Pub s'ouvrant toutes seules

Résolu

Rennaise -
Rennaise - 8 janv. 2013 à 18:07

Bonjour,
Depuis quelques jours des pubs s'ouvrent toutes seules lorsque je suis sur internet.
J'ai fait une analyse avec ZHPDiag comme vu dans un autre message.
Voilà le rapport :

Rapport de ZHPDiag v1.34.05 par Nicolas Coolman, Update du 01/01/2013
Run by Anaïs at 03/01/2013 21:00:23
State : Version à jour.
UAC : Deactivate by program

---\\ Web Browser
MSIE: Internet Explorer v7.0.6002.18005
MFIE: Mozilla Firefox 17.0.1 v17.0.1 (Defaut)
GCIE: Google Chrome v23.0.1271.97

---\\ Windows Product Information
~ Langage: Français
Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)
Windows Server License Manager Script : OK
~ Vista, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : WQD8Q
Windows License : OK
Windows Automatic Updates : OK

---\\ System Information
~ Processor: x86 Family 6 Model 15 Stepping 13, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3068 MB (51% free)
System Restore: Activé (Enable)
System drive C: has 90 GB (40%) free of 224 GB

---\\ Logged in mode
~ Computer Name: PC-DE-ANAÏS
~ User Name: Anaïs
~ All Users Names: Anaïs, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Anaïs\AppData\Roaming\
~ %Desktop% : C:\Users\Anaïs\Desktop\
~ %Favorites% : C:\Users\Anaïs\Favorites\
~ %LocalAppData% : C:\Users\Anaïs\AppData\Local\
~ %StartMenu% : C:\Users\Anaïs\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 90 Go of 224 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 9 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ Hard drive, Flash drive, Thumb drive (Free 697 Go of 932 Go)

---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn 00s

---\\ Recherche particulière de fichiers génériques
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 - 07:27:36.) -- C:\WINDOWS\Explorer.exe [2926592]
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 - 03:23:42.) -- C:\WINDOWS\System32\Wininit.exe [96768]
[MD5.39D39E4BF721E78EE4C774B411711AA8] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.27/10/2012 - 04:52:52.) -- C:\WINDOWS\System32\wininet.dll [834048]
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 - 07:28:13.) -- C:\WINDOWS\System32\Winlogon.exe [314368]
[MD5.3911B972B55FEA0478476B2E777B29FA] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.21/04/2011 - 14:58:27.) -- C:\WINDOWS\system32\Drivers\AFD.sys [273408]
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 - 07:32:26.) -- C:\WINDOWS\system32\Drivers\atapi.sys [19944]
[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.21/01/2008 - 03:23:51.) -- C:\WINDOWS\system32\Drivers\Cdfs.sys [70144]
[MD5.6B4BFFB9BECD728097024276430DB314] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.11/04/2009 - 05:39:17.) -- C:\WINDOWS\system32\Drivers\Cdrom.sys [67072]
[MD5.622C41A07CA7E6DD91770F50D532CB6C] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/04/2011 - 15:59:03.) -- C:\WINDOWS\system32\Drivers\DfsC.sys [75264]
[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.11/04/2009 - 05:42:42.) -- C:\WINDOWS\system32\Drivers\HDAudBus.sys [561152]
[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - (.Microsoft Corporation - Pilote de port i8042.) (.21/01/2008 - 03:23:20.) -- C:\WINDOWS\system32\Drivers\i8042prt.sys [54784]
[MD5.8793643A67B42CEC66490B2A0CF92D68] - (.Microsoft Corporation - IP Network Address Translator.) (.21/01/2008 - 03:24:25.) -- C:\WINDOWS\system32\Drivers\IpNat.sys [100864]
[MD5.1E94971C4B446AB2290DEB71D01CF0C2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29/04/2011 - 14:24:40.) -- C:\WINDOWS\system32\Drivers\MRxSmb.sys [106496]
[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - (.Microsoft Corporation - MBT Transport driver.) (.11/04/2009 - 05:45:37.) -- C:\WINDOWS\system32\Drivers\netBT.sys [185856]
[MD5.6A4A98CEE84CF9E99564510DDA4BAA47] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.11/04/2009 - 07:32:49.) -- C:\WINDOWS\system32\Drivers\ntfs.sys [1083880]
[MD5.0FA9B5055484649D63C303FE404E5F4D] - (.Microsoft Corporation - Pilote de port parallèle.) (.02/11/2006 - 09:51:30.) -- C:\WINDOWS\system32\Drivers\Parport.sys [79360]
[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/01/2008 - 03:24:55.) -- C:\WINDOWS\system32\Drivers\Rasl2tp.sys [76288]
[MD5.FBC0BACD9C3D7F6956853F64A66E252D] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/01/2008 - 03:23:01.) -- C:\WINDOWS\system32\Drivers\rdpdr.sys [248832]
[MD5.7B75299A4D201D6A6533603D6914AB04] - (.Microsoft Corporation - SMB Transport driver.) (.11/04/2009 - 05:45:22.) -- C:\WINDOWS\system32\Drivers\smb.sys [66560]
[MD5.76B06EB8A01FC8624D699E7045303E54] - (.Microsoft Corporation - TDI Translation Driver.) (.11/04/2009 - 05:45:56.) -- C:\WINDOWS\system32\Drivers\tdx.sys [72192]
[MD5.786DB5771F05EF300390399F626BF30A] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/08/2012 - 12:47:42.) -- C:\WINDOWS\system32\Drivers\volsnap.sys [224640]
~ Scan Generic Processes in 00mn 00s

---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/2016
~ Mes musiques (My Musics) : 1/5295
~ Mes Videos (My Videos) : 1/2
~ Mes Favoris (My Favorites) : 1/4
~ Mes Documents (My Documents) : 1/148
~ Mon Bureau (My Desktop) : 1/2
~ Menu demarrer (Programs) : 1/34
~ Scan Hidden Files in 00mn 08s

---\\ Processus lancés
[MD5.7853D2AB445C10F97610B2B05FA4CF0A] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [512360] [PID.3136]
[MD5.19D93154C82FE39A99B269CED1056A92] - (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1033512] [PID.616]
[MD5.95B2B8B728BB1BFC000178CDC79AF023] - (.CyberLink Corp. - HP QuickPlay Resident Program.) -- C:\Program Files\HP\QuickPlay\QPService.exe [468264] [PID.2092]
[MD5.0D392EDE3B97E0B3131B2F63EF1DB94E] - (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe [1008184] [PID.2440]
[MD5.6FC398F279D5F5E53E61683B5450195D] - (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe [202032] [PID.2368]
[MD5.544C1EF07AEC178A83538A251A72CE13] - (. Hewlett-Packard Development Company, L.P. - HP QuickTouch On Screen Display.) -- C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe [554288] [PID.3664]
[MD5.8CB896C573FD15AE8B13180DA53E93D2] - (.Hewlett-Packard Development Company, L.P. - HPWAMain Module.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [488752] [PID.3948]
[MD5.083649EF692A066880C9326020915AFE] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4297136] [PID.4040]
[MD5.8D07F0687318214A3CEF62EA1048D101] - (.Hewlett-Packard Development Company, L.P. - Module to process WiFi messages..) -- C:\Program Files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.exe [316720] [PID.2688]
[MD5.BF9C0C31202259D2BE2B7072499504CE] - (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray.exe [458844] [PID.4064]
[MD5.C637FC4638A96165256B28D38DE7B953] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\HP\HP Software Update\hpwuschd2.exe [49208] [PID.3764]
[MD5.BE0D4F98717DBAABBE0A785C9B854F21] - (.Pas de propriétaire - Printer Device Monitor.) -- C:\Program Files\Lexmark 3600-4600 Series\lxdxmon.exe [672424] [PID.2728]
[MD5.AF0C2E1410056D90DEC880C16632547D] - (.Lexmark International Inc. - Lexmark Fast Pics Application.) -- C:\Program Files\Lexmark 3600-4600 Series\ezprint.exe [107176] [PID.4036]
[MD5.E5AE6E63005A79FA54859EFB75003A51] - (.ActMask Co.,Ltd - http://www.all2pdf.com - PrintDisp.) -- C:\WINDOWS\System32\PrintDisp.exe [826368] [PID.3036]
[MD5.D3AC38E80E928CC61A22650E04423BB8] - (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files\EPSON Software\Event Manager\EEventManager.exe [979328] [PID.3244]
[MD5.B77081F8221968C7DAB794B0BA55C43E] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [254896] [PID.3660]
[MD5.1EDC4865C8003A0251956835273904B1] - (.Pas de propriétaire - HpqToaster Module.) -- C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe [685360] [PID.3984]
[MD5.A387D093B66727BF3EDF517E2F4D87C5] - (.Garmin - Garmin Lifetime Updater.) -- C:\Program Files\Garmin\Lifetime Updater\GarminLifetime.exe [1466760] [PID.3604]
[MD5.6CF023F0A798C56599B8EA9FF9F083A0] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2289664] [PID.4152]
[MD5.D0AC482B584F244B0E10B465CFC6DEC5] - (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files\SFR\Kit\9props.exe [955712] [PID.4436]
[MD5.3F3A26E471CCCB3CFFCA68F0C052F35F] - (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\WINDOWS\System32\spool\drivers\w32x86\3\E_FATIHBE.exe [249440] [PID.4564]
[MD5.2C6DFC761F1DAE61940C7EAE97EBDB19] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe [17877168] [PID.5216]
[MD5.2F01B303DC54C4D6A82596F6813BA4F6] - (.Dropbox, Inc. - Dropbox.) -- C:\Users\Anaïs\AppData\Roaming\Dropbox\bin\Dropbox.exe [28539392] [PID.5664]
[MD5.E631ECA6EC81B41F088C910E546189EC] - (...) -- C:\Users\Anaïs\AppData\Local\Lollipop\lollipop.exe [1249280] [PID.5844]
[MD5.749949494676218FFA99501F4AA22ECC] - (.OpenOffice.org - OpenOffice.org 3.4.1.) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe [10376704] [PID.4660]
[MD5.5744FFF8E72D105C138DAE9E17BB29FE] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [916960] [PID.676]
[MD5.4EE367B8B1964160A1F1B80095183D3A] - (.OpenOffice.org - OpenOffice.org 3.4.1.) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin [10368512] [PID.5904]
[MD5.892699A6AEB910C58B726BD70BEA4F4B] - (.Synaptics, Inc. - Synaptics Pointing Device Helper.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe [95528] [PID.5316]
[MD5.5EE4A6B572263A9FB2C99298AEF86515] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [3817984] [PID.4068]
[MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe [69120] [PID.5344]
[MD5.C142445B59C1DABA31F6397A34C42C74] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [16864] [PID.884]
[MD5.26807EED9A80328943CD8385BC7E6991] - (.Adobe Systems, Inc. - Adobe Flash Player 11.5 r502.) -- C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe [1807800] [PID.724]
[MD5.C4D17F11526F87BC762F31DA5BD2580B] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 187.6.) -- C:\Windows\system32\nvvsvc.exe [219752] [PID.996]
[MD5.05AE358CD777BF8857F512A18E1DE7AA] - (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_e2247046\STacSV.exe [221266] [PID.1220]
[MD5.862BB4CBC05D80C5B45BE430E5EF872F] - (.Microsoft Corporation - Service de gestion des licences Microsoft.) -- C:\Windows\system32\SLsvc.exe [3408896] [PID.1400]
[MD5.C0BEB56ED79B59B7B33D0AA6C38A0BA6] - (.Hewlett-Packard Company - HpService.) -- C:\Windows\system32\Hpservice.exe [26168] [PID.1568]
[MD5.8FA553E9AE69808D99C164733A0F9590] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [44808] [PID.1872]
[MD5.23C3A0680042C0D1DE1F360F8B62BC57] - (.Microsoft Corporation - Infrastructure d'extensibilité pour les ser.) -- C:\Windows\system32\WLANExt.exe [74240] [PID.1884]
[MD5.ABDD5AD016AFFD34AD40E944CE94BF59] - (.SEIKO EPSON CORPORATION - eEBAPI Core Process module.) -- C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe [94208] [PID.2420]
[MD5.B33CF4DE909A5B30F526D82053A63C8E] - (.ABBYY - ABBYY network license server.) -- C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048] [PID.2604]
[MD5.D19C4EE2AC7C47B8F5F84FFF1A789D8A] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [63960] [PID.2676]
[MD5.827DBC22C96EECF6D36A13162FABAFD3] - (.Andrea Electronics Corporation - Andrea filters APO access service (32-bit).) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_e2247046\aestsrv.exe [81920] [PID.2780]
[MD5.984ECB68ED2A2B2E6A544E87E24FBA2D] - (.Hewlett-Packard Company - LightScribe Service.) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728] [PID.2928]
[MD5.CEB67BDFBF2F03BF3EBADF21616B7C6A] - (.Pas de propriétaire - Printer Communication System.) -- C:\Windows\system32\lxdxcoms.exe [589824] [PID.2964]
[MD5.1ACAA67676E9E7BDA5E0C41B6E0DECAF] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [398184] [PID.2996]
[MD5.916B8954AC3E06DC9E898AFFB41F3FB6] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [682344] [PID.3016]
[MD5.81DBFB92EC47CAC5A7DBAC688886C212] - (.ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM - PrintCtrl.) -- C:\Windows\system32\PrintCtrl.exe [65536] [PID.3088]
[MD5.26F65F22527515990532209BAFF78DEA] - (.Pas de propriétaire - CLCapSvc Module.) -- C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe [292216] [PID.3128]
[MD5.511E9DDC22A63E5109C7F221F85DEB3D] - (.Pas de propriétaire - CLSched Module.) -- C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe [116080] [PID.3164]
[MD5.431723F23D0E065BEF502389E8FFDC10] - (.Pas de propriétaire - STServices.) -- C:\Windows\SMINST\BLService.exe [361808] [PID.3188]
[MD5.17E0BEF5CA5C9CE52CC8082AC6EBC449] - (.Pas de propriétaire - RichVideo Module.) -- C:\Program Files\CyberLink\Shared Files\RichVideo.exe [272024] [PID.3212]
[MD5.388AE59FE75F1B959DFA0900923C61BB] - (.Skype Technologies S.A. - Skype C2C Service.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000] [PID.3260]
[MD5.D50FDAD1E57AA60F1973CFC77D905F0E] - (.Hewlett-Packard Development Company, L.P. - hpqwmiex Module.) -- C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [148832] [PID.2088]
[MD5.A94146208170D78906C93EE39CEBDD9F] - (.Hewlett-Packard Development Company, L.P. - Com for QLB application.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [193840] [PID.4672]
[MD5.89F9E1984C1CD9E5F4FE39642D886E11] - (.Hewlett-Packard - HP Health Check Service.) -- c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [94208] [PID.3640]
[MD5.DCF3E3EDF5109EE8BC02FE6E1F045795] - (.Microsoft Corporation - wpffontcache_v0400.exe.) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [753504] [PID.5660]
~ Scan Processes Running in 00mn 04s

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Anaïs\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default][HomePage] http://feed.snap.do/?publisher=SnapdoOpenCandy&dpid=SnapdoOpenCandy&co=FR&userid=a3c55235-1009-4255-b43d-392e6f2395bc&searchtype=hp
G0 - GCSP: Preference [User Data\Default] http://feed.snap.do/?publisher=SnapdoOpenCandy&dpid=SnapdoOpenCandy&co=FR&userid=a3c55235-1009-4255-b43d-392e6f2395bc&searchtype=hp"],"restore_on_startup": 4},
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Drive v.6.2 (Activé)
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.5 (Activé)
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v.0.0.0.19 (Activé)
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activé)
~ Scan Google Browser in 00mn 00s

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Anaïs\AppData\Roaming\Mozilla\Firefox\Profiles\dtky5kzv.default\prefs.js
C:\Users\Anaïs\AppData\Roaming\Mozilla\Firefox\Profiles\dtky5kzv.default\user.js
M3 - MFPP: Plugins - [Anaïs] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Anaïs] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Anaïs] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Anaïs] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Anaïs] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Anaïs] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Anaïs] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
M0 - MFSP: prefs.js [Anaïs - dtky5kzv.default] http://www.google.fr
M2 - MFEP: prefs.js [Anaïs - dtky5kzv.default\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}] [] Garmin Communicator v4.0.4 (.Garmin International.)
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.4.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll
P2 - FPN: [HKLM] [@garmin.com/GpsControl] - (.GARMIN Corp. - Garmin Communicator Plug-In 4.0.3.0.) -- C:\Program Files\Garmin GPS Plugin\npGarmin.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=1.6.0_37] - (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Windows\system32\npdeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_37 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.4] - (.VideoLAN - VLC media player Web Plugin 2.0.2.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKLM] [@zylom.com/ZylomGamesPlayer] - (.Zylom - Zylom Plugin.) -- C:\ProgramData\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.4.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
~ Scan Firefox Browser in 00mn 00s

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (7.00.6000.16386 (vista_rtm.061101-2205)) -- C:\Windows\system32\ieframe.dll
~ Scan IE Browser in 00mn 00s

---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s

---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Scan Keys in 00mn 00s

---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 20

---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} . (.SEIKO EPSON CORPORATION - Epson Easy Photo Print (TBL).) -- C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Skype Technologies S.A. - Skype Click to Call for Internet Explorer.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
~ Scan BHO in 00mn 00s

---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: avast! WebRep - [HKLM]{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Easy Photo Print - [HKLM]{9421DD08-935F-4701-A9CA-22DF90AC4EA6} . (.SEIKO EPSON CORPORATION - Epson Easy Photo Print (TBL).) -- C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O3 - Toolbar: (no name) - [HKLM]{ae07101b-46d4-4a98-af68-0333ea26e113} Clé orpheline
~ Scan Toolbar in 00mn 00s

---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [UCam_Menu] . (.CyberLink Corp. - StartMen Application.) -- C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Run: [QPService] . (.CyberLink Corp. - HP QuickPlay Resident Program.) -- C:\Program Files\HP\QuickPlay\QPService.exe
O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe
O4 - HKLM\..\Run: [QlbCtrl.exe] . (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
O4 - HKLM\..\Run: [OnScreenDisplay] . (. Hewlett-Packard Development Company, L.P. - HP QuickTouch On Screen Display.) -- C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] . (.Hewlett-Packard Development Company, L.P. - HPWAMain Module.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\system32\NvCpl.dll
O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [HP Health Check Scheduler] . (.Hewlett-Packard - HP Health Check Scheduler.) -- c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [lxdxmon.exe] . (.Pas de propriétaire - Printer Device Monitor.) -- C:\Program Files\Lexmark 3600-4600 Series\lxdxmon.exe
O4 - HKLM\..\Run: [EzPrint] . (.Lexmark International Inc. - Lexmark Fast Pics Application.) -- C:\Program Files\Lexmark 3600-4600 Series\ezprint.exe
O4 - HKLM\..\Run: [PrintDisp] . (.ActMask Co.,Ltd - http://www.all2pdf.com - PrintDisp.) -- C:\Windows\system32\PrintDisp.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [EEventManager] . (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files\Epson Software\Event Manager\EEventManager.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [Garmin Lifetime Updater] . (.Garmin - Garmin Lifetime Updater.) -- C:\Program Files\Garmin\Lifetime Updater\GarminLifetime.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
O4 - HKCU\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files\SFR\Kit\9props.exe
O4 - HKCU\..\Run: [Bubble Dock] C:\Users\Anaïs\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe (.not file.)
O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIHBE.exe
O4 - HKCU\..\Run: [EPLTarget\P0000000000000001] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIHBE.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] oobefldr.dll
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] oobefldr.dll
O4 - HKUS\S-1-5-21-3540797383-2429903328-2873870569-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-3540797383-2429903328-2873870569-1000\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
O4 - HKUS\S-1-5-21-3540797383-2429903328-2873870569-1000\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files\SFR\Kit\9props.exe
O4 - HKUS\S-1-5-21-3540797383-2429903328-2873870569-1000\..\Run: [Bubble Dock] C:\Users\Anaïs\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe (.not file.)
O4 - HKUS\S-1-5-21-3540797383-2429903328-2873870569-1000\..\Run: [EPLTarget\P0000000000000000] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIHBE.exe
O4 - HKUS\S-1-5-21-3540797383-2429903328-2873870569-1000\..\Run: [EPLTarget\P0000000000000001] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIHBE.exe
O4 - HKUS\S-1-5-21-3540797383-2429903328-2873870569-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
~ Scan Application in 00mn 00s

---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Anaïs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk . (.Spotify Ltd.) -- C:\Program Files\Spotify\spotify.exe
O4 - Global Startup: C:\Users\Anaïs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Mail\WinMail.exe
O4 - Global Startup: C:\Users\Anaïs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Users\Anaïs\Desktop\AD-R.lnk . (...) -- C:\Program Files\Ad-Remover\main.exe
O4 - Global Startup: C:\Users\Anaïs\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
~ Scan Global Startup in 00mn 00s

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- C:\Program Files\Skype\Toolbars\Internet Explorer\icon.ico
~ Scan IE Extra Buttons in 00mn 00s

---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
~ Scan Winsock in 00mn 00s

---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{FAB205CB-2840-4AD4-B787-E47323F746FE}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{FAB205CB-2840-4AD4-B787-E47323F746FE}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{FAB205CB-2840-4AD4-B787-E47323F746FE}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{FAB205CB-2840-4AD4-B787-E47323F746FE}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s

---\\ Protocole additionnel (O18)
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\System32\itss.dll
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\WINDOWS\system32\inetcomm.dll
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\System32\itss.dll
O18 - Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll
O18 - Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} . (.Skype Technologies S.A. - Skype Click to Call for Internet Explorer.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\Program Files\Common Files\Skype\Skype4COM.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\System32\mscoree.dll
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\System32\mscoree.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\System32\mscoree.dll
O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
~ Scan Protocole Additionnel in 00mn 00s

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\system32\webcheck.dll
~ Scan SSODL in 00mn 00s

---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\System32\browseui.dll
~ Scan STS/SSO in 00mn 00s

---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Se (ABBYY.Licensing.FineReader.Sprint.9.0) . (.ABBYY - ABBYY network license server.) - C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (32-bit).) - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_e2247046\aestsrv.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: EpsonBidirectionalService (EpsonBidirectionalService) . (.SEIKO EPSON CORPORATION - eEBAPI Core Process module.) - C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service (HP Health Check Service) . (.Hewlett-Packard - HP Health Check Service.) - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Service (hpsrv) . (.Hewlett-Packard Company - HpService.) - C:\WINDOWS\System32\Hpservice.exe
O23 - Service: LightScribeService Direct Disc Labeling (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: lxdx_device (lxdx_device) . (.Pas de propriétaire - Printer Communication System.) - C:\Windows\system32\lxdxcoms.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 187.6.) - C:\WINDOWS\System32\nvvsvc.exe
O23 - Service: (Printer Control) . (.ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM - PrintCtrl.) - C:\Windows\system32\PrintCtrl.exe
O23 - Service: QuickPlay Background Capture Service (QB (QPCapSvc) . (.Pas de propriétaire - CLCapSvc Module.) - C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe
O23 - Service: QuickPlay Task Scheduler (QTS) (QPSched) . (.Pas de propriétaire - CLSched Module.) - C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe
O23 - Service: Recovery Service for Windows (Recovery Service for Windows) . (.Pas de propriétaire - STServices.) - C:\Windows\SMINST\BLService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Skype C2C Service (Skype C2C Service) . (.Skype Technologies S.A. - Skype C2C Service.) - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Audio Service (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_e2247046\STacSV.exe
~ Scan Services in 00mn 00s

---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
O24 - Desktop General: BackupWallPaper - .(...) - C:\WINDOWS\Web\Wallpaper\img22.jpg
O24 - Desktop General: WallPaper - .(...) - C:\WINDOWS\Web\Wallpaper\img22.jpg
~ Scan Desktop Component in 00mn 00s

---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s

---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\HPCeeScheduleForAnaïs.job
[MD5.95CE557D16A75606CCC2D7F3B0B0BCCB] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[MD5.7F19838AC317C34FCED020BE529AF71E] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.523D786AB9BFC3C228B8C851D402F502] [APT] [HP Health Check] (.Hewlett-Packard.) -- c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
[MD5.BA6AE6BC66BEA0C1F3335AEE43C35385] [APT] [HPCeeScheduleForAna<s] (.Hewlett-Packard.) -- C:\Program Files\Hewlett-Packard\SDP\Ceement\HPCEE.exe
[MD5.AF0C2E1410056D90DEC880C16632547D] [APT] [Installation App Launcher] (.Lexmark International Inc..) -- C:\Program Files\Lexmark 3600-4600 Series\ezprint.exe
[MD5.00000000000000000000000000000000] [APT] [{90B45D38-AC5D-4E45-B0C1-C77655C16BF7}] (...) -- C:\Users\Anaïs\Downloads\PDFCreator-1.2.3-setup(1).exe (.not file.)
~ Scan Scheduled Task in 00mn 04s

---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\WINDOWS\System32\wmploc.dll
O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\system32\ie4uinit.exe
O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d'IEAK.) -- C:\Windows\system32\iedkcs32.dll
O40 - ASIC: Microsoft VM - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (...) -- C:\Windows\system32\msjava.dll
O40 - ASIC: LightScribe Control Panel - {10880D85-AAD9-4558-ABDC-2AB1552D831F} . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Common Files\LightScribe\LSRunOnce.exe
O40 - ASIC: Microsoft Windows Media Player 11.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\WINDOWS\System32\themeui.dll
O40 - ASIC: Microsoft Windows Mail 7 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\WINDOWS\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\WINDOWS\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\System32\shell32.dll
O40 - ASIC: Internet Explorer - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\system32\ie4uinit.exe
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 9.0 r115.) -- C:\Windows\system32\Macromed\Flash\Flash9e.ocx
~ Scan Active Setup in 00mn 00s

---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\WINDOWS\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\WINDOWS\System32\Drivers\dfsc.sys
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\WINDOWS\System32\DRIVERS\i8042prt.sys
O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\WINDOWS\System32\DRIVERS\kbdclass.sys
O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\WINDOWS\System32\DRIVERS\kbdhid.sys
O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\WINDOWS\System32\DRIVERS\mouclass.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\WINDOWS\System32\DRIVERS\netbios.sys
O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\WINDOWS\System32\DRIVERS\netbt.sys
O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\WINDOWS\System32\drivers\nsiproxy.sys
O41 - Driver: C:\WINDOWS\System32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\WINDOWS\System32\DRIVERS\pacer.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\WINDOWS\System32\DRIVERS\rasacd.sys
O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\WINDOWS\System32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\WINDOWS\System32\DRIVERS\RDPCDD.sys
O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\WINDOWS\System32\drivers\rdpencdd.sys
O41 - Driver: C:\WINDOWS\System32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\WINDOWS\System32\DRIVERS\smb.sys
O41 - Driver: C:\WINDOWS\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\WINDOWS\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\WINDOWS\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\WINDOWS\System32\DRIVERS\wanarp.sys
~ Scan Drivers in 00mn 00s

---\\ Logiciels installés (O42)
O42 - Logiciel: 3.3 - (.Pas de propriétaire.) [HKLM] -- Virtual Printer SDK Patch_is1
O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM] -- ABBYY FineReader 9.0 Sprint
O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM] -- {F9000000-0018-0000-0000-074957833700}
O42 - Logiciel: ActiveCheck component for HP Active Support Library - (.Hewlett-Packard.) [HKLM] -- {254C37AA-6B72-4300-84F6-98A82419187E}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {FDB3B167-F4FA-461D-976F-286304A57B2A}
O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated..) [HKLM] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated..) [HKLM] -- {3521BDBD-D453-5D9F-AA55-44B75D214629}
O42 - Logiciel: Adobe Download Assistant - (.Adobe Systems Incorporated.) [HKLM] -- com.adobe.downloadassistant.AdobeDownloadAssistant
O42 - Logiciel: Adobe Download Assistant - (.Adobe Systems Incorporated.) [HKLM] -- {DC0C5A78-6DBF-3444-0120-0FE8F0134FCD}
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Flash Player ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Reader X (10.1.4) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: Adobe Shockwave Player - (.Adobe Systems, Inc..) [HKLM] -- {1BDC9633-895B-4842-BCB6-8FA1EC2A3C5A}
O42 - Logiciel: Carte réseau local sans fil 802.11 Broadcom - (.Broadcom Corporation.) [HKLM] -- Broadcom 802.11b Network Adapter
O42 - Logiciel: Chinese Traditional Fonts Support For Adobe Reader 8 - (.Adobe Systems.) [HKLM] -- {AC76BA86-7AD7-2448-0000-800000000003}
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: Download Navigator - (.SEIKO EPSON CORPORATION.) [HKLM] -- {E728441A-7820-4B1C-87C9-DE7BE37B2953}
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU] -- Dropbox
O42 - Logiciel: EPSON SX440 Series Printer Uninstall - (.SEIKO EPSON Corporation.) [HKLM] -- EPSON SX440 Series
O42 - Logiciel: EPSON Scan - (.Seiko Epson Corporation.) [HKLM] -- EPSON Scanner
O42 - Logiciel: ESU for Microsoft Vista - (.Hewlett-Packard.) [HKLM] -- {3877C901-7B90-4727-A639-B6ED2DD59D43}
O42 - Logiciel: Epson Easy Photo Print 2 - (.SEIKO EPSON CORPORATION.) [HKLM] -- {FFF841F3-9A15-4F61-BD16-C19F132E5A27}
O42 - Logiciel: Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) - (.SEIKO EPSON CORPORATION2.) [HKLM] -- {B2D55EB8-32C5-4B43-9006-9E97DECBA178}
O42 - Logiciel: Epson Event Manager - (.SEIKO EPSON CORPORATION.) [HKLM] -- {8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}
O42 - Logiciel: EpsonNet Print - (.SEIKO EPSON CORPORATION.) [HKLM] -- {3E31400D-274E-4647-916C-2CACC3741799}
O42 - Logiciel: Garmin Communicator Plugin - (.Garmin Ltd or its subsidiaries.) [HKLM] -- {13F054F3-0B07-4D15-9E80-C55B496AB557}
O42 - Logiciel: Garmin Lifetime Updater - (.Garmin.) [HKLM] -- {9AAD03E8-4F65-4DE2-8F6C-1B079C0C8521}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Guide d'utilisation EPSON SX440 Series - (.Pas de propriétaire.) [HKLM] -- EPSON SX440 Series Useg
O42 - Logiciel: Guide des opérations de base EPSON SX440 Series - (.Pas de propriétaire.) [HKLM] -- EPSON SX440 Series Bog
O42 - Logiciel: Guide réseau EPSON SX440 Series - (.Pas de propriétaire.) [HKLM] -- EPSON SX440 Series Netg
O42 - Logiciel: HP Active Support Library - (.Hewlett-Packard.) [HKLM] -- {5DAA9C36-8F8B-462F-8CCA-E205BC3751F5}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM] -- {B16DA0F8-26BC-4FFC-9363-1D9F3E6C3E21}
O42 - Logiciel: HP Doc Viewer - (.Hewlett-Packard.) [HKLM] -- {082702D5-5DD8-4600-BCE5-48B15174687F}
O42 - Logiciel: HP Easy Setup - Frontend - (.Hewlett-Packard.) [HKLM] -- {51E5C397-0AA0-48DD-9CB6-7259AFFDFB0A}
O42 - Logiciel: HP Quick Launch Buttons 6.40 D1 - (.Hewlett-Packard.) [HKLM] -- {34D2AB40-150D-475D-AE32-BD23FB5EE355}
O42 - Logiciel: HP QuickPlay 3.7 - (.Hewlett-Packard.) [HKLM] -- {45D707E9-F3C4-11D9-A373-0050BAE317E1}
O42 - Logiciel: HP QuickTouch 1.00 D2 - (.Hewlett-Packard.) [HKLM] -- {30DAA715-5032-40F9-A0AE-95C9AEBB3E3F}
O42 - Logiciel: HP Total Care Advisor - (.Hewlett-Packard.) [HKLM] -- {f32502b5-5b64-4882-bf61-77f23edcac4f}
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}
O42 - Logiciel: HP User Guides 0103 - (.Hewlett-Packard.) [HKLM] -- {B8169E45-8E23-430B-91D1-EC64540C8ED0}
O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM] -- {340F521E-3576-4E1A-B75C-EB0ACF751379}
O42 - Logiciel: HPAsset component for HP Active Support Library - (.Hewlett-Packard.) [HKLM] -- {669D4A35-146B-4314-89F1-1AC3D7B88367}
O42 - Logiciel: HPNetworkAssistant - (.Hewlett-Packard..) [HKLM] -- {228C6B46-64E2-404E-898A-EF0830603EF4}
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}
O42 - Logiciel: IZArc 4.1.6 - (.Ivan Zahariev.) [HKLM] -- {97C82B44-D408-4F14-9252-47FC1636D23E}_is1
O42 - Logiciel: JMicron JMB38X Flash Media Controller - (.JMicron Technology Corp..) [HKLM] -- {26604C7E-A313-4D12-867F-7C6E7820BE4C}
O42 - Logiciel: Java(TM) 6 Update 37 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216033FF}
O42 - Logiciel: Java(TM) 6 Update 6 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160060}
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: Lexmark 3600-4600 Series - (.Lexmark International, Inc..) [HKLM] -- Lexmark 3600-4600 Series
O42 - Logiciel: LightScribe System Software 1.12.33.2 - (.LightScribe.) [HKLM] -- {582287DA-0806-4AC0-BF19-C15E3A466034}
O42 - Logiciel: Lollipop - (.Pas de propriétaire.) [HKCU] -- lollipop
O42 - Logiciel: LucasArts' Monkey 4 - (.Pas de propriétaire.) [HKLM] -- LucasArts' Monkey 4
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Malwarebytes Anti-Malware version 1.70.0.1100 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {3B160861-7250-451E-B5EE-8B92BF30A710}
O42 - Logiciel: Microsoft_VC80_ATL_x86 - (.Adobe.) [HKLM] -- {0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}
O42 - Logiciel: Microsoft_VC80_CRT_x86 - (.Adobe.) [HKLM] -- {92D58719-BBC1-4CC3-A08B-56C9E884CC2C}
O42 - Logiciel: Microsoft_VC80_MFCLOC_x86 - (.Adobe.) [HKLM] -- {D92BBB52-82FF-42ED-8A3C-4E062F944AB7}
O42 - Logiciel: Microsoft_VC80_MFC_x86 - (.Adobe.) [HKLM] -- {D1A19B02-817E-4296-A45B-07853FD74D57}
O42 - Logiciel: Microsoft_VC90_ATL_x86 - (.Adobe.) [HKLM] -- {033E378E-6AD3-4AD5-BDEB-CBD69B31046C}
O42 - Logiciel: Microsoft_VC90_CRT_x86 - (.Adobe.) [HKLM] -- {08D2E121-7F6A-43EB-97FD-629B44903403}
O42 - Logiciel: Microsoft_VC90_MFCLOC_x86 - (.Adobe.) [HKLM] -- {B6D38690-755E-4F40-A35A-23F8BC2B86AC}
O42 - Logiciel: Microsoft_VC90_MFC_x86 - (.Adobe.) [HKLM] -- {635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}
O42 - Logiciel: Mozilla Firefox 17.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 17.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService
O42 - Logiciel: My HP Games - (.WildTangent.) [HKLM] -- WildTangent hp Master Uninstall
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Drivers
O42 - Logiciel: OpenOffice.org 3.4.1 - (.Apache Software Foundation.) [HKLM] -- {7DA1C06F-C913-46C7-8A0F-DA2CBA17EA1D}
O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}
O42 - Logiciel: PVSonyDll - (.NVIDIA Corporation.) [HKLM] -- {3D3E663D-4E7E-4577-A560-7ECDDD45548A}
O42 - Logiciel: PaperScan Free Edition - (.ORPALIS.) [HKLM] -- {41D1AD50-4276-4DAF-8AAB-5D97D75E47B3}
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM] -- {40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: ProtectSmart Hard Drive Protection - (.Hewlett-Packard.) [HKLM] -- {9D615069-AA8F-4E89-AE9D-77AAE90F529F}
O42 - Logiciel: QuickPlay SlingPlayer 0.4.6 - (.SlingMedia.) [HKLM] -- SlingMedia.QPSlingPlayer_is1
O42 - Logiciel: Realtek 8169 8168 8101E 8102E Ethernet Driver - (.Realtek.) [HKLM] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: SFR - Kit de connexion - (.SFR.) [HKLM] -- SFR_Kit
O42 - Logiciel: Skype Click to Call - (.Skype Technologies S.A..) [HKLM] -- {B6CF2967-C81E-40C0-9815-C05774FEF120}
O42 - Logiciel: Skype(TM) 6.0 - (.Skype Technologies S.A..) [HKLM] -- {EA17F4FC-FDBF-4CF8-A529-2D983132D053}
O42 - Logiciel: Softwarenetz Agenda2 - (.Pas de propriétaire.) [HKLM] -- Terminkalender2
O42 - Logiciel: Spotify - (.Pas de propriétaire.) [HKLM] -- Spotify
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics.) [HKLM] -- SynTPDeinstKey
O42 - Logiciel: System Requirements Lab CYRI - (.Husdawg, LLC.) [HKLM] -- {663743C6-642A-4486-8E42-7F90BA2EE3B3}
O42 - Logiciel: VLC media player 2.0.4 - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
O42 - Logiciel: Zylom Games Player Plugin - (.Zylom Games.) [HKLM] -- Zylom Games Player Plugin
O42 - Logiciel: avast! Free Antivirus v7.0.1474.0 - (.AVAST Software.) [HKLM] -- avast
O42 - Logiciel: muvee autoProducer 6.1 - (.muvee Technologies.) [HKLM] -- {35F83303-C0C0-46B7-B8A8-ADA7C2AC5645}

---\\ HKCU & HKLM Software Keys
[HKCU\Software\ABBYY]
[HKCU\Software\AOL]
[HKCU\Software\AVAST Software]
[HKCU\Software\Ad-Remover]
[HKCU\Software\Adobe]
[HKCU\Software\Alcohol Soft]
[HKCU\Software\America Online]
[HKCU\Software\AppDataLow\Software\Macromedia]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\DT Soft]
[HKCU\Software\Digital River]
[HKCU\Software\EPSON]
[HKCU\Software\Freemake]
[HKCU\Software\Garmin]
[HKCU\Software\Google]
[HKCU\Software\HP Guide]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IDT]
[HKCU\Software\IZSoftware]
[HKCU\Software\Iceni Technology Limited]
[HKCU\Software\JavaSoft]
[HKCU\Software\LexmarkInkjet]
[HKCU\Software\LexmarkPhoto]
[HKCU\Software\Lexmark]
[HKCU\Software\LightScribe]
[HKCU\Software\Macromedia]
[HKCU\Software\MainConcept]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MimarSinan]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Netscape]
[HKCU\Software\Neuf]
[HKCU\Software\Nosibay]
[HKCU\Software\ODBC]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\PDFCreator]
[HKCU\Software\PTP]
[HKCU\Software\Philips Songbird]
[HKCU\Software\Policies]
[HKCU\Software\SEIKO EPSON CORPORATION]
[HKCU\Software\Skype]
[HKCU\Software\Softonic]
[HKCU\Software\SoftwareNetz]
[HKCU\Software\Songbird]
[HKCU\Software\Spotify]
[HKCU\Software\Synaptics]
[HKCU\Software\System Requirements Lab]
[HKCU\Software\Trolltech]
[HKCU\Software\TuneUp]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\Zylom]
[HKCU\Software\ej-technologies]
[HKLM\Software\ABBYY]
[HKLM\Software\AOL]
[HKLM\Software\AVAST Software]
[HKLM\Software\ActMask Virtual Printer SDK]
[HKLM\Software\Adobe]
[HKLM\Software\America Online]
[HKLM\Software\Babylon]
[HKLM\Software\BcmSetup]
[HKLM\Software\Broadcom]
[HKLM\Software\CXT]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Conexant]
[HKLM\Software\CyberLink]
[HKLM\Software\DT Soft]
[HKLM\Software\Debug]
[HKLM\Software\Dropbox]
[HKLM\Software\EPSON]
[HKLM\Software\EasyBits]
[HKLM\Software\EpsonNet]
[HKLM\Software\Freemake]
[HKLM\Software\Garmin]
[HKLM\Software\Google]
[HKLM\Software\HPQLOG]
[HKLM\Software\HPQ]
[HKLM\Software\HP]

Afficher la suite

A voir également:

Pub s'ouvrant toutes seules
Supprimer pub youtube - Accueil - Streaming
Stop pub gratuit - Télécharger - Divers Utilitaires
Supprimer la pub - Guide
Netflix avec pub avis - Accueil - Streaming
Musique pub italienne lalala - Forum Musique / Radio / Clip

9 réponses

Réponse 1 / 9

Rennaise

[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IDT]
[HKLM\Software\IM Providers]
[HKLM\Software\Iceni Technology Limited]
[HKLM\Software\Infix PDF]
[HKLM\Software\InstallShield]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JMicron Technology Corp.]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\LexmarkInkjet]
[HKLM\Software\Lexmark]
[HKLM\Software\LightScribe]
[HKLM\Software\LucasArts Entertainment Company LLC]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Neuf]
[HKLM\Software\ODBC]
[HKLM\Software\OpenOffice.org]
[HKLM\Software\PDFCreator]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SEIKO EPSON CORPORATION2]
[HKLM\Software\SEIKO EPSON CORPORATION]
[HKLM\Software\Skype]
[HKLM\Software\Sonic]
[HKLM\Software\Sony Corporation]
[HKLM\Software\Symantec]
[HKLM\Software\Synaptics]
[HKLM\Software\TuneUp]
[HKLM\Software\VideoLAN]
[HKLM\Software\Volatile]
[HKLM\Software\WOW6432Node]
[HKLM\Software\WildTangent]
[HKLM\Software\Windows]
[HKLM\Software\mozilla.org]
[HKLM\Software\muvee Technologies]
~ Scan Softwares in 00mn 00s

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 06/10/2012 - 18:14:06 - [173,847] ----D C:\Program Files\ABBYY FineReader 9.0 Sprint
O43 - CFD: 03/01/2013 - 12:37:05 - [218,148] ----D C:\Program Files\Ad-Remover
O43 - CFD: 26/02/2012 - 18:34:58 - [138,492] ----D C:\Program Files\Adobe
O43 - CFD: 29/09/2011 - 20:09:53 - [2,840] ----D C:\Program Files\Adobe Download Assistant
O43 - CFD: 09/04/2012 - 21:59:01 - [0] ----D C:\Program Files\Alcohol Soft
O43 - CFD: 29/06/2011 - 13:11:43 - [293,563] ----D C:\Program Files\AVAST Software
O43 - CFD: 29/06/2011 - 12:25:38 - [8,775] ----D C:\Program Files\Broadcom
O43 - CFD: 01/12/2012 - 10:16:48 - [545,135] ----D C:\Program Files\Common Files
O43 - CFD: 29/06/2011 - 12:41:27 - [862,103] ----D C:\Program Files\CyberLink
O43 - CFD: 31/12/2012 - 11:05:18 - [28,604] ----D C:\Program Files\Dropbox
O43 - CFD: 30/07/2008 - 01:07:06 - [66,410] ----D C:\Program Files\EasyBits For Kids
O43 - CFD: 06/10/2012 - 17:56:47 - [7,907] ----D C:\Program Files\epson
O43 - CFD: 06/10/2012 - 18:00:18 - [108,626] ----D C:\Program Files\EPSON Software
O43 - CFD: 06/10/2012 - 17:55:42 - [4,366] ----D C:\Program Files\EpsonNet
O43 - CFD: 26/12/2012 - 14:53:08 - [0] ----D C:\Program Files\Feneris Solutions Inc
O43 - CFD: 29/06/2011 - 12:48:46 - [0] R---D C:\Program Files\Fichiers communs
O43 - CFD: 03/01/2013 - 12:26:45 - [0] ----D C:\Program Files\Freemake
O43 - CFD: 25/12/2012 - 21:56:16 - [43,009] ----D C:\Program Files\Garmin
O43 - CFD: 25/12/2012 - 21:56:36 - [14,688] ----D C:\Program Files\Garmin GPS Plugin
O43 - CFD: 21/11/2012 - 17:16:26 - [535,838] ----D C:\Program Files\Google
O43 - CFD: 04/08/2011 - 21:07:08 - [222,505] ----D C:\Program Files\Hewlett-Packard
O43 - CFD: 04/08/2011 - 21:01:08 - [196,896] ----D C:\Program Files\HP
O43 - CFD: 30/07/2008 - 00:21:56 - [373,468] ----D C:\Program Files\HP Games
O43 - CFD: 29/06/2011 - 12:35:37 - [31,250] ----D C:\Program Files\IDT
O43 - CFD: 06/10/2012 - 18:00:12 - [111,880] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 29/06/2011 - 12:26:37 - [0,062] ----D C:\Program Files\Intel
O43 - CFD: 13/12/2012 - 09:04:20 - [1,487] ----D C:\Program Files\Internet Explorer
O43 - CFD: 16/07/2011 - 13:37:48 - [13,643] ----D C:\Program Files\IZArc
O43 - CFD: 22/10/2012 - 21:11:14 - [164,987] ----D C:\Program Files\Java
O43 - CFD: 31/08/2011 - 19:06:52 - [53,965] ----D C:\Program Files\Lexmark 3600-4600 Series
O43 - CFD: 31/08/2011 - 19:06:47 - [2,208] ----D C:\Program Files\Lexmark Toolbar
O43 - CFD: 28/12/2012 - 13:31:04 - [12,180] ----D C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 02/11/2006 - 13:37:34 - [89,117] ----D C:\Program Files\Microsoft Games
O43 - CFD: 10/11/2012 - 14:14:08 - [8,295] ----D C:\Program Files\Microsoft Office
O43 - CFD: 06/11/2012 - 13:18:42 - [137,975] ----D C:\Program Files\Microsoft Works
O43 - CFD: 10/11/2012 - 14:14:07 - [0,015] ----D C:\Program Files\Microsoft.NET
O43 - CFD: 04/07/2011 - 14:44:31 - [94,740] ----D C:\Program Files\Movie Maker
O43 - CFD: 05/12/2012 - 19:14:34 - [47,991] ----D C:\Program Files\Mozilla Firefox
O43 - CFD: 06/12/2012 - 09:12:57 - [0,212] ----D C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 10/11/2012 - 14:12:02 - [0,025] ----D C:\Program Files\MSBuild
O43 - CFD: 29/06/2011 - 14:09:49 - [0] ----D C:\Program Files\MSXML 4.0
O43 - CFD: 30/07/2008 - 00:44:08 - [148,293] ----D C:\Program Files\muvee Technologies
O43 - CFD: 18/09/2011 - 21:16:54 - [0] ----D C:\Program Files\My Photo Books
O43 - CFD: 20/11/2012 - 22:06:37 - [0] ----D C:\Program Files\Nosibay
O43 - CFD: 29/06/2011 - 12:55:13 - [20,914] R---D C:\Program Files\Online Services
O43 - CFD: 03/09/2012 - 18:58:10 - [288,772] ----D C:\Program Files\OpenOffice.org 3
O43 - CFD: 06/04/2012 - 10:44:22 - [11,661] ----D C:\Program Files\ORPALIS
O43 - CFD: 18/09/2011 - 22:00:36 - [31,310] ----D C:\Program Files\PDFCreator
O43 - CFD: 17/10/2012 - 15:31:40 - [0] ----D C:\Program Files\Philips
O43 - CFD: 29/06/2011 - 12:30:05 - [1,513] ----D C:\Program Files\Realtek
O43 - CFD: 02/11/2006 - 13:37:34 - [36,906] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 08/07/2011 - 12:10:29 - [13,955] ----D C:\Program Files\SFR
O43 - CFD: 01/12/2012 - 10:16:48 - [35,729] R---D C:\Program Files\Skype
O43 - CFD: 20/11/2011 - 13:51:51 - [6,630] ----D C:\Program Files\Spotify
O43 - CFD: 29/06/2011 - 12:31:13 - [25,608] ----D C:\Program Files\Synaptics
O43 - CFD: 01/11/2012 - 12:10:28 - [0,584] ----D C:\Program Files\SystemRequirementsLab
O43 - CFD: 02/11/2006 - 14:01:55 - [0] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 29/06/2011 - 23:41:55 - [94,079] ----D C:\Program Files\VideoLAN
O43 - CFD: 04/07/2011 - 14:44:31 - [0,970] ----D C:\Program Files\Windows Calendar
O43 - CFD: 04/07/2011 - 14:44:30 - [2,610] ----D C:\Program Files\Windows Collaboration
O43 - CFD: 04/07/2011 - 14:44:29 - [4,283] ----D C:\Program Files\Windows Defender
O43 - CFD: 11/05/2012 - 11:30:31 - [6,757] ----D C:\Program Files\Windows Journal
O43 - CFD: 12/04/2012 - 11:09:46 - [8,694] ----D C:\Program Files\Windows Mail
O43 - CFD: 04/07/2011 - 14:44:31 - [4,290] ----D C:\Program Files\Windows Media Player
O43 - CFD: 29/06/2011 - 12:48:46 - [7,589] ----D C:\Program Files\Windows NT
O43 - CFD: 04/07/2011 - 14:44:30 - [12,902] ----D C:\Program Files\Windows Photo Gallery
O43 - CFD: 05/07/2011 - 12:28:59 - [0,128] ----D C:\Program Files\Windows Portable Devices
O43 - CFD: 04/07/2011 - 14:44:31 - [6,409] ----D C:\Program Files\Windows Sidebar
O43 - CFD: 03/01/2013 - 21:01:01 - [10,093] ----D C:\Program Files\ZHPDiag
O43 - CFD: 10/07/2011 - 15:25:30 - [0,487] ----D C:\Program Files\Zylom Games
O43 - CFD: 06/10/2012 - 18:03:49 - [7,724] ----D C:\Program Files\Common Files\ABBYY
O43 - CFD: 26/02/2012 - 18:35:11 - [101,044] ----D C:\Program Files\Common Files\Adobe
O43 - CFD: 29/09/2011 - 20:09:47 - [30,069] ----D C:\Program Files\Common Files\Adobe AIR
O43 - CFD: 06/10/2012 - 18:15:10 - [4,142] ----D C:\Program Files\Common Files\EPSON
O43 - CFD: 30/07/2008 - 01:11:45 - [9,451] ----D C:\Program Files\Common Files\InstallShield
O43 - CFD: 22/10/2012 - 21:11:57 - [37,274] ----D C:\Program Files\Common Files\Java
O43 - CFD: 29/06/2011 - 12:38:45 - [27,638] ----D C:\Program Files\Common Files\LightScribe
O43 - CFD: 10/11/2012 - 14:14:07 - [222,638] ----D C:\Program Files\Common Files\microsoft shared
O43 - CFD: 30/07/2008 - 00:44:09 - [49,096] ----D C:\Program Files\Common Files\muvee Technologies
O43 - CFD: 02/11/2006 - 12:18:33 - [0,003] ----D C:\Program Files\Common Files\Services
O43 - CFD: 01/12/2012 - 10:16:48 - [2,056] ----D C:\Program Files\Common Files\Skype
O43 - CFD: 02/11/2006 - 12:18:33 - [39,198] ----D C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 29/06/2011 - 14:39:15 - [0,476] ----D C:\Program Files\Common Files\Symantec Shared
O43 - CFD: 09/11/2011 - 23:25:39 - [14,328] ----D C:\Program Files\Common Files\System
O43 - CFD: 06/10/2012 - 18:03:50 - [1,797] ----D C:\ProgramData\ABBYY
O43 - CFD: 09/11/2012 - 13:20:09 - [300,362] ----D C:\ProgramData\Adobe
O43 - CFD: 29/06/2011 - 14:48:10 - [0] ----D C:\ProgramData\AOL
O43 - CFD: 29/06/2011 - 13:04:25 - [0,006] ----D C:\ProgramData\AOL OCP
O43 - CFD: 02/11/2006 - 14:02:03 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 29/06/2011 - 13:11:43 - [37,721] ----D C:\ProgramData\AVAST Software
O43 - CFD: 10/03/2012 - 13:06:12 - [0] ----D C:\ProgramData\Babylon
O43 - CFD: 29/06/2011 - 12:48:46 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 20/11/2012 - 22:07:25 - [0,000] --H-D C:\ProgramData\Common Files
O43 - CFD: 15/07/2011 - 11:18:30 - [0,037] ----D C:\ProgramData\CyberLink
O43 - CFD: 11/11/2011 - 13:40:04 - [0,001] ----D C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 02/11/2006 - 14:02:03 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 02/11/2006 - 14:02:03 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 06/10/2012 - 18:18:20 - [8,232] ----D C:\ProgramData\EPSON
O43 - CFD: 01/09/2011 - 07:30:24 - [0,000] ----D C:\ProgramData\Ezprint
O43 - CFD: 29/06/2011 - 12:48:46 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 02/11/2006 - 14:02:03 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 26/12/2011 - 14:07:09 - [0,004] ----D C:\ProgramData\FRA
O43 - CFD: 03/01/2013 - 12:27:05 - [0] ----D C:\ProgramData\Freemake
O43 - CFD: 29/06/2011 - 12:38:18 - [48,550] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 06/11/2012 - 19:20:59 - [0,086] ----D C:\ProgramData\lx_Cats
O43 - CFD: 28/12/2012 - 13:28:58 - [16,108] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 29/06/2011 - 12:48:46 - [0] --H-D C:\ProgramData\Menu Démarrer
O43 - CFD: 10/11/2012 - 14:14:08 - [317,836] -S--D C:\ProgramData\Microsoft
O43 - CFD: 10/11/2012 - 14:16:34 - [0,009] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 29/06/2011 - 12:48:46 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 02/05/2012 - 20:55:17 - [0,028] ----D C:\ProgramData\Mozilla
O43 - CFD: 30/07/2008 - 00:44:04 - [0] ----D C:\ProgramData\muvee Technologies
O43 - CFD: 05/07/2011 - 13:35:22 - [0,241] ----D C:\ProgramData\NVIDIA
O43 - CFD: 06/11/2011 - 00:02:11 - [0,003] ----D C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 01/12/2012 - 10:16:55 - [70,181] ----D C:\ProgramData\Skype
O43 - CFD: 02/11/2006 - 14:02:03 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 10/07/2011 - 15:32:16 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 29/06/2011 - 13:30:24 - [0,002] ----D C:\ProgramData\Symantec
O43 - CFD: 31/01/2012 - 19:28:58 - [0] ----D C:\ProgramData\Temp
O43 - CFD: 02/11/2006 - 14:02:04 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 20/11/2012 - 22:09:43 - [0,383] ----D C:\ProgramData\TuneUp Software
O43 - CFD: 06/10/2012 - 18:01:27 - [0,004] ----D C:\ProgramData\UDL
O43 - CFD: 29/06/2011 - 14:20:06 - [1244,363] ----D C:\ProgramData\WildTangent
O43 - CFD: 05/04/2012 - 10:32:35 - [0] ----D C:\ProgramData\WindowsSearch
O43 - CFD: 10/07/2011 - 15:25:30 - [0,377] ----D C:\ProgramData\Zylom
O43 - CFD: 20/11/2012 - 22:07:25 - [23,027] -SH-D C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
O43 - CFD: 29/04/2012 - 13:08:54 - [0,017] ----D C:\ProgramData\{F0489EF2-D393-4114-85BA-A94D71D89543}
O43 - CFD: 26/02/2012 - 18:39:25 - [89,815] ----D C:\Users\Anaïs\AppData\Roaming\Adobe
O43 - CFD: 10/03/2012 - 13:06:12 - [0,002] ----D C:\Users\Anaïs\AppData\Roaming\Babylon
O43 - CFD: 29/09/2011 - 20:10:06 - [0,011] ----D C:\Users\Anaïs\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
O43 - CFD: 26/12/2011 - 14:07:14 - [0] ----D C:\Users\Anaïs\AppData\Roaming\CyberLink
O43 - CFD: 11/11/2011 - 13:45:56 - [0,010] ----D C:\Users\Anaïs\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 16/10/2012 - 17:39:07 - [0,000] ----D C:\Users\Anaïs\AppData\Roaming\Download Manager
O43 - CFD: 03/01/2013 - 12:46:17 - [41,626] ----D C:\Users\Anaïs\AppData\Roaming\Dropbox
O43 - CFD: 14/12/2012 - 19:05:52 - [0,007] ----D C:\Users\Anaïs\AppData\Roaming\Epson
O43 - CFD: 01/05/2012 - 22:06:41 - [28,097] ----D C:\Users\Anaïs\AppData\Roaming\eTeks
O43 - CFD: 26/12/2012 - 14:53:44 - [0,457] ----D C:\Users\Anaïs\AppData\Roaming\FVD3
O43 - CFD: 25/12/2012 - 21:54:34 - [0,020] ----D C:\Users\Anaïs\AppData\Roaming\Garmin
O43 - CFD: 29/06/2011 - 13:00:48 - [0,289] ----D C:\Users\Anaïs\AppData\Roaming\Hewlett-Packard
O43 - CFD: 03/01/2013 - 18:31:46 - [0,028] ----D C:\Users\Anaïs\AppData\Roaming\HpUpdate
O43 - CFD: 29/06/2011 - 12:59:55 - [0] ----D C:\Users\Anaïs\AppData\Roaming\Identities
O43 - CFD: 06/10/2012 - 17:55:21 - [0] ----D C:\Users\Anaïs\AppData\Roaming\InstallShield
O43 - CFD: 29/06/2011 - 12:56:24 - [0,162] ----D C:\Users\Anaïs\AppData\Roaming\Macromedia
O43 - CFD: 28/12/2012 - 13:29:20 - [0,002] ----D C:\Users\Anaïs\AppData\Roaming\Malwarebytes
O43 - CFD: 02/11/2006 - 13:37:34 - [0] ----D C:\Users\Anaïs\AppData\Roaming\Media Center Programs
O43 - CFD: 14/12/2012 - 19:04:35 - [2,396] -S--D C:\Users\Anaïs\AppData\Roaming\Microsoft
O43 - CFD: 29/06/2011 - 14:00:38 - [109,146] ----D C:\Users\Anaïs\AppData\Roaming\Mozilla
O43 - CFD: 20/11/2012 - 22:42:50 - [0] ----D C:\Users\Anaïs\AppData\Roaming\Nosibay
O43 - CFD: 01/07/2011 - 12:06:21 - [20,101] ----D C:\Users\Anaïs\AppData\Roaming\OpenOffice.org
O43 - CFD: 29/04/2012 - 13:13:04 - [0,000] ----D C:\Users\Anaïs\AppData\Roaming\Philips
O43 - CFD: 29/04/2012 - 13:10:54 - [42,749] ----D C:\Users\Anaïs\AppData\Roaming\Philips-Songbird
O43 - CFD: 03/01/2013 - 20:47:42 - [4,356] ----D C:\Users\Anaïs\AppData\Roaming\Skype
O43 - CFD: 05/06/2012 - 21:17:54 - [0,017] ----D C:\Users\Anaïs\AppData\Roaming\skypePM
O43 - CFD: 01/01/2012 - 20:10:51 - [9,260] ----D C:\Users\Anaïs\AppData\Roaming\Spotify
O43 - CFD: 29/06/2011 - 13:00:26 - [0] ----D C:\Users\Anaïs\AppData\Roaming\Symantec
O43 - CFD: 01/11/2012 - 12:10:15 - [0,291] ----D C:\Users\Anaïs\AppData\Roaming\SystemRequirementsLab
O43 - CFD: 20/11/2012 - 22:09:41 - [0,003] ----D C:\Users\Anaïs\AppData\Roaming\TuneUp Software
O43 - CFD: 03/01/2013 - 18:31:45 - [21,311] ----D C:\Users\Anaïs\AppData\Roaming\vlc
O43 - CFD: 29/06/2011 - 14:20:08 - [0,001] ----D C:\Users\Anaïs\AppData\Roaming\WildTangent
O43 - CFD: 06/10/2012 - 18:13:06 - [0] ----D C:\Users\Anaïs\AppData\Local\ABBYY
O43 - CFD: 26/02/2012 - 18:34:03 - [22,128] ----D C:\Users\Anaïs\AppData\Local\Adobe
O43 - CFD: 29/06/2011 - 12:52:11 - [0] ----D C:\Users\Anaïs\AppData\Local\Application Data
O43 - CFD: 31/01/2012 - 19:28:33 - [0] ----D C:\Users\Anaïs\AppData\Local\Aspell
O43 - CFD: 10/03/2012 - 13:06:13 - [3,792] ----D C:\Users\Anaïs\AppData\Local\Babylon
O43 - CFD: 06/04/2012 - 10:43:18 - [8,105] ----D C:\Users\Anaïs\AppData\Local\Downloaded Installations
O43 - CFD: 26/12/2012 - 14:53:47 - [0,000] ----D C:\Users\Anaïs\AppData\Local\Feneris
O43 - CFD: 21/11/2012 - 17:16:42 - [17,889] ----D C:\Users\Anaïs\AppData\Local\Google
O43 - CFD: 29/06/2011 - 12:52:11 - [0] ----D C:\Users\Anaïs\AppData\Local\Historique
O43 - CFD: 31/01/2012 - 19:30:14 - [0,002] ----D C:\Users\Anaïs\AppData\Local\Iceni
O43 - CFD: 02/01/2013 - 21:19:54 - [1,548] ----D C:\Users\Anaïs\AppData\Local\Lollipop
O43 - CFD: 14/06/2012 - 11:52:43 - [0] ----D C:\Users\Anaïs\AppData\Local\Macromedia
O43 - CFD: 16/10/2012 - 18:20:20 - [388,003] ----D C:\Users\Anaïs\AppData\Local\Microsoft
O43 - CFD: 05/07/2011 - 23:04:27 - [0,988] ----D C:\Users\Anaïs\AppData\Local\Microsoft Games
O43 - CFD: 16/10/2012 - 17:55:53 - [0] ----D C:\Users\Anaïs\AppData\Local\Microsoft Help
O43 - CFD: 29/06/2011 - 14:00:28 - [90,174] ----D C:\Users\Anaïs\AppData\Local\Mozilla
O43 - CFD: 06/04/2012 - 12:53:02 - [0,005] ----D C:\Users\Anaïs\AppData\Local\ORPALIS
O43 - CFD: 15/07/2011 - 12:00:31 - [0] ----D C:\Users\Anaïs\AppData\Local\PackageAware
O43 - CFD: 29/04/2012 - 13:11:19 - [9,053] ----D C:\Users\Anaïs\AppData\Local\Philips-Songbird
O43 - CFD: 26/12/2011 - 14:11:37 - [0,119] ----D C:\Users\Anaïs\AppData\Local\QuickPlay
O43 - CFD: 10/11/2012 - 14:27:36 - [0,272] ----D C:\Users\Anaïs\AppData\Local\Seven Zip
O43 - CFD: 01/01/2012 - 18:19:22 - [367,348] ----D C:\Users\Anaïs\AppData\Local\Spotify
O43 - CFD: 03/01/2013 - 19:03:25 - [599,330] ----D C:\Users\Anaïs\AppData\Local\Temp
O43 - CFD: 29/06/2011 - 12:52:11 - [0] ----D C:\Users\Anaïs\AppData\Local\Temporary Internet Files
O43 - CFD: 29/06/2011 - 14:24:48 - [1,087] ----D C:\Users\Anaïs\AppData\Local\VirtualStore
O43 - CFD: 21/01/2008 - 03:42:46 - [0,014] R---D C:\Users\Anaïs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 29/06/2011 - 13:00:03 - [0,000] R---D C:\Users\Anaïs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 29/06/2011 - 12:40:50 - [0,005] ----D C:\Users\Anaïs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
O43 - CFD: 29/06/2011 - 12:42:18 - [0,001] ----D C:\Users\Anaïs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam
O43 - CFD: 31/12/2012 - 01:22:27 - [0,002] ----D C:\Users\Anaïs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
O43 - CFD: 06/10/2012 - 17:55:09 - [0,001] ----D C:\Users\Anaïs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EPSON Software
O43 - CFD: 21/01/2008 - 03:42:46 - [0,001] R---D C:\Users\Anaïs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 25/10/2011 - 13:13:39 - [0] ----D C:\Users\Anaïs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SoftwareNetz
O43 - CFD: 02/01/2013 - 01:42:31 - [0,003] R---D C:\Users\Anaïs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
~ Scan Program Folder in 00mn 59s

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.D7C1930100978D08D0E1636056ECA7F5] - 03/01/2013 - 14:26:26 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log [1677047]
O44 - LFC:[MD5.3A7D9DC4968D20017563E2F1B2093B80] - 03/01/2013 - 12:43:05 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [67584]
O44 - LFC:[MD5.F06245362EBE542A675D9CD716DC87FA] - 03/01/2013 - 12:40:22 ---A- . (...) -- C:\Ad-Report-CLEAN[1].txt [5434]
O44 - LFC:[MD5.7F9B56802E89085D7F117845B397E8AD] - 03/01/2013 - 12:37:52 ---A- . (...) -- C:\Ad-Report-SCAN[1].txt [5678]
O44 - LFC:[MD5.D0A60A4B79B45D36DD8CB020410A6BA3] - 01/01/2013 - 22:36:59 ---A- . (...) -- C:\WINDOWS\System32\PerfStringBackup.INI [1495948]
O44 - LFC:[MD5.A787C9BB49C9B246646AD4970465815B] - 01/01/2013 - 22:36:59 ---A- . (...) -- C:\WINDOWS\System32\perfc009.dat [104070]
O44 - LFC:[MD5.6C5E1052C9352C1ADD750B57834523E4] - 01/01/2013 - 22:36:59 ---A- . (...) -- C:\WINDOWS\System32\perfc00C.dat [126626]
O44 - LFC:[MD5.D091D32B831B4894AEDA8376661758C9] - 01/01/2013 - 22:36:59 ---A- . (...) -- C:\WINDOWS\System32\perfh009.dat [595996]
O44 - LFC:[MD5.339584B2DC666274F52322DF378B95CA] - 01/01/2013 - 22:36:59 ---A- . (...) -- C:\WINDOWS\System32\perfh00C.dat [679042]
O44 - LFC:[MD5.23CC65F54C30D1D12878049050446F11] - 31/12/2012 - 20:31:32 ---A- . (...) -- C:\WINDOWS\setupact.log [152745]
O44 - LFC:[MD5.26B0F12F9A4C267AF5B2DA35F87A6EFA] - 28/12/2012 - 18:46:32 ---A- . (...) -- C:\WINDOWS\System32\DOErrors.log [52]
O44 - LFC:[MD5.E84E63F9531896B47FFEEEF9BCCBAE8E] - 28/12/2012 - 13:14:12 ---A- . (...) -- C:\WINDOWS\PFRO.log [150518]
O44 - LFC:[MD5.C9EC217969278791ED51D12561928C56] - 23/12/2012 - 14:07:52 ---A- . (...) -- C:\WINDOWS\System32\FNTCACHE.DAT [3768208]
O44 - LFC:[MD5.C23935FDB8C5E12C94AFE1C2CDC015B1] - 16/12/2012 - 14:12:54 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\WINDOWS\System32\atmlib.dll [34304]
O44 - LFC:[MD5.D4152EB9099917EE50329447EAC0BD62] - 16/12/2012 - 11:50:29 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\WINDOWS\System32\atmfd.dll [293376]
O44 - LFC:[MD5.629CABB0421668C9D3D402A3C3D77E14] - 14/12/2012 - 16:49:28 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\Drivers\mbam.sys [21104]
O44 - LFC:[MD5.04E455C4A5B5C017E04599C4BDB6740A] - 12/12/2012 - 17:14:29 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\WINDOWS\System32\FlashPlayerApp.exe [697272]
O44 - LFC:[MD5.6E6FF1275216A0C31BBB792B53F47083] - 12/12/2012 - 17:14:29 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [73656]
O44 - LFC:[MD5.933222B19FF3E7EA5F65517EA1F7D57E] - 02/06/2012 - 15:57:50 ---A- . (...) -- C:\WINDOWS\System32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf [3]
O44 - LFC:[MD5.933222B19FF3E7EA5F65517EA1F7D57E] - 02/06/2012 - 15:34:21 ---A- . (...) -- C:\WINDOWS\System32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf [3]
~ Scan Files in 00mn 09s

---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l'Éditeur de configuration de sécurité Windows.) -- C:\WINDOWS\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\WINDOWS\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\WINDOWS\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\WINDOWS\System32\tspkg.dll
~ Scan Keys in 00mn 00s

---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\WINDOWS\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\WINDOWS\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\WINDOWS\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\WINDOWS\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\Wdf01000.sys . (.Microsoft Corporation - Runtime de l'infrastructure de pilotes en mode noyau.) -- C:\WINDOWS\System32\Drivers\Wdf01000.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\WINDOWS\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\WINDOWS\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\WINDOWS\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\WINDOWS\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\WINDOWS\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\WINDOWS\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\Wdf01000.sys . (.Microsoft Corporation - Runtime de l'infrastructure de pilotes en mode noyau.) -- C:\WINDOWS\System32\Drivers\Wdf01000.sys
~ Scan CSB in 00mn 00s

---\\ MountPoints2 Shell Key (O51)
O51 - MPSK:{2fd66d27-cc07-11e1-a66d-001eecf0d39e}\AutoRun\command. (...) -- G:\DownloadSongbird.html (.not file.)
O51 - MPSK:{bdc0ecb6-9368-11e1-bca8-001eecf0d39e}\AutoRun\command. (...) -- F:\KODAK_Camera_Setup_App.exe (.not file.)
O51 - MPSK:{c4f3bab2-911c-11e1-9828-001eecf0d39e}\AutoRun\command. (...) -- F:\DownloadSongbird.html (.not file.)
O51 - MPSK:{d1700ff9-0c4b-11e1-8135-001eecf0d39e}\AutoRun\command. (...) -- F:\Monkey.exe (.not file.)
~ Scan Keys in 00mn 00s

---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\WINDOWS\System32\iccvid.dll
O52 - TDSD: \Drivers32\"msacm.l3codecp"="l3codecp.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Audio Layer-3 Codec for MSACM.) -- C:\WINDOWS\System32\l3codecp.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"l3codecp.acm"="" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Audio Layer-3 Codec for MSACM.) -- C:\WINDOWS\System32\l3codecp.acm
~ Scan Keys in 00mn 00s

---\\ ShareTools MSconfig StartupReg (O53) (None)

---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\WINDOWS\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\WINDOWS\System32\credssp.dll
~ Scan Keys in 00mn 00s

---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
~ Scan Keys in 00mn 00s

---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "BindDirectlyToPropertySetStorage"=0
~ Scan Keys in 00mn 00s

---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.CC1F1D3D70DC13C2C281488D347D4415] - 13/05/2011 - 17:57:20 ---A- . (.Hewlett-Packard Company - HP Accelerometer.) -- C:\WINDOWS\System32\Drivers\Accelerometer.sys [35896]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 02/11/2006 - 08:09:42 ---A- . (...) -- C:\WINDOWS\System32\ANSI.SYS [9029]
~ Scan Drivers in 00mn 00s

---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: Ad-Remover par C_XX - (.C_XX.) [HKLM] -- Ad-Remover
O63 - Logiciel: ZHPDiag 1.32 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s

---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\adp94xx.sys (adp94xx) .(.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) - LEGACY_ADP94XX
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\adpahci.sys (adpahci) .(.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) - LEGACY_ADPAHCI
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\adpu160m.sys (adpu160m) .(.Adaptec, Inc. - Adaptec LH Ultra160 Driver (x86).) - LEGACY_ADPU160M
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\adpu320.sys (adpu320) .(.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) - LEGACY_ADPU320
O64 - Services: CurCS - 02/11/2006 - C:\WINDOWS\System32\drivers\djsvs.sys (aic78xx) .(.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) - LEGACY_AIC78XX
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\aliide.sys (aliide) .(.Acer Laboratories Inc. - ALi mini IDE Driver.) - LEGACY_ALIIDE
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\arc.sys (arc) .(.Adaptec, Inc. - Adaptec RAID Storport Driver.) - LEGACY_ARC
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\arcsas.sys (arcsas) .(.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) - LEGACY_ARCSAS
O64 - Services: CurCS - ??\??\???? - C:\WINDOWS\System32\Drivers\aswFsBlk.sys (aswFsBlk) .(.AVAST Software - avast! File System Access Blocking Driver.) - LEGACY_ASWFSBLK
O64 - Services: CurCS - 30/10/2012 - C:\Windows\system32\drivers\aswMonFlt.sys (aswMonFlt) .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT
O64 - Services: CurCS - ??\??\???? - C:\WINDOWS\System32\Drivers\aswRdr.sys (aswRdr) .(.AVAST Software - avast! TDI Redirect Driver.) - LEGACY_ASWRDR
O64 - Services: CurCS - ??\??\???? - C:\WINDOWS\System32\Drivers\aswSnx.sys (aswSnx) .(.AVAST Software - avast! Virtualization Driver.) - LEGACY_ASWSNX
O64 - Services: CurCS - ??\??\???? - C:\WINDOWS\System32\Drivers\aswSP.sys (aswSP) .(.AVAST Software - avast! self protection module.) - LEGACY_ASWSP
O64 - Services: CurCS - ??\??\???? - C:\WINDOWS\System32\Drivers\aswTdi.sys (aswTdi) .(.AVAST Software - avast! TDI Filter Driver.) - LEGACY_ASWTDI
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\cmdide.sys (cmdide) .(.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) - LEGACY_CMDIDE
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\elxstor.sys (elxstor) .(.Emulex - Storport Miniport Driver for LightPulse HBA.) - LEGACY_ELXSTOR
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\hpcisss.sys (HpCISSs) .(.Hewlett-Packard Company - Smart Array Storport Driver.) - LEGACY_HPCISSS
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\iastorv.sys (iaStorV) .(.Intel Corporation - Intel Matrix Storage Manager driver (base).) - LEGACY_IASTORV
O64 - Services: CurCS - 02/11/2006 - C:\WINDOWS\System32\drivers\iirsp.sys (iirsp) .(.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) - LEGACY_IIRSP
O64 - Services: CurCS - 02/11/2006 - C:\WINDOWS\System32\drivers\iteatapi.sys (iteatapi) .(.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) - LEGACY_ITEATAPI
O64 - Services: CurCS - 02/11/2006 - C:\WINDOWS\System32\drivers\iteraid.sys (iteraid) .(.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) - LEGACY_ITERAID
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\lsi_fc.sys (LSI_FC) .(.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) - LEGACY_LSI_FC
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\lsi_sas.sys (LSI_SAS) .(.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) - LEGACY_LSI_SAS
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\lsi_scsi.sys (LSI_SCSI) .(.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) - LEGACY_LSI_SCSI
O64 - Services: CurCS - 14/12/2012 - C:\Windows\system32\drivers\mbam.sys (MBAMProtector) .(.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - LEGACY_MBAMPROTECTOR
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\megasas.sys (megasas) .(.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) - LEGACY_MEGASAS
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\megasr.sys (MegaSR) .(.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) - LEGACY_MEGASR
O64 - Services: CurCS - 02/11/2006 - C:\WINDOWS\System32\drivers\mraid35x.sys (Mraid35x) .(.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows.) - LEGACY_MRAID35X
O64 - Services: CurCS - 02/11/2006 - C:\WINDOWS\System32\drivers\nfrd960.sys (nfrd960) .(.IBM Corporation - IBM ServeRAID Controller Driver.) - LEGACY_NFRD960
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\nvraid.sys (nvraid) .(.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) - LEGACY_NVRAID
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\nvstor.sys (nvstor) .(.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) - LEGACY_NVSTOR
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\ql2300.sys (ql2300) .(.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) - LEGACY_QL2300
O64 - Services: CurCS - 02/11/2006 - C:\WINDOWS\System32\drivers\ql40xx.sys (ql40xx) .(.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) - LEGACY_QL40XX
O64 - Services: CurCS - ??\??\???? - C:\WINDOWS\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\sisraid4.sys (SiSRaid4) .(.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) - LEGACY_SISRAID4
O64 - Services: CurCS - ??\??\???? - C:\WINDOWS\System32\Drivers\sptd.sys - sptd (sptd) .(...) - LEGACY_SPTD
O64 - Services: CurCS - 02/11/2006 - C:\WINDOWS\System32\drivers\symc8xx.sys (Symc8xx) .(.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) - LEGACY_SYMC8XX
O64 - Services: CurCS - 02/11/2006 - C:\WINDOWS\System32\drivers\sym_hi.sys (Sym_hi) .(.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) - LEGACY_SYM_HI
O64 - Services: CurCS - 02/11/2006 - C:\WINDOWS\System32\drivers\sym_u3.sys (Sym_u3) .(.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) - LEGACY_SYM_U3
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\uliahci.sys (uliahci) .(.ULi Electronics Inc. - ULi SATA Controller Driver.) - LEGACY_ULIAHCI
O64 - Services: CurCS - 02/11/2006 - C:\WINDOWS\System32\drivers\ulsata.sys (UlSata) .(.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win200.) - LEGACY_ULSATA
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\ulsata2.sys (ulsata2) .(.Promise Technology, Inc. - Promise SATAII150 Series Windows Drivers.) - LEGACY_ULSATA2
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\viaide.sys (viaide) .(.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) - LEGACY_VIAIDE
O64 - Services: CurCS - 21/01/2008 - C:\WINDOWS\System32\drivers\vsmraid.sys (vsmraid) .(.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) - LEGACY_VSMRAID
~ Scan Services in 00mn 00s

---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\WINDOWS\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d'événements.) -- C:\WINDOWS\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\WINDOWS\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d'événements.) -- C:\WINDOWS\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe
~ Scan Keys in 00mn 00s

---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe (.not file.)
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Windows\system32\ie4uinit.exe (.not file.)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe (.not file.)
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Windows\system32\ie4uinit.exe (.not file.)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe (.not file.)
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Windows\system32\ie4uinit.exe (.not file.)
~ Scan Keys in 00mn 00s

---\\ Search Browser Infection (O69)
O69 - SBI: prefs.js [Anaïs - dtky5kzv.default] user_pref("browser.search.selectedEngine", "Web Search");
O69 - SBI: SearchScopes [HKCU] ${searchCLSID} [DefaultScope] - (@ieframe.dll,-12512) - http://search.live.com
O69 - SBI: SearchScopes [HKCU] {006ee092-9658-4fd6-bd8e-a21a348e59f5} - (Web Search) - http://feed.snap.do
O69 - SBI: SearchScopes [HKCU] {230C22EE-865B-4F83-92C2-08CF69DA6578} - (AOL Recherche) - http://slirsredirect.search.aol.com
O69 - SBI: SearchScopes [HKCU] {B3D1C463-0C12-4F24-BCB2-7943255E8DC0} - (Kelkoo) - http://fr.kelkoopartners.net
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {006ee092-9658-4fd6-bd8e-a21a348e59f5} [DefaultScope] - (Web Search) - http://feed.helperbar.com
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {230C22EE-865B-4F83-92C2-08CF69DA6578} - (AOL Recherche) - http://slirsredirect.search.aol.com
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {B3D1C463-0C12-4F24-BCB2-7943255E8DC0} - (Kelkoo) - http://fr.kelkoopartners.net
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {006ee092-9658-4fd6-bd8e-a21a348e59f5} [DefaultScope] - (Web Search) - http://feed.helperbar.com
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {230C22EE-865B-4F83-92C2-08CF69DA6578} - (AOL Recherche) - http://slirsredirect.search.aol.com
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {B3D1C463-0C12-4F24-BCB2-7943255E8DC0} - (Kelkoo) - http://fr.kelkoopartners.net
~ Scan Keys in 00mn 00s

---\\ Recherche des services démarrés par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d'application.) -- C:\WINDOWS\System32\aelupsvc.dll [24576]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\WINDOWS\System32\wercplsupport.dll [62976]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\System32\shsvcs.dll [247808]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\WINDOWS\System32\certprop.dll [40448]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\WINDOWS\System32\certprop.dll [40448]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\WINDOWS\System32\srvsvc.dll [125952]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\WINDOWS\System32\gpsvc.dll [576512]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\WINDOWS\System32\ikeext.dll [438784]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\WINDOWS\System32\Audiosrv.dll [315392]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d'accès distant.) -- C:\WINDOWS\System32\rasauto.dll [90624]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d'accès distant.) -- C:\WINDOWS\System32\rasmans.dll [262144]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d'interface dynamique.) -- C:\WINDOWS\System32\mprdim.dll [68608]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d'événements système (SENS).) -- C:\WINDOWS\System32\sens.dll [47104]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à Microsoft NAT.) -- C:\WINDOWS\System32\ipnathlp.dll [288256]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\WINDOWS\System32\tapisrv.dll [242688]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes Terminal Server.) -- C:\WINDOWS\System32\termsrv.dll [449024]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\WINDOWS\System32\wuaueng.dll [1933848]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\WINDOWS\System32\qmgr.dll [758784]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\System32\shsvcs.dll [247808]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\WINDOWS\System32\iphlpsvc.dll [200704]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secondaire.) -- C:\WINDOWS\system32\seclogon.dll [19968]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d'application.) -- C:\WINDOWS\System32\appinfo.dll [33280]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\WINDOWS\System32\iscsiexe.dll [111616]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\WINDOWS\System32\mmcss.dll [45056]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\System32\profsvc.dll [153088]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\WINDOWS\System32\eapsvc.dll [57344]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\System32\wbem\WMIsvc.dll [162304]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\WINDOWS\System32\schedsvc.dll [601600]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service de configuration des services Terminal Server.) -- C:\WINDOWS\System32\sessenv.dll [84992]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d'ordinateurs.) -- C:\WINDOWS\System32\browser.dll [81920]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\WINDOWS\System32\kmsvc.dll [68096]
O83 - Search Svchost Services: ezSharedSvc (ezSharedSvc) . (.EasyBits Sofware AS - Shared EasyBits services for Windows.) -- C:\Windows\System32\ezsvc7.dll [129992]
~ Scan Services in 00mn 00s

---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.2EF69B614E660F1B2D33D3B66C70DD07] [SPRF][26/12/2011] (.Macromedia, Inc. - Macromedia Flash Player 8.0 r22.) -- C:\ProgramData\DVD.exe [2989660]
[MD5.42E546BE91A171C482C6D3F6A53E6E95] [SPRF][03/07/2011] (...) -- C:\ProgramData\ezsid.dat [32]
[MD5.DF97345A9B4ED0750151BF56BE95591B] [SPRF][26/12/2011] (.Macromedia, Inc. - Macromedia Flash Player 8.0 r22.) -- C:\ProgramData\Games.exe [2231606]
[MD5.1E308C389DB86BB3F0AE8B92C799E968] [SPRF][26/12/2011] (.Macromedia, Inc. - Macromedia Flash Player 8.0 r22.) -- C:\ProgramData\Karaoke.exe [2331174]
[MD5.CEE9DC3C68961A957767D26CF542CFC5] [SPRF][26/12/2011] (.Macromedia, Inc. - Macromedia Flash Player 8.0 r22.) -- C:\ProgramData\MobileTV.exe [3063561]
[MD5.504F73C0E321C1BAFB725D79C4F86CCB] [SPRF][26/12/2011] (.Macromedia, Inc. - Macromedia Flash Player 8.0 r22.) -- C:\ProgramData\MPV.exe [2864396]
[MD5.36703D5D644A2002882630F2D2D6357D] [SPRF][03/01/2013] (...) -- C:\ProgramData\nvModes.dat [94059]
[MD5.9608242A8DDB2FF31DBA077691CA95C7] [SPRF][22/08/2012] (...) -- C:\Users\Anaïs\AppData\Local\d3d9caps.dat [680]
[MD5.6F678556A6FCE04FC94F3435F6313705] [SPRF][29/06/2011] (...) -- C:\WINDOWS\Downloaded Program Files\unagiuninst.exe [38428]
~ Scan Files in 00mn 00s

---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "{AFCE2351-7ACC-4803-A7C9-8C259F10BE0D}" | In - None - P6 - TRUE | .(.CyberLink Corp. - HP QuickPlay.) -- C:\Program Files\HP\QuickPlay\QP.exe
O87 - FAEL: "{22457A67-E72C-4843-88AE-4456E006308A}" | In - None - P6 - TRUE | .(.CyberLink Corp. - HP QuickPlay Resident Program.) -- C:\Program Files\HP\QuickPlay\QPService.exe
O87 - FAEL: "{CCC78D8F-EB28-4C1E-87D6-87805A606B7D}" | In - None - P6 - TRUE | .(.CyberLink Corp. - PowerDirector.) -- C:\Program Files\Cyberlink\PowerDirector\PDR.exe
O87 - FAEL: "{9EB92C67-AF54-4506-8260-6EC78E09240B}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files\Common Files\AOL\Loader\aolload.exe (.not file.)
O87 - FAEL: "{7B41032D-29C9-4FB5-9335-F78FDE10B9C5}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files\Common Files\AOL\Loader\aolload.exe (.not file.)
O87 - FAEL: "TCP Query User{85D7E2A9-4EB6-4DDC-AD3A-116C4B201F76}C:\program files\skype\phone\skype.exe" | In - Public - P6 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files\skype\phone\skype.exe
O87 - FAEL: "UDP Query User{CCFB6222-62AA-42EE-A04E-F51AB8CD0855}C:\program files\skype\phone\skype.exe" | In - Public - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files\skype\phone\skype.exe
O87 - FAEL: "TCP Query User{DFDF5640-7F15-4E2D-902A-7245502A27E1}C:\program files\mozilla firefox\plugin-container.exe" | In - Public - P6 - TRUE | .(.Mozilla Corporation.) -- C:\program files\mozilla firefox\plugin-container.exe
O87 - FAEL: "UDP Query User{D5549F12-1928-4436-9DE1-134B4EA7F493}C:\program files\mozilla firefox\plugin-container.exe" | In - Public - P17 - TRUE | .(.Mozilla Corporation.) -- C:\program files\mozilla firefox\plugin-container.exe
O87 - FAEL: "TCP Query User{CB3F276E-0739-4EE4-8AB2-5DFFA6992EB2}C:\program files\spotify\spotify.exe" | In - Public - P6 - TRUE | .(.Spotify Ltd - Spotify.) -- C:\program files\spotify\spotify.exe
O87 - FAEL: "UDP Query User{DAC58F88-1B50-4905-90F0-4C0E22DEA03B}C:\program files\spotify\spotify.exe" | In - Public - P17 - TRUE | .(.Spotify Ltd - Spotify.) -- C:\program files\spotify\spotify.exe
O87 - FAEL: "{3D23DE0F-17A9-4F29-B9F2-A3D088E91E84}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\WINDOWS\System32\lxdxcoms.exe
O87 - FAEL: "{09E16858-2A11-4BF7-A54A-222E91DB44B6}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\WINDOWS\System32\lxdxcoms.exe
O87 - FAEL: "{31E4F94F-AF88-495C-80F1-55A510507AFD}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Printer Status Window Interface.) -- C:\WINDOWS\System32\spool\drivers\w32x86\3\lxdxpswx.exe
O87 - FAEL: "{066BFB5C-3800-4BA7-BFDE-2969B08148EE}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Printer Status Window Interface.) -- C:\WINDOWS\System32\spool\drivers\w32x86\3\lxdxpswx.exe
O87 - FAEL: "{55BACC44-81C2-43CF-B0AC-1B9C15C175ED}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Printer Device Monitor.) -- C:\Program Files\Lexmark 3600-4600 Series\lxdxmon.exe
O87 - FAEL: "{2138642F-431B-422B-BB81-F80A6B83A9EB}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Printer Device Monitor.) -- C:\Program Files\Lexmark 3600-4600 Series\lxdxmon.exe
O87 - FAEL: "{5C7245BD-CB7D-42A3-BC02-52BC8137AC27}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files\Lexmark 3600-4600 Series\lxdxlscn.exe
O87 - FAEL: "{5321D4DE-BE1E-4E0B-8DB4-35F3E969CB2C}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files\Lexmark 3600-4600 Series\lxdxlscn.exe
O87 - FAEL: "TCP Query User{C982EAF3-34E9-4200-ABF9-5ABB0C610074}C:\program files\spotify\spotify.exe" | In - Private - P6 - TRUE | .(.Spotify Ltd - Spotify.) -- C:\program files\spotify\spotify.exe
O87 - FAEL: "UDP Query User{06A78B36-0679-4294-B5BD-07913FCB10FA}C:\program files\spotify\spotify.exe" | In - Private - P17 - TRUE | .(.Spotify Ltd - Spotify.) -- C:\program files\spotify\spotify.exe
O87 - FAEL: "TCP Query User{695276C3-A13E-4E1D-8DA7-F68323E4A4BD}C:\program files\lexmark 3600-4600 series\lxdxmon.exe" | In - Public - P6 - TRUE | .(...) -- C:\program files\lexmark 3600-4600 series\lxdxmon.exe
O87 - FAEL: "UDP Query User{7E9E4BD1-B16D-4570-9724-70FCECFA510C}C:\program files\lexmark 3600-4600 series\lxdxmon.exe" | In - Public - P17 - TRUE | .(...) -- C:\program files\lexmark 3600-4600 series\lxdxmon.exe
O87 - FAEL: "TCP Query User{6605B538-C0E5-4950-8FA0-5AF34BE41BB2}C:\program files\lexmark 3600-4600 series\lxdxlscn.exe" | In - Public - P6 - TRUE | .(...) -- C:\program files\lexmark 3600-4600 series\lxdxlscn.exe
O87 - FAEL: "UDP Query User{E96A7592-14C4-42AE-8A7E-6BF2C8ACF35E}C:\program files\lexmark 3600-4600 series\lxdxlscn.exe" | In - Public - P17 - TRUE | .(...) -- C:\program files\lexmark 3600-4600 series\lxdxlscn.exe
O87 - FAEL: "TCP Query User{FB93FF78-25A3-4B1F-B575-DECD0516C0CA}C:\windows\system32\spool\drivers\w32x86\3\lxdxpswx.exe" | In - Public - P6 - TRUE | .(...) -- C:\windows\system32\spool\drivers\w32x86\3\lxdxpswx.exe
O87 - FAEL: "UDP Query User{2423426F-1E7E-4DF4-BE5B-460B7B09D7BB}C:\windows\system32\spool\drivers\w32x86\3\lxdxpswx.exe" | In - Public - P17 - TRUE | .(...) -- C:\windows\system32\spool\drivers\w32x86\3\lxdxpswx.exe
O87 - FAEL: "TCP Query User{4A6EB01C-A0FA-4384-B19E-F525385D37C1}C:\program files\mozilla firefox\plugin-container.exe" | In - Private - P6 - TRUE | .(.Mozilla Corporation.) -- C:\program files\mozilla firefox\plugin-container.exe
O87 - FAEL: "UDP Query User{41310BDA-830A-4A77-8764-7CF8037FEFBE}C:\program files\mozilla firefox\plugin-container.exe" | In - Private - P17 - TRUE | .(.Mozilla Corporation.) -- C:\program files\mozilla firefox\plugin-container.exe
O87 - FAEL: "TCP Query User{11E284AD-8A0B-4F7F-A224-0AC12EC17361}C:\users\anaïs\appdata\roaming\spotify\spotify.exe" | In - Private - P6 - TRUE | .(.Spotify Ltd - Spotify.) -- C:\users\anaïs\appdata\roaming\spotify\spotify.exe
O87 - FAEL: "UDP Query User{A0400915-3782-4E8A-BDB3-F7E075F60717}C:\users\anaïs\appdata\roaming\spotify\spotify.exe" | In - Private - P17 - TRUE | .(.Spotify Ltd - Spotify.) -- C:\users\anaïs\appdata\roaming\spotify\spotify.exe
O87 - FAEL: "TCP Query User{A5C32B58-4524-41F0-B815-4411C0E7704A}C:\program files\videolan\vlc\vlc.exe" | In - Public - P6 - TRUE | .(.VideoLAN - VLC media player 2.0.4.) -- C:\program files\videolan\vlc\vlc.exe
O87 - FAEL: "UDP Query User{996CC434-4C52-4F58-838E-23AA3E509AB8}C:\program files\videolan\vlc\vlc.exe" | In - Public - P17 - TRUE | .(.VideoLAN - VLC media player 2.0.4.) -- C:\program files\videolan\vlc\vlc.exe
O87 - FAEL: "TCP Query User{C7401311-25C9-4974-8B3C-A648ABF67F9F}C:\users\anaïs\appdata\roaming\spotify\spotify.exe" | In - Public - P6 - TRUE | .(.Spotify Ltd - Spotify.) -- C:\users\anaïs\appdata\roaming\spotify\spotify.exe
O87 - FAEL: "UDP Query User{D54EC3D2-8568-4102-A535-9359ACBCF4B7}C:\users\anaïs\appdata\roaming\spotify\spotify.exe" | In - Public - P17 - TRUE | .(.Spotify Ltd - Spotify.) -- C:\users\anaïs\appdata\roaming\spotify\spotify.exe
O87 - FAEL: "{05DD315A-84E5-4B4C-9F75-FE3A476B642B}" | In - Public - P6 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\Anaïs\AppData\Roaming\Dropbox\bin\Dropbox.exe
O87 - FAEL: "{E9371A53-F4D2-4A1A-9EF5-EF9F7AF4B2AF}" | In - Public - P17 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\Anaïs\AppData\Roaming\Dropbox\bin\Dropbox.exe
O87 - FAEL: "TCP Query User{1AC75602-D925-4474-B695-95570365FA4E}C:\users\anaïs\appdata\roaming\dropbox\bin\dropbox.exe" | In - Private - P6 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\users\anaïs\appdata\roaming\dropbox\bin\dropbox.exe
O87 - FAEL: "UDP Query User{938EB507-AB7A-4666-A2C7-66A94B833D76}C:\users\anaïs\appdata\roaming\dropbox\bin\dropbox.exe" | In - Private - P17 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\users\anaïs\appdata\roaming\dropbox\bin\dropbox.exe
O87 - FAEL: "TCP Query User{B3165067-4899-4026-9FE9-FE8B012C8390}C:\program files\orpalis\paperscan free edition\paperscan.exe" | In - Public - P6 - TRUE | .(.ORPALIS - PaperScan.) -- C:\program files\orpalis\paperscan free edition\paperscan.exe
O87 - FAEL: "UDP Query User{7C723C5B-8D5E-47B3-9F32-B3934EA6B2A5}C:\program files\orpalis\paperscan free edition\paperscan.exe" | In - Public - P17 - TRUE | .(.ORPALIS - PaperScan.) -- C:\program files\orpalis\paperscan free edition\paperscan.exe
O87 - FAEL: "TCP Query User{5E2615A4-A102-40E9-A296-B90D00E6FF19}C:\program files\orpalis\paperscan free edition\paperscan.exe" | In - Private - P6 - TRUE | .(.ORPALIS - PaperScan.) -- C:\program files\orpalis\paperscan free edition\paperscan.exe
O87 - FAEL: "UDP Query User{3A9339C7-1AB8-4E0E-93EE-FDD4F7CD50BF}C:\program files\orpalis\paperscan free edition\paperscan.exe" | In - Private - P17 - TRUE | .(.ORPALIS - PaperScan.) -- C:\program files\orpalis\paperscan free edition\paperscan.exe
O87 - FAEL: "TCP Query User{D0F522DA-5F53-4C86-B1DD-0FA53B2AA5E6}C:\program files\skype\phone\skype.exe" | In - Private - P6 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files\skype\phone\skype.exe
O87 - FAEL: "UDP Query User{4BE2B9C9-4800-422E-917D-4857C1E62D89}C:\program files\skype\phone\skype.exe" | In - Private - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files\skype\phone\skype.exe
O87 - FAEL: "{33A0C55D-E9CB-4F75-9293-C501ACEDF6F2}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O87 - FAEL: "{5FAE7040-450E-4938-8550-9F6EE8591778}" |In - Private - P6 - TRUE | .(...) -- E:\Network\EpsonNetSetup\ENEasyApp.exe (.not file.)
O87 - FAEL: "{E8891028-CB77-425F-832B-19735A24D914}" |In - Private - P17 - TRUE | .(...) -- E:\Network\EpsonNetSetup\ENEasyApp.exe (.not file.)
O87 - FAEL: "TCP Query User{5A229288-6A8A-4E1D-B2C9-A4683C43EF13}C:\program files\epson software\event manager\eeventmanager.exe" | In - Public - P6 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files\epson software\event manager\eeventmanager.exe
O87 - FAEL: "UDP Query User{03196D40-F6E7-4C71-B065-51C59257F0A1}C:\program files\epson software\event manager\eeventmanager.exe" | In - Public - P17 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files\epson software\event manager\eeventmanager.exe
O87 - FAEL: "TCP Query User{5BCA1FED-D498-4D67-81CF-3A288BC4310F}C:\program files\epson software\event manager\eeventmanager.exe" | In - Private - P6 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files\epson software\event manager\eeventmanager.exe
O87 - FAEL: "UDP Query User{2CF02CAF-663D-4DC5-A0EC-AC4E891E730B}C:\program files\epson software\event manager\eeventmanager.exe" | In - Private - P17 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files\epson software\event manager\eeventmanager.ex
~ Scan Firewall in 00mn 01s

---\\ Scan Additionnel (O88)
Database Version : 9699 - (01/01/2013)
Clés trouvées (Keys found) : 21
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 5
Fichiers trouvés (Files found) : 0

[HKLM\Software\Classes\S] =>Toolbar.Agent
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}] =>
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}] =>
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1631550F-191D-4826-B069-D9439253D926}] =>Adware.PriceGong
[HKLM\Software\Classes\CLSID\{761f6a83-f007-49e4-8eac-cdb6808ef06f}] =>PUP.Eorezo
[HKLM\Software\Classes\CLSID\{76c45b18-a29e-43ea-aaf8-af55c2e1ae17}] =>PUP.Eorezo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Internet Explorer\extensi

Réponse 2 / 9

Rennaise

[HKLM\Software\Classes\S] =>Toolbar.Agent
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}] =>
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}] =>
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1631550F-191D-4826-B069-D9439253D926}] =>Adware.PriceGong
[HKLM\Software\Classes\CLSID\{761f6a83-f007-49e4-8eac-cdb6808ef06f}] =>PUP.Eorezo
[HKLM\Software\Classes\CLSID\{76c45b18-a29e-43ea-aaf8-af55c2e1ae17}] =>PUP.Eorezo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Internet Explorer\extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{96ef404c-24c7-43d0-9096-4ccc8bb7ccac}] =>PUP.Eorezo
[HKLM\Software\Classes\CLSID\{97720195-206a-42ae-8e65-260b9ba5589f}] =>PUP.Eorezo
[HKLM\Software\Classes\CLSID\{97d69524-bb57-4185-9c7f-5f05593b771a}] =>PUP.Eorezo
[HKLM\Software\Classes\CLSID\{986f7a5a-9676-47e1-8642-f41f8c3fcf82}] =>PUP.Eorezo
[HKLM\Software\Classes\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113}] =>Adware.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{b18788a4-92bd-440e-a4d1-380c36531119}] =>PUP.Eorezo
[HKCU\Software\lollipop] =>Adware.Lollipop
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\lollipop] =>Adware.Lollipop
C:\ProgramData\Babylon =>Toolbar.Babylon
C:\Users\Anaïs\AppData\Roaming\Babylon =>Toolbar.Babylon
C:\Users\Anaïs\AppData\Local\Babylon =>Toolbar.Babylon
C:\Users\Anaïs\AppData\Local\lollipop =>Adware.Lollipop
C:\Program Files\Ad-Remover\Quarantine\C\Users\Anaïs\AppData\Roaming\OpenCandy => Adware.OpenCandy
~ Scan Additionnel in 00mn 14s

---\\ Product Upgrade Codes (O90)
O90 - PUC: "0000009F810000000000709475387300" . (.ABBYY FineReader 9.0 Sprint.) -- C:\Windows\Installer\{F9000000-0018-0000-0000-074957833700}\ARPPRODUCTICON.exe
O90 - PUC: "05DA1D146724FAD4A8BAD5797DE5743B" . (.PaperScan Free Edition.) -- C:\Windows\Installer\{41D1AD50-4276-4DAF-8AAB-5D97D75E47B3}\ARPPRODUCTICON.exe
O90 - PUC: "09683D6BE55704F43AA5328FCBB268CA" . (.Microsoft_VC90_MFCLOC_x86.) -- C:\Windows\Installer\{B6D38690-755E-4F40-A35A-23F8BC2B86AC}\ARPPRODUCTICON.exe
O90 - PUC: "098990BCF5D15D11E99A0005AB3E711E" . (.PowerDirector.) -- C:\Windows\Installer\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\ARPPRODUCTICON.exe
O90 - PUC: "121E2D80A6F7BE3479DF26B944094330" . (.Microsoft_VC90_CRT_x86.) -- C:\Windows\Installer\{08D2E121-7F6A-43EB-97FD-629B44903403}\ARPPRODUCTICON.exe
O90 - PUC: "168061B30527E1545BEEB829FB037A01" . (.Microsoft Works.) -- C:\Windows\Installer\{3B160861-7250-451E-B5EE-8B92BF30A710}\MSWorks.exe
O90 - PUC: "20B91A1DE71869244AB57058F37DD475" . (.Microsoft_VC80_MFC_x86.) -- C:\Windows\Installer\{D1A19B02-817E-4296-A45B-07853FD74D57}\ARPPRODUCTICON.exe
O90 - PUC: "25BBB29DFF28DE24A8C3E460F249A47B" . (.Microsoft_VC80_MFCLOC_x86.) -- C:\Windows\Installer\{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}\ARPPRODUCTICON.exe
O90 - PUC: "3F450F3170B051D4E9085CB594A65B75" . (.Garmin Communicator Plugin.) -- C:\Windows\Installer\{13F054F3-0B07-4D15-9E80-C55B496AB557}\GarminSetup.ico
O90 - PUC: "517AAD0323059F040AEA599CEABBE3F3" . (.HP QuickTouch 1.00 D2.) -- C:\Windows\Installer\{30DAA715-5032-40F9-A0AE-95C9AEBB3E3F}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "5b20523f46b52884fb16772fe3cdcaf4" . (.HP Total Care Advisor.) -- C:\Windows\Installer\{f32502b5-5b64-4882-bf61-77f23edcac4f}\ARPPRODUCTICON.exe
O90 - PUC: "63C9AAD5B8F8F264C8AC2E50CB73155F" . (.HP Active Support Library.) -- c:\Windows\Installer\{5DAA9C36-8F8B-462F-8CCA-E205BC3751F5}\ARPPRODUCTICON.exe
O90 - PUC: "64B6C8222E46E40498A8FE800306E34F" . (.HPNetworkAssistant.) -- c:\Windows\Installer\{228C6B46-64E2-404E-898A-EF0830603EF4}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA76301B744AA0100000010" . (.Adobe Reader X (10.1.4) - Français.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico
O90 - PUC: "68AB67CA7DA784420000080000000030" . (.Chinese Traditional Fonts Support For Adobe Reader 8.) -- C:\Windows\Installer\{AC76BA86-7AD7-2448-0000-800000000003}\ARPPRODUCTICON.exe
O90 - PUC: "7692FC6BE18C0C0489510C7547EF1F02" . (.Skype Click to Call.) -- C:\Windows\Installer\{B6CF2967-C81E-40C0-9815-C05774FEF120}\IconUninstallIco
O90 - PUC: "8994BF104C33134458DE70E9E3FE7ED5" . (.YouCam.) -- C:\Windows\Installer\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\ARPPRODUCTICON.exe
O90 - PUC: "8E30DAA956F42ED4F8C6B170C9C05812" . (.Garmin Lifetime Updater.) -- C:\Windows\Installer\{9AAD03E8-4F65-4DE2-8F6C-1B079C0C8521}\Garmin.ico
O90 - PUC: "8F7463F0D15ECCF48826A9D8C0A5FC52" . (.Microsoft_VC80_ATL_x86.) -- C:\Windows\Installer\{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}\ARPPRODUCTICON.exe
O90 - PUC: "91785D291CBB3CC40AB8659C8E48CCC2" . (.Microsoft_VC80_CRT_x86.) -- C:\Windows\Installer\{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}\ARPPRODUCTICON.exe
O90 - PUC: "960516D9F8AA98E4EAD977AA9EF025F9" . (.ProtectSmart Hard Drive Protection.) -- C:\Windows\Installer\{9D615069-AA8F-4E89-AE9D-77AAE90F529F}\controlPanelIcon.exe
O90 - PUC: "AD78228560800CA4FB911CE5A3640643" . (.LightScribe System Software 1.12.33.2.) -- C:\Windows\Installer\{582287DA-0806-4AC0-BF19-C15E3A466034}\ARPPRODUCTICON.exe
O90 - PUC: "B5DEF536D6C2EB94786EA7F6DC22CBA5" . (.Microsoft_VC90_MFC_x86.) -- C:\Windows\Installer\{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}\ARPPRODUCTICON.exe
O90 - PUC: "C4E4AFE2F5B77F841A0CA18A287B9A3C" . (.HP Update.) -- C:\Windows\Installer\{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}\ARPPRODUCTICON.exe
O90 - PUC: "CF4F71AEFBDF8FC45A92D28913230D35" . (.Skype(TM) 6.0.) -- C:\Windows\Installer\{EA17F4FC-FDBF-4CF8-A529-2D983132D053}\SkypeIcon.exe
O90 - PUC: "D366E3D3E7E477545A06E7DCDD5445A8" . (.PVSonyDll.) -- C:\Windows\Installer\{3D3E663D-4E7E-4577-A560-7ECDDD45548A}\ARPPRODUCTICON.exe
O90 - PUC: "E125F0436753A1E47BC5BEA0FC573197" . (.HP Wireless Assistant.) -- C:\Windows\Installer\{340F521E-3576-4E1A-B75C-EB0ACF751379}\controlPanelIcon.exe
O90 - PUC: "E7F34DE86F8A8984FA116B51F8E2FD49" . (.Epson Event Manager.) -- C:\Windows\Installer\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}\icon.exe
O90 - PUC: "E873E3303DA65DA4DBBEBC6DB91340C6" . (.Microsoft_VC90_ATL_x86.) -- C:\Windows\Installer\{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}\ARPPRODUCTICON.exe
O90 - PUC: "F60C1AD7319C7C64A8F0ADC2AB71AED1" . (.OpenOffice.org 3.4.1.) -- C:\Windows\Installer\{7DA1C06F-C913-46C7-8A0F-DA2CBA17EA1D}\soffice.ico
~ Scan Files in 00mn 00s

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 14/05/2009 759048 | (ABBYY.Licensing.FineReader.Sprint.9.0) . (.ABBYY.) - C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
SR - | Auto 27/07/2012 63960 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 12/12/2012 250808 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 02/03/2009 81920 | (AESTFilters) . (.Andrea Electronics Corporation.) - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_e2247046\aestsrv.exe
SR - | Auto 30/10/2012 44808 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Demand 07/02/2008 193840 | (Com4QLBEx) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
SR - | Auto 19/12/2006 94208 | (EpsonBidirectionalService) . (.SEIKO EPSON CORPORATION.) - C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
SR - | Auto 21/01/2008 21504 | C:\Windows\System32\ezsvc7.dll (ezSharedSvc) . (.EasyBits Sofware AS.) - C:\WINDOWS\System32\svchost.exe
SS - | Demand 24/07/2007 181800 | (GameConsoleService) . (.WildTangent, Inc..) - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
SS - | Auto 21/11/2012 116648 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 21/11/2012 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SR - | Auto 16/06/2008 94208 | (HP Health Check Service) . (.Hewlett-Packard.) - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
SR - | Demand 08/01/2008 148832 | (hpqwmiex) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
SR - | Auto 13/05/2011 26168 | (hpsrv) . (.Hewlett-Packard Company.) - C:\WINDOWS\System32\Hpservice.exe
SS - | Demand 22/10/2004 73728 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
SR - | Auto 26/02/2008 73728 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
SR - | Auto 589824 | (lxdx_device) . (...) - C:\Windows\system32\lxdxcoms.exe
SR - | Auto 14/12/2012 398184 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
SR - | Auto 14/12/2012 682344 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
SS - | Demand 05/12/2012 115168 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 03/10/2009 219752 | (nvsvc) . (.NVIDIA Corporation.) - C:\WINDOWS\System32\nvvsvc.exe
SR - | Auto 28/10/2009 65536 | (Printer Control) . (.ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM.) - C:\Windows\system32\PrintCtrl.exe
SR - | Auto 292216 | (QPCapSvc) . (...) - C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe
SR - | Auto 116080 | (QPSched) . (...) - C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe
SR - | Auto 361808 | (Recovery Service for Windows) . (...) - C:\Windows\SMINST\BLService.exe
SR - | Auto 272024 | (RichVideo) . (...) - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
SR - | Auto 02/10/2012 3064000 | (Skype C2C Service) . (.Skype Technologies S.A..) - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
SS - | Auto 09/11/2012 160944 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe
SR - | Auto 21/07/2009 221266 | (STacSV) . (.IDT, Inc..) - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_e2247046\STacSV.exe
SR - | Auto 21/01/2008 21504 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\WINDOWS\System32\svchost.exe
SR - | Auto 21/01/2008 21504 | C:\WINDOWS\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\WINDOWS\System32\svchost.exe
~ Scan Services in 00mn 01s

End of the scan (1370 lines in 02mn 16s)(0)

Merci pour votre aide

Réponse 3 / 9

kepoivey Messages postés 3 Date d'inscription Statut Membre Dernière intervention

c ennorme

Rennaise

Oui je vous donne un peu lecture, désolée :s

Réponse 4 / 9

Malekal_morte- Messages postés 180304 Date d'inscription Statut Modérateur, Contributeur sécurité Dernière intervention 24 685

Salut,

Télécharge http://general-changelog-team.fr/telechargements/logiciels/viewdownload/75-outils-de-xplode/28-adwcleaner AdwCleaner ( d'Xplode ) sur ton bureau.
Lance le, clique sur [Suppression] puis patiente le temps du scan.
Une fois le scan fini, un rapport s'ouvrira. Poste moi son contenu dans ta prochaine réponse.

Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question

Réponse 5 / 9

Rennaise

Voilà le rapport :

# AdwCleaner v2.105 - Rapport créé le 08/01/2013 à 16:45:40
# Mis à jour le 08/01/2013 par Xplode
# Système d'exploitation : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Nom d'utilisateur : Anaïs - PC-DE-ANAÏS
# Mode de démarrage : Normal
# Exécuté depuis : C:\Users\Anaïs\Downloads\adwcleaner.exe
# Option [Suppression]

***** [Services] *****

***** [Fichiers / Dossiers] *****

Dossier Supprimé : C:\Program Files\Nosibay
Dossier Supprimé : C:\ProgramData\Babylon
Dossier Supprimé : C:\Users\Anaïs\AppData\Local\Babylon
Dossier Supprimé : C:\Users\Anaïs\AppData\Local\lollipop
Dossier Supprimé : C:\Users\Anaïs\AppData\Roaming\Babylon
Dossier Supprimé : C:\Users\Anaïs\AppData\Roaming\Nosibay

***** [Registre] *****

Clé Supprimée : HKCU\Software\lollipop
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\lollipop
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1631550F-191D-4826-B069-D9439253D926}
Clé Supprimée : HKCU\Software\Nosibay
Clé Supprimée : HKCU\Software\Softonic
Clé Supprimée : HKLM\Software\Babylon
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{761F6A83-F007-49E4-8EAC-CDB6808EF06F}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{76C45B18-A29E-43EA-AAF8-AF55C2E1AE17}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{96EF404C-24C7-43D0-9096-4CCC8BB7CCAC}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{97720195-206A-42AE-8E65-260B9BA5589F}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{97D69524-BB57-4185-9C7F-5F05593B771A}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{986F7A5A-9676-47E1-8642-F41F8C3FCF82}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{B18788A4-92BD-440E-A4D1-380C36531119}
Clé Supprimée : HKLM\SOFTWARE\Classes\Prod.cap
Clé Supprimée : HKLM\SOFTWARE\Classes\S
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Clé Supprimée : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Valeur Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Bubble Dock]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]

***** [Navigateurs] *****

-\\ Internet Explorer v7.0.6002.18005

Remplacé : [HKCU\Software\Microsoft\Internet Explorer\Search - Default_Search_URL] = hxxp://feed.snap.do/?publisher=SnapdoOpenCandy&dpid=SnapdoOpenCandy&co=FR&userid=a3c55235-1009-4255-b43d-392e6f2395bc&searchtype=ds&q={searchTerms} --> hxxp://www.google.com

-\\ Mozilla Firefox v17.0.1 (fr)

Fichier : C:\Users\Anaïs\AppData\Roaming\Mozilla\Firefox\Profiles\dtky5kzv.default\prefs.js

C:\Users\Anaïs\AppData\Roaming\Mozilla\Firefox\Profiles\dtky5kzv.default\user.js ... Supprimé !

Supprimée : user_pref("browser.search.selectedEngine", "Web Search");
Supprimée : user_pref("extensions.helperbar.SmartbarDisabled", false);
Supprimée : user_pref("extensions.helperbar.SmartbarStateMinimaized", false);
Supprimée : user_pref("keyword.URL", "hxxp://feed.snap.do/?publisher=SnapdoOpenCandy&dpid=SnapdoOpenCandy&co=FR&[...]

-\\ Google Chrome v23.0.1271.97

Fichier : C:\Users\Anaïs\AppData\Local\Google\Chrome\User Data\Default\Preferences

Supprimée [l.221] : homepage = "hxxp://feed.snap.do/?publisher=SnapdoOpenCandy&dpid=SnapdoOpenCandy&co=FR&userid=a3c[...]
Supprimée [l.479] : urls_to_restore_on_startup =, [ "hxxp://feed.snap.do/?publisher=SnapdoOpenCandy&dpid=SnapdoOpenC[...]

*************************

AdwCleaner[S1].txt - [3731 octets] - [08/01/2013 16:45:40]

########## EOF - C:\AdwCleaner[S1].txt - [3791 octets] ##########

Réponse 6 / 9

Malekal_morte- Messages postés 180304 Date d'inscription Statut Modérateur, Contributeur sécurité Dernière intervention 24 685

AdwCleaner a supprimé Lollipop qui est un adware (un agent qui ouvre des publicités à intervalles régulier).
Attention à ce que tu installes et où tu télécharges => https://www.malekal.com/lollipop-adware-et-vittalia-installer/

Désinstalle Bubble Dock.
Si présent

puis :

Faire un scan OTL pour diagnostiquer les programmes qui tournent et déceler des infections :

Tu peux suivre les indications de cette page pour t'aider : https://www.malekal.com/tutorial-otl/

* Télécharge http://www.geekstogo.com/forum/files/file/398-otl-oldtimers-list-it/ sur ton bureau.
(Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)

Dans le cas d'Avast!, ne pas lancer le programme dans la Sandbox (voir lien d'aide ci-dessus).

* Lance OTL
* En haut à droite de Analyse rapide, coche "tous les utilisateurs"
* Sur OTL, sous Personnalisation, copie-colle le script ci-dessous :

netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%temp%\.exe /s
%SYSTEMDRIVE%\*.exe
%systemroot%\*. /mp /s
%systemroot%\system32\consrv.dll
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
/md5start
explorer.exe
winlogon.exe
wininit.exe
/md5stop
HKEY_CLASSES_ROOT\CLSID\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InprocServer32 /s
HKEY_LOCAL_MACHINE\SYSTEM\SYSTEM\CurrentControlSet\Services\lanmanserver\parameters /s
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems /s
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\AppCertDlls /s
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList /s
CREATERESTOREPOINT
nslookup www.google.fr /c
SAVEMBR:0
hklm\software\clients\startmenuinternet|command /rs
hklm\software\clients\startmenuinternet|command /64 /rs

* Clique sur le bouton Analyse.

NE PAS COPIER/COLLER LE RAPPORT ICI - LIRE JUSQU'AU BOUT
* Quand le scan est fini, utilise le site http://pjjoint.malekal.com/ pour envoyer le rapport OTL.txt (et Extra.txt si présent), donne le ou les liens pjjoint qui pointent vers ces rapports ici dans un nouveau message.

Réponse 7 / 9

Rennaise

Le lien du rapport OTL.txt : http://pjjoint.malekal.com/files.php?id=OTL_20130108_b6w9m15l13u15

Le lien du rapport Extra.txt : http://pjjoint.malekal.com/files.php?id=OTL_Extras_20130108_m6u14e6w14w15

Réponse 8 / 9

Malekal_morte- Messages postés 180304 Date d'inscription Statut Modérateur, Contributeur sécurité Dernière intervention 24 685

c'est bon !

Attention à ce que tu installes :
Des logiciels additionnels sont proposés (barre d'outils, adwares) via l'installation de logiciel gratuit en général ou via certains sites de téléchargement comme Softonic ou 01Net.
L'éditeur touche de l'argent à chaque installation réussie de ces programmes additionnels (un genre de sponsoring), ton PC se retrouve avec des barres d'outils qui ralentissent le navigateur ou des adwares qui ouvrent des popups de publicités.
Les barres d'outils sont là pour t'affilier à un service (moteur de recherche de Yahoo! ou Google), ça rajoute des fonctionnalités mais en général les navigateurs les ont par défaut.
De plus, elles enregistrent les sites que tu visites pour les transmettre (tracking) à faire de la publicité ciblée, c'est pas super niveau protection de la vie privée.
Plusieurs toolbars ralentissent le PC et peuvent faire planter les navigateurs WEB.
Au final, il est pas conseillé d'en utiliser.

Enfin l'accumulation de ces programmes ralentissent l'ordinateur/navigateur WEB.

Ces programmes additionnels sont proposées à l'installation de programmes et très souvent ces ajouts sont précochés. C'est notamment le cas sur 01net et Softonic qu'ils est conseillé d'éviter comme sites de téléchargement.
Dès lors, lorsque tu installes un programme, lis bien ce qui est proposé car tu risques d'installer des barres d'outils sans le savoir.

Lire Les PUPs/LPIs : https://www.malekal.com/adwares-pup-protection/

Tu peux installer ce programme pour filtrer ces PUPs/Adwares les plus fréquents avec HOSTS Anti-PUPs/Adwares : http://www.malekal.com/2012/01/10/hosts-anti-pupsadware/

Réponse 9 / 9

Rennaise

Ok
Merci beaucoup !

Discussions similaires

Ouvrir un fichier .pub sans Publisher

lire un fichier .pub

Lire, afficher, exécuter un fichier *.pub sans Publisher

Ouvrir document Publisher sans Publisher

Publicité s'ouvre toute seule ! ?

Votre réponse

Discussions similaires