Sujet Précédent Sujet Suivant

Adware et rogue

Fermé
couperose57 Messages postés 9 Date d'inscription dimanche 12 septembre 2010 Statut Membre Dernière intervention 24 février 2012 - 24 juil. 2011 à 10:23
couperose57 Messages postés 9 Date d'inscription dimanche 12 septembre 2010 Statut Membre Dernière intervention 24 février 2012 - 24 juil. 2011 à 13:38
Bonjour,




je viens de lancer malwarebytes et il a trouvé cela et je cherche quelqu un pour m aider à suppimer ces problèmes merçi d'avance

Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org

Version de la base de données: 7260

Windows 6.1.7601 Service Pack 1
Internet Explorer 8.0.7601.17514

24/07/2011 10:03:09
mbam-log-2011-07-24 (10-02-34).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 154828
Temps écoulé: 11 minute(s), 27 seconde(s)

Processus mémoire infecté(s): 1
Module(s) mémoire infecté(s): 1
Clé(s) du Registre infectée(s): 25
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 6
Fichier(s) infecté(s): 13

Processus mémoire infecté(s):
c:\program files\freezefrog\bin\1.0.670.0\freezefrogsa.exe (Adware.FreezeFrog) -> 3476 -> No action taken.

Module(s) mémoire infecté(s):
c:\program files\freezefrog\bin\1.0.670.0\freezefrogsahook.dll (Adware.FreezeFrog) -> No action taken.

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\Typelib\{B035BA6B-57CD-4F72-B545-65BE465FCAF6} (Adware.ShoppingReport2) -> No action taken.
HKEY_CLASSES_ROOT\Typelib\{D44FD6F0-9746-484E-B5C4-C66688393872} (Adware.ShoppingReport2) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{0EB3F101-224A-4B2B-9E5B-DF720857529C} (Adware.ShoppingReport2) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7} (Adware.Softomate) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1602F07D-8BF3-4c08-BDD6-DDDB1C48AEDC} (Adware.ClickPotato) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{69725738-CD68-4f36-8D02-8C43722EE5DA} (Adware.Hotbar) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{AC6D819E-AA8F-4418-A3BB-D165C1B18BB5} (Adware.ClickPotato) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B58926D6-CFB0-45D2-9C28-4B5A0F0368AE} (Adware.ClickPotato) -> No action taken.
HKEY_CLASSES_ROOT\FREEzeFrogAx.Info (Adware.FreezeFrog) -> No action taken.
HKEY_CLASSES_ROOT\FREEzeFrogAx.Info.1 (Adware.FreezeFrog) -> No action taken.
HKEY_CLASSES_ROOT\ShoppingReport2.HbAx (Adware.ShopperReports) -> No action taken.
HKEY_CLASSES_ROOT\ShoppingReport2.HbAx.1 (Adware.ShopperReports) -> No action taken.
HKEY_CLASSES_ROOT\ShoppingReport2.HbInfoBand (Adware.ShopperReports) -> No action taken.
HKEY_CLASSES_ROOT\ShoppingReport2.HbInfoBand.1 (Adware.ShopperReports) -> No action taken.
HKEY_CLASSES_ROOT\ShoppingReport2.IEButton (Adware.ShopperReports) -> No action taken.
HKEY_CLASSES_ROOT\ShoppingReport2.IEButton.1 (Adware.ShopperReports) -> No action taken.
HKEY_CLASSES_ROOT\ShoppingReport2.IEButtonA (Adware.ShopperReports) -> No action taken.
HKEY_CLASSES_ROOT\ShoppingReport2.IEButtonA.1 (Adware.ShopperReports) -> No action taken.
HKEY_CLASSES_ROOT\ShoppingReport2.RprtCtrl (Adware.ShopperReports) -> No action taken.
HKEY_CLASSES_ROOT\ShoppingReport2.RprtCtrl.1 (Adware.ShopperReports) -> No action taken.
HKEY_CURRENT_USER\Software\ShoppingReport2 (Adware.ShoppingReport2) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\FREEZEFROGSA (Adware.FreezeFrog) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\ShoppingReport2 (Adware.ShoppingReport2) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FREEzeFrogSA (Adware.FreezeFrog) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ShoppingReport2 (Adware.Hotbar) -> No action taken.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\Software\freezefrogsa\actionurl_current_version (Adware.FreezeFrog) -> Value: actionurl_current_version -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\FREEzeFrogSA (Adware.FreezeFrog) -> Value: FREEzeFrogSA -> No action taken.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
c:\programdata\2aca5cc3-0f83-453d-a079-1076fe1a8b65 (Adware.Seekmo) -> No action taken.
c:\program files\shoppingreport2 (Adware.ShoppingReport2) -> No action taken.
c:\program files\shoppingreport2\Bin (Adware.ShoppingReport2) -> No action taken.
c:\program files\shoppingreport2\Bin\2.7.37 (Adware.ShoppingReport2) -> No action taken.
c:\program files\freezefrog\bin\1.0.670.0 (Adware.FreezeFrog) -> No action taken.
c:\programdata\freezefrogsa (Adware.FreezeFrog) -> No action taken.

Fichier(s) infecté(s):
c:\program files\freezefrog\bin\1.0.670.0\freezefrogsahook.dll (Adware.FreezeFrog) -> No action taken.
c:\Users\ms-home\downloads\vlc-fr (1).exe (Trojan.Dropper) -> No action taken.
c:\Users\ms-home\downloads\vlcsetup (1).exe (Adware.Hotbar) -> No action taken.
c:\Users\ms-home\downloads\VLCSetup.exe (Adware.Hotbar) -> No action taken.
c:\program files\freezefrog\bin\1.0.670.0\freezefrogsa.exe (Adware.FreezeFrog) -> No action taken.
c:\program files\shoppingreport2\Uninst.exe (Adware.ShoppingReport2) -> No action taken.
c:\program files\freezefrog\bin\1.0.670.0\freezefroguninstaller.exe (Adware.FreezeFrog) -> No action taken.
c:\program files\freezefrog\bin\1.0.670.0\launchhelp.dll (Adware.FreezeFrog) -> No action taken.
c:\programdata\freezefrogsa\freezefrogsa.dat (Adware.FreezeFrog) -> No action taken.
c:\programdata\freezefrogsa\freezefrogsaabout.mht (Adware.FreezeFrog) -> No action taken.
c:\programdata\freezefrogsa\freezefrogsaau.dat (Adware.FreezeFrog) -> No action taken.
c:\programdata\freezefrogsa\freezefrogsaeula.mht (Adware.FreezeFrog) -> No action taken.
c:\programdata\freezefrogsa\freezefrogsa_kyf.dat (Adware.FreezeFrog) -> No action taken.
A voir également:

4 réponses

Réponse 1 / 4
Utilisateur anonyme
24 juil. 2011 à 10:29
Bonjour


relances Mbam et supprime la sélection.

Ensuite.


On va faire une analyse de ton systéme.


* Télécharge ZHPDiag ( de Nicolas coolman ).
ou
ZHPDiag
ou
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html

Ou le lien FTP en secours :
ftp://zebulon.fr/ZHPDiag2.exe

***********************
/!\Utilisateurs de Vista et Windows 7 : Clique droit sur le logo de ZHPDiag.exe, " exécuter en tant qu'Administrateur /!\
* Laisse toi guider lors de l'installation
* Il se lancera automatiquement à la fin de l'installation
* Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
* Héberge le rapport ZHPDiag.txt sur le site pjjoint.malekal.com ou cijoint.fr ou toofiles puis copie/colle le lien fournit dans ta prochaine réponse sur le forum
0
Réponse 2 / 4
couperose57 Messages postés 9 Date d'inscription dimanche 12 septembre 2010 Statut Membre Dernière intervention 24 février 2012
24 juil. 2011 à 10:48
https://pjjoint.malekal.com/files.php?id=9e8f1a7ec7v15y9u11m13x9t6q149h5j6b9r11
Merçi de ton aide
voiçi le rapport

Rapport de ZHPDiag v1.27.2424 par Nicolas Coolman, Update du 22/07/2011
Run by ms-home at 24/07/2011 10:38:48
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html


---\\ Web Browser
MSIE: Internet Explorer v8.0.7601.17514
GCIE: Google Chrome v12.0.742.122 (Defaut)

---\\ System Information
Windows 7 Business Edition, 32-bit Service Pack 1 (Build 7601)
~ Processor: x86 Family 15 Model 4 Stepping 1, GenuineIntel
~ Operating System: 32 Bits
~ Boot mode: ~ Normal (Normal boot)
Total RAM: 511 MB (12% free)
~ System Restore: Activé (Enable)
System drive C: has 101 GB (55%) free of 181 GB

---\\ Logged in mode
~ Computer Name: MS-HOME-PC
~ User Name: ms-home
~ All Users Names: ms-home, HomeGroupUser$, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O82
~ Logged in as Administrator

---\\ Environnement Variables
~ %AppData%=C:\Users\ms-home\AppData\Roaming\
~ %Desktop%=C:\Users\ms-home\Desktop\
~ %Favorites%=C:\Users\ms-home\Favorites\
~ %LocalAppData%=C:\Users\ms-home\AppData\Local\
~ %StartMenu%=C:\Users\ms-home\AppData\Roaming\Microsoft\Windows\Start Menu\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 101 Go of 181 Go)
D:\ CD-ROM drive (Not Inserted)
E:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ CD-ROM drive (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK



---\\ Recherche particulière de fichiers génériques
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) (.27/04/2011 - 06:30:54.) -- C:\Windows\Explorer.exe [2616320]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (....) (.14/07/2009 - 02:14:31.) -- C:\Windows\system32\rundll32.exe [44544]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\system32\Wininit.exe [96256]
[MD5.2CA020EACDC6DDB2BEA89FEA02C90945] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.15/06/2011 - 20:10:01.) -- C:\Windows\system32\wininet.dll [981504]
[MD5.6D13E1406F50C66E2A95D97F22C47560] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.09/06/2011 - 13:17:54.) -- C:\Windows\system32\Winlogon.exe [286720]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\drivers\atapi.sys [21584]
[MD5.81189C3D7763838E55C397759D49007A] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.27/04/2011 - 06:39:00.) -- C:\Windows\system32\drivers\ntfs.sys [1211264]



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 6/154
~ Mes musiques (My Musics) : 3/7
~ Mes Videos (My Videos) : 1/6
~ Mes Favoris (My Favorites) : 3/26
~ Mes Documents (My Documents) : 5/35
~ Mon Bureau (My Desktop) : 1/29
~ Menu demarrer (Programs) : 7/26



---\\ Processus lancés
[MD5.AA16204FD1F75637E8EAEB593A8FA597] - (.PowerISO Computing, Inc. - PowerISO Virtual Drive Manager.) -- C:\Program Files\PowerISO\PWRISOVM.EXE [180224]
[MD5.40D5D8EEBE614F115B81E677587F1007] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [9210400]
[MD5.F8D427DAE2984A4968E2D1CB53634784] - (.Nuance Communications, Inc. - OCR Aware.) -- C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe [79400]
[MD5.1568FF282E268082C67CF0C3EBCC9179] - (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files\Epson Software\Event Manager\EEventManager.exe [976320]
[MD5.A7810B302294793DE88542AAE177D1B1] - (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424]
[MD5.CDC5106D846A7006AD3FA099367457C1] - (...) -- C:\Program Files\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe [380416]
[MD5.53D96678FB89F056D5285101481297D9] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [421160]
[MD5.688E20975EB4E446A80F47197A10ACBF] - (.MusicLab, LLC - Data Manager.) -- C:\Program Files\BearShare Applications\MediaBar\Datamngr\datamngrUI.exe [1114040]
[MD5.13E7CFE8E269ED15E7FC9C3EBBCB7E2B] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [254696]
[MD5.33BFCE71F407F24E5DFDB7DD46CE2D6D] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [449584]
[MD5.73708319A8673E43670A1A334B2D96AC] - (.Google Inc. - Google Chrome.) -- C:\Users\ms-home\AppData\Local\Google\Chrome\Application\chrome.exe [1012792]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (...) -- C:\Windows\system32\rundll32.exe [44544]
[MD5.0E8A6A1BC5B08EA29E363EE5E06F7ECB] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [658944]



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.6.) -- C:\Windows\system32\Adobe\Director\np32dsw.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
P2 - FPN: [HKLM] [@google.com/npPicasa3,version=3.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Google\Picasa3\npPicasa3.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_26 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60531.0.) -- c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@zylom.com/ZylomGamesPlayer] - (.Zylom - Zylom Plugin.) -- C:\ProgramData\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.5".) -- C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\ms-home\AppData\Local\Google\Update\1.3.21.57\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\ms-home\AppData\Local\Google\Update\1.3.21.57\npGoogleUpdate3.dll



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\ms-home\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default][HomePage] https://www.google.fr/?gws_rd=ssl



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.bearshare.net/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R0 - HKUS\S-1-5-21-3137324842-3722217343-1886870445-1002\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.bearshare.net/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.google.com/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.google.com/?gws_rd=ssl
R1 - HKUS\S-1-5-21-3137324842-3722217343-1886870445-1002\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll



---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} Clé orpheline
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: UrlHelper Class - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} . (.MusicLab, LLC - IEHelper.) -- C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\IEBHO.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} . (.SEIKO EPSON CORPORATION / CyCom Technology - Epson Easy Photo Print (TBL).) -- C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
O2 - BHO: MediaBar - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} . (.Pas de propriétaire - dtx Dynamic Link Library.) -- C:\PROGRA~1\BEARSH~1\MediaBar\ToolBar\bsdtxmltbpi.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} . (.SEIKO EPSON CORPORATION / CyCom Technology - Epson Easy Photo Print (TBL).) -- C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O3 - Toolbar: MediaBar - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} . (.Pas de propriétaire - dtx Dynamic Link Library.) -- C:\PROGRA~1\BEARSH~1\MediaBar\ToolBar\bsdtxmltbpi.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [PWRISOVM.EXE] . (.PowerISO Computing, Inc. - PowerISO Virtual Drive Manager.) -- C:\Program Files\PowerISO\PWRISOVM.exe
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [SSBkgdUpdate] . (.Nuance Communications, Inc. - SSBkgdUpdate.) -- C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe
O4 - HKLM\..\Run: [OpwareSE4] . (.Nuance Communications, Inc. - OCR Aware.) -- C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKLM\..\Run: [EEventManager] . (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files\Epson Software\Event Manager\EEventManager.exe
O4 - HKLM\..\Run: [ArcSoft Connection Service] . (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [Philips Device Listener] . (...) -- C:\Program Files\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [DATAMNGR] . (.MusicLab, LLC - Data Manager.) -- C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\DATAMN~1.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\ms-home\AppData\Local\Google\Update\GoogleUpdate.exe
O4 - HKCU\..\Run: [EPSON SX125 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGGE.exe
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-18\..\Run: [SpywareTerminatorUpdate] C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe (.not file.)
O4 - HKUS\S-1-5-18\..\Run: [SpywareTerminatorUpdate] C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe (.not file.)
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-3137324842-3722217343-1886870445-1002\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\ms-home\AppData\Local\Google\Update\GoogleUpdate.exe
O4 - HKUS\S-1-5-21-3137324842-3722217343-1886870445-1002\..\Run: [EPSON SX125 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGGE.exe
O4 - HKUS\S-1-5-21-3137324842-3722217343-1886870445-1002\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe



---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\ms-home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\ms-home\Desktop\Google Chrome.lnk . (.Google Inc..) -- C:\Users\ms-home\AppData\Local\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\ms-home\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\ms-home\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Philips Songbird.lnk . (.Koninklijke Philips Electronics N.V..) -- C:\Program Files\Philips\Philips Songbird\Philips-Songbird.exe
O4 - Global Startup: C:\Users\ms-home\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Picasa 3.lnk . (.Google Inc..) -- C:\Program Files\Google\Picasa3\Picasa3.exe



---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Add to Google Photos Screensa&ver . (.Google Inc. - Google Photos Screensaver.) -- C:\Windows\system32\GPhotos.scr
O8 - Extra context menu item: Google Sidewiki... . (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll



---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{E139B1FF-DF47-48B9-9CE4-83ACFFE17D40}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS1\Services\Tcpip\..\{E139B1FF-DF47-48B9-9CE4-83ACFFE17D40}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS2\Services\Tcpip\..\{E139B1FF-DF47-48B9-9CE4-83ACFFE17D40}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.241 212.27.40.240



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.MusicLab, LLC - Data Manager.) - C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\datamngr.dll



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) . (.ABBYY - ABBYY network license server.) - C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc. - ArcSoft Connect Service.) - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3137324842-3722217343-1886870445-1002Core.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3137324842-3722217343-1886870445-1002UA.job
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-3137324842-3722217343-1886870445-1002Core] (.Google Inc..) -- C:\Users\ms-home\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-3137324842-3722217343-1886870445-1002UA] (.Google Inc..) -- C:\Users\ms-home\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.00000000000000000000000000000000] [APT] [RunAsStdUser Task] (...) -- C:\Program Files\FREEzeFrog\bin\1.0.670.0\FREEzeFrogSA.exe (.not file.)
[MD5.C3E218E92119467B34B0623ED0CA2ACA] [APT] [{2A0AF965-CE42-4E74-88F8-662297CE388D}] (.Realtek Semiconductor Corp..) -- C:\Users\ms-home\Downloads\Vista_Win7_R248.exe
[MD5.F3F709C2D49DD6636F4EDE5C2CAE5448] [APT] [{469146C1-9DEB-423D-A56F-1400B53093E2}] (.http://www.emule-project.net.) -- C:\Program Files\eMule\emule.exe
[MD5.C3E218E92119467B34B0623ED0CA2ACA] [APT] [{837B7B08-BAB4-48B9-80D1-B70CF557EAFB}] (.Realtek Semiconductor Corp..) -- C:\Users\ms-home\Downloads\Vista_Win7_R248.exe
[MD5.00000000000000000000000000000000] [APT] [{A3396BC9-A90F-435E-B12C-15B6E4A1E15B}] (...) -- C:\Program Files\Micro Application\Safari Photo en Afrique\WildEarth.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{C446C04F-3ED4-4E86-A125-D3380EB6D4C9}] (...) -- C:\Program Files\Micro Application\Safari Photo en Afrique\WildEarth.exe (.not file.)
[MD5.F13E5FAE03D44D6F04620E6833E35229] [APT] [{DFF310D2-4EB1-4614-8556-3D18CA286C15}] (.Koninklijke Philips Electronics N.V..) -- C:\Program Files\Philips\Philips Songbird\Philips-Songbird.exe
[MD5.F3F709C2D49DD6636F4EDE5C2CAE5448] [APT] [{F599B32E-552F-4E08-B726-CF84D48D5256}] (.http://www.emule-project.net.) -- C:\Program Files\eMule\emule.exe
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\system32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (MpFilter) . (.Microsoft Corporation - Microsoft antimalware file system filter dr.) - C:\Windows\System32\DRIVERS\MpFilter.sys
O41 - Driver: (MpKsl016b0b88) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E65804A9-6991-4AEC-BB65-92163B2140C4}\MpKsl016b0b88.sys (.not file.)
O41 - Driver: (MpKsl0c32e4c1) . (. - .) - C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{8E6E878E-2DB2-4D57-98DB-026920BC4CEB}\MpKsl0c32e4c1.sys (.not file.)
O41 - Driver: (MpKsl0dbb52c3) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{80AA09E6-8944-4DD6-865E-C508133D1909}\MpKsl0dbb52c3.sys (.not file.)
O41 - Driver: (MpKsl0e481d4a) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{17944FAE-B4EE-442A-8A9D-2FC4F1BFCE3E}\MpKsl0e481d4a.sys (.not file.)
O41 - Driver: (MpKsl0f537be7) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{13E90170-DF71-4172-8E6E-7549E95D586E}\MpKsl0f537be7.sys (.not file.)
O41 - Driver: (MpKsl0fb33233) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B07DE47B-3C33-4008-BC01-0C1ADECFAB18}\MpKsl0fb33233.sys (.not file.)
O41 - Driver: (MpKsl130931cf) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C835D6C2-E48D-48EF-95EA-610D9F362FEA}\MpKsl130931cf.sys (.not file.)
O41 - Driver: (MpKsl163bb8af) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7CDC6809-B432-4E92-AEBB-BDCFEF15C689}\MpKsl163bb8af.sys (.not file.)
O41 - Driver: (MpKsl1667dd95) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{603FA69E-96E0-43D1-8BDB-AF212C7A9F90}\MpKsl1667dd95.sys (.not file.)
O41 - Driver: (MpKsl177ef536) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F9A9F1E8-3E3F-4B76-BE30-2685C8F822E0}\MpKsl177ef536.sys (.not file.)
O41 - Driver: (MpKsl1e400fa8) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{8B6218E5-B5E5-4CA5-9AF3-23F26D3A9DA7}\MpKsl1e400fa8.sys (.not file.)
O41 - Driver: (MpKsl1fcbe37f) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{399F0015-6745-450B-B0B5-6B7E47C3BB29}\MpKsl1fcbe37f.sys (.not file.)
O41 - Driver: (MpKsl20823c74) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A6AC8B03-553F-457C-9D40-D60281DD1376}\MpKsl20823c74.sys (.not file.)
O41 - Driver: (MpKsl248d9e3e) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9EDD61B2-34DA-460E-8CE5-038E2AA6CA3B}\MpKsl248d9e3e.sys (.not file.)
O41 - Driver: (MpKsl2adb041d) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A0418B94-F732-492D-8D77-ECC88343CCE6}\MpKsl2adb041d.sys (.not file.)
O41 - Driver: (MpKsl2b94e296) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{80AA09E6-8944-4DD6-865E-C508133D1909}\MpKsl2b94e296.sys (.not file.)
O41 - Driver: (MpKsl35cba1f4) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{057383F3-7985-403F-AC5C-FFCB9EB22836}\MpKsl35cba1f4.sys (.not file.)
O41 - Driver: (MpKsl375a8321) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{04AB762E-7557-427E-8AB4-5DC1F048352F}\MpKsl375a8321.sys (.not file.)
O41 - Driver: (MpKsl3da8f7ff) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{0D6EC232-AFD1-4BF3-A75D-BD67A65A5587}\MpKsl3da8f7ff.sys (.not file.)
O41 - Driver: (MpKsl41126ba6) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{5FDB3DA3-372F-4745-AA65-410322413B64}\MpKsl41126ba6.sys (.not file.)
O41 - Driver: (MpKsl478e87b6) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{EBE23F33-C596-4DF4-8799-E9EAB3F4BB55}\MpKsl478e87b6.sys (.not file.)
O41 - Driver: (MpKsl484c3f8e) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{24903911-0E16-4909-A81A-3952DFE01931}\MpKsl484c3f8e.sys (.not file.)
O41 - Driver: (MpKsl49ad20f1) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{73743CB9-E162-45A7-9C82-DB11907FFFD7}\MpKsl49ad20f1.sys (.not file.)
O41 - Driver: (MpKsl4af92011) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A354E975-6C88-486E-A72E-6DEF91E06637}\MpKsl4af92011.sys (.not file.)
O41 - Driver: (MpKsl4b88b8f1) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{410A6FD8-9613-4217-9EAE-CCD2845B704B}\MpKsl4b88b8f1.sys (.not file.)
O41 - Driver: (MpKsl4bc19a4d) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D96F4774-8C50-4EC0-8CEA-FD2CB534F01B}\MpKsl4bc19a4d.sys (.not file.)
O41 - Driver: (MpKsl4db4357c) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{83C38394-7B0F-4FBE-9997-1C2DA69D71BB}\MpKsl4db4357c.sys (.not file.)
O41 - Driver: (MpKsl5005bb31) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A3A4D398-D919-428F-B263-5C1A1C5A481A}\MpKsl5005bb31.sys (.not file.)
O41 - Driver: (MpKsl51f216aa) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{73743CB9-E162-45A7-9C82-DB11907FFFD7}\MpKsl51f216aa.sys (.not file.)
O41 - Driver: (MpKsl53efcb52) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F546047C-197F-4BD0-B3B9-76AA7407CFED}\MpKsl53efcb52.sys (.not file.)
O41 - Driver: (MpKsl54153c2a) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CCFF50D0-D4A2-4070-8B8E-F1DF6F537337}\MpKsl54153c2a.sys (.not file.)
O41 - Driver: (MpKsl5735badd) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7B411C93-DA2F-4130-91E0-AD1CD6E3B9D5}\MpKsl5735badd.sys (.not file.)
O41 - Driver: (MpKsl580b085b) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{38EC5168-4C74-49AB-9448-652A2C1DC07F}\MpKsl580b085b.sys (.not file.)
O41 - Driver: (MpKsl5853c14c) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DF37A9A2-378D-471B-927A-D23E4C158F0D}\MpKsl5853c14c.sys (.not file.)
O41 - Driver: (MpKsl63926daf) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D7C6C734-3696-48F7-95AD-CBD30FE1EF59}\MpKsl63926daf.sys (.not file.)
O41 - Driver: (MpKsl6944410f) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B9B9F314-5831-4EFE-9312-62485A8FDD84}\MpKsl6944410f.sys (.not file.)
O41 - Driver: (MpKsl6f431066) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{24903911-0E16-4909-A81A-3952DFE01931}\MpKsl6f431066.sys (.not file.)
O41 - Driver: (MpKsl765de1cd) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D7C6C734-3696-48F7-95AD-CBD30FE1EF59}\MpKsl765de1cd.sys (.not file.)
O41 - Driver: (MpKsl79d164be) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F546047C-197F-4BD0-B3B9-76AA7407CFED}\MpKsl79d164be.sys (.not file.)
O41 - Driver: (MpKsl84dd9d02) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DD611C5D-5A9F-4560-B553-B18E2597CDC3}\MpKsl84dd9d02.sys (.not file.)
O41 - Driver: (MpKsl86ed4018) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{10342C79-2D69-4F15-8EF9-8C390B9D7A8D}\MpKsl86ed4018.sys (.not file.)
O41 - Driver: (MpKsl87efe4db) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CA8F926E-042B-4CED-91EB-E27C2D933B10}\MpKsl87efe4db.sys (.not file.)
O41 - Driver: (MpKsl89ca313a) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{06F8780E-BD2F-476C-BD0F-A55696627F8C}\MpKsl89ca313a.sys (.not file.)
O41 - Driver: (MpKsl8ccbf81e) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{057383F3-7985-403F-AC5C-FFCB9EB22836}\MpKsl8ccbf81e.sys (.not file.)
O41 - Driver: (MpKsl8dc54a50) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{92CCF57F-E9F8-4D49-994D-F5D67B4EBC40}\MpKsl8dc54a50.sys (.not file.)
O41 - Driver: (MpKsl9075bfb4) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{06F8780E-BD2F-476C-BD0F-A55696627F8C}\MpKsl9075bfb4.sys (.not file.)
O41 - Driver: (MpKsl9269adc7) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E65804A9-6991-4AEC-BB65-92163B2140C4}\MpKsl9269adc7.sys (.not file.)
O41 - Driver: (MpKsl935846f5) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9ED03A2E-67AA-40B1-8DED-59BFC75B362F}\MpKsl935846f5.sys (.not file.)
O41 - Driver: (MpKsl963136d4) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A3A4D398-D919-428F-B263-5C1A1C5A481A}\MpKsl963136d4.sys (.not file.)
O41 - Driver: (MpKsl97a1d9a8) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C80073B1-E687-4AC0-A107-5E7C13E6202A}\MpKsl97a1d9a8.sys (.not file.)
O41 - Driver: (MpKsl996c4b14) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C628341B-D50D-4914-8830-B5CF0C9F8E55}\MpKsl996c4b14.sys (.not file.)
O41 - Driver: (MpKsl9e52f77f) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A6AC8B03-553F-457C-9D40-D60281DD1376}\MpKsl9e52f77f.sys (.not file.)
O41 - Driver: (MpKsla2dd8557) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DA3151A6-19DC-4330-A409-534FA4E1AEE2}\MpKsla2dd8557.sys (.not file.)
O41 - Driver: (MpKslab446672) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C787463F-E970-4F29-A376-42798E8C38CE}\MpKslab446672.sys (.not file.)
O41 - Driver: (MpKslb0fa194c) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{99C47986-873C-4F2D-B0F0-FF4FE03E7903}\MpKslb0fa194c.sys (.not file.)
O41 - Driver: (MpKslb4ec5067) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{231F4BE6-4EBF-424B-BB61-9E0971B2C749}\MpKslb4ec5067.sys (.not file.)
O41 - Driver: (MpKslb59feff2) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{99C47986-873C-4F2D-B0F0-FF4FE03E7903}\MpKslb59feff2.sys (.not file.)
O41 - Driver: (MpKslb7e5b188) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{76116402-9AFD-451E-92FE-1E8BB7F65DD3}\MpKslb7e5b188.sys (.not file.)
O41 - Driver: (MpKslb8e36685) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4233C8CF-9A4F-488A-946A-7202D32ABEC6}\MpKslb8e36685.sys (.not file.)
O41 - Driver: (MpKslba4ee9b7) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C02DDAC0-90BE-49F5-B8DB-204381668EB2}\MpKslba4ee9b7.sys (.not file.)
O41 - Driver: (MpKslba7341bb) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{068CFA90-DE9D-4CC8-BF87-48A1882100E0}\MpKslba7341bb.sys (.not file.)
O41 - Driver: (MpKslbc8e3946) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BE0E55AA-F19C-4570-8823-F6677C58447B}\MpKslbc8e3946.sys (.not file.)
O41 - Driver: (MpKslc035881f) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D33AE323-06D4-4842-A17E-4454D8B06EFB}\MpKslc035881f.sys (.not file.)
O41 - Driver: (MpKslc11b837d) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{49128C31-78D8-46AE-B7E6-BCF1B22A0741}\MpKslc11b837d.sys (.not file.)
O41 - Driver: (MpKslc17d107b) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{5FDB3DA3-372F-4745-AA65-410322413B64}\MpKslc17d107b.sys (.not file.)
O41 - Driver: (MpKslc53eb0ce) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{80AA09E6-8944-4DD6-865E-C508133D1909}\MpKslc53eb0ce.sys (.not file.)
O41 - Driver: (MpKslc93143d9) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9826D9B0-6249-44F0-B3B4-B7EC01B4D08F}\MpKslc93143d9.sys (.not file.)
O41 - Driver: (MpKsld295b865) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{707F3469-D0AE-47CB-82BB-DF706082E2C1}\MpKsld295b865.sys (.not file.)
O41 - Driver: (MpKsld62fb147) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{71D0DE57-1C6A-4D92-8C2A-4F5BCAD7D902}\MpKsld62fb147.sys (.not file.)
O41 - Driver: (MpKsld91b9f4f) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C336A8CE-8DFB-4E61-895D-2DB78BC72256}\MpKsld91b9f4f.sys (.not file.)
O41 - Driver: (MpKslda583d72) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{258C6557-2A74-446A-A360-5C1210283ADA}\MpKslda583d72.sys (.not file.)
O41 - Driver: (MpKsldea2439d) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{707F3469-D0AE-47CB-82BB-DF706082E2C1}\MpKsldea2439d.sys (.not file.)
O41 - Driver: (MpKsledac3fc4) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{620A6191-1E27-4B96-981F-FDA9630F4576}\MpKsledac3fc4.sys (.not file.)
O41 - Driver: (MpKslee5b8897) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{10342C79-2D69-4F15-8EF9-8C390B9D7A8D}\MpKslee5b8897.sys (.not file.)
O41 - Driver: (MpKslf1c190b1) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7F59FDEF-FE8D-4619-96FE-A35D9C9F5DE8}\MpKslf1c190b1.sys (.not file.)
O41 - Driver: (MpKslf3a294ca) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F546047C-197F-4BD0-B3B9-76AA7407CFED}\MpKslf3a294ca.sys (.not file.)
O41 - Driver: (MpKslf6661dff) . (.Microsoft Corporation - KSLDriver.) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BCB17852-6787-47BD-AE0F-E84D1B6002D2}\MpKslf6661dff.sys
O41 - Driver: (MpKslfa792024) . (.Microsoft Corporation - KSLDriver.) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BCB17852-6787-47BD-AE0F-E84D1B6002D2}\MpKslfa792024.sys
O41 - Driver: (MpKslfce82a6e) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E5FE36A2-5299-4174-A2BB-EF9BED52DCDC}\MpKslfce82a6e.sys (.not file.)
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys



---\\ Logiciels installés (O42)
O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM] -- ABBYY FineReader 9.0 Sprint
O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM] -- {F9000000-0018-0000-0000-074957833700}
O42 - Logiciel: Adibou Joue avec les mots et les nombres 5-6 ans - (.Mindscape.) [HKLM] -- {C5866F5C-EBB3-4692-AFAD-CC0C69647EC3}
O42 - Logiciel: Adiboud'Chou et le Jardin des Surprises - (.Mindscape.) [HKLM] -- {19BA6533-893E-4F17-A95C-4A38043A8721}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Reader 9.4.5 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A94000000001}
O42 - Logiciel: Adobe Shockwave Player 11.6 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {B3575D00-27EF-49C2-B9E0-14B3D954E992}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {C23CD6DA-1958-43A5-ADD0-59396572E02E}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {C6579A65-9CAE-4B31-8B6B-3306E0630A66}
O42 - Logiciel: Backup Key Recovery 1.3.4 - (.Nsasoft, LLC..) [HKLM] -- Backup Key Recovery_is1
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {C2E4B5BD-32DB-4817-A060-341AB17C3F90}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Contrôle ActiveX Windows Live Devices pour connexions à distance - (.Microsoft Corporation.) [HKLM] -- {E18C7F77-1E6E-4541-A987-1DF3612D21E8}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {52CDDA92-56B6-4BA5-BD8D-E13B186008CB}
O42 - Logiciel: EPSON SX125 Series Manuel - (.Pas de propriétaire.) [HKLM] -- EPSON SX125 Series Manual
O42 - Logiciel: EPSON SX125 Series Printer Uninstall - (.SEIKO EPSON Corporation.) [HKLM] -- EPSON SX125 Series
O42 - Logiciel: EPSON Scan - (.Seiko Epson Corporation.) [HKLM] -- EPSON Scanner
O42 - Logiciel: Epson Easy Photo Print 2 - (.SEIKO EPSON CORPORATION.) [HKLM] -- {39F58DDB-B2B8-4B86-AF20-4706A80EB30D}
O42 - Logiciel: Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) - (.SEIKO EPSON CORPORATION.) [HKLM] -- {B2D55EB8-32C5-4B43-9006-9E97DECBA178}
O42 - Logiciel: Epson Event Manager - (.SEIKO EPSON CORPORATION.) [HKLM] -- {03B8AA32-F23C-4178-B8E6-09ECD07EAA47}
O42 - Logiciel: Franklin Après l'école - (.Pas de propriétaire.) [HKLM] -- {E1ED58B9-D32C-4EAB-B3F3-1049735041DB}
O42 - Logiciel: Freeplayer - (.Free.) [HKLM] -- Freeplayer
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {B3FED300-806C-11E0-A0D0-B8AC6F97B88E}
O42 - Logiciel: Java(TM) 6 Update 26 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216020FF}
O42 - Logiciel: L'atelier créatif de Lapin Malin - (.Pas de propriétaire.) [HKLM] -- L'atelier créatif de Lapin Malin
O42 - Logiciel: Lapin Malin Maternelle 3 - (.Pas de propriétaire.) [HKLM] -- Lapin Malin Maternelle 3
O42 - Logiciel: Logiciel d'archivage WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Mahjong (Supprimer uniquement) - (.Pas de propriétaire.) [HKLM] -- Mahjong
O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.1.1800 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: MediaBar - (.Musiclab, LLC.) [HKLM] -- BearShare 2 MediaBar
O42 - Logiciel: MediaImpression 2.0 for PENTAX - (.ArcSoft.) [HKLM] -- {D4C7DAB9-6623-4D86-9B9A-C9F8903BA4D2}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}
O42 - Logiciel: Microsoft Antimalware - (.Microsoft Corporation.) [HKLM] -- {774088D4-0777-4D78-904D-E435B318F5D2}
O42 - Logiciel: Microsoft Antimalware Service FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {0450B7B0-AC71-44A4-AB40-4DD678DF3A8C}
O42 - Logiciel: Microsoft Antimalware Service FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {A4526B5A-89C0-4F4B-9E6E-4F883374D5F9}
O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM] -- {77A776C4-D10F-416D-88F0-53F2D9DCD9B3}
O42 - Logiciel: Microsoft Security Client FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {859B9BCA-5376-4566-9F88-C6C9DAA7A925}
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM] -- Microsoft Security Client
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: Philips Songbird - (.Koninklijke Philips Electronics N.V..) [HKLM] -- Philips Songbird
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM] -- Picasa 3
O42 - Logiciel: PowerISO - (.PowerISO Computing, Inc..) [HKLM] -- PowerISO
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {57752979-A1C9-4C02-856B-FBB27AC4E02C}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: ScanSoft OmniPage SE 4 - (.Nuance Communications, Inc..) [HKLM] -- {DEE88727-779B-47A9-ACEF-F87CA5F92A65}
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2446708
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2478663
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2518870
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}.KB2478663
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}.KB2518870
O42 - Logiciel: VLC media player 1.1.9 - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
O42 - Logiciel: Zylom Games Player Plugin - (.Zylom Games.) [HKLM] -- Zylom Games Player Plugin
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {C897FCB3-2F8B-4185-8035-79E2AF3A92A4}
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}

---\\ HKCU & HKLM Software Keys
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\ShopperReports3]
[HKCU\Software\AppDataLow\Software\ShoppingReport2]
[HKCU\Software\AppDataLow\Software\Yahoo]
[HKCU\Software\AppDataLow\Software\mediabarbs]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\ArcSoft]
[HKCU\Software\BearShare]
[HKCU\Software\Boonty]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\DataMngr]
[HKCU\Software\DataMngr_Toolbar]
[HKCU\Software\EPSON]
[HKCU\Software\FissaSearch]
[HKCU\Software\Freeplayer]
[HKCU\Software\Google]
[HKCU\Software\IM Providers]
[HKCU\Software\JavaSoft]
[HKCU\Software\Lavalys]
[HKCU\Software\Macromedia]
[HKCU\Software\Magnet]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MicroApp]
[HKCU\Software\Mindscape]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Netscape]
[HKCU\Software\OfferBox]
[HKCU\Software\Philips Songbird]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\PowerISO]
[HKCU\Software\Realtek]
[HKCU\Software\ScanSoft]
[HKCU\Software\SecuROM]
[HKCU\Software\Spointer]
[HKCU\Software\SweetIM]
[HKCU\Software\Trolltech]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\WideStream]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\Yahoo]
[HKCU\Software\Zylom]
[HKLM\Software\ABBYY]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Adobe]
[HKLM\Software\AppDataLow]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\ArcSoft]
[HKLM\Software\BearShareMediabarTb]
[HKLM\Software\Boonty]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Corus Entertainment Inc.]
[HKLM\Software\CrazyLoader]
[HKLM\Software\DataMngr]
[HKLM\Software\DivXNetworks]
[HKLM\Software\EPSON]
[HKLM\Software\FREEzeFrog]
[HKLM\Software\GEAR Software]
[HKLM\Software\Google]
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MimarSinan]
[HKLM\Software\Mindscape]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SEIKO EPSON CORPORATION]
[HKLM\Software\SRS Labs]
[HKLM\Software\ScanSoft]
[HKLM\Software\SecureDigitalServices]
[HKLM\Software\Songbird]
[HKLM\Software\Sonic]
[HKLM\Software\Sony Corporation]
[HKLM\Software\SweetIM]
[HKLM\Software\The Learning Company]
[HKLM\Software\Uniblue]
[HKLM\Software\VideoLAN]
[HKLM\Software\WinRAR]
[HKLM\Software\Windows]
[HKLM\Software\Yahoo]



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 24/02/2011 - 18:24:44 - [181689461] ----D- C:\Program Files\ABBYY FineReader 9.0 Sprint
O43 - CFD: 09/04/2011 - 10:52:46 - [162903726] ----D- C:\Program Files\Adobe
O43 - CFD: 02/09/2010 - 17:40:42 - [0] ----D- C:\Program Files\adslTV
O43 - CFD: 12/06/2011 - 09:41:32 - [2307582] ----D- C:\Program Files\Apple Software Update
O43 - CFD: 12/06/2011 - 11:35:42 - [6167142] ----D- C:\Program Files\BearShare Applications
O43 - CFD: 25/01/2011 - 17:28:50 - [466704] ----D- C:\Program Files\Bing Bar Installer
O43 - CFD: 12/06/2011 - 09:40:12 - [621225] ----D- C:\Program Files\Bonjour
O43 - CFD: 10/03/2011 - 18:14:18 - [9293] ----D- C:\Program Files\BoontyGames
O43 - CFD: 25/01/2011 - 17:29:30 - [10640524] ----D- C:\Program Files\Canon
O43 - CFD: 02/01/2011 - 17:30:24 - [3514104] ----D- C:\Program Files\CCleaner
O43 - CFD: 17/06/2011 - 22:03:36 - [486653354] ----D- C:\Program Files\Common Files
O43 - CFD: 23/01/2011 - 12:47:24 - [61422151] ----D- C:\Program Files\Corus Entertainment Inc
O43 - CFD: 11/09/2010 - 11:32:08 - [1281696] ----D- C:\Program Files\CrazyLoader
O43 - CFD: 03/07/2011 - 16:49:46 - [83226644] ----D- C:\Program Files\DVD Maker
O43 - CFD: 12/06/2011 - 23:06:48 - [5873664] ----D- C:\Program Files\eMule
O43 - CFD: 24/02/2011 - 18:25:46 - [14910850] ----D- C:\Program Files\epson
O43 - CFD: 24/02/2011 - 18:33:20 - [168424452] ----D- C:\Program Files\Epson Software
O43 - CFD: 30/08/2010 - 20:29:16 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 28/03/2011 - 16:44:44 - [0] ----D- C:\Program Files\Fluendo
O43 - CFD: 18/12/2010 - 15:27:04 - [40646174] ----D- C:\Program Files\Freeplayer
O43 - CFD: 12/07/2011 - 18:12:50 - [0] ----D- C:\Program Files\FREEzeFrog
O43 - CFD: 03/07/2011 - 04:11:56 - [179749780] ----D- C:\Program Files\Google
O43 - CFD: 24/07/2011 - 09:40:26 - [35634209] --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD: 03/07/2011 - 16:49:44 - [5843081] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 12/06/2011 - 09:46:48 - [1856627] ----D- C:\Program Files\iPod
O43 - CFD: 12/06/2011 - 09:47:44 - [128332719] ----D- C:\Program Files\iTunes
O43 - CFD: 17/06/2011 - 22:01:02 - [91881912] ----D- C:\Program Files\Java
O43 - CFD: 24/07/2011 - 10:03:10 - [6988565] ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 24/07/2011 - 09:40:26 - [6221858] ----D- C:\Program Files\Micro Application
O43 - CFD: 25/01/2011 - 17:28:42 - [0] ----D- C:\Program Files\Microsoft
O43 - CFD: 27/10/2010 - 20:55:36 - [800662] ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2
O43 - CFD: 01/09/2010 - 16:16:00 - [240225702] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 03/02/2011 - 18:19:54 - [18397928] ----D- C:\Program Files\Microsoft Security Client
O43 - CFD: 15/06/2011 - 20:46:42 - [38411899] ----D- C:\Program Files\Microsoft Silverlight
O43 - CFD: 30/08/2010 - 20:53:46 - [14904] ----D- C:\Program Files\Microsoft Visual Studio
O43 - CFD: 30/08/2010 - 20:49:22 - [1387249] ----D- C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 26/01/2011 - 07:54:28 - [8053091] ----D- C:\Program Files\Microsoft.NET
O43 - CFD: 23/01/2011 - 14:02:42 - [2743562431] ----D- C:\Program Files\Mindscape
O43 - CFD: 30/08/2010 - 20:54:06 - [26521] ----D- C:\Program Files\MSBuild
O43 - CFD: 27/10/2010 - 20:49:46 - [0] ----D- C:\Program Files\MSXML 4.0
O43 - CFD: 01/09/2010 - 17:52:26 - [1888105] ----D- C:\Program Files\Nsasoft
O43 - CFD: 02/01/2011 - 16:54:26 - [29] ----D- C:\Program Files\Objective Tarot
O43 - CFD: 05/03/2011 - 18:49:26 - [123574558] ----D- C:\Program Files\PENTAX
O43 - CFD: 11/06/2011 - 21:57:44 - [110595961] ----D- C:\Program Files\Philips
O43 - CFD: 30/08/2010 - 20:37:58 - [4022452] ----D- C:\Program Files\PowerISO
O43 - CFD: 12/06/2011 - 09:43:52 - [76322555] ----D- C:\Program Files\QuickTime
O43 - CFD: 11/09/2010 - 16:40:12 - [15086793] ----D- C:\Program Files\Realtek
O43 - CFD: 14/07/2009 - 06:52:32 - [39159041] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 24/10/2010 - 16:30:16 - [121570105] ----D- C:\Program Files\ScanSoft
O43 - CFD: 12/09/2010 - 17:23:34 - [0] --H-D- C:\Program Files\Temp
O43 - CFD: 14/07/2009 - 06:53:24 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - C
0
Réponse 3 / 4
Utilisateur anonyme
24 juil. 2011 à 10:56
ne poste spas les rapports Zhpdiag sur le forum.Tu dois les héberger et poster le lien comme tu as fais au post précedent.

Tu dois aussi faire les choses dans l'ordre.

1/===>Relances Mbam et apres le scan complet et suppression de la sélection poster le rapport

2/===>Apres l'analyse Mbam et avoir posté le rapport Relances Zhpdiag et postes son rapport.

@++
0
Réponse 4 / 4
couperose57 Messages postés 9 Date d'inscription dimanche 12 septembre 2010 Statut Membre Dernière intervention 24 février 2012
24 juil. 2011 à 13:38
https://pjjoint.malekal.com/files.php?id=q9f7v15b6r11i5t13s15s9o10t1010
et le rapport Mbam

Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org

Version de la base de données: 7260

Windows 6.1.7601 Service Pack 1
Internet Explorer 8.0.7601.17514

24/07/2011 13:22:22
mbam-log-2011-07-24 (13-22-22).txt

Type d'examen: Examen complet (C:\|)
Elément(s) analysé(s): 296903
Temps écoulé: 1 heure(s), 36 minute(s), 31 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
0

Discussions similaires

Harry Potter
louloutte27089 -
Livine -

5 réponses
adware.pokki
SuperFun -
SuperFun -

9 réponses
George Wassouf parle de son fils (2008)
momo -
houssem.tito -

2 réponses
c'est quoi un tracking cookie?
Berivan -
Berivan -

45 réponses
virus crossrider
viaumax -
viaumax -

6 réponses