
    O43 - CFD: 14/07/2009 - 06:52:32 - [39159041] ----D- C:\Program Files\Reference Assemblies
    O43 - CFD: 24/10/2010 - 16:30:16 - [121570105] ----D- C:\Program Files\ScanSoft
    O43 - CFD: 12/09/2010 - 17:23:34 - [0] --H-D- C:\Program Files\Temp
    O43 - CFD: 14/07/2009 - 06:53:24 - [0] --H-D- C:\Program Files\Uninstall Information
    O43 - C
    0
  3. Utilisateur anonyme
     
    ne poste spas les rapports Zhpdiag sur le forum.Tu dois les héberger et poster le lien comme tu as fais au post précedent.

    Tu dois aussi faire les choses dans l'ordre.

    1/===>Relances Mbam et apres le scan complet et suppression de la sélection poster le rapport

    2/===>Apres l'analyse Mbam et avoir posté le rapport Relances Zhpdiag et postes son rapport.

    @++
    0
  4. couperose57 Messages postés 10 Statut Membre
     
    https://pjjoint.malekal.com/files.php?id=q9f7v15b6r11i5t13s15s9o10t1010
    et le rapport Mbam

    Malwarebytes' Anti-Malware 1.51.1.1800
    www.malwarebytes.org

    Version de la base de données: 7260

    Windows 6.1.7601 Service Pack 1
    Internet Explorer 8.0.7601.17514

    24/07/2011 13:22:22
    mbam-log-2011-07-24 (13-22-22).txt

    Type d'examen: Examen complet (C:\|)
    Elément(s) analysé(s): 296903
    Temps écoulé: 1 heure(s), 36 minute(s), 31 seconde(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 0
    Valeur(s) du Registre infectée(s): 0
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 0

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Valeur(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    (Aucun élément nuisible détecté)
    0