Sujet Précédent Sujet Suivant

Ordinateur qui rame

anna621401 Messages postés 66 Statut Membre -  
 anna621401 -
Bonjour,

Depuis quelques jours j'ai mon ordinateur qui rame lorsque je suis sur internet.
Je ne sais pas d'où provient ce poblème..
Pouvez vous m'aider svp ?

Merci

11 réponses

Réponse 1 / 11
Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318
 
Salut,

Nous allons effectuer un diagnostic de ton PC:
*Télécharge ZHPDiag sur ton bureau :

https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
ou :
http://www.premiumorange.com/zeb-help-process/zhpdiag.html

* Laisse toi guider lors de l'installation,coche "Ajouter une icône sur le bureau" et décoche la case "Exécuter ZHPDiag"

/!\Utilisateur de Vista et Seven : Clique droit sur le logo de ZHPdiag, « exécuter en tant qu'Administrateur »

* Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
* Héberge le rapport ZHPDiag.txt sur un des sites ci dessous, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum : http://www.cijoint.fr/
Si indisponible, tu peux essayer avec l'un de ces liens:
http://dl.free.fr
http://ww38.toofiles.com/fr/documents-upload.html
https://www.terafiles.net/
https://www.casimages.com/
http://pjjoint.malekal.com/

* Tuto zhpdiag :
http://www.premiumorange.com/zeb-help-process/zhpdiag.html

Hébergement de rapport sur cijoint.fr/

Rend toi sur ce site : http://www.cijoint.fr/
Clique sur Choisissez un fichier
Clique sur "Cliquez ici pour déposer le fichier".
Un lien de cette forme : http://www.cijoint.fr/cjlink.php?file=cj44123/cijSKAP5fU.txt
est ajouté dans la page. Copie ce lien dans ta réponse.
0
Réponse 2 / 11
anna621401 Messages postés 66 Statut Membre
 
J'ai fait ce que vous m'avez dit ; voici le lien : http://ww38.toofiles.com/fr/oip/documents/txt/6615_zhpdiag.html
0
Réponse 3 / 11
Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318
 
Re,

1/
Comme Antivirus tu as : Avast et des traces de Panda et McAfee Security Scan

*Désinstallation de Panda
Télécharge l'utilitaire de désinstallation. Exécute-le puis redémarre quand il est demandé

*Désinstallation McAfee Security Scan
- Télécharge l'utilitaire de désinstallation
- Exécute le en suivant les instructions
- Aide >>>ICI<<<

2/
Désinstalle et supprime si possible ces logiciels et dossiers :
C:\ProgramData\HBLiteSA
C:\ProgramData\QuestScan
C:\Users\TENTELIER\AppData\Roaming\OpenCandy
C:\Users\TENTELIER\AppData\Local\OpenCandy
C:\Users\TENTELIER\AppData\LocalLow\BabylonToolbar
C:\Users\TENTELIER\AppData\LocalLow\ShoppingReport2
C:\Program Files (x86)\BabylonToolbar
C:\Program Files (x86)\HBLite
C:\Program Files (x86)\QuestScan
C:\Program Files (x86)\ShoppingReport2

3/
Télécharge AdwCleaner (merci à Xplode)
Ou ADWCleaner ici
Lance AdwCleaner
Clique sur le bouton [ Suppression]
Patiente...
Poste le rapport qui apparait en fin de recherche.
Il se trouve également à C:\AdwCleaner[SX] (où X est un chiffre)

4/
* Télécharge de AD-Remover sur ton Bureau.
http://www.teamxscript.org/adremoverTelechargement.html

/!\ Ferme toutes applications en cours /!\

- Double sur l'icône Ad-remover située sur ton Bureau.
-Pour vista/Seven : clique avec le bouton droit de la souris et choisis « exécuter en tant qu'administrateur »
- Sur la page, clique sur le bouton « Nettoyer »
- Confirme lancement du scan
- Laisse travailler l'outil.
- Poste le rapport qui apparaît à la fin.

(Le rapport est sauvegardé aussi sous C:\Ad-report(Scan/clean).Txt)

(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour c

_ _ _ Fish66_ _ _ I''"""""I_ _ membre _ _I''"""""I_ _ contributeur _ _ _
¤¤¤ Le meilleur remède pour tous les problèmes, c'est la patience.... ¤¤¤
0
Réponse 4 / 11
anna621401 Messages postés 66 Statut Membre
 
Voici le rapport :
# AdwCleaner v1.307 - Rapport créé le 21/09/2011 à 15:06:20
# Mis à jour le 19/09/11 à 09h par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
# Nom d'utilisateur : TENTELIER - TENTELIER-VAIO (Administrateur)
# Exécuté depuis : C:\Users\TENTELIER\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L26ARVKR\adwcleaner0.exe
# Option [Suppression]

***** [KillNav] *****

# iexplore.exe [PID:3236] -> Tué

***** [Processus] *****

***** [Services] *****

***** [Fichiers / Dossiers] *****

Dossier Supprimé : C:\ProgramData\HBLiteSA
Dossier Supprimé : C:\Users\TENTELIER\AppData\Roaming\HBLite
Dossier Supprimé : C:\Users\TENTELIER\AppData\Roaming\OpenCandy
Dossier Supprimé : C:\Users\TENTELIER\AppData\Local\Conduit
Dossier Supprimé : C:\Users\TENTELIER\AppData\Local\OpenCandy
Dossier Supprimé : C:\Users\TENTELIER\AppData\LocalLow\Conduit
Dossier Supprimé : C:\Users\TENTELIER\AppData\LocalLow\ConduitEngine
Dossier Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotbar
Dossier Supprimé : C:\Program Files (x86)\Conduit
Dossier Supprimé : C:\Program Files (x86)\ConduitEngine
Dossier Supprimé : C:\Program Files (x86)\HBLite
Dossier Supprimé : C:\Program Files (x86)\ShoppingReport2

***** [Registre] *****

Clé Supprimée : HKCU\Software\BabylonToolbar
Clé Supprimée : HKCU\Software\Conduit
Clé Supprimée : HKCU\Software\hblitesa
Clé Supprimée : HKCU\Software\ShoppingReport2
Clé Supprimée : HKCU\Software\AppDataLow\Toolbar
Clé Supprimée : HKCU\Software\AppDataLow\Software\Conduit
Clé Supprimée : HKCU\Software\AppDataLow\Software\conduitEngine
Clé Supprimée : HKCU\Software\AppDataLow\Software\ShoppingReport2
Clé Supprimée : HKLM\SOFTWARE\BabylonToolbar
Clé Supprimée : HKLM\SOFTWARE\Conduit
Clé Supprimée : HKLM\SOFTWARE\conduitEngine
Clé Supprimée : HKLM\SOFTWARE\HBLite
Clé Supprimée : HKLM\SOFTWARE\ShoppingReport2
Clé Supprimée : HKLM\SOFTWARE\Classes\Babylon.dskBnd
Clé Supprimée : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
Clé Supprimée : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Clé Supprimée : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Clé Supprimée : HKLM\SOFTWARE\Classes\Conduit.Engine
Clé Supprimée : HKLM\SOFTWARE\Classes\escort.escortIEPane
Clé Supprimée : HKLM\SOFTWARE\Classes\escort.escrtBtn.1
Clé Supprimée : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
Clé Supprimée : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
Clé Supprimée : HKLM\SOFTWARE\Classes\hbliteax.info
Clé Supprimée : HKLM\SOFTWARE\Classes\hbliteax.info.1
Clé Supprimée : HKLM\SOFTWARE\Classes\hbliteax.userprofiles
Clé Supprimée : HKLM\SOFTWARE\Classes\hbliteax.userprofiles.1
Clé Supprimée : HKLM\SOFTWARE\Classes\ShoppingReport2.HbAx
Clé Supprimée : HKLM\SOFTWARE\Classes\ShoppingReport2.HbAx.1
Clé Supprimée : HKLM\SOFTWARE\Classes\ShoppingReport2.HbInfoBand
Clé Supprimée : HKLM\SOFTWARE\Classes\ShoppingReport2.HbInfoBand.1
Clé Supprimée : HKLM\SOFTWARE\Classes\ShoppingReport2.IEButton
Clé Supprimée : HKLM\SOFTWARE\Classes\ShoppingReport2.IEButton.1
Clé Supprimée : HKLM\SOFTWARE\Classes\ShoppingReport2.IEButtonA
Clé Supprimée : HKLM\SOFTWARE\Classes\ShoppingReport2.IEButtonA.1
Clé Supprimée : HKLM\SOFTWARE\Classes\ShoppingReport2.RprtCtrl
Clé Supprimée : HKLM\SOFTWARE\Classes\ShoppingReport2.RprtCtrl.1
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{4d1ec4ca-4b92-4324-b8f8-c9a6ed06a8ae}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{4e674574-3f0b-491d-8ae3-f90b43a34fd6}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3c471948-f874-49f5-b338-4f214a2ee0b1}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{291BCCC1-6890-484a-89D3-318C928DAC1B}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{97F2FF5B-260C-4ccf-834A-2DDA4E29E39E}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{30B15818-E110-4527-9C05-46ACE5A3460D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{618aad04-921f-44c2-be38-c0818af69861}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{b5d2ed96-62f9-4c2c-956d-e425b1f67337}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{d3a412e8-1e4b-47d2-9b12-f88291f5afbb}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{0EB3F101-224A-4B2B-9E5B-DF720857529C}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A1F1ECD3-4806-44C6-A869-F0DADF11C57C}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{B035BA6B-57CD-4F72-B545-65BE465FCAF6}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{D44FD6F0-9746-484E-B5C4-C66688393872}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{6f098504-cdb1-420f-a2e6-ddc0b835fedf}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{4B8C28A7-A9BC-45F8-990D-21499EED643C}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4d1ec4ca-4b92-4324-b8f8-c9a6ed06a8ae}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4e674574-3f0b-491d-8ae3-f90b43a34fd6}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{30F9B915-B755-4826-820B-08FBA6BD249D}]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49dd-99D7-DC866BE87DBC}]
Valeur Supprimée : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [hblite@hblite.com]

***** [Registre (64 bits)] *****

[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{30B15818-E110-4527-9C05-46ACE5A3460D}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{618aad04-921f-44c2-be38-c0818af69861}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{b5d2ed96-62f9-4c2c-956d-e425b1f67337}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{d3a412e8-1e4b-47d2-9b12-f88291f5afbb}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{0EB3F101-224A-4B2B-9E5B-DF720857529C}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{A1F1ECD3-4806-44C6-A869-F0DADF11C57C}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}

***** [Navigateurs] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Le registre ne contient aucune entrée illégitime.

-\\ Google Chrome v [Impossible d'obtenir la version]

Fichier : C:\Users\TENTELIER\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Le fichier ne contient aucune entrée illégitime.

*************************

AdwCleaner[S1].txt - [9671 octets] - [21/09/2011 15:06:20]

*************************

Dossier Temporaire : 227 dossier(s) et 1289 fichier(s) supprimé(s)

########## EOF - C:\AdwCleaner[S1].txt - [9898 octets] ##########
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 11
anna621401 Messages postés 66 Statut Membre
 
Et voici le 2e rapport :

======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files (x86)\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 15:11:54 le 21/09/2011, Mode normal

Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X64)
TENTELIER@TENTELIER-VAIO (Sony Corporation VPCEF2E1E)

============== ACTION(S) ==============

Dossier supprimé: C:\ProgramData\2ACA5CC3-0F83-453D-A079-1076FE1A8B65
Dossier supprimé: C:\Users\TENTELIER\AppData\LocalLow\ShoppingReport2

(!) -- Fichiers temporaires supprimés.

Clé supprimée: HKLM\Software\Classes\CLSID\{995D225B-AE76-4F2F-8B65-1FEFC199808F}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{995D225B-AE76-4F2F-8B65-1FEFC199808F}
Clé supprimée: HKLM\Software\Classes\Interface\{C8D424EF-CB21-49A0-8659-476FBAB0F8E8}
Clé supprimée: HKLM\Software\Classes\Toolbar.CT2117678
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C193A28F-5D5B-49D7-90B2-7298A02D8EC4}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A63A06CC-51ED-45CE-A2BD-D7EF9380F640}

============== SCAN ADDITIONNEL ==============

**** Internet Explorer Version [9.0.8112.16421] ****

HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKCU_URLSearchHooks|{c2db4fe6-8409-45ce-8010-189a7b5cce86} - "NCH Toolbar" (C:\Program Files (x86)\NCH\prxtbNCH.dll)
HKLM_URLSearchHooks|{c2db4fe6-8409-45ce-8010-189a7b5cce86} - "NCH Toolbar" (C:\Program Files (x86)\NCH\prxtbNCH.dll)
HKCU_SearchScopes\{814C76CB-2623-43F4-AAD0-58A0E5190A20} - "Orange" (hxxp://www.orange.fr/bin/frame1px.cgi?u=hxxp%3A//r.voila.fr/se%3Frdata%3D{search...)
HKLM_Toolbar|{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} (C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll)
HKLM_Toolbar|{c2db4fe6-8409-45ce-8010-189a7b5cce86} (C:\Program Files (x86)\NCH\prxtbNCH.dll)
HKLM_ElevationPolicy\${ELV_GUID} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe (x)
HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x)
HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x)
HKLM_ElevationPolicy\{64DA00B7-88FE-49a8-8515-68A5C8C305DB} - C:\Program Files\Sony\VAIO Personalization Manager\VpmIfBroker.exe (Sony Corporation)
HKLM_ElevationPolicy\{6AA4CA21-C136-4CC5-B730-BE06D7CAC9AA} - C:\Users\TENTELIER\AppData\Local\Conduit\CT2117678\NCHAutoUpdateHelper.exe (x)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{7EAB6991-888B-444C-9D14-7D41A4C873ED} - C:\Program Files (x86)\NCH\NCHToolbarHelper.exe (?)
HKLM_ElevationPolicy\{A39C536A-A41F-492f-B784-08D5A6DCF091} - C:\Program Files (x86)\Evernote\Evernote3.5\Evernote.exe (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x)
HKLM_ElevationPolicy\{E6856B61-272B-4e4f-AADE-1D73054BCAD1} - C:\Program Files\Sony\VAIO Personalization Manager\VpmIfBroker.exe (Sony Corporation)
HKLM_ElevationPolicy\{ED4ABFF1-2CA0-4476-98EB-E9208D434752} - C:\Program Files\Sony\VAIO Personalization Manager\VpmIfBroker.exe (Sony Corporation)
HKLM_ElevationPolicy\{F3CD2902-C553-4d6a-B139-934BED1FAADF} - C:\Program Files\Sony\VAIO Personalization Manager\VpmIfBroker.exe (Sony Corporation)
HKLM_ElevationPolicy\{F7897EF1-FE28-4f1a-9615-E45744D29F15} - C:\Program Files\Sony\VAIO Personalization Manager\VpmIfBroker.exe (Sony Corporation)
HKLM_Extensions\{CCA281CA-C863-46ef-9331-5C8D4460577F} - "Envoyer à Bluetooth" (C:\Program Files\WIDCOMM\Bluetooth Software\bt_cold_icon.ico)
HKLM_Extensions\{E0B8C461-F8FB-49b4-8373-FE32E92528A6} - "Add to Evernote" (C:\Program Files (x86)\Evernote\Evernote3.5\enbar.dll,1001)
BHO\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - "avast! WebRep" (C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll)
BHO\{c2db4fe6-8409-45ce-8010-189a7b5cce86} - "NCH Toolbar" (C:\Program Files (x86)\NCH\prxtbNCH.dll)

========================================

C:\Program Files (x86)\Ad-Remover\Quarantine: 1 Fichier(s)
C:\Program Files (x86)\Ad-Remover\Backup: 13 Fichier(s)

C:\Ad-Report-CLEAN[1].txt - 21/09/2011 15:12:16 (4997 Octet(s))

Fin à: 15:13:44, 21/09/2011

============== E.O.F ==============
0
Réponse 6 / 11
Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318
 
Re,
1/
* Lance Malwarebytes' Anti-Malware
* Fais la mise à jour
* Clique dans l'onglet "Recherche"
* Coche l'option "Exécuter un examen complet" puis sur le bouton "Rechercher"
* Choisis de scanner tous tes disques durs, puis clique sur 'Lancer l'examen"

A la fin de l'analyse, si MBAM n'a rien trouvé :

* Clique sur OK, le rapport s'ouvre spontanément

Si des menaces ont été détectées :

* Clique sur OK puis "Afficher les résultats"
*Vérifie que toutes les lignes sont cochées
* Choisis l'option "Supprimer la sélection"
* Si MBAM demande le redémarrage de Windows : Clique sur "Oui"
* Le rapport s'ouvre automatiquement après la suppression, il se trouve aussi dans l'onglet "Rapports/Logs"

* Copie/colle le rapport dans le prochain message

Remarque :
- S'il y'a un problème de mise à jour de mbam, tu peux la faire manuellement en téléchargeant ce fichier puis en l'exécutant.

2/
Lance ZHPDiag depuis ton bureau puis prépare stp un nouveau rapport ZHPDiag

@+
0
Réponse 7 / 11
anna621401 Messages postés 66 Statut Membre
 
Voici le rapport :

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Version de la base de données: 7765

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

21/09/2011 22:57:06
mbam-log-2011-09-21 (22-57-06).txt

Type d'examen: Examen complet (C:\|)
Elément(s) analysé(s): 355519
Temps écoulé: 1 heure(s), 6 minute(s), 28 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 3
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{258C9770-1713-4021-8D7E-1F184A2BD754} (Adware.ShoppingReport2) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939} (Adware.ShoppingReport2) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\MFJJEC0A1L (Trojan.FakeAlert) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MFJJEC0A1L (Trojan.FakeAlert) -> Value: MFJJEC0A1L -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
0
Réponse 8 / 11
Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318
 
Bonjour,

Lance ZHPDiag depuis ton bureau et prépare stp un nouveau rapport ZHPDiag

@+
0
Réponse 9 / 11
anna621401 Messages postés 66 Statut Membre
 
Voici le rapport :

Rapport de ZHPDiag v1.28.1350 par Nicolas Coolman, Update du 20/09/2011
Run by TENTELIER at 22/09/2011 13:39:10
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html

---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
OBIE: Safari v5.34.50.0

---\\ Windows Product Information
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : CGKHQ
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: AMD64 Family 16 Model 6 Stepping 3, AuthenticAMD
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3834 MB (57% free)
System Restore: Activé (Enable)
System drive C: has 226 GB (78%) free of 288 GB

---\\ Logged in mode
~ Computer Name: TENTELIER-VAIO
~ User Name: TENTELIER
~ All Users Names: TENTELIER, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\TENTELIER\AppData\Roaming\
~ %Desktop% : C:\Users\TENTELIER\Desktop\
~ %Favorites% : C:\Users\TENTELIER\Favorites\
~ %LocalAppData% : C:\Users\TENTELIER\AppData\Local\
~ %StartMenu% : C:\Users\TENTELIER\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\system32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 226 Go of 288 Go)
D:\ CD-ROM drive (Not Inserted)

---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
~ Scan Security Center in 00mn 00s

---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.30/04/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (....) (.14/07/2009 - 02:39:31.) -- C:\Windows\system32\rundll32.exe [45568]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\system32\Wininit.exe [129024]
[MD5.0732B49B250E306F7A6591029AF9885B] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.20/08/2011 - 06:36:16.) -- C:\Windows\system32\wininet.dll [1389056]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.07/06/2011 - 14:25:30.) -- C:\Windows\system32\Winlogon.exe [390656]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\drivers\atapi.sys [24128]
[MD5.A2F74975097F52A00745F9637451FDD8] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.30/04/2011 - 07:41:34.) -- C:\Windows\system32\drivers\ntfs.sys [1659776]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.07/06/2011 - 14:27:26.) -- C:\Windows\system32\sppcomapi.dll [232448]
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (....) (.07/06/2011 - 14:07:20.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480]
~ Scan Generic Processes in 00mn 00s

---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 12/3501
~ Mes musiques (My Musics) : 342/1110
~ Mes Videos (My Videos) : 2/50
~ Mes Favoris (My Favorites) : 3/81
~ Mes Documents (My Documents) : 22/940
~ Mon Bureau (My Desktop) : 3/19
~ Menu demarrer (Programs) : 7/22
~ Scan Hidden Files in 00mn 05s

---\\ Processus lancés
[MD5.DA6EA8656109F445DF33F9F2A58018EE] - (.Sony Corporation - VAIO Care.) -- C:\Program Files\Sony\VAIO Care\VCSpt.exe [81296] [PID.664]
[MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408] [PID.]
[MD5.D4FA02CF2F6305299D7BF8914627E42A] - (.Orange - Executable Orange Inside.) -- C:\Users\TENTELIER\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe [858624] [PID.3864]
[MD5.88C7319B0D171537A59520FE4DD8C357] - (.Sony Corporation - Media Check Tool.) -- C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [597792] [PID.3988]
[MD5.E2B4488830B9F047930BB5FE0E4FD71B] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe [3722416] [PID.4024]
[MD5.13E7CFE8E269ED15E7FC9C3EBBCB7E2B] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696] [PID.4060]
[MD5.879D74337173A6D630D3D06184D354C1] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [421736] [PID.3592]
[MD5.026423673B8563E9975BDA97ED6273C7] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [449608] [PID.3524]
[MD5.D06276D4CAD46CDCEABEFDEB1A0D3C0D] - (...) -- C:\Program Files (x86)\Microsoft Office\Office\OSA.EXE [51984] [PID.1168]
[MD5.89F7C30A91E5581BDF14C62AB46A2B2D] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe [255536] [PID.3204]
[MD5.BC9C9BE7BB74D629362608ACE470E7DA] - (.Microsoft Corporation - Notification de cadeaux MSN.) -- C:\Users\TENTELIER\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe [135680] [PID.4552]
[MD5.8911702CC546B76FE8F9C61987C68C43] - (.Microsoft Corporation - Internet Low-Mic Utility Tool.) -- C:\Program Files (x86)\Internet Explorer\IELowutil.exe [222720] [PID.2908]
[MD5.5E8687798FC2C1D3C5BAEEB8C57AD395] - (.Sony of America Corporation - VaioCare Window Listener Application.) -- C:\Program Files\Sony\VAIO Care\listener.exe [75776] [PID.3040]
[MD5.0C48AFAA67B59D73567DF8EB4DD04B4A] - (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10s_ActiveX.exe [240288] [PID.2012]
[MD5.6A88DA10D061B2CF91818EF953574594] - (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\wlmail.exe [92024] [PID.4044]
[MD5.904E13BA41AF2E353A32CF351CA53639] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe [748336] [PID.2428]
[MD5.745EE2C6FB0B43C9F00E017F5E5D7317] - (.Google Inc. - Google Toolbar Broker.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe [307376] [PID.2076]
[MD5.B26A2F3CD6459548DB6891D138080876] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [2121216] [PID.4324]
[MD5.C76769F246250EDAD34A5581419E9D60] - (.AVAST Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [44768] [PID.]
[MD5.11A52CF7B265631DEEB24C6149309EFF] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [64952] [PID.]
[MD5.20F6F19FE9E753F2780DC2FA083AD597] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [37664] [PID.]
[MD5.1C87705CCB2F60172B0FC86B5D82F00D] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe [387944] [PID.]
[MD5.627FA58ADC043704F9D14CA44340956F] - (.Sony Corporation - Device Information Provider.) -- C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [360224] [PID.]
[MD5.63F6D08C54D5B3C1B12A6172032055C7] - (.ArcSoft, Inc. - MgiSvr.) -- C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [104960] [PID.]
[MD5.218F78B39832A2A0761CE2422828A57C] - (.Sony Corporation - VAIO Event Service (Service Module).) -- C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe [217968] [PID.]
[MD5.10E212BFB7EAB152A64C1AAEC2F7F4E0] - (.Sony Corporation - VCM Intelligent Analyzing Manager.) -- C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [529776] [PID.]
[MD5.7A88CFD3FE99F2C9B95A6E2A08B96E14] - (.Sony Corporation - VCM Intelligent Network Service Manager.) -- C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [386416] [PID.]
[MD5.A63DC5C2EA944E6657203E0C8EDEAF61] - (.Microsoft Corporation - COM Surrogate.) -- C:\Windows\SysWOW64\DllHost.exe [7168] [PID.]
[MD5.0949E8607FEFA7739715810170025083] - (.Sony Corporation - VAIO Event Service (Service Sub Module).) -- C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe [120176] [PID.]
[MD5.94E920BE59B9AB65D95E582DBAA136AC] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [366152] [PID.]
~ Scan Processes Running in 00mn 01s

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\TENTELIER\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] http://search.babylon.com
G0 - GCSP: Preference [User Data\Default][HomePage] http://startsear.ch
G2 - GCE: Preference [User Data\Default] [dhkplhfnhceodhffomolpfigojocbpcb] Babylon Chrome OCR v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [icmlaeflemplmjndnaapfdbbnpncnbda] avast! WebRep v.6.0.1289 (Activé)
~ Scan Google Browser in 00mn 00s

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://r.orange.fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R0 - HKUS\S-1-5-21-1313562879-545258796-994923383-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://r.orange.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll
R3 - URLSearchHook: NCH Toolbar [64Bits] - {c2db4fe6-8409-45ce-8010-189a7b5cce86} . (.Conduit Ltd. - Conduit Toolbar.) (6.3.2.0) -- C:\Program Files (x86)\NCH\prxtbNCH.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s

---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s

---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s

---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: avast! WebRep [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: NCH [64Bits] - {c2db4fe6-8409-45ce-8010-189a7b5cce86} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\NCH\prxtbNCH.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
~ Scan BHO in 00mn 00s

---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Google Toolbar [64Bits] - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
~ Scan Toolbar in 00mn 00s

---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint\Apoint.exe
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [orangeinside] . (.Orange - Executable Orange Inside.) -- C:\Users\TENTELIER\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Wow6432Node\Run: [NortonOnlineBackupReminder] . (.Symantec Corporation - Norton Online Backup Service.) -- C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe
O4 - HKLM\..\Wow6432Node\Run: [PMBVolumeWatcher] . (.Sony Corporation - Media Check Tool.) -- C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
O4 - HKLM\..\Wow6432Node\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [AppleSyncNotifier] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Wow6432Node\Run: [BabylonToolbar] C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
O4 - HKUS\S-1-5-18\..\Run: [orangeinside] C:\Windows\system32\config\systemprofile\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe (.not file.)
O4 - HKUS\S-1-5-18\..\Run: [orangeinside] C:\Windows\system32\config\systemprofile\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe (.not file.)
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-1313562879-545258796-994923383-1001\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-21-1313562879-545258796-994923383-1001\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-21-1313562879-545258796-994923383-1001\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-1313562879-545258796-994923383-1001\..\Run: [orangeinside] . (.Orange - Executable Orange Inside.) -- C:\Users\TENTELIER\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s

---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\TENTELIER\Desktop\Ad-Remover.lnk . (...) -- C:\Program Files (x86)\Ad-Remover\main.exe
O4 - Global Startup: C:\Users\TENTELIER\Desktop\Aller sur MSN.fr.lnk - Clé orpheline
O4 - Global Startup: C:\Users\TENTELIER\Desktop\Audacity 1.3 Beta (Unicode).lnk . (.The Audacity Team.) -- C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)\audacity.exe
O4 - Global Startup: C:\Users\TENTELIER\Desktop\Audacity 1.3 Beta.lnk . (.The Audacity Team.) -- C:\Program Files (x86)\Audacity 1.3 Beta\audacity.exe
O4 - Global Startup: C:\Users\TENTELIER\Desktop\Google Chrome.lnk . (.Google Inc..) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\TENTELIER\Desktop\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\TENTELIER\Desktop\Musique - Raccourci.lnk . (...) -- C:\Users\TENTELIER\AppData\Roaming\Microsoft\Windows\Libraries\Music.library-ms
O4 - Global Startup: C:\Users\TENTELIER\Desktop\Windows Live Messenger .lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - Global Startup: C:\Users\TENTELIER\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk . (...) -- C:\Windows\Installer\{735619D4-B42A-437A-958C-199BFCAEDB38}\SafariIco.exe
O4 - Global Startup: C:\Users\TENTELIER\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
~ Scan Global Startup in 00mn 00s

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: ajouter cette page à vos favoris Orange . (...) -- C:\Users\TENTELIER\AppData\Roaming\Orange\OrangeInside\src\addfavorites_html\addfavorites.html
O8 - Extra context menu item: envoyer le texte sélectionné par sms . (...) -- C:\Users\TENTELIER\AppData\Roaming\Orange\OrangeInside\src\sendsmsselectedtext_html\sendsmsselectedtext.html
O8 - Extra context menu item: envoyer par sms . (...) -- C:\Users\TENTELIER\AppData\Roaming\Orange\OrangeInside\src\sendsms_html\sendsms.html
O8 - Extra context menu item: envoyer un mail . (...) -- C:\Users\TENTELIER\AppData\Roaming\Orange\OrangeInside\src\sendmail_html\sendmail.html
O8 - Extra context menu item: Google Sidewiki... . (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll
O8 - Extra context menu item: orange.fr . (...) -- C:\Users\TENTELIER\AppData\Roaming\Orange\OrangeInside\src\orange_html\orange.html
O8 - Extra context menu item: rechercher le texte sélectionné . (...) -- C:\Users\TENTELIER\AppData\Roaming\Orange\OrangeInside\src\selectedsearch_html\selectedsearch.html
O8 - Extra context menu item: traduire la page . (...) -- C:\Users\TENTELIER\AppData\Roaming\Orange\OrangeInside\src\translate_html\translate.html
O8 - Extra context menu item: traduire le texte sélectionné . (...) -- C:\Users\TENTELIER\AppData\Roaming\Orange\OrangeInside\src\translateSelectedText_html\translateSelectedText.html
~ Scan IE Menu Contextuel in 00mn 00s

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 [64Bits] - {CCA281CA-C863-46ef-9331-5C8D4460577F} . (...) -- C:\Program Files\WIDCOMM\Bluetooth Software\bt_hot_icon.ico
~ Scan IE Extra Buttons in 00mn 00s

---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000010\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Scan Winsock in 00mn 00s

---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {5A779DC0-837B-4590-AC42-C7C0847478C5} (OrangeInstaller_ModuleIE Control) - http://logicielsgratuits.orange.fr/download_service/Install/OrangeInstaller.cab
O16 - DPF: {9DF1C00D-8426-4337-972C-DC042D19A916} (FTMediaPlayer Class) - http://webtv.guidetv.orange.fr/resources/OCS_9418.cab
~ Scan Objets ActiveX in 00mn 00s

---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{30625CBE-05E0-49E4-8016-F1FA70204A25}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{30625CBE-05E0-49E4-8016-F1FA70204A25}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{30625CBE-05E0-49E4-8016-F1FA70204A25}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s

---\\ Protocole additionnel (O18)
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: skype4com [64Bits] - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
~ Scan Protocole Additionnel in 00mn 00s

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s

---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Orange update Core Service (Orange update Core Service) . (.France Telecom SA - Orange Upd@te.) - C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O23 - Service: PMBDeviceInfoProvider (PMBDeviceInfoProvider) . (.Sony Corporation - Device Information Provider.) - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
O23 - Service: Roxio Upnp Server 10 (Roxio Upnp Server 10) . (.Sonic Solutions - RoxioUpnpService10 Module.) - C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe
O23 - Service: VAIO Care Performance Service (SampleCollector) - Clé orpheline
O23 - Service: CamMonitor (uCamMonitor) . (.ArcSoft, Inc. - MgiSvr.) - C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
O23 - Service: VAIO Event Service (VAIO Event Service) . (.Sony Corporation - VAIO Event Service (Service Module).) - C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) . (.Sony Corporation - VCM Intelligent Analyzing Manager.) - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
O23 - Service: VAIO Content Metadata Intelligent Network Service Manager (VcmINSMgr) . (.Sony Corporation - VCM Intelligent Network Service Manager.) - C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
O23 - Service: VSNService (VSNService) . (.Sony Corporation - VAIO Smart Network Service.) - C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
~ Scan Services in 00mn 00s

---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s

---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
[MD5.C4CE3410C807C16F8B14081B9F00045D] [APT] [VAIO Gate] (.Sony Corporation.) -- C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe
[MD5.AA8DC44463E3AEF6D91C1DD300D2DC35] [APT] [VAIO Update 5] (.Sony Corporation.) -- C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe
~ Scan Scheduled Task in 00mn 08s

---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\drivers\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\system32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\system32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\system32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\system32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s

---\\ Logiciels installés (O42)
O42 - Logiciel: ATI Catalyst Install Manager - (.ATI Technologies, Inc..) [HKLM] -- {FED99701-A3A5-CE6B-4D04-DECF94784B89}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 ActiveX 64-bit - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX 64
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: ArcSoft Magic-i Visual Effects 2 - (.ArcSoft.) [HKLM] -- {7BB90344-0647-468E-925A-7F69F7983421}
O42 - Logiciel: ArcSoft WebCam Companion 3 - (.ArcSoft.) [HKLM] -- {DE8AAC73-6D8D-483E-96EA-CAEDDADB9079}
O42 - Logiciel: Audacity 1.3.13 - (.Audacity Team.) [HKLM] -- Audacity 1.3 Beta_is1
O42 - Logiciel: Audacity 1.3.9 (Unicode) - (.Audacity Team.) [HKLM] -- Audacity 1.3 Beta (Unicode)_is1
O42 - Logiciel: EPSON Logiciel imprimante - (.Pas de propriétaire.) [HKLM] -- EPSON Printer and Utilities
O42 - Logiciel: EPSON Scan - (.Pas de propriétaire.) [HKLM] -- EPSON Scanner
O42 - Logiciel: Gestion de l'alimentation de VAIO - (.Sony Corporation.) [HKLM] -- {803E4FA5-A940-4420-B89D-A8BC2E160247}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: K-Lite Codec Pack 7.1.0 (Full) - (.Pas de propriétaire.) [HKLM] -- KLiteCodecPack_is1
O42 - Logiciel: Lecture à distance avec PlayStation®3 - (.Sony Corporation.) [HKLM] -- {07441A52-E208-478A-92B7-5C337CA8C131}
O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.2.1300 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: McAfee Security Scan Plus - (.McAfee, Inc..) [HKLM] -- McAfee Security Scan
O42 - Logiciel: Media Gallery - (.Sony Corporation.) [HKLM] -- {DD88F979-FA58-41AC-980C-A6E1A82B61D9}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft Office 97 Standard - (.Pas de propriétaire.) [HKLM] -- Office8.0
O42 - Logiciel: MioMore Desktop - (.Navman Technologies NZ Ltd.) [HKLM] -- {7617FC2E-EA1B-4F07-A0F5-5D5F437CB32D}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: MouseConnect Tool - (.Pas de propriétaire.) [HKLM] -- MouseConnect Tool
O42 - Logiciel: NCH Toolbar - (.NCH.) [HKLM] -- NCH Toolbar
O42 - Logiciel: Notification de cadeaux MSN - (.Microsoft.) [HKCU] -- Notification de cadeaux MSN
O42 - Logiciel: Orange Inside - (.Orange.) [HKCU] -- Orange Inside
O42 - Logiciel: Orange Installeur version 1.2.2.0 - (.Orange.) [HKLM] -- {D13FE823-C575-4451-AC37-E645A67AA581}_1.2.2.0
O42 - Logiciel: Orange WebTV Player 1.29418 - (.Orange.) [HKLM] -- Orange WebTV Player_is1
O42 - Logiciel: Orange update - (.Orange.) [HKLM] -- OrangeUpdateManager
O42 - Logiciel: OrangeInstaller version 1.2.2.0 - (.Orange IT&L@bs.) [HKLM] -- {D13FE823-C575-4451-AC37-E645A67AA581}_1.2.2.0
O42 - Logiciel: Outil de restauration de données VAIO - (.Sony Corporation.) [HKLM] -- {57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}
O42 - Logiciel: PMB VAIO Edition plug-in (Click to Disc) - (.Sony Corporation.) [HKLM] -- InstallShield_{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}
O42 - Logiciel: PMB VAIO Edition plug-in (VAIO Movie Story) - (.Sony Corporation.) [HKLM] -- InstallShield_{B25563A0-41F4-4A81-A6C1-6DBC0911B1F3}
O42 - Logiciel: Panda ActiveScan 2.0 - (.Panda Security.) [HKLM] -- ActiveScan 2.0
O42 - Logiciel: Paramètres de contrôle du contenu VAIO - (.Sony Corporation.) [HKLM] -- {23825B69-36DF-4DAD-9CFD-118D11D80F16}
O42 - Logiciel: Paramètres des fonctions d'origine VAIO - (.Sony Corporation.) [HKLM] -- {A63E7492-A0BC-4BB9-89A7-352965222380}
O42 - Logiciel: Prise en charge du transfert VAIO - (.Sony Corporation.) [HKLM] -- {5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}
O42 - Logiciel: Realtek HDMI Audio Driver for ATI - (.Realtek Semiconductor Corp..) [HKLM] -- {5449FB4F-1802-4D5B-A6D8-087DB1142147}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}
O42 - Logiciel: Roxio Easy Media Creator 10 LJ - (.Roxio.) [HKLM] -- {537BF16E-7412-448C-95D8-846E85A1D817}
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2446708
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2478663
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2518870
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2539636
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}.KB2478663
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}.KB2518870
O42 - Logiciel: Setting Utility Series - (.Sony Corporation.) [HKLM] -- {A7DA438C-2E43-4C20-BFDA-C1F4A6208558}
O42 - Logiciel: Sony Home Network Library - (.Sony Corporation.) [HKLM] -- {D03D02D8-AB64-4785-A48E-5AA8B0FB8C14}
O42 - Logiciel: TuneUp Companion 2.2.3 - (.TuneUp Media, Inc..) [HKLM] -- TuneUpMedia
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2468871) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2468871
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2533523) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2533523
O42 - Logiciel: VAIO - PMB VAIO Edition Guide - (.Sony Corporation.) [HKLM] -- InstallShield_{339F9B4D-00CB-4C1C-BED8-EC86A9AB602A}
O42 - Logiciel: VAIO - PMB VAIO Edition plug-in (VAIO Image Optimizer) - (.Sony Corporation.) [HKLM] -- InstallShield_{9CCA7C1A-6308-4F12-AEDD-D230CAAF847E}
O42 - Logiciel: VAIO Care - (.Sony Corporation.) [HKLM] -- {36C5BBF0-E5BF-4DE1-B684-7E90B0C93FB5}
O42 - Logiciel: VAIO Control Center - (.Sony Corporation.) [HKLM] -- {72042FA6-5609-489F-A8EA-3C2DD650F667}
O42 - Logiciel: VAIO DVD Menu Data - (.Sony Corporation.) [HKLM] -- {596BED91-A1D8-4DF1-8CD1-1C777F7588AC}
O42 - Logiciel: VAIO Entertainment Platform - (.Sony Corporation.) [HKLM] -- {6B1F20F2-6321-4669-A58C-33DF8E7517FF}
O42 - Logiciel: VAIO Event Service - (.Sony Corporation.) [HKLM] -- {C7477742-DDB4-43E5-AC8D-0259E1E661B1}
O42 - Logiciel: VAIO Gate - (.Sony Corporation.) [HKLM] -- {A7C30414-2382-4086-B0D6-01A88ABA21C3}
O42 - Logiciel: VAIO Gate Default - (.Sony Corporation.) [HKLM] -- {B7546697-2A80-4256-A24B-1C33163F535B}
O42 - Logiciel: VAIO Manual - (.Sony Corporation.) [HKLM] -- {C6E893E7-E5EA-4CD5-917C-5443E753FCBD}
O42 - Logiciel: VAIO Media plus - (.Sony Corporation.) [HKLM] -- {8DE50158-80AA-4FF2-9E9F-0A7C46F71FCD}
O42 - Logiciel: VAIO Media plus Opening Movie - (.Sony Corporation.) [HKLM] -- {9238E8A4-BEBA-43A3-B926-769BDBF194C5}
O42 - Logiciel: VAIO Movie Story Template Data - (.Sony Corporation.) [HKLM] -- InstallShield_{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}
O42 - Logiciel: VAIO Premium Partners - (.Sony Europe.) [HKLM] -- VAIO Premium Partners
O42 - Logiciel: VAIO Smart Network - (.Sony Corporation.) [HKLM] -- {0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}
O42 - Logiciel: VAIO Update - (.Sony Corporation.) [HKLM] -- {5BEE8F1F-BD32-4553-8107-500439E43BD7}
O42 - Logiciel: VAIO Wallpaper Contents - (.Sony Corporation.) [HKLM] -- {D60F97EC-EF06-4E1E-B0D1-C2CBABA62FA3}
O42 - Logiciel: VAIO screensaver - (.Sony Europe.) [HKLM] -- VAIO screensaver
O42 - Logiciel: VLC media player 1.1.9 - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (09/09/2009 6.2.0.9405) - (.Broadcom.) [HKLM] -- 930E4792BDAEAFB62A9514EE7578775658A5D07C
O42 - Logiciel: Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) - (.Broadcom.) [HKLM] -- 3BA80AB4C7E9F8497C115C844953A3D4BEB84D21
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite
O42 - Logiciel: avast! Free Antivirus - (.AVAST Software.) [HKLM] -- avast

---\\ HKCU & HKLM Software Keys
[HKCU\Software\ALWIL Software]
[HKCU\Software\ATI]
[HKCU\Software\AVAST Software]
[HKCU\Software\Adobe]
[HKCU\Software\Alps]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\NCH]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\ArcSoft]
[HKCU\Software\Audacity]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\EPSON]
[HKCU\Software\GNU]
[HKCU\Software\Gabest]
[HKCU\Software\Google]
[HKCU\Software\Haali]
[HKCU\Software\HookNetwork]
[HKCU\Software\IM Providers]
[HKCU\Software\JavaSoft]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\MONOGRAM]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MediaInfo]
[HKCU\Software\Mio]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\NCH Software]
[HKCU\Software\NCH Swift Sound]
[HKCU\Software\Netscape]
[HKCU\Software\Northcode Inc]
[HKCU\Software\Novell]
[HKCU\Software\ODBC]
[HKCU\Software\OrangeInside]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\Roxio]
[HKCU\Software\Settings]
[HKCU\Software\Skype]
[HKCU\Software\Softonic]
[HKCU\Software\Sony Corporation]
[HKCU\Software\SpecItems]
[HKCU\Software\StartSearch]
[HKCU\Software\Trolltech]
[HKCU\Software\Widcomm]
[HKCU\Software\Windows Live Writer]
[HKCU\Software\Wow6432Node]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\Zyrax Software]
[HKCU\Software\madFlac]
[HKCU\Software\vShare.tv]
[HKLM\Software\ALWIL Software]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\AVAST Software]
[HKLM\Software\Adobe]
[HKLM\Software\AdwCleaner]
[HKLM\Software\Alps]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\ArcSoft]
[HKLM\Software\BrowserChoice]
[HKLM\Software\CDDB]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Codec Tweak Tool]
[HKLM\Software\Debug]
[HKLM\Software\EPSON]
[HKLM\Software\GEAR Software]
[HKLM\Software\GNU]
[HKLM\Software\Gaming Mouse]
[HKLM\Software\Google]
[HKLM\Software\HaaliMkx]
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\KLCodecPack]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\McAfeeInstaller]
[HKLM\Software\MediaCoder]
[HKLM\Software\Mio]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NCH]
[HKLM\Software\Navman Technologies NZ Ltd]
[HKLM\Software\ODBC]
[HKLM\Software\Orange]
[HKLM\Software\Panda Software]
[HKLM\Software\Policies]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Roxio]
[HKLM\Software\SRS Labs]
[HKLM\Software\Skype]
[HKLM\Software\Sonic]
[HKLM\Software\Sony Corporation]
[HKLM\Software\Sony]
[HKLM\Software\VideoLAN]
[HKLM\Software\Volatile]
[HKLM\Software\Waves Audio]
[HKLM\Software\Widcomm]
[HKLM\Software\Windows]
[HKLM\Software\Wow6432Node]
[HKLM\Software\illiminable]
[HKLM\Software\mcafeeupdater]
~ Scan Softwares in 00mn 00s

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 11/11/2010 - 20:41:56 - [182932373] ----D- C:\Program Files\Alwil Software
O43 - CFD: 22/08/2011 - 14:10:50 - [3305951] ----D- C:\Program Files\Apoint
O43 - CFD: 02/02/2010 - 09:52:26 - [23117148] ----D- C:\Program Files\ATI
O43 - CFD: 21/08/2011 - 22:45:20 - [135064] ----D- C:\Program Files\Bonjour
O43 - CFD: 11/11/2010 - 22:20:26 - [88347205] ----D- C:\Program Files\Common Files
O43 - CFD: 02/02/2010 - 09:54:24 - [1611800] ----D- C:\Program Files\DIFX
O43 - CFD: 13/06/2011 - 12:08:22 - [90256916] ----D- C:\Program Files\DVD Maker
O43 - CFD: 09/01/2011 - 14:03:44 - [14764980] ----D- C:\Program Files\EPSON
O43 - CFD: 11/09/2010 - 17:55:12 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 02/02/2010 - 09:57:58 - [2273016] ----D- C:\Program Files\Google
O43 - CFD: 21/08/2011 - 14:43:32 - [6747152] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 04/09/2011 - 14:01:40 - [1951827] ----D- C:\Program Files\iPod
O43 - CFD: 04/09/2011 - 14:02:20 - [2358288] ----D- C:\Program Files\iTunes
O43 - CFD: 02/02/2010 - 10:15:06 - [79562071] ----D- C:\Program Files\Java
O43 - CFD: 13/04/2010 - 20:09:48 - [149237810] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 02/02/2010 - 10:06:14 - [3524223] ----D- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 02/02/2010 - 10:06:14 - [346631] ----D- C:\Program Files\Microsoft Synchronization Services
O43 - CFD: 14/07/2009 - 07:32:40 - [25757] ----D- C:\Program Files\MSBuild
O43 - CFD: 02/03/2011 - 12:58:44 - [391086] ----D- C:\Program Files\Orange
O43 - CFD: 02/02/2010 - 09:48:06 - [17176736] ----D- C:\Program Files\Realtek
O43 - CFD: 14/07/2009 - 07:32:40 - [36813993] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 02/02/2010 - 10:28:30 - [218236575] ----D- C:\Program Files\Sony
O43 - CFD: 14/07/2009 - 07:09:28 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 02/02/2010 - 09:50:28 - [145225849] ----D- C:\Program Files\WIDCOMM
O43 - CFD: 13/06/2011 - 12:08:20 - [4039680] ----D- C:\Program Files\Windows Defender
O43 - CFD: 13/06/2011 - 12:08:22 - [9224824] ----D- C:\Program Files\Windows Journal
O43 - CFD: 20/08/2011 - 22:03:10 - [1059906] ----D- C:\Program Files\Windows Live
O43 - CFD: 13/06/2011 - 12:08:22 - [6667776] ----D- C:\Program Files\Windows Mail
O43 - CFD: 13/06/2011 - 12:08:22 - [7687085] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 11/09/2010 - 17:55:12 - [12627636] ----D- C:\Program Files\Windows NT
O43 - CFD: 13/06/2011 - 12:08:22 - [5516056] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 13/06/2011 - 12:08:22 - [244736] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 13/06/2011 - 12:08:22 - [7192060] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 25/09/2010 - 14:30:08 - [6580905] ----D- C:\Program Files\Common Files\Apple
O43 - CFD: 20/08/2011 - 22:01:34 - [59988030] ----D- C:\Program Files\Common Files\Microsoft Shared
O43 - CFD: 14/07/2009 - 05:20:10 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 02/02/2010 - 10:13:30 - [8972509] ----D- C:\Program Files\Common Files\Sony Shared
O43 - CFD: 14/07/2009 - 05:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 02/02/2010 - 18:35:20 - [12194291] ----D- C:\Program Files\Common Files\System
O43 - CFD: 26/06/2011 - 12:14:54 - [13160415] ----D- C:\ProgramData\Adobe
O43 - CFD: 11/11/2010 - 20:41:56 - [39650931] ----D- C:\ProgramData\Alwil Software
O43 - CFD: 25/09/2010 - 14:34:28 - [195932473] ----D- C:\ProgramData\Apple
O43 - CFD: 25/09/2010 - 14:31:58 - [158218500] ----D- C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 30/01/2011 - 14:34:50 - [1690325] ----D- C:\ProgramData\ArcSoft
O43 - CFD: 02/02/2010 - 10:30:44 - [188] ----D- C:\ProgramData\ATI
O43 - CFD: 11/09/2010 - 17:55:12 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 02/02/2010 - 09:57:38 - [111994] ----D- C:\ProgramData\Evernote
O43 - CFD: 11/09/2010 - 17:55:12 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 02/02/2010 - 09:58:00 - [539722] ----D- C:\ProgramData\Google
O43 - CFD: 14/01/2011 - 16:08:26 - [17122008] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 14/01/2011 - 17:32:16 - [867] ----D- C:\ProgramData\McAfee Security Scan
O43 - CFD: 11/09/2010 - 17:55:12 - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 12/01/2011 - 12:40:20 - [636963495] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 11/09/2010 - 17:55:12 - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 02/02/2010 - 10:06:16 - [3979375] ----D- C:\ProgramData\MusicStation
O43 - CFD: 16/02/2011 - 15:41:40 - [0] ----D- C:\ProgramData\NCH Software
O43 - CFD: 12/06/2011 - 13:57:14 - [0] ----D- C:\ProgramData\NCH Swift Sound
O43 - CFD: 07/06/2011 - 17:11:04 - [2032475] ----D- C:\ProgramData\Orange
O43 - CFD: 12/10/2010 - 12:28:24 - [1957] ----D- C:\ProgramData\Partner
O43 - CFD: 02/02/2010 - 10:13:10 - [25252016] ----D- C:\ProgramData\Skype
O43 - CFD: 02/02/2010 - 10:12:08 - [667] ----D- C:\ProgramData\Sonic
O43 - CFD: 22/08/2011 - 15:37:58 - [1335730777] ----D- C:\ProgramData\Sony Corporation
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 02/02/2010 - 10:15:04 - [259] ----D- C:\ProgramData\Sun
O43 - CFD: 02/02/2010 - 10:06:32 - [608] ----D- C:\ProgramData\Symantec
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 08/09/2011 - 19:22:58 - [123692] ----D- C:\ProgramData\TuneUpMedia
O43 - CFD: 02/02/2010 - 10:12:16 - [6556808] ----D- C:\ProgramData\Uninstall
O43 - CFD: 25/09/2010 - 14:32:20 - [893135] ----D- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
O43 - CFD: 21/09/2011 - 15:31:32 - [1970176] -SH-D- C:\Users\TENTELIER\AppData\Roaming\.#
O43 - CFD: 14/01/2011 - 17:32:30 - [5498772] ----D- C:\Users\TENTELIER\AppData\Roaming\Adobe
O43 - CFD: 14/11/2010 - 23:32:36 - [1182873844] ----D- C:\Users\TENTELIER\AppData\Roaming\Apple Computer
O43 - CFD: 30/01/2011 - 14:34:46 - [8386] ----D- C:\Users\TENTELIER\AppData\Roaming\ArcSoft
O43 - CFD: 11/09/2010 - 17:59:02 - [0] ----D- C:\Users\TENTELIER\AppData\Roaming\ATI
O43 - CFD: 12/06/2011 - 15:06:14 - [2681] ----D- C:\Users\TENTELIER\AppData\Roaming\Audacity
O43 - CFD: 02/11/2010 - 19:35:46 - [566] ----D- C:\Users\TENTELIER\AppData\Roaming\Auslogics
O43 - CFD: 08/09/2011 - 20:22:28 - [0] ----D- C:\Users\TENTELIER\AppData\Roaming\Broad Intelligence
O43 - CFD: 16/06/2011 - 11:32:24 - [0] ----D- C:\Users\TENTELIER\AppData\Roaming\EPSON
O43 - CFD: 11/09/2010 - 18:40:54 - [4306] ----D- C:\Users\TENTELIER\AppData\Roaming\Google
O43 - CFD: 11/09/2010 - 17:58:20 - [0] ----D- C:\Users\TENTELIER\AppData\Roaming\Identities
O43 - CFD: 22/01/2011 - 21:43:16 - [0] ----D- C:\Users\TENTELIER\AppData\Roaming\InstallShield
O43 - CFD: 11/09/2010 - 18:27:36 - [487] ----D- C:\Users\TENTELIER\AppData\Roaming\Macromedia
O43 - CFD: 14/01/2011 - 16:08:30 - [240192] ----D- C:\Users\TENTELIER\AppData\Roaming\Malwarebytes
O43 - CFD: 13/04/2010 - 20:09:48 - [0] ----D- C:\Users\TENTELIER\AppData\Roaming\Media Center Programs
O43 - CFD: 10/04/2011 - 09:58:14 - [90] ----D- C:\Users\TENTELIER\AppData\Roaming\Media Player Classic
O43 - CFD: 02/03/2011 - 15:54:28 - [36518306] -S--D- C:\Users\TENTELIER\AppData\Roaming\Microsoft
O43 - CFD: 08/09/2011 - 19:21:56 - [1230181] ----D- C:\Users\TENTELIER\AppData\Roaming\Mozilla
O43 - CFD: 12/06/2011 - 14:00:34 - [3348699] ----D- C:\Users\TENTELIER\AppData\Roaming\NCH Software
O43 - CFD: 24/06/2011 - 13:43:54 - [1028] ----D- C:\Users\TENTELIER\AppData\Roaming\NCH Swift Sound
O43 - CFD: 22/08/2011 - 15:38:20 - [935] ----D- C:\Users\TENTELIER\AppData\Roaming\newfolder3
O43 - CFD: 02/03/2011 - 15:27:34 - [2351251] ----D- C:\Users\TENTELIER\AppData\Roaming\Orange
O43 - CFD: 12/06/2011 - 13:45:26 - [0] ----D- C:\Users\TENTELIER\AppData\Roaming\OxelonMC
O43 - CFD: 17/10/2010 - 13:08:36 - [2959712] ----D- C:\Users\TENTELIER\AppData\Roaming\Skype
O43 - CFD: 17/10/2010 - 12:58:34 - [159112] ----D- C:\Users\TENTELIER\AppData\Roaming\skypePM
O43 - CFD: 04/01/2011 - 15:26:44 - [744374] ----D- C:\Users\TENTELIER\AppData\Roaming\SoftGrid Client
O43 - CFD: 26/09/2010 - 12:50:42 - [153444] ----D- C:\Users\TENTELIER\AppData\Roaming\Sony Corporation
O43 - CFD: 04/01/2011 - 15:18:34 - [0] ----D- C:\Users\TENTELIER\AppData\Roaming\TP
O43 - CFD: 18/09/2011 - 22:16:02 - [320329] ----D- C:\Users\TENTELIER\AppData\Roaming\TuneUpMedia
O43 - CFD: 09/02/2011 - 12:14:52 - [1100445] ----D- C:\Users\TENTELIER\AppData\Roaming\vlc
O43 - CFD: 12/01/2011 - 12:56:44 - [295] ----D- C:\Users\TENTELIER\AppData\Roaming\Windows Live Writer
O43 - CFD: 14/01/2011 - 17:24:56 - [15611091] ----D- C:\Users\TENTELIER\AppData\Local\Adobe
O43 - CFD: 25/09/2010 - 14:30:30 - [26834808] ----D- C:\Users\TENTELIER\AppData\Local\Apple
O43 - CFD: 17/02/2011 - 16:19:46 - [45078776] ----D- C:\Users\TENTELIER\AppData\Local\Apple Computer
O43 - CFD: 11/09/2010 - 17:55:34 - [0] -SH-D- C:\Users\TENTELIER\AppData\Local\Application Data
O43 - CFD: 12/01/2011 - 12:50:02 - [260] ----D- C:\Users\TENTELIER\AppData\Local\ArcSoft
O43 - CFD: 11/09/2010 - 17:59:02 - [58489] ----D- C:\Users\TENTELIER\AppData\Local\ATI
O43 - CFD: 19/04/2011 - 23:01:40 - [0] ----D- C:\Users\TENTELIER\AppData\Local\Diagnostics
O43 - CFD: 22/08/2011 - 15:38:10 - [8960000] ----D- C:\Users\TENTELIER\AppData\Local\Downloaded Installations
O43 - CFD: 10/04/2011 - 09:49:44 - [0] ----D- C:\Users\TENTELIER\AppData\Local\ElevatedDiagnostics
O43 - CFD: 23/08/2011 - 13:14:30 - [18873573] ----D- C:\Users\TENTELIER\AppData\Local\Google
O4
0
Réponse 10 / 11
Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318
 
Re,

Le rapport est très long, héberge le stp

@+
0
Réponse 11 / 11
anna621401
 
ok merci
0