De plus en plus de pubs au dessu des video !

c quoi le pb

Réfléchi ;-)

Rapport de ZHPDiag v1.31.095 par Nicolas Coolman, Update du 24/05/2012
Run by maelyss at 16/06/2012 18:30:38
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Web site : http://nicolascoolman.skyrock.com/
State : Version à jour.


---\\ Web Browser
MSIE: Internet Explorer v

---\\ Windows Product Information
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit (Build 7600)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 3Q6C9
Windows License : OK
~ Windows Remaining Initializations Number : 1
Software Protection Service (Protection logicielle) : KO
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3002 MB (54% free)
System Restore: Inconnu (Unknown)
System drive C: has 167 GB (75%) free of 220 GB

---\\ Logged in mode
~ Computer Name: MAELYSS-PC
~ User Name: maelyss
~ All Users Names: maelyss, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\maelyss\AppData\Roaming\
~ %Desktop% : C:\Users\maelyss\Desktop\
~ %Favorites% : C:\Users\maelyss\Favorites\
~ %LocalAppData% : C:\Users\maelyss\AppData\Local\
~ %StartMenu% : C:\Users\maelyss\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 167 Go of 220 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 13 Go)
E:\ CD-ROM drive (Free 0 Go of 4 Go)



---\\ Security Center & Tools Informations
~ Scan Security Center in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.9AAAEC8DAC27AA17B053E6352AD233AE] - (.Microsoft Corporation - Explorateur Windows.) (.31/10/2009 - 07:34:59.) -- C:\Windows\Explorer.exe [2870272]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.3DEB428ACD3D4DECD1619C24E4628DD2] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.30/06/2010 - 08:13:46.) -- C:\Windows\System32\wininet.dll [1192960]
[MD5.DA3E2A6FA9660CC75B471530CE88453A] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.28/10/2009 - 07:24:40.) -- C:\Windows\System32\Winlogon.exe [389632]
[MD5.75341574F21E766748732BDF530C74BD] - (.Microsoft Corporation - Bibliothèque de licences.) (.14/07/2009 - 02:41:54.) -- C:\Windows\System32\sppcomapi.dll [231936]
[MD5.B9384E03479D2506BC924C16A3DB87BC] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.14/07/2009 - 00:21:42.) -- C:\Windows\system32\Drivers\AFD.sys [500224]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.83D2D75E1EFB81B3450C18131443F7DB] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.14/07/2009 - 00:19:54.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.3F1DC527070ACB87E40AFE46EF6DA749] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/07/2009 - 00:23:44.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.0A49913402747A0B67DE940FB42CBDBB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.14/07/2009 - 01:06:13.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.767A4C3BCF9410C286CED15A2DB17108] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/02/2010 - 08:52:22.) -- C:\Windows\system32\Drivers\MRxSmb.sys [157696]
[MD5.9162B273A44AB9DCE5B44362731D062A] - (.Microsoft Corporation - MBT Transport driver.) (.14/07/2009 - 00:21:29.) -- C:\Windows\system32\Drivers\netBT.sys [259072]
[MD5.356698A13C4630D5B31C37378D469196] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.14/07/2009 - 02:48:27.) -- C:\Windows\system32\Drivers\ntfs.sys [1659984]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.87A6E852A22991580D6D39ADC4790463] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 01:10:12.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [130048]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.079125C4B17B01FCAEEBCE0BCB290C0F] - (.Microsoft Corporation - TDI Translation Driver.) (.14/07/2009 - 00:21:15.) -- C:\Windows\system32\Drivers\tdx.sys [99840]
[MD5.58F82EED8CA24B461441F9C3E4F0BF5C] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.14/07/2009 - 02:45:55.) -- C:\Windows\system32\Drivers\volsnap.sys [294992]
~ Scan Generic Processes in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/544
~ Mes musiques (My Musics) : 1/4
~ Mes Videos (My Videos) : 1/4
~ Mes Favoris (My Favorites) : 1/24
~ Mes Documents (My Documents) : 1/9063
~ Mon Bureau (My Desktop) : 1/9024
~ Menu demarrer (Programs) : 0/36
~ Scan Hidden Files in 00mn 14s



---\\ Processus lancés
[MD5.CCF2234A35077CA217A61C9CACC48198] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392] [PID.2660]
[MD5.64584E925516568C2F6ACF337991E9BC] - (.Samsung Electronics Co., Ltd. - NPSAgent.) -- C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSAgent.exe [102400] [PID.2800]
[MD5.3588AFA5623BB8844F71F271A7A96669] - (...) -- C:\Program Files (x86)\Orange\MailNotifier\MailNotifier.exe [634368] [PID.2888]
[MD5.A2814FED5A47B00BBC99AC58F93B9337] - (.CyberLink Corp. - HP QuickPlay Resident Program.) -- C:\Program Files (x86)\Hp\QuickPlay\QPService.exe [468264] [PID.3004]
[MD5.0771A5C3B78967F9F83C1C429334AD2A] - (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe [320056] [PID.3020]
[MD5.BC9C9BE7BB74D629362608ACE470E7DA] - (.Microsoft Corporation - Notification de cadeaux MSN.) -- C:\Users\maelyss\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe [135680] [PID.2932]
[MD5.5516C26A6AF8EB4E2CAB48EC98A74398] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe [54576] [PID.2952]
[MD5.782FEF655DBF8653C9F2722BEBF7A8A6] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe [4241512] [PID.2624]
[MD5.995BEB69AE5C50D354894354F5A6CD5A] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252296] [PID.2584]
[MD5.83170B8E03213093B065A9638E146499] - (.OpenOffice.org - OpenOffice.org 3.1.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe [7424000] [PID.2620]
[MD5.873867A02F0E83F18CF871E776B651DC] - (.OpenOffice.org - OpenOffice.org 3.1.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin [7418368] [PID.3096]
[MD5.0DE3C7622EC33126579B1742260F08C2] - (.Pas de propriétaire - HpqToaster Module.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe [632888] [PID.3212]
[MD5.F11DD7FFCEA61106480F26B99336AD5B] - (.Google Inc. - Google Chrome.) -- C:\Users\maelyss\AppData\Local\Google\Chrome\Application\chrome.exe [1239576] [PID.3444]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (...) -- ysWOW64\rundll32.exe [0] [PID.2564]
[MD5.CC926B0811C3FA2363C98711410FEF24] - (...) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [4540928] [PID.3460]
[MD5.2C32E3E596CFE660353753EABEFB0540] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe [673048] [PID.2396]
~ Scan Processes Running in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\maelyss\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] http://r.orange.fr
G0 - GCSP: Preference [User Data\Default] http://www.searchnu.com
G1 - GCS: Preference [User Data\Default] None
~ Scan Google Browser in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\maelyss\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\maelyss\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS - Unity Player 3.5.1f2.) -- C:\Users\maelyss\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
~ Scan Firefox Browser in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com
R3 - URLSearchHook: (no name) [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Unity Technologies ApS - Unity Player 3.5.1f2.) (No version) -- (.not file.)
~ Scan IE Browser in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 0



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKCU\..\Run: [HPADVISOR] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKCU\..\Run: [AutoStartNPSAgent] . (.Samsung Electronics Co., Ltd. - NPSAgent.) -- C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\maelyss\AppData\Local\Google\Update\GoogleUpdate.exe
O4 - HKCU\..\Run: [MailNotifier] . (...) -- C:\Program Files (x86)\Orange\MailNotifier\MailNotifier.exe
~ Scan Application in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\maelyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\maelyss\Desktop\CamStudio.lnk . (...) -- C:\Program Files (x86)\CamStudio\Recorder.exe
O4 - Global Startup: C:\Users\maelyss\Desktop\Contrôle parental.url . (...) -- C:\Users\maelyss\Desktop\Contrôle parental.url
O4 - Global Startup: C:\Users\maelyss\Desktop\Fraps.lnk . (.Beepa P/L.) -- C:\Fraps\fraps.exe
O4 - Global Startup: C:\Users\maelyss\Desktop\Free Screen To Video.lnk . (.Koyote Soft.) -- C:\Program Files (x86)\Free Screen To Video\FreeScreenVideo.exe
O4 - Global Startup: C:\Users\maelyss\Desktop\Google Chrome.lnk . (.Google Inc..) -- C:\Users\maelyss\AppData\Local\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\maelyss\Desktop\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\maelyss\Desktop\SWF Opener.lnk . (.UnH Solutions.) -- C:\Program Files (x86)\UnH Solutions\SWF Opener\SWFOpener.exe
O4 - Global Startup: C:\Users\maelyss\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\BearShare.lnk . (.MusicLab, LLC.) -- C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe
O4 - Global Startup: C:\Users\maelyss\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Free Screen To Video.lnk . (.Koyote Soft.) -- C:\Program Files (x86)\Free Screen To Video\FreeScreenVideo.exe
O4 - Global Startup: C:\Users\maelyss\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\maelyss\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Samsung New PC Studio.lnk . (.Samsung Electronics Co., Ltd..) -- C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSGuide.exe
O4 - Global Startup: C:\Users\maelyss\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WildTangent Games App - hp.lnk . (.WildTangent.) -- C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe
~ Scan Global Startup in 00mn 00s



---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: &Recherche AOL Toolbar . (...) -- C:\ProgramData\AOL\ieToolbar\resources\fr-FR\local\search.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\Program Files (x86)\MICROS~4\Office12\EXCEL.exe
~ Scan IE Menu Contextuel in 00mn 00s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1507520810-884514281-2595325588-1000Core.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1507520810-884514281-2595325588-1000UA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\HPCeeScheduleFormaelyss.job
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-1507520810-884514281-2595325588-1000Core] (.Google Inc..) -- C:\Users\maelyss\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-1507520810-884514281-2595325588-1000UA] (.Google Inc..) -- C:\Users\maelyss\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.19241811C54D6E8D352418A73C68D26E] [APT] [HPCeeScheduleFormaelyss] (.Hewlett-Packard.) -- C:\Program Files (x86)\hewlett-packard\sdp\ceement\HPCEE.exe
[MD5.327F12526949F105A18F1D9684714FEF] [APT] [{96C43564-8A14-429C-8BEE-A11418AFDD39}] (.CLASS/BACKLASH.) -- C:\Users\maelyss\Desktop\Simpsons game\RegSetup.exe
~ Scan Scheduled Task in 00mn 01s



---\\ Composants installés (ActiveSetup Installed Components) (O40) (None)

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 01/04/2012 - 14:34:16 - [206,450] ----D C:\Program Files (x86)\Activision Value
O43 - CFD: 19/08/2009 - 15:40:38 - [653,412] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 19/08/2009 - 15:50:47 - [2,820] ----D C:\Program Files (x86)\AOL
O43 - CFD: 25/08/2009 - 01:27:59 - [1,441] ----D C:\Program Files (x86)\Atheros
O43 - CFD: 25/05/2012 - 21:02:41 - [43,022] ----D C:\Program Files (x86)\BearShare Applications
O43 - CFD: 26/05/2012 - 13:33:16 - [7,999] ----D C:\Program Files (x86)\CamStudio
O43 - CFD: 08/06/2012 - 17:37:24 - [505,563] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 25/08/2009 - 01:52:21 - [1043,655] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 09/06/2012 - 16:22:30 - [0,349] ----D C:\Program Files (x86)\DealPly
O43 - CFD: 12/05/2012 - 21:16:39 - [90,002] ----D C:\Program Files (x86)\EasyBits For Kids
O43 - CFD: 15/06/2012 - 19:23:08 - [0] ----D C:\Program Files (x86)\eFusion
O43 - CFD: 08/06/2012 - 16:25:29 - [65,086] ----D C:\Program Files (x86)\Free Screen To Video
O43 - CFD: 14/05/2012 - 19:32:36 - [5,305] ----D C:\Program Files (x86)\Google
O43 - CFD: 19/08/2009 - 17:11:52 - [368,566] ----D C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 25/08/2009 - 01:49:03 - [73,801] ----D C:\Program Files (x86)\Hp
O43 - CFD: 21/03/2012 - 20:26:06 - [827,138] ----D C:\Program Files (x86)\HP Games
O43 - CFD: 01/04/2012 - 14:34:12 - [200,623] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 30/09/2010 - 19:12:42 - [4,276] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 15/05/2012 - 20:22:00 - [92,461] ----D C:\Program Files (x86)\Java
O43 - CFD: 01/01/2010 - 12:58:22 - [15,892] ----D C:\Program Files (x86)\JRE
O43 - CFD: 02/01/2010 - 11:25:15 - [0,211] ----D C:\Program Files (x86)\MarkAny
O43 - CFD: 02/01/2010 - 11:48:17 - [0,211] ----D C:\Program Files (x86)\MarkAnyContentSAFER
O43 - CFD: 17/01/2012 - 20:43:16 - [0,783] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 19/08/2009 - 15:16:48 - [354,679] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 19/08/2009 - 15:17:43 - [7,431] ----D C:\Program Files (x86)\Microsoft Office Suite Activation Assistant
O43 - CFD: 12/05/2012 - 20:05:14 - [36,641] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 25/08/2009 - 01:58:55 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 26/12/2009 - 13:57:58 - [2,087] ----D C:\Program Files (x86)\Microsoft Sync Framework
O43 - CFD: 17/12/2010 - 07:38:45 - [138,685] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 14/09/2010 - 22:36:44 - [7,789] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 14/07/2009 - 07:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 25/12/2009 - 13:22:48 - [0] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 25/08/2009 - 01:53:31 - [57,337] ----D C:\Program Files (x86)\muvee Technologies
O43 - CFD: 24/12/2009 - 21:45:23 - [18,981] R---D C:\Program Files (x86)\Online Services
O43 - CFD: 01/01/2010 - 12:58:22 - [367,412] ----D C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 15/05/2012 - 20:23:16 - [33,186] ----D C:\Program Files (x86)\Oracle
O43 - CFD: 20/12/2011 - 18:03:15 - [91,511] ----D C:\Program Files (x86)\Orange
O43 - CFD: 02/01/2010 - 11:27:43 - [15,037] ----D C:\Program Files (x86)\PC Connectivity Solution
O43 - CFD: 16/06/2012 - 12:56:55 - [17,136] ----D C:\Program Files (x86)\Pcsx2
O43 - CFD: 24/12/2009 - 22:35:29 - [0,232] ----D C:\Program Files (x86)\PLC
O43 - CFD: 25/08/2009 - 01:27:24 - [9,103] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 07:32:38 - [36,809] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 26/03/2012 - 18:28:59 - [1393,259] ----D C:\Program Files (x86)\Rockstar Games
O43 - CFD: 07/06/2012 - 12:29:45 - [3,188] ----D C:\Program Files (x86)\Roozz
O43 - CFD: 02/01/2010 - 11:27:53 - [193,543] ----D C:\Program Files (x86)\Samsung
O43 - CFD: 15/06/2012 - 19:27:03 - [35,935] ----D C:\Program Files (x86)\Sony
O43 - CFD: 19/08/2009 - 15:04:02 - [1,742] ----D C:\Program Files (x86)\Symantec
O43 - CFD: 27/05/2012 - 18:15:08 - [1,495] ----D C:\Program Files (x86)\UnH Solutions
O43 - CFD: 14/07/2009 - 06:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 21/03/2012 - 20:25:58 - [9,609] ----D C:\Program Files (x86)\WildTangent Games
O43 - CFD: 19/08/2009 - 23:50:29 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 20/02/2011 - 16:36:15 - [148,971] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 19/08/2009 - 14:06:27 - [0,234] ----D C:\Program Files (x86)\Windows Live SkyDrive
O43 - CFD: 12/05/2010 - 17:58:18 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 25/12/2009 - 15:13:58 - [5,090] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 07:32:38 - [11,630] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 19/08/2009 - 23:50:29 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 14/07/2009 - 07:32:40 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 24/12/2009 - 21:45:21 - [5,716] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 19/04/2012 - 17:13:10 - [3,881] ----D C:\Program Files (x86)\WinRAR
O43 - CFD: 16/06/2012 - 18:08:00 - [13,541] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 02/01/2010 - 11:21:48 - [14,195] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 19/08/2009 - 15:40:33 - [30,315] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 15/06/2012 - 19:15:25 - [0,171] ----D C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 19/08/2009 - 15:16:47 - [0,089] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 25/08/2009 - 01:48:58 - [3,284] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 15/05/2012 - 20:23:45 - [1,181] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 25/08/2009 - 01:48:50 - [31,218] ----D C:\Program Files (x86)\Common Files\LightScribe
O43 - CFD: 15/06/2012 - 23:20:49 - [244,502] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 25/08/2009 - 01:53:34 - [99,333] ----D C:\Program Files (x86)\Common Files\muvee Technologies
O43 - CFD: 14/07/2009 - 05:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 14/07/2009 - 05:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 01/01/2010 - 12:37:05 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 19/08/2009 - 23:53:04 - [42,073] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 19/08/2009 - 14:05:19 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 19/08/2009 - 15:40:33 - [0,001] ----D C:\ProgramData\Adobe
O43 - CFD: 12/02/2010 - 13:08:16 - [0,076] ----D C:\ProgramData\Alwil Software
O43 - CFD: 19/08/2009 - 15:50:47 - [12,993] ----D C:\ProgramData\AOL
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 25/08/2009 - 01:28:04 - [0,009] ----D C:\ProgramData\Atheros
O43 - CFD: 20/04/2012 - 19:22:19 - [4,080] ----D C:\ProgramData\AVAST Software
O43 - CFD: 08/06/2012 - 17:41:27 - [0] ----D C:\ProgramData\AVS4YOU
O43 - CFD: 25/05/2012 - 21:02:42 - [0,078] ----D C:\ProgramData\BearShare
O43 - CFD: 28/05/2012 - 10:10:37 - [0,000] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 24/12/2009 - 21:43:02 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 27/07/2010 - 23:35:58 - [0,047] ----D C:\ProgramData\CyberLink
O43 - CFD: 26/05/2012 - 11:09:13 - [0,004] ----D C:\ProgramData\D3C2
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 09/04/2012 - 18:42:27 - [0] ----D C:\ProgramData\EA Core
O43 - CFD: 09/04/2012 - 18:42:51 - [0,001] ----D C:\ProgramData\Electronic Arts
O43 - CFD: 23/10/2010 - 19:20:58 - [0,001] ----D C:\ProgramData\f-secure
O43 - CFD: 21/03/2012 - 20:23:50 - [0,026] ----D C:\ProgramData\FarmFrenzy-PizzaParty
O43 - CFD: 24/12/2009 - 21:43:02 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 24/12/2009 - 21:51:07 - [39,032] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 26/03/2012 - 18:13:57 - [0,185] ----D C:\ProgramData\HipSoft
O43 - CFD: 24/12/2009 - 21:43:02 - [0] --H-D C:\ProgramData\Menu Démarrer
O43 - CFD: 17/01/2012 - 20:43:16 - [38,590] -S--D C:\ProgramData\Microsoft
O43 - CFD: 13/05/2012 - 09:30:36 - [0,055] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 24/12/2009 - 21:43:02 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 01/01/2010 - 15:12:36 - [0,015] ----D C:\ProgramData\Norton
O43 - CFD: 19/08/2009 - 14:17:08 - [8,897] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 20/12/2011 - 18:06:19 - [0,236] ----D C:\ProgramData\Orange
O43 - CFD: 02/01/2010 - 11:51:04 - [0] ----D C:\ProgramData\PC Suite
O43 - CFD: 17/06/2011 - 05:45:54 - [0,012] ----D C:\ProgramData\Recovery
O43 - CFD: 12/05/2012 - 21:12:02 - [18,112] ----D C:\ProgramData\Skype
O43 - CFD: 05/06/2012 - 19:49:42 - [0,000] ----D C:\ProgramData\Sony
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 15/05/2012 - 20:23:45 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 25/12/2009 - 13:10:46 - [0,001] ----D C:\ProgramData\Symantec
O43 - CFD: 25/08/2009 - 01:51:58 - [0,500] ----D C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 21/03/2012 - 20:31:54 - [-1571,472] ----D C:\ProgramData\WildTangent
O43 - CFD: 25/05/2012 - 21:09:22 - [9,002] --H-D C:\ProgramData\{D55B6BE5-C4C4-4373-BB9E-F2102F52746B}
O43 - CFD: 07/06/2012 - 18:59:20 - [217,590] ----D C:\Users\maelyss\AppData\Roaming\.minecraft
O43 - CFD: 09/01/2010 - 21:59:34 - [2,936] ----D C:\Users\maelyss\AppData\Roaming\Adobe
O43 - CFD: 27/07/2010 - 23:34:18 - [0] ----D C:\Users\maelyss\AppData\Roaming\CyberLink
O43 - CFD: 09/06/2012 - 15:00:02 - [0,034] ----D C:\Users\maelyss\AppData\Roaming\FreeScreenToVideo
O43 - CFD: 15/05/2012 - 20:30:58 - [0] ----D C:\Users\maelyss\AppData\Roaming\GetRightToGo
O43 - CFD: 27/12/2009 - 12:02:05 - [0,082] ----D C:\Users\maelyss\AppData\Roaming\Hewlett-Packard
O43 - CFD: 12/05/2012 - 21:10:55 - [0] ----D C:\Users\maelyss\AppData\Roaming\HP Support Assistant
O43 - CFD: 24/12/2009 - 21:45:30 - [0,034] ----D C:\Users\maelyss\AppData\Roaming\HP TCS
O43 - CFD: 24/12/2009 - 21:54:16 - [0,004] ----D C:\Users\maelyss\AppData\Roaming\hpqlog
O43 - CFD: 11/06/2012 - 08:56:30 - [0,039] ----D C:\Users\maelyss\AppData\Roaming\HpUpdate
O43 - CFD: 24/12/2009 - 21:54:33 - [0] ----D C:\Users\maelyss\AppData\Roaming\Identities
O43 - CFD: 24/12/2009 - 22:07:22 - [3,021] ----D C:\Users\maelyss\AppData\Roaming\Macromedia
O43 - CFD: 25/08/2009 - 11:17:12 - [0] ----D C:\Users\maelyss\AppData\Roaming\Media Center Programs
O43 - CFD: 26/05/2012 - 13:12:39 - [21,090] -S--D C:\Users\maelyss\AppData\Roaming\Microsoft
O43 - CFD: 25/05/2012 - 21:09:34 - [0,001] ----D C:\Users\maelyss\AppData\Roaming\MusicNet
O43 - CFD: 01/01/2010 - 12:59:11 - [2,236] ----D C:\Users\maelyss\AppData\Roaming\OpenOffice.org
O43 - CFD: 20/12/2011 - 18:05:10 - [0] ----D C:\Users\maelyss\AppData\Roaming\Orange
O43 - CFD: 02/01/2010 - 11:51:04 - [0,000] ----D C:\Users\maelyss\AppData\Roaming\PC Suite
O43 - CFD: 01/06/2012 - 19:13:38 - [0,000] ----D C:\Users\maelyss\AppData\Roaming\PhotoFiltre
O43 - CFD: 05/06/2012 - 19:53:51 - [0] ----D C:\Users\maelyss\AppData\Roaming\Publish Providers
O43 - CFD: 02/01/2010 - 11:25:51 - [88,170] ----D C:\Users\maelyss\AppData\Roaming\Samsung
O43 - CFD: 15/06/2012 - 19:25:46 - [0,408] ----D C:\Users\maelyss\AppData\Roaming\Sony
O43 - CFD: 09/06/2012 - 14:50:15 - [0] ----D C:\Users\maelyss\AppData\Roaming\Sony Creative Software Inc
O43 - CFD: 13/05/2012 - 14:15:26 - [0,000] ----D C:\Users\maelyss\AppData\Roaming\Unity
O43 - CFD: 16/06/2012 - 11:04:01 - [0,077] ----D C:\Users\maelyss\AppData\Roaming\vlc
O43 - CFD: 19/04/2012 - 17:13:48 - [0,000] ----D C:\Users\maelyss\AppData\Roaming\WinRAR
O43 - CFD: 12/05/2012 - 21:16:04 - [0,008] ----D C:\Users\maelyss\AppData\Roaming\_MDLogs
O43 - CFD: 14/09/2010 - 19:32:49 - [22,414] ----D C:\Users\maelyss\AppData\Local\Adobe
O43 - CFD: 24/12/2009 - 22:01:19 - [0,014] ----D C:\Users\maelyss\AppData\Local\AOL
O43 - CFD: 24/12/2009 - 21:43:10 - [0] ----D C:\Users\maelyss\AppData\Local\Application Data
O43 - CFD: 26/05/2012 - 13:52:36 - [80,730] ----D C:\Users\maelyss\AppData\Local\BearShare
O43 - CFD: 16/06/2012 - 13:45:39 - [0,129] ----D C:\Users\maelyss\AppData\Local\Diagnostics
O43 - CFD: 02/01/2010 - 11:48:34 - [181,295] ----D C:\Users\maelyss\AppData\Local\Downloaded Installations
O43 - CFD: 28/05/2012 - 19:59:01 - [673,798] ----D C:\Users\maelyss\AppData\Local\Google
O43 - CFD: 24/12/2009 - 21:54:57 - [0,223] ----D C:\Users\maelyss\AppData\Local\Hewlett-Packard
O43 - CFD: 24/12/2009 - 21:43:10 - [0] ----D C:\Users\maelyss\AppData\Local\Historique
O43 - CFD: 17/01/2012 - 20:40:45 - [903,426] ----D C:\Users\maelyss\AppData\Local\Microsoft
O43 - CFD: 23/10/2010 - 19:20:35 - [0,000] ----D C:\Users\maelyss\AppData\Local\Orange
O43 - CFD: 25/05/2012 - 20:59:26 - [0] ----D C:\Users\maelyss\AppData\Local\PackageAware
O43 - CFD: 28/07/2010 - 00:39:28 - [0,138] ----D C:\Users\maelyss\AppData\Local\QuickPlay
O43 - CFD: 15/05/2012 - 18:49:55 - [71,917] ----D C:\Users\maelyss\AppData\Local\Roozz
O43 - CFD: 19/04/2012 - 11:33:21 - [0,032] ----D C:\Users\maelyss\AppData\Local\Scrabble3D
O43 - CFD: 05/06/2012 - 19:51:03 - [1,967] ----D C:\Users\maelyss\AppData\Local\Sony
O43 - CFD: 16/06/2012 - 18:30:36 - [1722,898] ----D C:\Users\maelyss\AppData\Local\Temp
O43 - CFD: 24/12/2009 - 21:43:10 - [0] ----D C:\Users\maelyss\AppData\Local\Temporary Internet Files
O43 - CFD: 13/05/2012 - 13:13:32 - [0,200] ----D C:\Users\maelyss\AppData\Local\Unity
O43 - CFD: 27/05/2012 - 14:50:44 - [12,064] ----D C:\Users\maelyss\AppData\Local\VirtualStore
O43 - CFD: 14/07/2009 - 06:54:32 - [0,014] R---D C:\Users\maelyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 01/04/2012 - 14:35:32 - [0] ----D C:\Users\maelyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Activision Value
O43 - CFD: 04/08/2010 - 09:40:54 - [0,000] R---D C:\Users\maelyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 25/08/2009 - 01:52:58 - [0,001] ----D C:\Users\maelyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam
O43 - CFD: 15/06/2012 - 19:22:38 - [0] ----D C:\Users\maelyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eFusion
O43 - CFD: 16/06/2012 - 18:29:56 - [0,003] ----D C:\Users\maelyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps
O43 - CFD: 28/04/2012 - 10:25:14 - [0,001] ----D C:\Users\maelyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 28/05/2012 - 19:59:09 - [0,005] ----D C:\Users\maelyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 14/07/2009 - 06:49:38 - [0,001] R---D C:\Users\maelyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 19/08/2009 - 15:28:37 - [0,004] ----D C:\Users\maelyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Recovery Manager
O43 - CFD: 14/05/2012 - 20:24:28 - [0,000] ----D C:\Users\maelyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roozz
O43 - CFD: 12/05/2012 - 21:22:03 - [0,002] R---D C:\Users\maelyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 27/05/2012 - 18:15:08 - [0] ----D C:\Users\maelyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UnH Solutions
O43 - CFD: 19/04/2012 - 17:13:10 - [0,003] ----D C:\Users\maelyss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 01/04/2012 - 14:34:16 - [206,450] ----D C:\Program Files (x86)\Activision Value
O43 - CFD: 19/08/2009 - 15:40:38 - [653,412] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 19/08/2009 - 15:50:47 - [2,820] ----D C:\Program Files (x86)\AOL
O43 - CFD: 25/08/2009 - 01:27:59 - [1,441] ----D C:\Program Files (x86)\Atheros
O43 - CFD: 25/05/2012 - 21:02:41 - [43,022] ----D C:\Program Files (x86)\BearShare Applications
O43 - CFD: 26/05/2012 - 13:33:16 - [7,999] ----D C:\Program Files (x86)\CamStudio
O43 - CFD: 08/06/2012 - 17:37:24 - [505,563] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 25/08/2009 - 01:52:21 - [1043,655] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 09/06/2012 - 16:22:30 - [0,349] ----D C:\Program Files (x86)\DealPly
O43 - CFD: 12/05/2012 - 21:16:39 - [90,002] ----D C:\Program Files (x86)\EasyBits For Kids
O43 - CFD: 15/06/2012 - 19:23:08 - [0] ----D C:\Program Files (x86)\eFusion
O43 - CFD: 08/06/2012 - 16:25:29 - [65,086] ----D C:\Program Files (x86)\Free Screen To Video
O43 - CFD: 14/05/2012 - 19:32:36 - [5,305] ----D C:\Program Files (x86)\Google
O43 - CFD: 19/08/2009 - 17:11:52 - [368,566] ----D C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 25/08/2009 - 01:49:03 - [73,801] ----D C:\Program Files (x86)\Hp
O43 - CFD: 21/03/2012 - 20:26:06 - [827,138] ----D C:\Program Files (x86)\HP Games
O43 - CFD: 01/04/2012 - 14:34:12 - [200,623] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 30/09/2010 - 19:12:42 - [4,276] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 15/05/2012 - 20:22:00 - [92,461] ----D C:\Program Files (x86)\Java
O43 - CFD: 01/01/2010 - 12:58:22 - [15,892] ----D C:\Program Files (x86)\JRE
O43 - CFD: 02/01/2010 - 11:25:15 - [0,211] ----D C:\Program Files (x86)\MarkAny
O43 - CFD: 02/01/2010 - 11:48:17 - [0,211] ----D C:\Program Files (x86)\MarkAnyContentSAFER
O43 - CFD: 17/01/2012 - 20:43:16 - [0,783] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 19/08/2009 - 15:16:48 - [354,679] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 19/08/2009 - 15:17:43 - [7,431] ----D C:\Program Files (x86)\Microsoft Office Suite Activation Assistant
O43 - CFD: 12/05/2012 - 20:05:14 - [36,641] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 25/08/2009 - 01:58:55 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 26/12/2009 - 13:57:58 - [2,087] ----D C:\Program Files (x86)\Microsoft Sync Framework
O43 - CFD: 17/12/2010 - 07:38:45 - [138,685] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 14/09/2010 - 22:36:44 - [7,789] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 14/07/2009 - 07:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 25/12/2009 - 13:22:48 - [0] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 25/08/2009 - 01:53:31 - [57,337] ----D C:\Program Files (x86)\muvee Technologies
O43 - CFD: 24/12/2009 - 21:45:23 - [18,981] R---D C:\Program Files (x86)\Online Services
O43 - CFD: 01/01/2010 - 12:58:22 - [367,412] ----D C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 15/05/2012 - 20:23:16 - [33,186] ----D C:\Program Files (x86)\Oracle
O43 - CFD: 20/12/2011 - 18:03:15 - [91,511] ----D C:\Program Files (x86)\Orange
O43 - CFD: 02/01/2010 - 11:27:43 - [15,037] ----D C:\Program Files (x86)\PC Connectivity Solution
O43 - CFD: 16/06/2012 - 12:56:55 - [17,136] ----D C:\Program Files (x86)\Pcsx2
O43 - CFD: 24/12/2009 - 22:35:29 - [0,232] ----D C:\Program Files (x86)\PLC
O43 - CFD: 25/08/2009 - 01:27:24 - [9,103] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 07:32:38 - [36,809] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 26/03/2012 - 18:28:59 - [1393,259] ----D C:\Program Files (x86)\Rockstar Games
O43 - CFD: 07/06/2012 - 12:29:45 - [3,188] ----D C:\Program Files (x86)\Roozz
O43 - CFD: 02/01/2010 - 11:27:53 - [193,543] ----D C:\Program Files (x86)\Samsung
O43 - CFD: 15/06/2012 - 19:27:03 - [35,935] ----D C:\Program Files (x86)\Sony
O43 - CFD: 19/08/2009 - 15:04:02 - [1,742] ----D C:\Program Files (x86)\Symantec
O43 - CFD: 27/05/2012 - 18:15:08 - [1,495] ----D C:\Program Files (x86)\UnH Solutions
O43 - CFD: 14/07/2009 - 06:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 21/03/2012 - 20:25:58 - [9,609] ----D C:\Program Files (x86)\WildTangent Games
O43 - CFD: 19/08/2009 - 23:50:29 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 20/02/2011 - 16:36:15 - [148,971] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 19/08/2009 - 14:06:27 - [0,234] ----D C:\Program Files (x86)\Windows Live SkyDrive
O43 - CFD: 12/05/2010 - 17:58:18 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 25/12/2009 - 15:13:58 - [5,090] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 07:32:38 - [11,630] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 19/08/2009 - 23:50:29 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 14/07/2009 - 07:32:40 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 24/12/2009 - 21:45:21 - [5,716] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 19/04/2012 - 17:13:10 - [3,881] ----D C:\Program Files (x86)\WinRAR
O43 - CFD: 16/06/2012 - 18:08:00 - [13,541] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 02/01/2010 - 11:21:48 - [14,195] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 19/08/2009 - 15:40:33 - [30,315] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 15/06/2012 - 19:15:25 - [0,171] ----D C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 19/08/2009 - 15:16:47 - [0,089] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 25/08/2009 - 01:48:58 - [3,284] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 15/05/2012 - 20:23:45 - [1,181] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 25/08/2009 - 01:48:50 - [31,218] ----D C:\Program Files (x86)\Common Files\LightScribe
O43 - CFD: 15/06/2012 - 23:20:49 - [244,502] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 25/08/2009 - 01:53:34 - [99,333] ----D C:\Program Files (x86)\Common Files\muvee Technologies
O43 - CFD: 14/07/2009 - 05:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 14/07/2009 - 05:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 01/01/2010 - 12:37:05 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 19/08/2009 - 23:53:04 - [42,073] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 19/08/2009 - 14:05:19 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
~ Scan Program Folder in 00mn 07s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.93533FB46FE8819E41074E9C05733CEB] - 16/06/2012 - 17:08:53 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1626467]
O44 - LFC:[MD5.302228A13209433BA3DC5844ECD92E61] - 16/06/2012 - 17:03:33 ---A- . (...) -- C:\Windows\setupact.log [169763]
O44 - LFC:[MD5.570ABB4BF548DF4E5D0D7975E8DD3D49] - 16/06/2012 - 17:03:32 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.0085A4BA856ED6DDC7FADBC85FCAA5AB] - 16/06/2012 - 08:09:17 ---A- . (...) -- C:\Windows\PFRO.log [387926]
O44 - LFC:[MD5.7B3436E5C846344F54D4E8560ECA1A1B] - 15/06/2012 - 22:19:17 . (...) -- C:\Windows\System32\PerfStringBackup.INI []]]]]]
O44 - LFC:[MD5.B32BB679295DC5D1987E5BC94BE221EE] - 15/06/2012 - 22:19:17 . (...) -- C:\Windows\System32\perfc009.dat []]
O44 - LFC:[MD5.0B185205B3014901D3C38A24B0F2CF1D] - 15/06/2012 - 22:19:17 . (...) -- C:\Windows\System32\perfc00C.dat []]]
O44 - LFC:[MD5.FDD41188483D5050C4D32A0D03C0EE74] - 15/06/2012 - 22:19:17 . (...) -- C:\Windows\System32\perfh009.dat []]]]
O44 - LFC:[MD5.590E8A2BDA51359D11CEC55E9A3602A7] - 15/06/2012 - 22:19:17 . (...) -- C:\Windows\System32\perfh00C.dat []]]]]
O44 - LFC:[MD5.7B3436E5C846344F54D4E8560ECA1A1B] - 15/06/2012 - 22:19:17 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1609948]
O44 - LFC:[MD5.B32BB679295DC5D1987E5BC94BE221EE] - 15/06/2012 - 22:19:17 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [112274]
O44 - LFC:[MD5.0B185205B3014901D3C38A24B0F2CF1D] - 15/06/2012 - 22:19:17 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [137048]
O44 - LFC:[MD5.FDD41188483D5050C4D32A0D03C0EE74] - 15/06/2012 - 22:19:17 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [628488]
O44 - LFC:[MD5.590E8A2BDA51359D11CEC55E9A3602A7] - 15/06/2012 - 22:19:17 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [717650]
O44 - LFC:[MD5.5999BCB7746AC6407E66F71013D4D2D3] - 15/06/2012 - 22:16:29 . (...) -- C:\Windows\System32\MRT.exe []
O44 - LFC:[MD5.A15860E920B02C9A7CE8F3A6C2FF1E3A] - 30/05/2012 - 15:22:56 . (...) -- C:\Windows\System32\Drivers\sptd.sys []
~ Scan Files in 00mn 03s



---\\ Contrôle du Safe Boot (CSB) (O49) (None)

---\\ MountPoints2 Shell Key (O51) (None)

---\\ ShareTools MSconfig StartupReg (O53) (None)

---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]
O58 - SDL:[MD5.306521935042FC0A6988D528643619B3] - 02/01/2010 - 10:47:43 ---A- . (...) -- C:\Windows\SysWOW64\drivers\StarOpen.sys [5632]
O58 - SDL:[MD5.4A1857EC7EC4CBCEF475F0A1DEC02B28] - 26/04/2004 - 17:21:00 R--A- . (.Intellon, Inc. - PCAUSA NDIS 4.0 Protocol Driver.) -- C:\Windows\SysWOW64\PLCNDIS4.SYS [17584]
~ Scan Drivers in 00mn 00s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\maelyss\AppData\Local\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCR\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\maelyss\AppData\Local\Google\Chrome\Application\chrome.exe
~ Scan Keys in 00mn 00s



---\\ Start Menu Internet (O68) (None)

---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {32EA86AD-4A48-400B-9099-B7D2541CA9EA} - (Bing) - https://www.bing.com/?toHttps=1&redig=69DA0EF8272048D9864AF4DB37211DE8
O69 - SBI: SearchScopes [HKCU] {57C2B6C1-1AC1-4A0C-B420-B5F58D97E092} - (Kelkoo) - http://fr.kelkoopartners.net
O69 - SBI: SearchScopes [HKCU] {880A9FCC-690A-4C42-94BE-25111BF006BF} - (AOL Recherche) - http://slirsredirect.search.aol.com
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2417} [DefaultScope] - (Search Results) - https://www.search.ask.com/web?l=dis&q=&o=APN10655A&apn_dtid=%5EBND101%5EYY%5EFR&shad=s_0048&gct=hp&apn_ptnrs=%5EAG5&d=101-0&lang=en&atb=sysid%3D101%3Auid%3D58c9331d816657ac%3Asrc%3Dhmp%3Ao%3DAPN10655A%3Atg%3D&p2=%5EAG5%5EBND101%5EYY%5EFR
O69 - SBI: SearchScopes [HKCU] {9D5BD211-422C-4164-9298-BB4186A30F31} - (Bing) - https://www.bing.com/?toHttps=1&redig=69DA0EF8272048D9864AF4DB37211DE8
O69 - SBI: SearchScopes [HKCU] {9FFCFBA8-423D-4B55-B6EE-EAB16A3B5FC1} - (Yahoo!) - https://fr.search.yahoo.com/
~ Scan Keys in 00mn 00s



---\\ Recherche des services démarrés par Svchost (O83) (None)

---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.6D9E5361414A404F62DC249F2AADC327] [SPRF][31/01/2008] (.Pas de propriétaire - 7-zip32.) -- C:\Users\maelyss\AppData\Local\Temp\7-zip32.dll [506880]
[MD5.C081BA308F0BDC139D18DDD4C58A0988] [SPRF][26/12/2009] (.Microsoft Corporation - Windows Live Installer.) -- C:\Users\maelyss\AppData\Local\Temp\8BD54F3E-DD19-4a69-93D8-5C6A5BBBE20E.exe [1161544]
[MD5.197215658B8015182192E1EBCA3BBCC3] [SPRF][07/01/2012] (.Ask.com - AskIC Dynamic Link Library.) -- C:\Users\maelyss\AppData\Local\Temp\AskSLib.dll [246440]
[MD5.D31E04F75AC13CAC3FF511D018F05C63] [SPRF][25/05/2012] (.Musiclab, LLC - BearShare.) -- C:\Users\maelyss\AppData\Local\Temp\BearShare_setup.exe [2382096]
[MD5.710626F0C8B94C9CF89458409E3EE12E] [SPRF][15/05/2012] (.Conduit - Pas de description.) -- C:\Users\maelyss\AppData\Local\Temp\conduitinstaller.exe [211792]
[MD5.CE5163BBB95664F60FF557DABFB09835] [SPRF][14/01/2008] (.Hewlett-Packard Company - HPQ System Information.) -- C:\Users\maelyss\AppData\Local\Temp\HPQSi.exe [69632]
[MD5.24F6D923EF6956ABD0449C879F36D7C7] [SPRF][16/06/2012] (...) -- C:\Users\maelyss\AppData\Local\Temp\i4jdel0.exe [27411]
[MD5.24F6D923EF6956ABD0449C879F36D7C7] [SPRF][02/06/2012] (...) -- C:\Users\maelyss\AppData\Local\Temp\i4jdel1.exe [27411]
[MD5.24F6D923EF6956ABD0449C879F36D7C7] [SPRF][24/05/2012] (...) -- C:\Users\maelyss\AppData\Local\Temp\i4jdel2.exe [27411]
[MD5.7858FA1961509A3225B5F3A2FB573BCB] [SPRF][20/05/2012] (...) -- C:\Users\maelyss\AppData\Local\Temp\installhelper.dll [1572864]
[MD5.09D9183536E2DC343A9B8EB070A58C1C] [SPRF][12/12/2009] (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Users\maelyss\AppData\Local\Temp\jre-6u17-windows-i586-iftw-rv.exe [792352]
[MD5.DFCCBB06ED411E0C006F05BCB1BDF7C2] [SPRF][19/07/2010] (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Users\maelyss\AppData\Local\Temp\jre-6u21-windows-i586-iftw-rv.exe [875296]
[MD5.BD19CCD98ED8EC973B56A145662C0169] [SPRF][26/12/2009] (.Microsoft Corporation - Windows Live Installer.) -- C:\Users\maelyss\AppData\Local\Temp\msg7FAE.exe [36278120]
[MD5.E9ECD58684EF1DB4161FE284B2925313] [SPRF][22/05/2012] (...) -- C:\Users\maelyss\AppData\Local\Temp\SetupDataMngr_BearShare.exe [3921920]
[MD5.DE94FABD17FFBDAF3E1C8EF35DDA2FB5] [SPRF][27/05/2012] (...) -- C:\Users\maelyss\AppData\Local\Temp\SetupDataMngr_Searchqu.exe [4094360]
[MD5.72412B526BCC716382E62B7939DCFD8F] [SPRF][17/04/2012] (...) -- C:\Users\maelyss\AppData\Local\Temp\SRAssetsHelper.dll [1085952]
[MD5.7012CB3FF646BC7700B3B3EDA110C788] [SPRF][25/05/2012] (...) -- C:\Users\maelyss\AppData\Local\Temp\thanks.bat [76]
[MD5.68094AC5F87A294091352AF0AF255AAD] [SPRF][19/04/2012] (.Tuto4pc - Tuto4pc Setup.) -- C:\Users\maelyss\AppData\Local\Temp\tuto4pc_fr_softonic_v3.exe [7298368]
[MD5.D41D8CD98F00B204E9800998ECF8427E] [SPRF][15/04/2012] (...) -- C:\Users\maelyss\AppData\Local\Temp\vtpnj2xy.dll [0]
[MD5.37DE6C2EC99D36B3BDEAA5C38A23F8EB] [SPRF][19/03/2012] (.Microsoft Corporation - Windows Live Installer.) -- C:\Users\maelyss\AppData\Local\Temp\wlsetup-cvr.exe [152509800]
[MD5.605A171C61A0607BDCF6BE80ED07CF95] [SPRF][19/03/2011] (.AnjoCaido - Free launcher for Minecraft Alpha.) -- C:\Users\maelyss\Desktop\MinecraftSP.exe [695296]
[MD5.0F6C66D0EE8E4244F202BA8A2D861C5B] [SPRF][07/06/2012] (...) -- C:\Users\maelyss\Desktop\Pipix v2.2.exe [1159317]
[MD5.060D7D0B6838FDFB92459F015D015EBE] [SPRF][05/06/2012] (.Sony Creative Software Inc. - Sony Windows Installer Preloader.) -- C:\Users\maelyss\Desktop\sony-vegas-pro_sony_vegas_pro_11.0.520_32_bits_francais_124204.exe [212930024]
~ Scan Files in 00mn 03s



---\\ Scan Additionnel (O88)
Database Version : 9170 - (24/05/2012)
Clés trouvées (Keys found) : 7
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 5
Fichiers trouvés (Files found) : 0

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7A66EB91-F7D3-4de2-8CA9-12C12AF3D5F2}] =>Spyware.AgenceExclusive
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7A66EB91-F7D3-4de2-8CA9-12C12AF3D5F2}] =>Spyware.AgenceExclusive
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}] =>PUP.DealPly
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}] =>PUP.DealPly
[HKCU\Software\DataMngr] =>Adware.Bandoo
[HKCU\Software\Tutorials] =>Toolbar.Agent
C:\Program Files (x86)\BearShare Applications =>PUP.BearShare
C:\Program Files (x86)\DealPly =>PUP.DealPly
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DealPly =>PUP.DealPly
~ Scan Additionnel in 00mn 10s



End of the scan (583 lines in 00mn 49s)(0)

Bonjour,

Il doit y avoir une variante d'AdBlock pour Chrome...

Si ces bloqueurs de pubs sont inefficaces, il y a de bonnes (façon de parler) chances que ton PC soit vérolé. J'ai redirigé le topic vers le forum ad hoc.

Je suis entrain de mettre une video je mettrai le lien tu me dira c'est quoi le probleme stp parcontre dans 10 minute c'est long à charger

Vu...

J'espère qu'un expert de forum pourra venir à ton aide...

C'est seulement sur YT ?

oui