Sujet Précédent Sujet Suivant

Supprimer Delta Box

Fermé
Charlotte - 21 sept. 2013 à 14:37
2011N2 Messages postés 13352 Date d'inscription samedi 29 janvier 2011 Statut Contributeur sécurité Dernière intervention 24 décembre 2016 - 23 sept. 2013 à 06:07
Bonjour,

Je me suis fait avoir et ai téléchargé Delta Box...quelqu'un pourrait-il m'aider à remédier à ce problème ?

Merci beaucoup,

Cordialement,

Charlotte

A voir également:

16 réponses

Réponse 1 / 16
2011N2 Messages postés 13352 Date d'inscription samedi 29 janvier 2011 Statut Contributeur sécurité Dernière intervention 24 décembre 2016 917
21 sept. 2013 à 14:43
Bonjour,

Fais un diagnostic de ton PC avec ZHPDiag et poste le rapport : http://www.forum-entraide-informatique.com/support/zhpdiag-tutoriel-t4831.html

Gabriel.
0
Réponse 2 / 16
Forceseek Messages postés 321 Date d'inscription samedi 24 septembre 2011 Statut Membre Dernière intervention 22 janvier 2015 71
21 sept. 2013 à 14:43
Tu peux tenter de l'enlever avec le petit software ADW Cleaner
0
Réponse 3 / 16
Charlotte
21 sept. 2013 à 15:01
Merci à vous pour vos réponses, j'ai suivi la procédure de Gabriel, je vous poste ici le rapport (je peux le mettre sur "ci joint" si cela vous arrange)

~ Rapport de ZHPDiag v2013.9.21.37 - Nicolas Coolman (21/09/2013)
~ Lancé par Charlotte (22/09/2013 14:49:03)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v9.0.8112.16421
GCIE: Google Chrome v29.0.1547.66 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : RMV82
Windows License : OK
~ Windows Remaining Initializations Number : 4
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection du système
Avira Free Antivirus v13.0.0.4042
Windows Defender W7

---\\ Logiciels d'optimisation du système

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 10 ActiveX
Adobe Reader 9.1.2 - Français

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2008 MB (35% free)
System Restore: Activé (Enable)
System drive C: has 191 GB (87%) free of 218 GB

---\\ Mode de connexion au système
~ Computer Name: CHAPC
~ User Name: Charlotte
~ All Users Names: HomeGroupUser$, Charlotte, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppData% : C:\Users\Charlotte\AppData\Roaming\
~ %Desktop% : C:\Users\Charlotte\Desktop\
~ %Favorites% : C:\Users\Charlotte\Favorites\
~ %LocalAppData% : C:\Users\Charlotte\AppData\Local\
~ %StartMenu% : C:\Users\Charlotte\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\System32\

---\\ Enumération des unités disques
C:\ Hard drive, Flash drive, Thumb drive (Free 191 Go of 218 Go)
D:\ CD-ROM drive (Not Inserted)
E:\ CD-ROM drive (Free 0 Go of 1 Go)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 29 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\WINDOWS\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\WINDOWS\System32\Wininit.exe [129024]
[MD5.75F110F4005DAE430AECA787FDEA9CBB] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.21/09/2013 - 20:30:21.) -- C:\WINDOWS\System32\wininet.dll [1392128]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.20/11/2010 - 14:25:30.) -- C:\WINDOWS\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:26.) -- C:\WINDOWS\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\WINDOWS\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\WINDOWS\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\WINDOWS\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\WINDOWS\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\WINDOWS\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\WINDOWS\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\WINDOWS\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\WINDOWS\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\WINDOWS\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\WINDOWS\system32\Drivers\netBT.sys [261632]
[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.12/04/2013 - 15:45:08.) -- C:\WINDOWS\system32\Drivers\ntfs.sys [1656680]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\WINDOWS\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\WINDOWS\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\WINDOWS\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\WINDOWS\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 14:34:02.) -- C:\WINDOWS\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 01s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/12
~ Mes Favoris (My Favorites) : 1/27
~ Mon Bureau (My Desktop) : 1/57
~ Menu demarrer (Programs) : 1/26
~ Hidden Files: Scanned in 00mn 00s



---\\ Processus lancés
[MD5.2D89ABAC9D439ABAD1E427A467F0687D] - (...) -- C:\ProgramData\BitGuard\2.6.1673.238\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe [2845152] [PID.1652] =>PUP.BitGuard
[MD5.3F7B9B4E099476AAA720970BA1346FE2] - (.SoftThinks - Dell - Dell DataSafe Local Backup.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe [335600] [PID.3424]
[MD5.5AF1E9600E3FF841E522703A4993ED0C] - (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe [186904] [PID.3364]
[MD5.DD9EAE1C80561C509A8B8801E16BAA38] - (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\Charlotte\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1104384] [PID.3820]
[MD5.D22D936F9AB0DA3B8EB7537284867708] - (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jusched.exe [148888] [PID.4076]
[MD5.C53ABB0EE9DE0CF0BD486EAB9A602299] - (.Pas de propriétaire - DataSafeOnline.) -- C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe [1779952] [PID.3504]
[MD5.1F5A26DF97C33CD24A8ED4D4A1FF1348] - (.CyberLink Corp. - CyberLink PowerDVD Resident Program.) -- C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe [140520] [PID.2840]
[MD5.80B62FF105908EC9E4B072AFB1CFC824] - (.Creative Technology Ltd - WebcamDell2.exe.) -- C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [409744] [PID.2636]
[MD5.263DF54E9C61C401FD7FF29A3DA1FDFB] - (.Pas de propriétaire - Roxio Burn Launcher.) -- C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe [494064] [PID.572]
[MD5.00D1FB0073B4A8BD2989EA8FF4CC792B] - (.SupportSoft, Inc. - Dell Support Center Updates.) -- C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe [206064] [PID.3228]
[MD5.DB3F7F19F942D3CE4E1A0E8D9FF541FB] - (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [347192] [PID.1084]
[MD5.3FD2D921EA76F7B64D4F362612B569E1] - (.APN - Ask Toolbar Notifier.) -- C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1558480] [PID.4220] =>Toolbar.Ask
[MD5.DF1BBA1168C0AD1D080A1F1B99576A76] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [829392] [PID.4436]
[MD5.94A0298B5A333CA4CF2F3C9DF9AE16AC] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [7989760] [PID.4512]
[MD5.0840ABBBDF438691EE65A20040635CBE] - (.Stardock Corporation - Dock Login Service.) -- C:\Program Files\Dell\DellDock\DockLogin.exe [155648] [PID.1100]
[MD5.8769E2D1072B62AB071F166F03B3E3DC] - (.Avira Operations GmbH & Co. KG - Avira Scheduler.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024] [PID.1448]
[MD5.AD1D13E6326E0B8DA2A7BE13B39A8FE0] - (.Avira Operations GmbH & Co. KG - Avira On-Access Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088] [PID.1576]
[MD5.D41231AECFEE88973D56AEC2EE5B962D] - (.APN LLC. - APN Updater.) -- C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [168400] [PID.1612]
[MD5.7F475425582163602EF1589C0071E521] - (.SoftThinks - SoftThinks Agent Service.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.exe [656624] [PID.2020]
[MD5.7548066DF68A8A1A56B043359F915F37] - (.Intel Corporation - RAID Monitor.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe [354840] [PID.948]
[MD5.07E1BF2B3776AA67A621DED3810C1626] - (.Avira Operations GmbH & Co. KG - Avira WebGuard Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.exe [815160] [PID.2428]
[MD5.D630B6F2E8379B6F10DC16E82A426552] - (.SupportSoft, Inc. - SupportSoft Agent Service.) -- C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe [206064] [PID.3736]
~ Processes Running: Scanned in 00mn 01s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Charlotte\AppData\Local\Google\Chrome\User Data\Default\Preferences
~ Google Browser: 0 Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Charlotte\AppData\Roaming\Mozilla\Firefox\Profiles\{DefaultProfilesFolder}\prefs.js (.not file.)
~ Firefox Browser: 0 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www2.delta-search.com =>Toolbar.DeltaSearch
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 16 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe
F2 - REG:system.ini: VMApplet=C:\WINDOWS\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: CrossriderApp0037180 [64Bits] - {11111111-1111-1111-1111-110311711180} . (.Plus HD - Plus-HD-3.5 BHO.) -- C:\Program Files (x86)\Plus-HD-3.5\Plus-HD-3.5-bho.dll =>Adware.PlusHD
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Avira SearchFree Toolbar plus Web Protection BHO [64Bits] - {41564952-412D-5637-00A7-7A786E7484D7} . (...) -- "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" (.not file.) =>Toolbar.Avira
O2 - BHO: (no name) [64Bits] - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline
O2 - BHO: Search Helper [64Bits] - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corp. - Microsoft Search Helper Extention.) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper [64Bits] - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
~ BHO: 10 Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{21FA44EF-376D-4D53-9B0F-8A89D3229068} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{41564952-412D-5637-00A7-7A786E7484D7} Clé orpheline
~ Toolbar: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: DAEMON Tools Lite.lnk . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Users\Charlotte\Desktop\DAEMON Tools Lite\DTLite.exe
O4 - GS\Desktop [Public]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe =>.Nicolas Coolman
O4 - GS\Desktop [Public]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe =>.Nicolas Coolman
O4 - GS\Program [Public]: Adobe Reader 9.lnk . (...) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-A91000000001}\SC_Reader.ico
O4 - GS\Program [Public]: Documentation d'aide de Dell.lnk . (...) -- C:\Program Files (x86)\Dell Inc\Dell Edoc Viewer\EDocs.exe (.not file.)
O4 - GS\Program [Public]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: PowerDVD DX.lnk . (.CyberLink Corp. - CyberLink PowerDVD DX.) -- C:\Program Files (x86)\CyberLink\PowerDVD DX\PowerDVD.exe
O4 - GS\Program [Public]: Sidebar.lnk . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Anytime Upgrade.lnk . (.Microsoft Corporation - Interface utilisateur de Mise à niveau expr.) -- C:\Windows\system32\WindowsAnytimeUpgradeUI.exe
O4 - GS\Program [Public]: Windows DVD Maker.lnk . (...) -- C:\Program Files (x86)\DVD Maker\DVDMaker.exe (.not file.)
O4 - GS\Program [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) -- C:\Windows\system32\xpsrchvw.exe
O4 - GS\Program [Public]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe =>.Nicolas Coolman
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.) -- C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - Accessoire du panneau de saisie mathématiqu.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.) -- C:\Windows\system32\mblctr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\Windows\system32\mspaint.exe
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) -- C:\Windows\system32\mstsc.exe
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) -- C:\Windows\system32\SnippingTool.exe
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) -- C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) -- C:\Windows\System32\mobsync.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Mise en route.) -- C:\WINDOWS\system32\OobeFldr.dll
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) -- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) -- C:\Windows\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.) -- C:\Windows\system32\dfrgui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) -- C:\Windows\system32\cleanmgr.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Moniteur de ressources et de performances.) -- C:\Windows\system32\perfmon.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.) -- C:\Windows\system32\msinfo32.exe
O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) -- C:\Windows\system32\rstrui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) -- C:\Windows\system32\taskschd.msc
O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Application post-migration de transfert de.) -- C:\Windows\system32\migwiz\postmig.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Application Transfert de fichiers et paramè.) -- C:\Windows\system32\migwiz\migwiz.exe =>.Microsoft Corporation
O4 - GS\QuickLaunch [Charlotte]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [Charlotte]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Charlotte]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\TaskBar [Charlotte]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Charlotte]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Charlotte]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\Program [Charlotte]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Program [Charlotte]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Program [Charlotte]: Spotify.lnk . (.Spotify Ltd - Spotify.) -- C:\Users\Charlotte\AppData\Roaming\Spotify\spotify.exe
O4 - GS\Accessories [Charlotte]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - GS\Accessories [Charlotte]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Charlotte]: Run.lnk - Clé orpheline
O4 - GS\Accessories [Charlotte]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Charlotte]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SystemTools [Charlotte]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) -- C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation
~ Global Startup: 51 Scanned in 00mn 04s



---\\ Applications lancées au démarrage du sytème (O4)
O4 - GS\Startup [Charlotte]: Dell Dock.lnk . (...) -- C:\Program Files (x86)\Dell\DellDock\DellDock.exe (.not file.)
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] . (.Dell Inc. - Dell Wireless WLAN Card Wireless Network Tr.) -- C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.exe
O4 - HKLM\..\Run: [QuickSet] . (.Dell Inc. - QuickSet.) -- C:\Program Files\Dell\QuickSet\QuickSet.exe
O4 - HKLM\..\Run: [IAAnotif] . (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKCU\..\Run: [Spotify] . (.Spotify Ltd - Spotify.) -- C:\Users\Charlotte\AppData\Roaming\Spotify\Spotify.exe
O4 - HKCU\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\Charlotte\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Users\Charlotte\Desktop\DAEMON Tools Lite\DTLite.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jusched.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Wow6432Node\Run: [Dell DataSafe Online] . (.Pas de propriétaire - DataSafeOnline.) -- C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe
O4 - HKLM\..\Wow6432Node\Run: [PDVDDXSrv] . (.CyberLink Corp. - CyberLink PowerDVD Resident Program.) -- C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
O4 - HKLM\..\Wow6432Node\Run: [Dell Webcam Central] . (.Creative Technology Ltd - WebcamDell2.exe.) -- C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
O4 - HKLM\..\Wow6432Node\Run: [Desktop Disc Tool] . (.Pas de propriétaire - Roxio Burn Launcher.) -- C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe =>.Roxio
O4 - HKLM\..\Wow6432Node\Run: [DellSupportCenter] . (.SupportSoft, Inc. - Dell Support Center Updates.) -- C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
O4 - HKLM\..\Wow6432Node\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Wow6432Node\Run: [ApnTBMon] . (.APN - Ask Toolbar Notifier.) -- C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe =>Toolbar.Ask
O4 - HKLM\..\Wow6432Node\RunOnce: [STToasterLauncher] . (.Pas de propriétaire - ToasterLauncher.) -- C:\program files (x86)\Dell DataSafe Local Backup\toasterLauncher.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3636680571-3263525897-696349954-1000\..\Run: [Spotify] . (.Spotify Ltd - Spotify.) -- C:\Users\Charlotte\AppData\Roaming\Spotify\Spotify.exe
O4 - HKUS\S-1-5-21-3636680571-3263525897-696349954-1000\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\Charlotte\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
O4 - HKUS\S-1-5-21-3636680571-3263525897-696349954-1000\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Users\Charlotte\Desktop\DAEMON Tools Lite\DTLite.exe
~ Application: Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
~ Winsock: 6 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{32661DF8-88BF-41FF-A7FA-3C4267B0E115}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{67EFD9F4-2D90-40DA-89FE-BA5B30CFC836}: DhcpNameServer = 172.168.1.161
O17 - HKLM\System\CS1\Services\Tcpip\..\{32661DF8-88BF-41FF-A7FA-3C4267B0E115}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{67EFD9F4-2D90-40DA-89FE-BA5B30CFC836}: DhcpNameServer = 172.168.1.161
O17 - HKLM\System\CS2\Services\Tcpip\..\{32661DF8-88BF-41FF-A7FA-3C4267B0E115}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{67EFD9F4-2D90-40DA-89FE-BA5B30CFC836}: DhcpNameServer = 172.168.1.161
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (...) --
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\System32\mscoree.dll
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\WINDOWS\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Avira Scheduler.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG - Avira On-Access Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Protection Web (AntiVirWebService) . (.Avira Operations GmbH & Co. KG - Avira WebGuard Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.exe
O23 - Service: Service de mise à jour Ask (APNMCP) . (.APN LLC. - APN Updater.) - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
O23 - Service: BitGuard (BitGuard) . (...) - C:\ProgramData\BitGuard\2.6.1673.238\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe =>PUP.BitGuard
O23 - Service: Dock Login Service (DockLoginService) . (.Stardock Corporation - Dock Login Service.) - C:\Program Files\Dell\DellDock\DockLogin.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) . (.Intel Corporation - RAID Monitor.) - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: McAfee Real-time Scanner (McShield) . (...) - C:\Program Files (x86)\McAfee\VIRUSS~1\mcshield.exe (.not file.)
O23 - Service: SoftThinks Agent Service (SftService) . (.SoftThinks - SoftThinks Agent Service.) - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.exe
O23 - Service: SupportSoft Sprocket Service (DellSuppor (sprtsvc_DellSupportCenter) . (.SupportSoft, Inc. - SupportSoft Agent Service.) - C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
O23 - Service: Audio Service (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) . (...) - C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.exe
~ Services: 12 Scanned in 00mn 26s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job [1070]
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [1074]
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Plus-HD-3.5-codedownloader.job [1202] =>Adware.PlusHD
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Plus-HD-3.5-enabler.job [1102] =>Adware.PlusHD
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Plus-HD-3.5-firefoxinstaller.job [1834] =>Adware.PlusHD
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Plus-HD-3.5-updater.job [1298] =>Adware.PlusHD
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.386F5060FE270EFDC629FC6FBE720055] [APT] [Plus-HD-3.5-codedownloader] (.Plus HD.) -- C:\Program Files (x86)\Plus-HD-3.5\Plus-HD-3.5-codedownloader.exe [491880] =>Adware.PlusHD
[MD5.933DE801DEA782E1B35779C76EB2CD98] [APT] [Plus-HD-3.5-enabler] (.Plus HD.) -- C:\Program Files (x86)\Plus-HD-3.5\Plus-HD-3.5-enabler.exe [348008] =>Adware.PlusHD
[MD5.E8F21679635FE7491D0957B966BB4E2F] [APT] [Plus-HD-3.5-firefoxinstaller] (.Plus HD.) -- C:\Program Files (x86)\Plus-HD-3.5\Plus-HD-3.5-firefoxinstaller.exe [727400] =>Adware.PlusHD
[MD5.5A8245FC4E59011DFF180461EB877AB8] [APT] [Plus-HD-3.5-updater] (.Plus HD.) -- C:\Program Files (x86)\Plus-HD-3.5\Plus-HD-3.5-updater.exe [367976] =>Adware.PlusHD
[MD5.1F83CB91A9830038DBE7CD1BA1921205] [APT] [Administrator - Start WLAN Tray Applet] (.Dell Inc..) -- C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.exe [4968960]
~ Scheduled Task: 18 Scanned in 00mn 07s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\WINDOWS\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d'IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Java (Sun) [64Bits] - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\WINDOWS\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\WINDOWS\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\WINDOWS\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 12 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\WINDOWS\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys
O41 - Driver: (avipbb) . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) - C:\WINDOWS\System32\DRIVERS\avipbb.sys
O41 - Driver: (avkmgr) . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) - C:\WINDOWS\System32\DRIVERS\avkmgr.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\WINDOWS\System32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\system32\drivers\cdrom.sys
O41 - Driver: C:\WINDOWS\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\WINDOWS\System32\Drivers\dfsc.sys
O41 - Driver: C:\WINDOWS\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\WINDOWS\System32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\WINDOWS\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\WINDOWS\System32\DRIVERS\netbios.sys
O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\WINDOWS\System32\DRIVERS\netbt.sys
O41 - Driver: C:\WINDOWS\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\WINDOWS\System32\drivers\nsiproxy.sys
O41 - Driver: C:\WINDOWS\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\WINDOWS\System32\DRIVERS\pacer.sys
O41 - Driver: C:\WINDOWS\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\WINDOWS\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\WINDOWS\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\WINDOWS\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\WINDOWS\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\WINDOWS\System32\drivers\rdpencdd.sys
O41 - Driver: C:\WINDOWS\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\WINDOWS\System32\drivers\rdprefmp.sys
O41 - Driver: C:\WINDOWS\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\WINDOWS\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\WINDOWS\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\WINDOWS\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\WINDOWS\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\WINDOWS\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\WINDOWS\System32\DRIVERS\wfplwf.sys
~ Drivers: 66 Scanned in 00mn 01s



---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Reader 9.1.2 - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-A91000000001}
O42 - Logiciel: Advanced Audio FX Engine - (.Creative Technology Ltd.) [HKLM][64Bits] -- Advanced Audio FX Engine
O42 - Logiciel: Avira Free Antivirus v13.0.0.4042 - (.Avira.) [HKLM][64Bits] -- Avira AntiVir Desktop
O42 - Logiciel: Avira SearchFree Toolbar plus Web Protection v12.2.2.663 - (.Ask Partner Network.) [HKLM][64Bits] -- {41564952-412D-5637-00A7-A758B70C0202} =>Toolbar.Avira
O42 - Logiciel: BitGuard - (.MediaTechSoft Inc.) [HKLM][64Bits] -- {15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693} =>PUP.BitGuard
O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {64BF0187-F3D2-498B-99EA-163AF9AE6EC9}
O42 - Logiciel: Cisco LEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {51C7AD07-C3F6-4635-8E8A-231306D810FE}
O42 - Logiciel: Cisco PEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {ED5776D5-59B4-46B7-AF81-5F2D94D7C640}
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite
O42 - Logiciel: Dell DataSafe Local Backup - (.Dell.) [HKLM][64Bits] -- {0ED7EE95-6A97-47AA-AD73-152C08A15B04}
O42 - Logiciel: Dell DataSafe Local Backup - Support Software - (.Dell.) [HKLM][64Bits] -- {A9668246-FB70-4103-A1E3-66C9BC2EFB49}
O42 - Logiciel: Dell DataSafe Online - (.Dell, Inc..) [HKLM][64Bits] -- {13766F76-6C8C-4E57-A9F3-3212D1C6E0D1}
O42 - Logiciel: Dell Dock - (.Dell.) [HKLM][64Bits] -- {E60B7350-EA5F-41E0-9D6F-E508781E36D2}
O42 - Logiciel: Dell Edoc Viewer - (.Dell Inc.) [HKLM][64Bits] -- {8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}
O42 - Logiciel: Dell Getting Started Guide - (.Dell Inc..) [HKLM][64Bits] -- {7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}
O42 - Logiciel: Dell Support Center (Logiciel de support) - (.Dell.) [HKLM][64Bits] -- {E3BFEE55-39E2-4BE0-B966-89FE583822C1}
O42 - Logiciel: Dell Touchpad - (.Alps Electric.) [HKLM][64Bits] -- {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}
O42 - Logiciel: Dell Webcam Central - (.Creative Technology Ltd.) [HKLM][64Bits] -- Dell Webcam Central
O42 - Logiciel: Dell Wireless WLAN Card Utility - (.Dell Inc..) [HKLM][64Bits] -- Dell Wireless WLAN Card Utility
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM][64Bits] -- HDMI
O42 - Logiciel: Intel® Matrix Storage Manager - (.Intel Corporation.) [HKLM][64Bits] -- {9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}
O42 - Logiciel: Java(TM) 6 Update 14 (64-bit) - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86416014FF}
O42 - Logiciel: Java(TM) 6 Update 14 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216014FF}
O42 - Logiciel: Jeux WildTangent - (.WildTangent.) [HKLM][64Bits] -- WildTangent dell Master Uninstall
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {E2DFE069-083E-4631-9B6C-43C48E991DE5}
O42 - Logiciel: Live! Cam Avatar Creator - (.Creative Technology Ltd.) [HKLM][64Bits] -- {65D0C510-D7B6-4438-9FC8-E6B91115AB0D}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM][64Bits] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5}
O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM][64Bits] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
O42 - Logiciel: Plus-HD-3.5 - (.Plus HD.) [HKLM][64Bits] -- Plus-HD-3.5 =>Adware.PlusHD
O42 - Logiciel: PowerDVD DX - (.CyberLink Corp..) [HKLM][64Bits] -- {6811CAA0-BF12-11D4-9EA1-0050BAE317E1}
O42 - Logiciel: Quickset64 - (.Dell Inc..) [HKLM][64Bits] -- {87CF757E-C1F1-4D22-865C-00C6950B5258}
O42 - Logiciel: Roxio Burn - (.Roxio.) [HKLM][64Bits] -- {A33E7B0C-B99C-4EC9-B702-8A328B161AF9}
O42 - Logiciel: Roxio Burn - (.Roxio.) [HKLM][64Bits] -- {B2E47DE7-800B-40BB-BD1F-9F221C3AEE87}
O42 - Logiciel: Roxio Update Manager - (.Roxio.) [HKLM][64Bits] -- {04F3038E-4120-44CC-B330-E05F737246A5}
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB931906
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
O42 - Logiciel: Spotify - (.Spotify AB.) [HKCU][64Bits] -- Spotify
~ Logic: 101 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\5a53d9dee23fb813]
[HKCU\Software\Alps]
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\AppDataLow\Software\Plus-HD-3.5] =>Adware.PlusHD
[HKCU\Software\AppDataLow]
[HKCU\Software\AskPartnerNetwork]
[HKCU\Software\Avira]
[HKCU\Software\BabSolution] =>Hijacker.BabSolution
[HKCU\Software\Broadcom]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Creative Tech]
[HKCU\Software\Cyberlink]
[HKCU\Software\DataMngr] =>PUP.Datamngr
[HKCU\Software\DataMngr_Toolbar] =>PUP.Datamngr
[HKCU\Software\Dell]
[HKCU\Software\Delta]
[HKCU\Software\Disc Soft]
[HKCU\Software\Google]
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\InstalledBrowserExtensions] =>Adware.VidSaver
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Macromedia]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Policies]
[HKCU\Software\SupportSoft]
[HKCU\Software\TeleCharger]
[HKCU\Software\WEDLMNGR] =>PUP.weDownloadManager
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\mozilla]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Alps]
[HKLM\Software\Broadcom]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Creative Tech]
[HKLM\Software\Cyberlink]
[HKLM\Software\Dell Computer Corporation]
[HKLM\Software\Dell]
[HKLM\Software\IDT]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\ODBC]
[HKLM\Software\Policies]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Sonic]
[HKLM\Software\WildTangent]
[HKLM\Software\Wow6432Node\5a53d9dee23fb813]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\America Online]
[HKLM\Software\Wow6432Node\AskPartnerNetwork]
[HKLM\Software\Wow6432Node\Avira]
[HKLM\Software\Wow6432Node\BcmSetup]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Creative Tech]
[HKLM\Software\Wow6432Node\Creative]
[HKLM\Software\Wow6432Node\Cyberlink]
[HKLM\Software\Wow6432Node\DataMngr] =>PUP.Datamngr
[HKLM\Software\Wow6432Node\Dell Computer Corporation]
[HKLM\Software\Wow6432Node\Dell]
[HKLM\Software\Wow6432Node\Delta]
[HKLM\Software\Wow6432Node\Disc Soft]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\McAfeeInstaller]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\PC-Doctor]
[HKLM\Software\Wow6432Node\Phoenix Technologies]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Roxio]
[HKLM\Software\Wow6432Node\SoftThinks]
[HKLM\Software\Wow6432Node\Sonic]
[HKLM\Software\Wow6432Node\SupportSoft]
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node\X-AVCSD]
[HKLM\Software\Wow6432Node\mozilla]
[HKLM\Software\Wow6432Node]
~ Key Software: 149 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 13/12/2009 - 20:48:25 - [227,309] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 12/09/2013 - 21:28:50 - [9,559] ----D C:\Program Files (x86)\AskPartnerNetwork
O43 - CFD: 12/09/2013 - 21:24:31 - [230,318] ----D C:\Program Files (x86)\Avira
O43 - CFD: 13/12/2009 - 20:47:06 - [3,432] ----D C:\Program Files (x86)\Cisco
O43 - CFD: 13/09/2013 - 21:07:58 - [316,800] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 13/12/2009 - 21:09:21 - [14,261] ----D C:\Program Files (x86)\Creative
O43 - CFD: 13/12/2009 - 21:08:09 - [0,109] ----D C:\Program Files (x86)\Creative Live! Cam
O43 - CFD: 13/12/2009 - 21:00:44 - [46,067] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 13/12/2009 - 21:18:13 - [1,214] ----D C:\Program Files (x86)\Dell
O43 - CFD: 22/09/2013 - 13:35:58 - [97,334] ----D C:\Program Files (x86)\Dell DataSafe Local Backup
O43 - CFD: 13/12/2009 - 20:52:57 - [12,832] ----D C:\Program Files (x86)\Dell DataSafe Online
O43 - CFD: 13/12/2009 - 21:00:21 - [100,489] ----D C:\Program Files (x86)\Dell Support Center
O43 - CFD: 13/12/2009 - 21:09:10 - [252,530] ----D C:\Program Files (x86)\Dell Webcam
O43 - CFD: 13/09/2013 - 21:57:05 - [290,797] ----D C:\Program Files (x86)\Google
O43 - CFD: 13/12/2009 - 21:09:10 - [27,155] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 13/12/2009 - 20:48:00 - [58,878] ----D C:\Program Files (x86)\Intel
O43 - CFD: 21/09/2013 - 23:59:56 - [4,935] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 13/12/2009 - 20:44:54 - [86,036] ----D C:\Program Files (x86)\Java
O43 - CFD: 13/12/2009 - 21:04:56 - [0,815] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 13/12/2009 - 20:52:59 - [0,764] ----D C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
O43 - CFD: 13/12/2009 - 20:52:07 - [328,340] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 13/12/2009 - 21:07:29 - [14,742] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 13/12/2009 - 21:06:04 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 13/12/2009 - 21:07:06 - [2,087] ----D C:\Program Files (x86)\Microsoft Sync Framework
O43 - CFD: 13/12/2009 - 20:52:12 - [3,032] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 22/09/2013 - 13:06:48 - [7,789] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 21/09/2013 - 23:55:11 - [0] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 14/07/2009 - 07:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 13/12/2009 - 21:01:00 - [2,252] ----D C:\Program Files (x86)\Phoenix Technologies Ltd
O43 - CFD: 21/09/2013 - 23:55:47 - [7,849] ----D C:\Program Files (x86)\Plus-HD-3.5 =>Adware.PlusHD
O43 - CFD: 14/07/2009 - 07:32:38 - [37,345] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 13/12/2009 - 21:11:48 - [13,238] ----D C:\Program Files (x86)\Roxio
O43 - CFD: 14/07/2009 - 06:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 13/12/2009 - 20:53:31 - [184,581] ----D C:\Program Files (x86)\WildTangent
O43 - CFD: 14/07/2009 - 17:24:08 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 13/12/2009 - 21:07:23 - [144,009] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 13/12/2009 - 21:04:38 - [0,234] ----D C:\Program Files (x86)\Windows Live SkyDrive
O43 - CFD: 22/09/2013 - 12:59:21 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 22/09/2013 - 12:59:21 - [4,791] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 07:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 22/09/2013 - 12:59:20 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 22/09/2013 - 12:59:21 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 22/09/2013 - 12:59:22 - [5,717] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 22/09/2013 - 14:49:23 - [16,903] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 13/12/2009 - 20:48:31 - [4,387] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 13/12/2009 - 20:52:06 - [0,089] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 13/12/2009 - 20:58:31 - [5,303] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 13/12/2009 - 21:04:42 - [207,477] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 13/12/2009 - 21:12:05 - [0,598] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 13/12/2009 - 21:09:12 - [4,026] ----D C:\Program Files (x86)\Common Files\Reallusion
O43 - CFD: 13/12/2009 - 21:11:50 - [6,170] ----D C:\Program Files (x86)\Common Files\Roxio Shared
O43 - CFD: 14/07/2009 - 05:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 13/12/2009 - 21:11:50 - [0,355] ----D C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 14/07/2009 - 05:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 13/12/2009 - 21:00:15 - [7,178] ----D C:\Program Files (x86)\Common Files\supportsoft
O43 - CFD: 22/09/2013 - 12:59:17 - [42,016] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 13/12/2009 - 21:01:36 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 13/12/2009 - 20:48:39 - [0,001] ----D C:\ProgramData\Adobe
O43 - CFD: 12/09/2013 - 21:27:04 - [0] ----D C:\ProgramData\APN
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 12/09/2013 - 21:28:50 - [3,036] ----D C:\ProgramData\AskPartnerNetwork
O43 - CFD: 12/09/2013 - 21:25:06 - [94,832] ----D C:\ProgramData\Avira
O43 - CFD: 21/09/2013 - 23:53:38 - [0] ----D C:\ProgramData\Babylon =>Toolbar.Babylon
O43 - CFD: 21/09/2013 - 23:54:53 - [8,084] ----D C:\ProgramData\BitGuard =>PUP.BitGuard
O43 - CFD: 11/09/2013 - 22:13:16 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 22/09/2013 - 00:35:10 - [0,002] ----D C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 11/09/2013 - 22:20:23 - [1,078] ----D C:\ProgramData\Dell
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 21/09/2013 - 23:54:17 - [0,147] ----D C:\ProgramData\DSearchLink =>Toolbar.DeltaSearch
O43 - CFD: 11/09/2013 - 22:13:16 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 13/12/2009 - 21:11:45 - [3,388] ----D C:\ProgramData\Macrovision
O43 - CFD: 13/09/2013 - 21:07:58 - [0,004] ----D C:\ProgramData\McAfee
O43 - CFD: 11/09/2013 - 22:13:16 - [0] --H-D C:\ProgramData\Menu Démarrer
O43 - CFD: 12/09/2013 - 21:11:12 - [277,421] ----D C:\ProgramData\Microsoft
O43 - CFD: 13/12/2009 - 20:52:51 - [0,055] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 11/09/2013 - 22:13:17 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 13/12/2009 - 21:00:31 - [0] ----D C:\ProgramData\PCDr
O43 - CFD: 13/12/2009 - 21:12:00 - [0,006] ----D C:\ProgramData\Sonic
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 13/12/2009 - 21:00:33 - [5,654] ----D C:\ProgramData\SupportSoft
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 13/12/2009 - 21:12:04 - [12,389] ----D C:\ProgramData\Uninstall
O43 - CFD: 13/12/2009 - 20:57:55 - [1382,918] ----D C:\ProgramData\WildTangent
O43 - CFD: 12/09/2013 - 21:30:32 - [0] ----D C:\Users\Charlotte\AppData\Roaming\Adobe
O43 - CFD: 12/09/2013 - 21:31:27 - [0] ----D C:\Users\Charlotte\AppData\Roaming\Avira
O43 - CFD: 21/09/2013 - 23:53:37 - [0,003] ----D C:\Users\Charlotte\AppData\Roaming\Babylon =>Toolbar.Babylon
O43 - CFD: 11/09/2013 - 22:23:21 - [0] ----D C:\Users\Charlotte\AppData\Roaming\CyberLink
O43 - CFD: 22/09/2013 - 00:35:06 - [1,415] ----D C:\Users\Charlotte\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 11/09/2013 - 22:20:12 - [0,104] ----D C:\Users\Charlotte\AppData\Roaming\Dell
O43 - CFD: 11/09/2013 - 22:18:15 - [0] ----D C:\Users\Charlotte\AppData\Roaming\Identities
O43 - CFD: 13/09/2013 - 21:45:19 - [0,001] ----D C:\Users\Charlotte\AppData\Roaming\Macromedia
O43 - CFD: 14/07/2009 - 17:35:05 - [0] ----D C:\Users\Charlotte\AppData\Roaming\Media Center Programs
O43 - CFD: 22/09/2013 - 00:35:51 - [1,710] -S--D C:\Users\Charlotte\AppData\Roaming\Microsoft
O43 - CFD: 12/09/2013 - 21:28:53 - [0,681] ----D C:\Users\Charlotte\AppData\Roaming\Mozilla
O43 - CFD: 11/09/2013 - 22:19:30 - [0,000] ----D C:\Users\Charlotte\AppData\Roaming\Roxio
O43 - CFD: 22/09/2013 - 14:22:00 - [49,115] ----D C:\Users\Charlotte\AppData\Roaming\Spotify
O43 - CFD: 11/09/2013 - 22:14:42 - [0] ----D C:\Users\Charlotte\AppData\Local\Application Data
O43 - CFD: 13/09/2013 - 21:46:47 - [1,600] ----D C:\Users\Charlotte\AppData\Local\Apps
O43 - CFD: 13/09/2013 - 21:44:45 - [0,271] ----D C:\Users\Charlotte\AppData\Local\AskPartnerNetwork
O43 - CFD: 22/09/2013 - 14:25:32 - [0,167] ----D C:\Users\Charlotte\AppData\Local\avgchrome
O43 - CFD: 11/09/2013 - 22:19:48 - [0] ----D C:\Users\Charlotte\AppData\Local\DataSafeOnline
O43 - CFD: 13/09/2013 - 21:49:01 - [0] ----D C:\Users\Charlotte\AppData\Local\Deployment
O43 - CFD: 11/09/2013 - 22:28:00 - [0,959] ----D C:\Users\Charlotte\AppData\Local\Diagnostics
O43 - CFD: 13/09/2013 - 21:57:50 - [423,200] ----D C:\Users\Charlotte\AppData\Local\Google
O43 - CFD: 11/09/2013 - 22:14:42 - [0] ----D C:\Users\Charlotte\AppData\Local\Historique
O43 - CFD: 22/09/2013 - 00:35:50 - [69,858] ----D C:\Users\Charlotte\AppData\Local\Microsoft
O43 - CFD: 22/09/2013 - 14:22:40 - [478,077] ----D C:\Users\Charlotte\AppData\Local\Spotify
O43 - CFD: 11/09/2013 - 22:19:46 - [0,000] ----D C:\Users\Charlotte\AppData\Local\Stardock_Corporation
O43 - CFD: 11/09/2013 - 22:19:14 - [3,866] ----D C:\Users\Charlotte\AppData\Local\SupportSoft
O43 - CFD: 22/09/2013 - 14:50:22 - [42,857] ----D C:\Users\Charlotte\AppData\Local\Temp
O43 - CFD: 11/09/2013 - 22:14:42 - [0] ----D C:\Users\Charlotte\AppData\Local\Temporary Internet Files
O43 - CFD: 11/09/2013 - 22:17:54 - [0] ----D C:\Users\Charlotte\AppData\Local\VirtualStore
O43 - CFD: 14/07/2009 - 06:54:32 - [0,014] R---D C:\Users\Charlotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 22/09/2013 - 13:36:14 - [0,000] R---D C:\Users\Charlotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 21/09/2013 - 23:55:00 - [0,001] ----D C:\Users\Charlotte\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuar
0
Réponse 4 / 16
2011N2 Messages postés 13352 Date d'inscription samedi 29 janvier 2011 Statut Contributeur sécurité Dernière intervention 24 décembre 2016 917
21 sept. 2013 à 15:07
Re,

Oui il faut l'héberger sur cjoint car il est incomplet.

Gabriel.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 16
Charlotte
21 sept. 2013 à 15:10
Voici http://cjoint.com/?CIvpiLtdBmB

charlotte
0
Réponse 6 / 16
2011N2 Messages postés 13352 Date d'inscription samedi 29 janvier 2011 Statut Contributeur sécurité Dernière intervention 24 décembre 2016 917
21 sept. 2013 à 15:13
Re,

Ok, passe AdwCleaner et poste le rapport : http://www.forum-entraide-informatique.com/support/adwcleaner-tutoriel-t875.html

Puis passe SFTGC et poste le rapport hébergé : http://www.forum-entraide-informatique.com/support/sftgc-tutoriel-t8267.html

Gabriel.
0
Réponse 7 / 16
Charlotte
21 sept. 2013 à 15:36
Voici le rapport avec AWD http://cjoint.com/?CIvpJvY7KH6
et le rapport avec SFTGC : http://cjoint.com/?CIvpKKMIBv9

Merci,

Charlotte
0
Réponse 8 / 16
2011N2 Messages postés 13352 Date d'inscription samedi 29 janvier 2011 Statut Contributeur sécurité Dernière intervention 24 décembre 2016 917
21 sept. 2013 à 15:39
Re,

Bien.
Fais moi un nouveau rapport ZHPDiag.

Gabriel.
0
Réponse 9 / 16
Charlotte
21 sept. 2013 à 16:15
voici
http://cjoint.com/?CIvqgQ8aQ7r
0
Réponse 10 / 16
2011N2 Messages postés 13352 Date d'inscription samedi 29 janvier 2011 Statut Contributeur sécurité Dernière intervention 24 décembre 2016 917
21 sept. 2013 à 16:34
Re,

Fais ZHPFix comme ceci avec ces lignes, et poste le rapport.

Gabriel.
0
Réponse 11 / 16
Charlotte
21 sept. 2013 à 16:45
Voici
http://cjoint.com/?CIvqRolkm3V

merci !
Charlotte
0
Réponse 12 / 16
2011N2 Messages postés 13352 Date d'inscription samedi 29 janvier 2011 Statut Contributeur sécurité Dernière intervention 24 décembre 2016 917
21 sept. 2013 à 16:46
Re,

Ok, fais un examen complet sur tous les disques avec MBAM. Tu supprimeras tous les éléments détectés et me posteras le rapport : http://www.forum-entraide-informatique.com/support/malwarebytes-anti-malware-mbam-tutoriel-t6.html

Gabriel.
0
Réponse 13 / 16
Charlotte
22 sept. 2013 à 01:52
Re

voici enfin ledit rapport http://cjoint.com/?CIwbZv0jAVM

charlotte
0
Réponse 14 / 16
2011N2 Messages postés 13352 Date d'inscription samedi 29 janvier 2011 Statut Contributeur sécurité Dernière intervention 24 décembre 2016 917
22 sept. 2013 à 11:07
Bonjour,

Ok, comment se comporte le PC ?

Fais moi un nouveau rapport ZHPDiag.

Gabriel.
0
Réponse 15 / 16
Charlotte
22 sept. 2013 à 23:58
Bonjour

Voici le nouveau rapport http://cjoint.com/?CIwx2X7p5Dq

mon ordinateur semble fonctionner normalement toutefois des pubs demeurent sur mes pages d'exploration (apparemment c'est un volet de Delta box)

Merci en tout cas

Charlotte
0
Réponse 16 / 16
2011N2 Messages postés 13352 Date d'inscription samedi 29 janvier 2011 Statut Contributeur sécurité Dernière intervention 24 décembre 2016 917
23 sept. 2013 à 06:07
Bonjour,

Ok, sur Chrome c'est bien ça ?

Gabriel.
0

Discussions similaires

Freebox delta bloquée à l'étape 6
Kayla5635 -
Kayla5635 -

4 réponses
Comment supprimer un compte Facebook sans email ni mot de passe ?
Joris77 -
Mahmoud96 -

23 réponses