Virus UNKNOWN - DllName [ c:\windows\syswow64\iedkcs32.dll
Messages postés
Date d'inscription
vendredi 14 septembre 2012
Dernière intervention
7 novembre 2014
19 févr. 2014 à 22:38
Marou81 Messages postés 4175 Date d'inscription mercredi 13 janvier 2010 Statut Membre Dernière intervention 18 mars 2014 - 23 févr. 2014 à 15:05
Marou81 Messages postés 4175 Date d'inscription mercredi 13 janvier 2010 Statut Membre Dernière intervention 18 mars 2014 - 23 févr. 2014 à 15:05
A voir également:
- Lyrics piste 02 <unknown>
- Usb\unknown - Télécharger - Optimisation
- Lyrics piste 2 <unknown> - Forum Logiciels
- Musique Episode 3 saison 1 de Charmed - Forum Cinéma / Télé
- Telnet - 502 unknown command - Forum Réseaux sociaux
- Sxxxoxxxe lyrics 2023 youtube playlist video viral indonesia - Forum TV & Vidéo
3 réponses
Messages postés
Date d'inscription
mercredi 13 janvier 2010
Dernière intervention
18 mars 2014
19 févr. 2014 à 22:42
19 févr. 2014 à 22:42
Peux-tu utiliser ce logiciel de diagnostic, ça me permettra de t'aider :
▶ Télécharge ZHPDiag (de Nicolas Coolman)
▶ Lance le (si tu es sous Windows Vista ou Windows 7, fais le par un clic-droit --> Exécuter en temps qu'administrateur)
▶ Laisse toi guider lors de l'installation (pense à cocher la case pour créer un raccourci sur le Bureau). Il se lancera automatiquement à la fin de l'installation.
▶ Clique sur configurer puis sur l'icône représentant une loupe («Diagnostic par défaut avec légitimes») et accepte le "rapport full options"
▶ le rapport se trouve sur ton Bureau
▶ Rends toi sur ce site, clique sur "Parcourir", sélectionne le rapport de ZHPDiag et clique sur Envoyer le fichier. Patiente pendant l'envoi du fichier, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum.
Si tu as besoin d'aide, suis ce tuto : Confond pas ZHPFix et ZHPDiag !
Peux-tu utiliser ce logiciel de diagnostic, ça me permettra de t'aider :
▶ Télécharge ZHPDiag (de Nicolas Coolman)
▶ Lance le (si tu es sous Windows Vista ou Windows 7, fais le par un clic-droit --> Exécuter en temps qu'administrateur)
▶ Laisse toi guider lors de l'installation (pense à cocher la case pour créer un raccourci sur le Bureau). Il se lancera automatiquement à la fin de l'installation.
▶ Clique sur configurer puis sur l'icône représentant une loupe («Diagnostic par défaut avec légitimes») et accepte le "rapport full options"
▶ le rapport se trouve sur ton Bureau
▶ Rends toi sur ce site, clique sur "Parcourir", sélectionne le rapport de ZHPDiag et clique sur Envoyer le fichier. Patiente pendant l'envoi du fichier, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum.
Si tu as besoin d'aide, suis ce tuto : Confond pas ZHPFix et ZHPDiag !
Messages postés
Date d'inscription
vendredi 14 septembre 2012
Dernière intervention
7 novembre 2014
Modifié par bayonne59113 le 19/02/2014 à 23:36
Modifié par bayonne59113 le 19/02/2014 à 23:36
voila le raport si tu peut me dire koi faire je te remercie de ton aide merci a toi
Messages postés
Date d'inscription
vendredi 14 septembre 2012
Dernière intervention
7 novembre 2014
19 févr. 2014 à 23:34
19 févr. 2014 à 23:34
Rapport de ZHPDiag v2014.2.17.15 - Nicolas Coolman (17/02/2014)
~ Lancé par fan (19/02/2014 23:24:51)
~ Adresse du Site Web
~ Forums gratuits d'Assistance à la désinfection :
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user
---\\ Navigateurs Internet
MSIE: Internet Explorer v10.0.9200.16798 (Defaut)
GCIE: Google Chrome v31.0.1650.63
---\\ Informations sur les produits Windows
~ Langage: Français
Windows 8, 64-bit (Build 9200)
Windows Server License Manager Script : OK
~ ion : Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : B96BG
Windows License : OK
~ Windows Remaining Initializations Number : 999
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Logiciels de protection du système
Avira Free Antivirus v14.0.2.286
Malwarebytes Anti-Malware version
Windows Defender W8
---\\ Logiciels d'optimisation du système
---\\ Logiciels de partage PeerToPeer
---\\ Surveillance de Logiciels
Adobe Flash Player 12 Plugin
Adobe Reader XI
Java 7 Update 51
---\\ Informations sur le système
~ Processor: AMD64 Family 20 Model 2 Stepping 0, AuthenticAMD
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3801 MB (64% free)
System Restore: Activé (Enable)
System drive C: has 162 GB (72%) free of 225 GB
---\\ Mode de connexion au système
~ Computer Name: FANNYDAVID
~ User Name: fan
~ All Users Names: HomeGroupUser$, fan, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\fan\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\fan\AppData\Roaming\
~ %Desktop% : C:\Users\fan\Desktop\
~ %Favorites% : C:\Users\fan\Favorites\
~ %LocalAppData% : C:\Users\fan\AppData\Local\
~ %StartMenu% : C:\Users\fan\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 162 Go of 225 Go)
D: Hard drive, Flash drive, Thumb drive (Free 116 Go of 225 Go)
E: Floppy drive, Flash card reader, USB Key (Free 2 Go of 4 Go)
F: CD-ROM drive (Not Inserted)
---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 49 Scanned in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.0E8E6463F81C80AFBED533E0F1F8895D] - (.Microsoft Corporation - Explorateur Windows.) (.01/06/2013 - 12:34:21.) -- C:\Windows\Explorer.exe [2391280]
[MD5.FE9AB232B56A12224E8A3F3F9878C9A3] - (.Microsoft Corporation - Application de démarrage de Windows.) (.26/07/2012 - 04:08:50.) -- C:\Windows\System32\Wininit.exe [132608]
[MD5.90860E913075B03369BEB7B0B510DC2F] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.01/02/2014 - 10:19:49.) -- C:\Windows\System32\wininet.dll [2241536]
[MD5.BCF2036A0DD579E47C008C133550283E] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/10/2012 - 06:46:58.) -- C:\Windows\System32\Winlogon.exe [517120]
[MD5.9448F5740A037EC0C18F0E9177232DD0] - (.Microsoft Corporation - Bibliothèque de licences.) (.26/07/2012 - 04:07:20.) -- C:\Windows\System32\sppcomapi.dll [273408]
[MD5.7C0E0EDF18D6CC565D7BFBB451709FA5] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.04/09/2013 - 04:11:23.) -- C:\Windows\system32\Drivers\AFD.sys [576512]
[MD5.A721FF570C2387E383BDDEA9632863C9] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.26/07/2012 - 06:00:48.) -- C:\Windows\system32\Drivers\atapi.sys [25840]
[MD5.990B1BABE6E81FB18E65A87EBEFB1772] - (.Microsoft Corporation - CD-ROM File System Driver.) (.26/07/2012 - 03:30:10.) -- C:\Windows\system32\Drivers\Cdfs.sys [108544]
[MD5.339BFF85D788268752DA8C9644B188EE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.26/07/2012 - 03:26:36.) -- C:\Windows\system32\Drivers\Cdrom.sys [174080]
[MD5.09D9EB9E7898F8E6561473A20CC808B9] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.26/07/2012 - 03:26:53.) -- C:\Windows\system32\Drivers\DfsC.sys [118784]
[MD5.7D87B5B6C7188D553E11B59DC7F0B111] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/09/2012 - 07:08:44.) -- C:\Windows\system32\Drivers\HDAudBus.sys [71168]
[MD5.C9E9CBF73AFFBFE3E801EFB516787BA3] - (.Microsoft Corporation - Pilote de port i8042.) (.26/07/2012 - 03:28:51.) -- C:\Windows\system32\Drivers\i8042prt.sys [112640]
[MD5.3969B9C218DD3FAA9F4ED2FFC3651C02] - (.Microsoft Corporation - IP Network Address Translator.) (.26/07/2012 - 03:23:01.) -- C:\Windows\system32\Drivers\IpNat.sys [145920]
[MD5.93179D48066918323628CB016D8C94DC] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.05/02/2013 - 23:29:09.) -- C:\Windows\system32\Drivers\MRxSmb.sys [370688]
[MD5.7CEC25C682D319D484630B3952C31A11] - (.Microsoft Corporation - MBT Transport driver.) (.26/07/2012 - 03:24:28.) -- C:\Windows\system32\Drivers\netBT.sys [331776]
[MD5.76929F4A69E425911A63B407E26C2589] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.02/02/2013 - 11:54:54.) -- C:\Windows\system32\Drivers\ntfs.sys [1933544]
[MD5.4563DAF8C6A740AD7F501E219BD10766] - (.Microsoft Corporation - Pilote de port parallèle.) (.26/07/2012 - 03:29:53.) -- C:\Windows\system32\Drivers\Parport.sys [105984]
[MD5.A14D625C5AEE5FFE0F47D1A1D419FAAE] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.26/07/2012 - 03:23:17.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [124928]
[MD5.B2A3AD74FF2E2FFA73AF2567108231B3] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.26/07/2012 - 03:25:18.) -- C:\Windows\system32\Drivers\rdpdr.sys [179712]
[MD5.73DC722CE5DF26D7638CE2446F2655C7] - (.Microsoft Corporation - TDI Translation Driver.) (.26/07/2012 - 06:26:47.) -- C:\Windows\system32\Drivers\tdx.sys [117248]
[MD5.78A5BBA3819FFFC62FFEC3E2220D102D] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.01/06/2013 - 12:26:33.) -- C:\Windows\system32\Drivers\volsnap.sys [327936]
~ Generic Processes: Scanned in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/266
~ Mes musiques (My Musics) : 7/8
Mes Videos (My Videos) : 2/2 (Modified)
~ Mes Favoris (My Favorites) : 1/26
~ Mes Documents (My Documents) : 1/76
~ Mon Bureau (My Desktop) : 1/247
~ Menu demarrer (Programs) : 1/28
~ Hidden Files: Scanned in 00mn 00s
---\\ Processus lancés
[MD5.280B64F6BFCEDE6D67D261EB808AA617] - (.Acer Incorporated - Hotkey Utility.) -- C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe [524944] [PID.3140]
[MD5.224F6B374852153C8C24BED141AE3A20] - (...) -- ysWOW64\rundll32.exe [0] [PID.3836]
[MD5.63A2D767B9261B4F33F97BF88F2FB197] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [276328] [PID.3892]
[MD5.DD231039B13EC2ABDE315D76E658EF0E] - (.Avira Operations GmbH & Co. KG - Antivirus System Tray Tool (Desktop).) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600] [PID.3900]
[MD5.BEFFB2D021E7FA9E92249F3997930A68] - (.Acer - ArcServer.) -- C:\Program Files (x86)\Acer Remote\ArcServer.exe [522144] [PID.3912]
[MD5.E650003C472935D7F5B01CF67490669C] - (.BitTorrent Inc. - BitTorrent.) -- C:\Users\fan\AppData\Roaming\BitTorrent\BitTorrent.exe [1126488] [PID.3952] =>P2P.BitTorrent
[MD5.0CED501E811F5C4745415FCC000CE043] - (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe [164864] [PID.1036]
[MD5.5EBBA07CFE002FF3DB1B0AAC33689913] - (.Glarysoft Ltd - Glary Utilities 4.) -- C:\Program Files (x86)\Glary Utilities 4\Integrator.exe [780064] [PID.4104]
[MD5.2FB757B35C94B1C1C65BA35E4E7EC0F2] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe [174952] [PID.4544]
[MD5.F9DFC08677FC9AC81DD5ACA5EE879E47] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe [565096] [PID.4252]
[MD5.B2F0B501A7C017F21C4B4417623895BD] - (.Hewlett-Packard - GPCore COM object.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe [367976] [PID.4148]
[MD5.3AB2CCB32AB509609B2D9AEB567DA357] - (.Arovax - Arovax AntiSpyware.) -- C:\Program Files (x86)\Arovax AntiSpyware\arovaxantispyware.exe [1966080] [PID.5096]
[MD5.7C3459C721B53BA356E0B36D1FDC2E6C] - (.BrowserSafeguard - BrowserSafeguard.) -- C:\Users\fan\AppData\Local\BrowserSafeguard\BrowserSafeguard.exe [418304] [PID.5032] =>PUP.BrowserSafeguard
[MD5.77FBE53DE14794B84C352DD9D9D232DF] - (.Microsoft Corporation - Commande TCP/IP Ping.) -- C:\Windows\SysWOW64\PING.exe [18432] [PID.2552]
[MD5.376A9B411BF8B77D5BF84B24D0C7DACD] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [863184] [PID.2292]
[MD5.AB44884BC129FC04D75A4649E0710203] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8338432] [PID.3156]
~ Processes Running: Scanned in 00mn 00s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\fan\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default] , "", "" "", "", " =>Adware.IMBooster
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Google\u00C3\u201A\u00C2 Store v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [ahmilhmcinpmpohfoiccaplbhgelbnim] Torntv V6.0 v.1.0.0 (Activé) =>Hijacker.TornTV
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.6 (Activé)
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v. (Activé)
G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [gdidcmifanncidcpmndaenenhcgeaica] Application Findizer v.1.20, (Activé)
G2 - GCE: Preference [User Data\Default] [gfdkimpbcpahaombhbimeihdjnejgicl] Feedback v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [jjflmfkjppbmejlfbhlpgjnomdoefkfa] Share With Care v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [lcnnhcneegeeojhgpfijnlnocjdmlaon] Value apps v., (Activé) =>Toolbar.Conduit
G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v. (Activé)
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activé)
~ Google Browser: 16 Scanned in 00mn 13s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M3 - MFPP: Plugins - [fan] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\do-search.xml =>PUP.DoSearches
P2 - FPN: [HKLM] [] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll
P2 - FPN: [HKLM] [,version=2.1.3] - (.VideoLAN - VLC media player Web Plugin 2.1.3.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll =>.VideoLAN
~ Firefox Browser: 3 Scanned in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = =>Adware.MyWebSearch
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = =>Adware.MyWebSearch
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = =>Adware.MyWebSearch
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = =>PUP.AArtemis
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = =>PUP.AArtemis
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = =>Adware.MyWebSearch
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = =>PUP.AArtemis
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = =>PUP.AArtemis
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (10.00.9200.16384 (win8_rtm.120725-1247)) -- C:\Windows\SysWOW64\ieframe.dll
~ IE Browser: 18 Scanned in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <-loopback> =>Hijacker.Proxy
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=;https= =>Hijacker.Proxy
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
~ BHO: 2 Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: Adobe Reader XI.lnk . (.Adobe Systems Incorporated - Adobe Reader.) -- C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
O4 - GS\Desktop [Public]: Arovax AntiSpyware.lnk . (.Arovax - Arovax AntiSpyware.) -- C:\Program Files (x86)\Arovax AntiSpyware\arovaxantispyware.exe
O4 - GS\Desktop [Public]: Avira Control Center.lnk . (.Avira Operations GmbH & Co. KG - Antivirus Control Center (Desktop).) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avcenter.exe
O4 - GS\Desktop [Public]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.) -- C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe
O4 - GS\Desktop [Public]: Centre de solutions HP.lnk . (.Hewlett-Packard Company - hpqdirec.exe.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\Hpqdirec.exe
O4 - GS\Desktop [Public]: CyberLink PowerDVD 12.lnk . (.CyberLink Corp. - CyberLink PowerDVD12.) -- C:\Program Files (x86)\CyberLink\PowerDVD12\PDVDLP.exe
O4 - GS\Desktop [Public]: DVDVideoSoft Free Studio.lnk . (.DvdVideoSoft Ltd. - FreeStudioManager.) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe
O4 - GS\Desktop [Public]: Free YouTube Download.lnk . (.DVDVideoSoft Ltd. - FreeYouTubeDownload.) -- C:\Program Files (x86)\DVDVideoSoft\Free YouTube Download\FreeYTVDownloader.exe
O4 - GS\Desktop [Public]: Freemake Video Converter.lnk . (.Freemake - Freemake Video Converter.) -- C:\Program Files (x86)\Freemake\Freemake Video Converter\FreemakeVideoConverter.exe
O4 - GS\Desktop [Public]: Glary Utilities 4.lnk . (.Glarysoft Ltd - Glary Utilities 4.) -- C:\Program Files (x86)\Glary Utilities 4\Integrator.exe
O4 - GS\Desktop [Public]: Jouer à Zuma Deluxe.lnk . (...) -- C:\Program Files (x86)\Zuma Deluxe\LaunchGame.bfg
O4 - GS\Desktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
O4 - GS\Desktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player 2.1.3.) -- C:\Program Files\VideoLAN\VLC\vlc.exe =>.VideoLAN
O4 - GS\Program [Public]: Adobe Reader XI.lnk . (...) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico
O4 - GS\Program [Public]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.) -- C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe
O4 - GS\Program [Public]: Desktop.lnk - Clé orpheline
O4 - GS\Program [Public]: Encore plus de jeux.lnk - Clé orpheline
O4 - GS\Program [Public]: Game Manager.lnk . (...) -- C:\Program Files (x86)\bfgclient\bfgclient.exe
O4 - GS\Program [Public]: Glary Utilities 4.lnk . (.Glarysoft Ltd - Glary Utilities 4.) -- C:\Program Files (x86)\Glary Utilities 4\Integrator.exe
O4 - GS\Program [Public]: Microsoft Office.lnk . (.Microsoft Corporation - Microsoft Office.) -- C:\Program Files (x86)\Microsoft Office\Office15\FIRSTRUN.exe
O4 - GS\Program [Public]: Spotify.lnk . (...) -- C:\Program Files (x86)\Spotify\SpotifyLauncher.exe
O4 - GS\Program [Public]: WildTangent Games App - packardbell.lnk . (.WildTangent - WildTangent Games App.) -- C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe
O4 - GS\Program [Public]: Windows Store.lnk . (...) -- C:\Windows\WinStore\WinStore.htm
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (...) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe (.not file.)
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) -- C:\Windows\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d'écran.) -- C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) -- C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d'actions.) -- C:\Windows\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) -- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) -- C:\Windows\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) -- C:\Windows\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\QuickLaunch [fan]: Arovax AntiSpyware.lnk . (.Arovax - Arovax AntiSpyware.) -- C:\Program Files (x86)\Arovax AntiSpyware\arovaxantispyware.exe
O4 - GS\QuickLaunch [fan]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\fan\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent
O4 - GS\QuickLaunch [fan]: Glary Utilities 4.lnk . (.Glarysoft Ltd - Glary Utilities 4.) -- C:\Program Files (x86)\Glary Utilities 4\Integrator.exe
O4 - GS\QuickLaunch [fan]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [fan]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [fan]: File Explorer.lnk . (...) -- C:\Users\fan\AppData\Roaming\Microsoft\Windows\Libraries
O4 - GS\TaskBar [fan]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\TaskBar [fan]: Packard Bell Power Button.lnk . (...) -- C:\Program Files (x86)\Packard Bell\Packard Bell Power Management\ePowerButton.exe (.not file.)
O4 - GS\Program [fan]: Corbeille.lnk - Clé orpheline
O4 - GS\Program [fan]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Accessories [fan]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Desktop [fan]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\fan\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent
O4 - GS\Desktop [fan]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Desktop [fan]: Ordinateur - Raccourci.lnk - Clé orpheline
O4 - GS\Desktop [fan]: PhotoFiltre 7.lnk . (.PhotoFiltre - PhotoFiltre 7.) -- C:\Program Files (x86)\PhotoFiltre 7\PhotoFiltre7.exe
O4 - GS\Desktop [fan]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe =>.Nicolas Coolman
O4 - GS\Desktop [fan]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe =>.Nicolas Coolman
~ Global Startup: 55 Scanned in 00mn 00s
---\\ Applications lancées au démarrage du sytème (O4)
O4 - GS\Startup [Public]: Acer Remote.lnk . (.Acer - ArcServer.) -- C:\Program Files (x86)\Acer Remote\ArcServer.exe
O4 - GS\Startup [Public]: HP Digital Imaging Monitor.lnk . (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe =>.Hewlett-Packard Co
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp
O4 - HKCU\..\Run: [Arovax AntiSpyware] . (.Arovax - Arovax AntiSpyware.) -- C:\Program Files (x86)\Arovax AntiSpyware\arovaxantispyware.exe
O4 - HKCU\..\Run: [ConduitFloatingPlugin_lcnnhcneegeeojhgpfijnlnocjdmlaon] . (.Conduit Ltd. - Conduit Toolbar Verifier.) -- C:\Users\fan\AppData\Roaming\ValueApps\CH\TBVerifier.dll =>Toolbar.Conduit
O4 - HKCU\..\Run: [BrowserSafeguard] . (.BrowserSafeguard - BrowserSafeguard.) -- C:\Users\fan\AppData\Local\BrowserSafeguard\BrowserSafeguard.exe =>PUP.BrowserSafeguard
O4 - HKCU\..\Run: [BrowserSafeguard Update Task] . (...) -- C:\Users\fan\AppData\Local\BrowserSafeguard\uninstall.BrowserSafeguard.exe =>PUP.BrowserSafeguard
O4 - HKLM\..\Wow6432Node\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Antivirus System Tray Tool (Desktop).) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Wow6432Node\RunOnce: [Malwarebytes Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
O4 - HKUS\S-1-5-21-3108633224-2526497575-60173802-1001\..\Run: [Arovax AntiSpyware] . (.Arovax - Arovax AntiSpyware.) -- C:\Program Files (x86)\Arovax AntiSpyware\arovaxantispyware.exe
O4 - HKUS\S-1-5-21-3108633224-2526497575-60173802-1001\..\Run: [ConduitFloatingPlugin_lcnnhcneegeeojhgpfijnlnocjdmlaon] . (.Conduit Ltd. - Conduit Toolbar Verifier.) -- C:\Users\fan\AppData\Roaming\ValueApps\CH\TBVerifier.dll =>Toolbar.Conduit
O4 - HKUS\S-1-5-21-3108633224-2526497575-60173802-1001\..\Run: [BrowserSafeguard] . (.BrowserSafeguard - BrowserSafeguard.) -- C:\Users\fan\AppData\Local\BrowserSafeguard\BrowserSafeguard.exe =>PUP.BrowserSafeguard
O4 - HKUS\S-1-5-21-3108633224-2526497575-60173802-1001\..\Run: [BrowserSafeguard Update Task] . (...) -- C:\Users\fan\AppData\Local\BrowserSafeguard\uninstall.BrowserSafeguard.exe =>PUP.BrowserSafeguard
~ Application: Scanned in 00mn 00s
---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
~ Winsock: 6 Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{92A019FE-03AD-4B0E-B39E-31D3A61C1548}: NameServer =,
O17 - HKLM\System\CCS\Services\Tcpip\..\{92A019FE-03AD-4B0E-B39E-31D3A61C1548}: DhcpNameServer =
O17 - HKLM\System\CS1\Services\Tcpip\..\{92A019FE-03AD-4B0E-B39E-31D3A61C1548}: NameServer =,
O17 - HKLM\System\CS1\Services\Tcpip\..\{92A019FE-03AD-4B0E-B39E-31D3A61C1548}: DhcpNameServer =
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer =
~ Domain: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Freemake Improver (Freemake Improver) . (.Freemake - FreemakeUtilsService.) - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc. - Realtek Card Reader Patch Tool..) - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
~ Services: 7 Scanned in 00mn 07s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s
---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk * ) - File not found
~ BEX: 1 Scanned in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GlaryInitialize 4.job [350]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1080]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1084]
[MD5.C8C6C0D659734FDBF63F6F421A5416BC] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [257928]
[MD5.F368AE5801EE103008BA34773F83ECCE] [APT] [ALU] (...) -- C:\Program Files (x86)\Packard Bell\Live Updater\updater.exe [3368008]
[MD5.B690DE3B3D28AD45112BE310780DBE8D] [APT] [ALUAgent] (...) -- C:\Program Files (x86)\Packard Bell\Live Updater\liveupdater_agent.exe [40008]
[MD5.5CD4E27D6439924FACF3BF3A8C8A6ADC] [APT] [GlaryInitialize 4] (.Glarysoft Ltd.) -- C:\Program Files (x86)\Glary Utilities 4\Initialize.exe [101152]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.5EBBA07CFE002FF3DB1B0AAC33689913] [APT] [GU4SkipUAC] (.Glarysoft Ltd.) -- C:\Program Files (x86)\Glary Utilities 4\Integrator.exe [780064]
[MD5.280B64F6BFCEDE6D67D261EB808AA617] [APT] [Hotkey Utility] (.Acer Incorporated.) -- C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe [524944]
[MD5.7A69532E7D92A0B31E9A55DE1D1CF7E2] [APT] [Power Management] (.Acer Incorporated.) -- C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [5303368]
[MD5.00000000000000000000000000000000] [APT] [{98432C39-5889-4131-BE1A-C5C714CD9724}] (...) -- C:\Users\fan\Downloads\lws110.exe (.not file.) [0]
~ Scheduled Task: 15 Scanned in 00mn 08s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 01s
---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (avipbb) . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) - C:\Windows\system32\DRIVERS\avipbb.sys
O41 - Driver: (avkmgr) . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) - C:\Windows\system32\DRIVERS\avkmgr.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
~ Drivers: 36 Scanned in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {FF21C3E6-97FD-474F-9518-8DCBE94C2854}
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441}
O42 - Logiciel: AMD Accelerated Video Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {DBF565E2-B42B-B256-7DC8-B6240C53EF0D}
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {E3A51D8F-668B-4D7B-8CF5-99D00F89A4A5}
O42 - Logiciel: Acer Remote - (.Acer Inc..) [HKLM][64Bits] -- Acer Remote1.0
O42 - Logiciel: Adobe Flash Player 12 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader XI (11.0.06) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Arovax AntiSpyware 2.1.153 - (.Arovax Software.) [HKLM][64Bits] -- Arovax AntiSpyware
O42 - Logiciel: Avira Free Antivirus v14.0.2.286 - (.Avira.) [HKLM][64Bits] -- Avira AntiVir Desktop
O42 - Logiciel: Big Fish: Game Manager - (...) [HKLM][64Bits] -- BFGC
O42 - Logiciel: BitTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- BitTorrent =>P2P.BitTorrent
O42 - Logiciel: BrowserSafeguard - (.Browsersafeguard.) [HKCU][64Bits] -- Browsersafeguard =>PUP.BrowserSafeguard
O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM][64Bits] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {EBE0919B-F97B-4D58-9B1D-9EEA3003718D}
O42 - Logiciel: CyberLink PowerDVD 12 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}
O42 - Logiciel: CyberLink PowerDVD 12 - (.CyberLink Corp..) [HKLM][64Bits] -- {B46BEA36-0B71-4A4E-AE41-87241643FA0A}
O42 - Logiciel: Free YouTube Download version - (.DVDVideoSoft Ltd..) [HKLM][64Bits] -- Free YouTube Download_is1
O42 - Logiciel: Freemake Video Converter version 4.1.3 - (.Ellora Assets Corporation.) [HKLM][64Bits] -- Freemake Video Converter_is1
O42 - Logiciel: Freemake Video Downloader - (.Ellora Assets Corporation.) [HKLM][64Bits] -- Freemake Video Downloader_is1
O42 - Logiciel: Glary Utilities 4.6 - (.Glarysoft Ltd.) [HKLM][64Bits] -- Glary Utilities 4
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HP Customer Participation Program 14.0 - (.HP.) [HKLM][64Bits] -- HPExtendedCapabilities
O42 - Logiciel: HP Imaging Device Functions 14.0 - (.HP.) [HKLM][64Bits] -- HP Imaging Device Functions
O42 - Logiciel: HP Photosmart All-In-One Driver Software - (.HP.) [HKLM][64Bits] -- {4F6C1178-3FC0-44BB-8F9A-28D8516DFEE2} =>.Hewlett-Packard Co
O42 - Logiciel: HP Solution Center 14.0 - (.HP.) [HKLM][64Bits] -- HP Solution Center & Imaging Support Tools
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}
O42 - Logiciel: Hotkey Utility - (.Packard Bell.) [HKLM][64Bits] -- {A6DC88AD-501A-44BC-884D-57435F972E2C}
O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM][64Bits] -- {3D9CB654-99AD-4301-89C6-0D12A790767C}
O42 - Logiciel: Internet Explorer - (.Microsoft Corporation.) [HKLM][64Bits] -- {4E414048-A9DD-4F60-AA1D-018E716C88C9}
O42 - Logiciel: Java 7 Update 51 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217051FF}
O42 - Logiciel: Live Updater - (.Packard Bell.) [HKLM][64Bits] -- {EE26E302-876A-48D9-9058-3129E5B99999}
O42 - Logiciel: Logiciel d'archivage WinRAR - (...) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Magic Academy - (.WildTangent.) [HKLM][64Bits] -- WTA-0b980d90-1bab-4a7c-b8d7-0c23889b70c8
O42 - Logiciel: Malwarebytes Anti-Malware version - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Packard Bell Power Management - (.Packard Bell.) [HKLM][64Bits] -- {91F52DE4-B789-42B0-9311-A349F10E5479}
O42 - Logiciel: Packard Bell Recovery Management - (.Packard Bell.) [HKLM][64Bits] -- {07F2005A-8CAC-4A4B-83A2-DA98A722CA61}
O42 - Logiciel: PhotoFiltre 7 - (...) [HKCU][64Bits] -- PhotoFiltre 7
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}
O42 - Logiciel: Spotify - (.Spotify AB.) [HKLM][64Bits] -- Spotify
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App
O42 - Logiciel: VLC media player 2.1.2 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: VLC media player 2.1.3 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: Visual Studio 2012 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {8C775E70-A791-4DA8-BCC3-6AB7136F4484}
O42 - Logiciel: Visual Studio 2012 x86 Redistributables - (.AVG Technologies CZ, s.r.o..) [HKLM][64Bits] -- {98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}
O42 - Logiciel: WildTangent Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent wildgames Master Uninstall
O42 - Logiciel: WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-packardbell
O42 - Logiciel: Zuma Deluxe - (...) [HKLM][64Bits] -- BFG-Zuma Deluxe
~ Logic: 42 Scanned in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\AVAST Software]
[HKCU\Software\AppDataLow\Software\Conduit] =>Toolbar.Conduit
[HKCU\Software\AppDataLow\Software\Plus-HD-3.5] =>Adware.PlusHD
[HKCU\Software\AppDataLow\Software\PriceGong] =>Adware.PriceGong
[HKCU\Software\AppDataLow\Software\Smartbar] =>Hijacker.SmartBar
[HKCU\Software\Big Fish Games]
[HKCU\Software\BrowsersafeguardInstalled] =>PUP.BrowserSafeguard
[HKCU\Software\Canneverbe Limited]
[HKCU\Software\Conduit] =>Toolbar.Conduit
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\UpToDown] =>PUP.UpToDown
[HKCU\Software\Vittalia] =>Adware.PUP.Vittalia
[HKCU\Software\WEDLMNGR] =>PUP.weDownloadManager
[HKCU\Software\WinRAR SFX]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\iLivid] =>Adware.Bandoo
[HKLM\Software\ATI Technologies]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\SRS Labs]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node\ATI Technologies]
[HKLM\Software\Wow6432Node\Big Fish Games]
[HKLM\Software\Wow6432Node\Canneverbe Limited]
[HKLM\Software\Wow6432Node\Conduit] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\supWPM] =>PUP.WpManager
~ Key Software: 235 Scanned in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 14/01/2014 - 15:46:12 - [9,528] ----D C:\Program Files (x86)\Acer Remote
O43 - CFD: 27/05/2013 - 05:33:19 - [157,893] ---AD C:\Program Files (x86)\Acer Remote Demo
O43 - CFD: 11/02/2014 - 11:40:59 - [120,944] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 27/05/2013 - 05:40:21 - [2,145] ----D C:\Program Files (x86)\AMD APP
O43 - CFD: 27/05/2013 - 05:40:23 - [0,397] ----D C:\Program Files (x86)\AMD AVT
O43 - CFD: 19/02/2014 - 22:31:33 - [3,926] ----D C:\Program Files (x86)\Arovax AntiSpyware
O43 - CFD: 27/05/2013 - 05:40:16 - [56,071] ----D C:\Program Files (x86)\ATI Technologies
O43 - CFD: 05/02/2014 - 09:05:08 - [282,091] ----D C:\Program Files (x86)\Avira
O43 - CFD: 23/10/2013 - 12:54:37 - [11,343] ----D C:\Program Files (x86)\bfgclient
O43 - CFD: 17/01/2014 - 07:32:08 - [21,922] ----D C:\Program Files (x86)\CDBurnerXP
O43 - CFD: 19/02/2014 - 22:34:11 - [502,021] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 10/02/2014 - 18:59:23 - [0,609] ----D C:\Program Files (x86)\Conduit
O43 - CFD: 14/01/2014 - 15:54:16 - [180,117] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 16/02/2014 - 12:05:26 - [6,907] ----D C:\Program Files (x86)\DVDVideoSoft
O43 - CFD: 15/10/2013 - 08:03:53 - [0,124] ----D C:\Program Files (x86)\Free mp3 Wma Converter
O43 - CFD: 13/01/2014 - 17:57:21 - [81,410] ----D C:\Program Files (x86)\Freemake
O43 - CFD: 05/12/2013 - 14:53:50 - [0,074] ----D C:\Program Files (x86)\Glary Utilities 3
O43 - CFD: 19/02/2014 - 22:31:08 - [30,343] ----D C:\Program Files (x86)\Glary Utilities 4
O43 - CFD: 06/10/2013 - 13:54:27 - [469,316] ----D C:\Program Files (x86)\Google
O43 - CFD: 05/02/2014 - 08:38:05 - [168,056] ----D C:\Program Files (x86)\HP
O43 - CFD: 14/01/2014 - 16:09:39 - [32,944] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 16/02/2014 - 01:15:08 - [4,633] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 04/12/2013 - 21:01:33 - [0,028] ----D C:\Program Files (x86)\iSafe =>Trojan.Trojan.Staser
O43 - CFD: 16/01/2014 - 21:22:50 - [122,973] ----D C:\Program Files (x86)\Java
O43 - CFD: 04/11/2013 - 20:51:08 - [0,010] ----D C:\Program Files (x86)\JFileManager =>PUP.JFileManager
O43 - CFD: 26/12/2013 - 12:14:48 - [70,036] ----D C:\Program Files (x86)\Kaspersky Lab
O43 - CFD: 19/02/2014 - 22:46:05 - [14,015] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 05/02/2014 - 08:39:37 - [0] ----D C:\Program Files (x86)\Micro Application
O43 - CFD: 05/02/2014 - 08:36:26 - [0] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 27/05/2013 - 05:59:30 - [2,168] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 26/07/2012 - 09:12:59 - [0,023] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 18/11/2013 - 08:40:12 - [0,001] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 04/03/2013 - 05:44:36 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 27/05/2013 - 06:02:46 - [7,619] ----D C:\Program Files (x86)\Packard Bell
O43 - CFD: 18/11/2013 - 08:17:02 - [3,346] ----D C:\Program Files (x86)\PhotoFiltre 7
O43 - CFD: 27/05/2013 - 05:43:37 - [34,203] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 04/03/2013 - 05:44:36 - [36,536] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 28/11/2013 - 12:05:31 - [0] ----D C:\Program Files (x86)\SecretSauce =>Adware.SecretSauce
O43 - CFD: 27/05/2013 - 05:46:59 - [42,601] ----D C:\Program Files (x86)\Spotify
O43 - CFD: 22/11/2013 - 13:15:47 - [0] ----D C:\Program Files (x86)\Spybot - Search & Destroy 2
O43 - CFD: 04/03/2013 - 07:33:00 - [2,444] ----D C:\Program Files (x86)\SymSilent
O43 - CFD: 27/05/2013 - 05:44:20 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 13/01/2014 - 11:43:48 - [0] ----D C:\Program Files (x86)\ =>Hijacker.TornTV
O43 - CFD: 19/02/2014 - 22:24:12 - [0,764] ----D C:\Program Files (x86)\trend micro
O43 - CFD: 07/10/2013 - 18:25:10 - [98,660] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 04/12/2013 - 21:45:42 - [0,435] ----D C:\Program Files (x86)\VirtualDub
O43 - CFD: 04/11/2013 - 12:38:22 - [1,299] ----D C:\Program Files (x86)\VS Revo Group
O43 - CFD: 26/12/2013 - 19:06:50 - [36,313] ----D C:\Program Files (x86)\VTech
O43 - CFD: 20/10/2013 - 13:53:17 - [13,805] ----D C:\Program Files (x86)\WildGames
O43 - CFD: 04/03/2013 - 07:28:38 - [32,035] ----D C:\Program Files (x86)\WildTangent Games
O43 - CFD: 09/10/2013 - 13:58:05 - [1,038] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 27/05/2013 - 15:14:27 - [5,466] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 27/05/2013 - 15:14:27 - [3,494] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 26/07/2012 - 09:13:01 - [0,209] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 26/07/2012 - 09:12:59 - [7,243] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 09/10/2013 - 13:58:30 - [5,226] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 26/07/2012 - 09:13:01 - [0,209] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 26/07/2012 - 09:12:59 - [0] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 23/10/2013 - 12:10:00 - [3,707] ----D C:\Program Files (x86)\WinRAR
O43 - CFD: 19/02/2014 - 23:24:36 - [17,261] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 23/10/2013 - 12:57:37 - [18,323] ----D C:\Program Files (x86)\Zuma Deluxe
O43 - CFD: 11/02/2014 - 11:41:12 - [6,301] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 27/05/2013 - 05:40:23 - [2,238] ----D C:\Program Files (x86)\Common Files\ATI Technologies
O43 - CFD: 16/02/2014 - 12:05:21 - [101,336] ----D C:\Program Files (x86)\Common Files\DVDVideoSoft
O43 - CFD: 27/01/2014 - 11:15:15 - [2,453] ----D C:\Program Files (x86)\Common Files\Hewlett-Packard
O43 - CFD: 27/01/2014 - 11:15:17 - [1,348] ----D C:\Program Files (x86)\Common Files\HP
O43 - CFD: 27/05/2013 - 05:43:32 - [2,009] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 22/10/2013 - 10:19:18 - [1,191] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 09/10/2013 - 13:58:07 - [331,673] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 26/07/2012 - 09:13:01 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 07/10/2013 - 13:10:18 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 27/05/2013 - 15:14:27 - [9,406] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 12/10/2013 - 12:52:49 - [44,064] ----D C:\Program Files (x86)\Common Files\Wise Installation Wizard
O43 - CFD: 11/02/2014 - 11:45:35 - [147,951] ----D C:\ProgramData\Adobe
O43 - CFD: 27/05/2013 - 05:40:24 - [0,810] ----D C:\ProgramData\AMD
O43 - CFD: 26/07/2012 - 08:22:08 - [0] -SH-D C:\ProgramData\Application Data
O43 - CFD: 27/12/2013 - 17:50:13 - [2,368] ----D C:\ProgramData\Arovax
O43 - CFD: 17/10/2013 - 19:35:49 - [0] ----D C:\ProgramData\ATI
O43 - CFD: 10/02/2014 - 19:17:19 - [11,744] ----D C:\ProgramData\AVAST Software
O43 - CFD: 15/10/2013 - 07:37:42 - [0] ----D C:\ProgramData\AVG2014
O43 - CFD: 05/02/2014 - 09:05:08 - [224,843] ----D C:\ProgramData\Avira
O43 - CFD: 18/11/2013 - 08:10:09 - [85,819] ----D C:\ProgramData\Big Fish
O43 - CFD: 06/10/2013 - 13:38:43 - [0] -SH-D C:\ProgramData\Bureau
O43 - CFD: 22/11/2013 - 11:46:37 - [0] ----D C:\ProgramData\Canneverbe Limited
O43 - CFD: 27/05/2013 - 05:32:59 - [0] ----D C:\ProgramData\CLSK
O43 - CFD: 11/10/2013 - 12:49:30 - [0] --H-D C:\ProgramData\Common Files
O43 - CFD: 31/01/2014 - 23:18:15 - [1,637] ----D C:\ProgramData\Conduit
O43 - CFD: 31/10/2013 - 12:17:44 - [0,068] ----D C:\ProgramData\CyberLink
O43 - CFD: 26/07/2012 - 08:22:08 - [0] -SH-D C:\ProgramData\Desktop
O43 - CFD: 26/07/2012 - 08:22:08 - [0] -SH-D C:\ProgramData\Documents
O43 - CFD: 13/01/2014 - 17:57:39 - [7,828] ----D C:\ProgramData\Freemake
O43 - CFD: 05/12/2013 - 14:53:50 - [1,620] ----D C:\ProgramData\GlarySoft
O43 - CFD: 27/01/2014 - 10:28:30 - [0,035] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 27/01/2014 - 12:31:42 - [19,033] ----D C:\ProgramData\HP
O43 - CFD: 27/01/2014 - 11:17:04 - [0,009] ----D C:\ProgramData\HP Product Assistant
O43 - CFD: 27/05/2013 - 05:30:55 - [0,437] ----D C:\ProgramData\install_clap
O43 - CFD: 27/12/2013 - 16:48:12 - [443,591] ----D C:\ProgramData\Kaspersky Lab
O43 - CFD: 12/10/2013 - 13:06:25 - [6,966] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 11/02/2014 - 11:42:24 - [0,015] ----D C:\ProgramData\McAfee
O43 - CFD: 06/10/2013 - 13:38:43 - [0] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 18/11/2013 - 08:42:36 - [150,499] ----D C:\ProgramData\MFAData
O43 - CFD: 27/12/2013 - 10:39:46 - [0,960] ----D C:\ProgramData\Micro Application
O43 - CFD: 05/02/2014 - 08:36:26 - [-2028,317] -S--D C:\ProgramData\Microsoft
O43 - CFD: 06/10/2013 - 13:38:43 - [0] -SH-D C:\ProgramData\Modèles
O43 - CFD: 29/10/2013 - 11:56:58 - [0,007] ----D C:\ProgramData\Mozilla
O43 - CFD: 13/10/2013 - 13:57:15 - [0,131] ----D C:\ProgramData\Nero
O43 - CFD: 15/10/2013 - 07:37:39 - [0,104] ----D C:\ProgramData\Norton
O43 - CFD: 12/10/2013 - 13:36:56 - [34,979] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 06/10/2013 - 14:14:42 - [1,471] ----D C:\ProgramData\OEM
O43 - CFD: 06/10/2013 - 13:43:55 - [0] ----D C:\ProgramData\OEM_YAHOO
O43 - CFD: 16/01/2014 - 21:23:46 - [0] ----D C:\ProgramData\Oracle
O43 - CFD: 04/03/2013 - 07:29:03 - [0,009] ----D C:\ProgramData\Packard Bell
O43 - CFD: 09/10/2013 - 16:15:00 - [0,045] ----D C:\ProgramData\PRICache
O43 - CFD: 27/05/2013 - 05:59:37 - [0,002] ----D C:\ProgramData\
O43 - CFD: 04/12/2013 - 21:48:00 - [0,975] ----D C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 26/07/2012 - 08:22:08 - [0] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 22/10/2013 - 10:19:18 - [0] ----D C:\ProgramData\Sun
O43 - CFD: 28/11/2013 - 11:03:05 - [57,462] ----D C:\ProgramData\
O43 - CFD: 09/01/2014 - 21:35:13 - [0,386] ---AD C:\ProgramData\Temp
O43 - CFD: 26/07/2012 - 08:22:08 - [0] -SH-D C:\ProgramData\Templates
O43 - CFD: 26/12/2013 - 19:06:50 - [37,777] ----D C:\ProgramData\VTech
O43 - CFD: 27/01/2014 - 11:24:57 - [0] ----D C:\ProgramData\WEBREG
O43 - CFD: 04/03/2013 - 07:28:37 - [18,743] ----D C:\ProgramData\WildTangent
O43 - CFD: 05/12/2013 - 06:09:58 - [0] ----D C:\ProgramData\WPM =>PUP.WpManager
O43 - CFD: 13/10/2013 - 13:52:32 - [0,028] ----D C:\Users\fan\AppData\Roaming\Absolute Uninstaller
~ Lancé par fan (19/02/2014 23:24:51)
~ Adresse du Site Web
~ Forums gratuits d'Assistance à la désinfection :
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user
---\\ Navigateurs Internet
MSIE: Internet Explorer v10.0.9200.16798 (Defaut)
GCIE: Google Chrome v31.0.1650.63
---\\ Informations sur les produits Windows
~ Langage: Français
Windows 8, 64-bit (Build 9200)
Windows Server License Manager Script : OK
~ ion : Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : B96BG
Windows License : OK
~ Windows Remaining Initializations Number : 999
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Logiciels de protection du système
Avira Free Antivirus v14.0.2.286
Malwarebytes Anti-Malware version
Windows Defender W8
---\\ Logiciels d'optimisation du système
---\\ Logiciels de partage PeerToPeer
---\\ Surveillance de Logiciels
Adobe Flash Player 12 Plugin
Adobe Reader XI
Java 7 Update 51
---\\ Informations sur le système
~ Processor: AMD64 Family 20 Model 2 Stepping 0, AuthenticAMD
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3801 MB (64% free)
System Restore: Activé (Enable)
System drive C: has 162 GB (72%) free of 225 GB
---\\ Mode de connexion au système
~ Computer Name: FANNYDAVID
~ User Name: fan
~ All Users Names: HomeGroupUser$, fan, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\fan\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\fan\AppData\Roaming\
~ %Desktop% : C:\Users\fan\Desktop\
~ %Favorites% : C:\Users\fan\Favorites\
~ %LocalAppData% : C:\Users\fan\AppData\Local\
~ %StartMenu% : C:\Users\fan\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 162 Go of 225 Go)
D: Hard drive, Flash drive, Thumb drive (Free 116 Go of 225 Go)
E: Floppy drive, Flash card reader, USB Key (Free 2 Go of 4 Go)
F: CD-ROM drive (Not Inserted)
---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 49 Scanned in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.0E8E6463F81C80AFBED533E0F1F8895D] - (.Microsoft Corporation - Explorateur Windows.) (.01/06/2013 - 12:34:21.) -- C:\Windows\Explorer.exe [2391280]
[MD5.FE9AB232B56A12224E8A3F3F9878C9A3] - (.Microsoft Corporation - Application de démarrage de Windows.) (.26/07/2012 - 04:08:50.) -- C:\Windows\System32\Wininit.exe [132608]
[MD5.90860E913075B03369BEB7B0B510DC2F] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.01/02/2014 - 10:19:49.) -- C:\Windows\System32\wininet.dll [2241536]
[MD5.BCF2036A0DD579E47C008C133550283E] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/10/2012 - 06:46:58.) -- C:\Windows\System32\Winlogon.exe [517120]
[MD5.9448F5740A037EC0C18F0E9177232DD0] - (.Microsoft Corporation - Bibliothèque de licences.) (.26/07/2012 - 04:07:20.) -- C:\Windows\System32\sppcomapi.dll [273408]
[MD5.7C0E0EDF18D6CC565D7BFBB451709FA5] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.04/09/2013 - 04:11:23.) -- C:\Windows\system32\Drivers\AFD.sys [576512]
[MD5.A721FF570C2387E383BDDEA9632863C9] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.26/07/2012 - 06:00:48.) -- C:\Windows\system32\Drivers\atapi.sys [25840]
[MD5.990B1BABE6E81FB18E65A87EBEFB1772] - (.Microsoft Corporation - CD-ROM File System Driver.) (.26/07/2012 - 03:30:10.) -- C:\Windows\system32\Drivers\Cdfs.sys [108544]
[MD5.339BFF85D788268752DA8C9644B188EE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.26/07/2012 - 03:26:36.) -- C:\Windows\system32\Drivers\Cdrom.sys [174080]
[MD5.09D9EB9E7898F8E6561473A20CC808B9] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.26/07/2012 - 03:26:53.) -- C:\Windows\system32\Drivers\DfsC.sys [118784]
[MD5.7D87B5B6C7188D553E11B59DC7F0B111] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/09/2012 - 07:08:44.) -- C:\Windows\system32\Drivers\HDAudBus.sys [71168]
[MD5.C9E9CBF73AFFBFE3E801EFB516787BA3] - (.Microsoft Corporation - Pilote de port i8042.) (.26/07/2012 - 03:28:51.) -- C:\Windows\system32\Drivers\i8042prt.sys [112640]
[MD5.3969B9C218DD3FAA9F4ED2FFC3651C02] - (.Microsoft Corporation - IP Network Address Translator.) (.26/07/2012 - 03:23:01.) -- C:\Windows\system32\Drivers\IpNat.sys [145920]
[MD5.93179D48066918323628CB016D8C94DC] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.05/02/2013 - 23:29:09.) -- C:\Windows\system32\Drivers\MRxSmb.sys [370688]
[MD5.7CEC25C682D319D484630B3952C31A11] - (.Microsoft Corporation - MBT Transport driver.) (.26/07/2012 - 03:24:28.) -- C:\Windows\system32\Drivers\netBT.sys [331776]
[MD5.76929F4A69E425911A63B407E26C2589] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.02/02/2013 - 11:54:54.) -- C:\Windows\system32\Drivers\ntfs.sys [1933544]
[MD5.4563DAF8C6A740AD7F501E219BD10766] - (.Microsoft Corporation - Pilote de port parallèle.) (.26/07/2012 - 03:29:53.) -- C:\Windows\system32\Drivers\Parport.sys [105984]
[MD5.A14D625C5AEE5FFE0F47D1A1D419FAAE] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.26/07/2012 - 03:23:17.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [124928]
[MD5.B2A3AD74FF2E2FFA73AF2567108231B3] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.26/07/2012 - 03:25:18.) -- C:\Windows\system32\Drivers\rdpdr.sys [179712]
[MD5.73DC722CE5DF26D7638CE2446F2655C7] - (.Microsoft Corporation - TDI Translation Driver.) (.26/07/2012 - 06:26:47.) -- C:\Windows\system32\Drivers\tdx.sys [117248]
[MD5.78A5BBA3819FFFC62FFEC3E2220D102D] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.01/06/2013 - 12:26:33.) -- C:\Windows\system32\Drivers\volsnap.sys [327936]
~ Generic Processes: Scanned in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/266
~ Mes musiques (My Musics) : 7/8
Mes Videos (My Videos) : 2/2 (Modified)
~ Mes Favoris (My Favorites) : 1/26
~ Mes Documents (My Documents) : 1/76
~ Mon Bureau (My Desktop) : 1/247
~ Menu demarrer (Programs) : 1/28
~ Hidden Files: Scanned in 00mn 00s
---\\ Processus lancés
[MD5.280B64F6BFCEDE6D67D261EB808AA617] - (.Acer Incorporated - Hotkey Utility.) -- C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe [524944] [PID.3140]
[MD5.224F6B374852153C8C24BED141AE3A20] - (...) -- ysWOW64\rundll32.exe [0] [PID.3836]
[MD5.63A2D767B9261B4F33F97BF88F2FB197] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [276328] [PID.3892]
[MD5.DD231039B13EC2ABDE315D76E658EF0E] - (.Avira Operations GmbH & Co. KG - Antivirus System Tray Tool (Desktop).) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600] [PID.3900]
[MD5.BEFFB2D021E7FA9E92249F3997930A68] - (.Acer - ArcServer.) -- C:\Program Files (x86)\Acer Remote\ArcServer.exe [522144] [PID.3912]
[MD5.E650003C472935D7F5B01CF67490669C] - (.BitTorrent Inc. - BitTorrent.) -- C:\Users\fan\AppData\Roaming\BitTorrent\BitTorrent.exe [1126488] [PID.3952] =>P2P.BitTorrent
[MD5.0CED501E811F5C4745415FCC000CE043] - (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe [164864] [PID.1036]
[MD5.5EBBA07CFE002FF3DB1B0AAC33689913] - (.Glarysoft Ltd - Glary Utilities 4.) -- C:\Program Files (x86)\Glary Utilities 4\Integrator.exe [780064] [PID.4104]
[MD5.2FB757B35C94B1C1C65BA35E4E7EC0F2] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe [174952] [PID.4544]
[MD5.F9DFC08677FC9AC81DD5ACA5EE879E47] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe [565096] [PID.4252]
[MD5.B2F0B501A7C017F21C4B4417623895BD] - (.Hewlett-Packard - GPCore COM object.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe [367976] [PID.4148]
[MD5.3AB2CCB32AB509609B2D9AEB567DA357] - (.Arovax - Arovax AntiSpyware.) -- C:\Program Files (x86)\Arovax AntiSpyware\arovaxantispyware.exe [1966080] [PID.5096]
[MD5.7C3459C721B53BA356E0B36D1FDC2E6C] - (.BrowserSafeguard - BrowserSafeguard.) -- C:\Users\fan\AppData\Local\BrowserSafeguard\BrowserSafeguard.exe [418304] [PID.5032] =>PUP.BrowserSafeguard
[MD5.77FBE53DE14794B84C352DD9D9D232DF] - (.Microsoft Corporation - Commande TCP/IP Ping.) -- C:\Windows\SysWOW64\PING.exe [18432] [PID.2552]
[MD5.376A9B411BF8B77D5BF84B24D0C7DACD] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [863184] [PID.2292]
[MD5.AB44884BC129FC04D75A4649E0710203] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8338432] [PID.3156]
~ Processes Running: Scanned in 00mn 00s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\fan\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default] , "", "" "", "", " =>Adware.IMBooster
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Google\u00C3\u201A\u00C2 Store v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [ahmilhmcinpmpohfoiccaplbhgelbnim] Torntv V6.0 v.1.0.0 (Activé) =>Hijacker.TornTV
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.6 (Activé)
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v. (Activé)
G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [gdidcmifanncidcpmndaenenhcgeaica] Application Findizer v.1.20, (Activé)
G2 - GCE: Preference [User Data\Default] [gfdkimpbcpahaombhbimeihdjnejgicl] Feedback v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [jjflmfkjppbmejlfbhlpgjnomdoefkfa] Share With Care v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [lcnnhcneegeeojhgpfijnlnocjdmlaon] Value apps v., (Activé) =>Toolbar.Conduit
G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v. (Activé)
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activé)
~ Google Browser: 16 Scanned in 00mn 13s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M3 - MFPP: Plugins - [fan] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\do-search.xml =>PUP.DoSearches
P2 - FPN: [HKLM] [] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll
P2 - FPN: [HKLM] [,version=2.1.3] - (.VideoLAN - VLC media player Web Plugin 2.1.3.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll =>.VideoLAN
~ Firefox Browser: 3 Scanned in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = =>Adware.MyWebSearch
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = =>Adware.MyWebSearch
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = =>Adware.MyWebSearch
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = =>PUP.AArtemis
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = =>PUP.AArtemis
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = =>Adware.MyWebSearch
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = =>PUP.AArtemis
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = =>PUP.AArtemis
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (10.00.9200.16384 (win8_rtm.120725-1247)) -- C:\Windows\SysWOW64\ieframe.dll
~ IE Browser: 18 Scanned in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <-loopback> =>Hijacker.Proxy
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=;https= =>Hijacker.Proxy
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
~ BHO: 2 Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: Adobe Reader XI.lnk . (.Adobe Systems Incorporated - Adobe Reader.) -- C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
O4 - GS\Desktop [Public]: Arovax AntiSpyware.lnk . (.Arovax - Arovax AntiSpyware.) -- C:\Program Files (x86)\Arovax AntiSpyware\arovaxantispyware.exe
O4 - GS\Desktop [Public]: Avira Control Center.lnk . (.Avira Operations GmbH & Co. KG - Antivirus Control Center (Desktop).) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avcenter.exe
O4 - GS\Desktop [Public]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.) -- C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe
O4 - GS\Desktop [Public]: Centre de solutions HP.lnk . (.Hewlett-Packard Company - hpqdirec.exe.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\Hpqdirec.exe
O4 - GS\Desktop [Public]: CyberLink PowerDVD 12.lnk . (.CyberLink Corp. - CyberLink PowerDVD12.) -- C:\Program Files (x86)\CyberLink\PowerDVD12\PDVDLP.exe
O4 - GS\Desktop [Public]: DVDVideoSoft Free Studio.lnk . (.DvdVideoSoft Ltd. - FreeStudioManager.) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe
O4 - GS\Desktop [Public]: Free YouTube Download.lnk . (.DVDVideoSoft Ltd. - FreeYouTubeDownload.) -- C:\Program Files (x86)\DVDVideoSoft\Free YouTube Download\FreeYTVDownloader.exe
O4 - GS\Desktop [Public]: Freemake Video Converter.lnk . (.Freemake - Freemake Video Converter.) -- C:\Program Files (x86)\Freemake\Freemake Video Converter\FreemakeVideoConverter.exe
O4 - GS\Desktop [Public]: Glary Utilities 4.lnk . (.Glarysoft Ltd - Glary Utilities 4.) -- C:\Program Files (x86)\Glary Utilities 4\Integrator.exe
O4 - GS\Desktop [Public]: Jouer à Zuma Deluxe.lnk . (...) -- C:\Program Files (x86)\Zuma Deluxe\LaunchGame.bfg
O4 - GS\Desktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
O4 - GS\Desktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player 2.1.3.) -- C:\Program Files\VideoLAN\VLC\vlc.exe =>.VideoLAN
O4 - GS\Program [Public]: Adobe Reader XI.lnk . (...) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico
O4 - GS\Program [Public]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.) -- C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe
O4 - GS\Program [Public]: Desktop.lnk - Clé orpheline
O4 - GS\Program [Public]: Encore plus de jeux.lnk - Clé orpheline
O4 - GS\Program [Public]: Game Manager.lnk . (...) -- C:\Program Files (x86)\bfgclient\bfgclient.exe
O4 - GS\Program [Public]: Glary Utilities 4.lnk . (.Glarysoft Ltd - Glary Utilities 4.) -- C:\Program Files (x86)\Glary Utilities 4\Integrator.exe
O4 - GS\Program [Public]: Microsoft Office.lnk . (.Microsoft Corporation - Microsoft Office.) -- C:\Program Files (x86)\Microsoft Office\Office15\FIRSTRUN.exe
O4 - GS\Program [Public]: Spotify.lnk . (...) -- C:\Program Files (x86)\Spotify\SpotifyLauncher.exe
O4 - GS\Program [Public]: WildTangent Games App - packardbell.lnk . (.WildTangent - WildTangent Games App.) -- C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe
O4 - GS\Program [Public]: Windows Store.lnk . (...) -- C:\Windows\WinStore\WinStore.htm
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (...) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe (.not file.)
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) -- C:\Windows\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d'écran.) -- C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) -- C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d'actions.) -- C:\Windows\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) -- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) -- C:\Windows\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) -- C:\Windows\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\QuickLaunch [fan]: Arovax AntiSpyware.lnk . (.Arovax - Arovax AntiSpyware.) -- C:\Program Files (x86)\Arovax AntiSpyware\arovaxantispyware.exe
O4 - GS\QuickLaunch [fan]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\fan\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent
O4 - GS\QuickLaunch [fan]: Glary Utilities 4.lnk . (.Glarysoft Ltd - Glary Utilities 4.) -- C:\Program Files (x86)\Glary Utilities 4\Integrator.exe
O4 - GS\QuickLaunch [fan]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [fan]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [fan]: File Explorer.lnk . (...) -- C:\Users\fan\AppData\Roaming\Microsoft\Windows\Libraries
O4 - GS\TaskBar [fan]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\TaskBar [fan]: Packard Bell Power Button.lnk . (...) -- C:\Program Files (x86)\Packard Bell\Packard Bell Power Management\ePowerButton.exe (.not file.)
O4 - GS\Program [fan]: Corbeille.lnk - Clé orpheline
O4 - GS\Program [fan]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Accessories [fan]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Desktop [fan]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\fan\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent
O4 - GS\Desktop [fan]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Desktop [fan]: Ordinateur - Raccourci.lnk - Clé orpheline
O4 - GS\Desktop [fan]: PhotoFiltre 7.lnk . (.PhotoFiltre - PhotoFiltre 7.) -- C:\Program Files (x86)\PhotoFiltre 7\PhotoFiltre7.exe
O4 - GS\Desktop [fan]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe =>.Nicolas Coolman
O4 - GS\Desktop [fan]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe =>.Nicolas Coolman
~ Global Startup: 55 Scanned in 00mn 00s
---\\ Applications lancées au démarrage du sytème (O4)
O4 - GS\Startup [Public]: Acer Remote.lnk . (.Acer - ArcServer.) -- C:\Program Files (x86)\Acer Remote\ArcServer.exe
O4 - GS\Startup [Public]: HP Digital Imaging Monitor.lnk . (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe =>.Hewlett-Packard Co
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp
O4 - HKCU\..\Run: [Arovax AntiSpyware] . (.Arovax - Arovax AntiSpyware.) -- C:\Program Files (x86)\Arovax AntiSpyware\arovaxantispyware.exe
O4 - HKCU\..\Run: [ConduitFloatingPlugin_lcnnhcneegeeojhgpfijnlnocjdmlaon] . (.Conduit Ltd. - Conduit Toolbar Verifier.) -- C:\Users\fan\AppData\Roaming\ValueApps\CH\TBVerifier.dll =>Toolbar.Conduit
O4 - HKCU\..\Run: [BrowserSafeguard] . (.BrowserSafeguard - BrowserSafeguard.) -- C:\Users\fan\AppData\Local\BrowserSafeguard\BrowserSafeguard.exe =>PUP.BrowserSafeguard
O4 - HKCU\..\Run: [BrowserSafeguard Update Task] . (...) -- C:\Users\fan\AppData\Local\BrowserSafeguard\uninstall.BrowserSafeguard.exe =>PUP.BrowserSafeguard
O4 - HKLM\..\Wow6432Node\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Antivirus System Tray Tool (Desktop).) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Wow6432Node\RunOnce: [Malwarebytes Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
O4 - HKUS\S-1-5-21-3108633224-2526497575-60173802-1001\..\Run: [Arovax AntiSpyware] . (.Arovax - Arovax AntiSpyware.) -- C:\Program Files (x86)\Arovax AntiSpyware\arovaxantispyware.exe
O4 - HKUS\S-1-5-21-3108633224-2526497575-60173802-1001\..\Run: [ConduitFloatingPlugin_lcnnhcneegeeojhgpfijnlnocjdmlaon] . (.Conduit Ltd. - Conduit Toolbar Verifier.) -- C:\Users\fan\AppData\Roaming\ValueApps\CH\TBVerifier.dll =>Toolbar.Conduit
O4 - HKUS\S-1-5-21-3108633224-2526497575-60173802-1001\..\Run: [BrowserSafeguard] . (.BrowserSafeguard - BrowserSafeguard.) -- C:\Users\fan\AppData\Local\BrowserSafeguard\BrowserSafeguard.exe =>PUP.BrowserSafeguard
O4 - HKUS\S-1-5-21-3108633224-2526497575-60173802-1001\..\Run: [BrowserSafeguard Update Task] . (...) -- C:\Users\fan\AppData\Local\BrowserSafeguard\uninstall.BrowserSafeguard.exe =>PUP.BrowserSafeguard
~ Application: Scanned in 00mn 00s
---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
~ Winsock: 6 Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{92A019FE-03AD-4B0E-B39E-31D3A61C1548}: NameServer =,
O17 - HKLM\System\CCS\Services\Tcpip\..\{92A019FE-03AD-4B0E-B39E-31D3A61C1548}: DhcpNameServer =
O17 - HKLM\System\CS1\Services\Tcpip\..\{92A019FE-03AD-4B0E-B39E-31D3A61C1548}: NameServer =,
O17 - HKLM\System\CS1\Services\Tcpip\..\{92A019FE-03AD-4B0E-B39E-31D3A61C1548}: DhcpNameServer =
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer =
~ Domain: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Freemake Improver (Freemake Improver) . (.Freemake - FreemakeUtilsService.) - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc. - Realtek Card Reader Patch Tool..) - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
~ Services: 7 Scanned in 00mn 07s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s
---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk * ) - File not found
~ BEX: 1 Scanned in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GlaryInitialize 4.job [350]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1080]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1084]
[MD5.C8C6C0D659734FDBF63F6F421A5416BC] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [257928]
[MD5.F368AE5801EE103008BA34773F83ECCE] [APT] [ALU] (...) -- C:\Program Files (x86)\Packard Bell\Live Updater\updater.exe [3368008]
[MD5.B690DE3B3D28AD45112BE310780DBE8D] [APT] [ALUAgent] (...) -- C:\Program Files (x86)\Packard Bell\Live Updater\liveupdater_agent.exe [40008]
[MD5.5CD4E27D6439924FACF3BF3A8C8A6ADC] [APT] [GlaryInitialize 4] (.Glarysoft Ltd.) -- C:\Program Files (x86)\Glary Utilities 4\Initialize.exe [101152]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.5EBBA07CFE002FF3DB1B0AAC33689913] [APT] [GU4SkipUAC] (.Glarysoft Ltd.) -- C:\Program Files (x86)\Glary Utilities 4\Integrator.exe [780064]
[MD5.280B64F6BFCEDE6D67D261EB808AA617] [APT] [Hotkey Utility] (.Acer Incorporated.) -- C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe [524944]
[MD5.7A69532E7D92A0B31E9A55DE1D1CF7E2] [APT] [Power Management] (.Acer Incorporated.) -- C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [5303368]
[MD5.00000000000000000000000000000000] [APT] [{98432C39-5889-4131-BE1A-C5C714CD9724}] (...) -- C:\Users\fan\Downloads\lws110.exe (.not file.) [0]
~ Scheduled Task: 15 Scanned in 00mn 08s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 01s
---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (avipbb) . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) - C:\Windows\system32\DRIVERS\avipbb.sys
O41 - Driver: (avkmgr) . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) - C:\Windows\system32\DRIVERS\avkmgr.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
~ Drivers: 36 Scanned in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {FF21C3E6-97FD-474F-9518-8DCBE94C2854}
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441}
O42 - Logiciel: AMD Accelerated Video Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {DBF565E2-B42B-B256-7DC8-B6240C53EF0D}
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {E3A51D8F-668B-4D7B-8CF5-99D00F89A4A5}
O42 - Logiciel: Acer Remote - (.Acer Inc..) [HKLM][64Bits] -- Acer Remote1.0
O42 - Logiciel: Adobe Flash Player 12 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader XI (11.0.06) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Arovax AntiSpyware 2.1.153 - (.Arovax Software.) [HKLM][64Bits] -- Arovax AntiSpyware
O42 - Logiciel: Avira Free Antivirus v14.0.2.286 - (.Avira.) [HKLM][64Bits] -- Avira AntiVir Desktop
O42 - Logiciel: Big Fish: Game Manager - (...) [HKLM][64Bits] -- BFGC
O42 - Logiciel: BitTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- BitTorrent =>P2P.BitTorrent
O42 - Logiciel: BrowserSafeguard - (.Browsersafeguard.) [HKCU][64Bits] -- Browsersafeguard =>PUP.BrowserSafeguard
O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM][64Bits] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {EBE0919B-F97B-4D58-9B1D-9EEA3003718D}
O42 - Logiciel: CyberLink PowerDVD 12 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}
O42 - Logiciel: CyberLink PowerDVD 12 - (.CyberLink Corp..) [HKLM][64Bits] -- {B46BEA36-0B71-4A4E-AE41-87241643FA0A}
O42 - Logiciel: Free YouTube Download version - (.DVDVideoSoft Ltd..) [HKLM][64Bits] -- Free YouTube Download_is1
O42 - Logiciel: Freemake Video Converter version 4.1.3 - (.Ellora Assets Corporation.) [HKLM][64Bits] -- Freemake Video Converter_is1
O42 - Logiciel: Freemake Video Downloader - (.Ellora Assets Corporation.) [HKLM][64Bits] -- Freemake Video Downloader_is1
O42 - Logiciel: Glary Utilities 4.6 - (.Glarysoft Ltd.) [HKLM][64Bits] -- Glary Utilities 4
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HP Customer Participation Program 14.0 - (.HP.) [HKLM][64Bits] -- HPExtendedCapabilities
O42 - Logiciel: HP Imaging Device Functions 14.0 - (.HP.) [HKLM][64Bits] -- HP Imaging Device Functions
O42 - Logiciel: HP Photosmart All-In-One Driver Software - (.HP.) [HKLM][64Bits] -- {4F6C1178-3FC0-44BB-8F9A-28D8516DFEE2} =>.Hewlett-Packard Co
O42 - Logiciel: HP Solution Center 14.0 - (.HP.) [HKLM][64Bits] -- HP Solution Center & Imaging Support Tools
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}
O42 - Logiciel: Hotkey Utility - (.Packard Bell.) [HKLM][64Bits] -- {A6DC88AD-501A-44BC-884D-57435F972E2C}
O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM][64Bits] -- {3D9CB654-99AD-4301-89C6-0D12A790767C}
O42 - Logiciel: Internet Explorer - (.Microsoft Corporation.) [HKLM][64Bits] -- {4E414048-A9DD-4F60-AA1D-018E716C88C9}
O42 - Logiciel: Java 7 Update 51 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217051FF}
O42 - Logiciel: Live Updater - (.Packard Bell.) [HKLM][64Bits] -- {EE26E302-876A-48D9-9058-3129E5B99999}
O42 - Logiciel: Logiciel d'archivage WinRAR - (...) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Magic Academy - (.WildTangent.) [HKLM][64Bits] -- WTA-0b980d90-1bab-4a7c-b8d7-0c23889b70c8
O42 - Logiciel: Malwarebytes Anti-Malware version - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Packard Bell Power Management - (.Packard Bell.) [HKLM][64Bits] -- {91F52DE4-B789-42B0-9311-A349F10E5479}
O42 - Logiciel: Packard Bell Recovery Management - (.Packard Bell.) [HKLM][64Bits] -- {07F2005A-8CAC-4A4B-83A2-DA98A722CA61}
O42 - Logiciel: PhotoFiltre 7 - (...) [HKCU][64Bits] -- PhotoFiltre 7
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}
O42 - Logiciel: Spotify - (.Spotify AB.) [HKLM][64Bits] -- Spotify
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App
O42 - Logiciel: VLC media player 2.1.2 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: VLC media player 2.1.3 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: Visual Studio 2012 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {8C775E70-A791-4DA8-BCC3-6AB7136F4484}
O42 - Logiciel: Visual Studio 2012 x86 Redistributables - (.AVG Technologies CZ, s.r.o..) [HKLM][64Bits] -- {98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}
O42 - Logiciel: WildTangent Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent wildgames Master Uninstall
O42 - Logiciel: WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-packardbell
O42 - Logiciel: Zuma Deluxe - (...) [HKLM][64Bits] -- BFG-Zuma Deluxe
~ Logic: 42 Scanned in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\AVAST Software]
[HKCU\Software\AppDataLow\Software\Conduit] =>Toolbar.Conduit
[HKCU\Software\AppDataLow\Software\Plus-HD-3.5] =>Adware.PlusHD
[HKCU\Software\AppDataLow\Software\PriceGong] =>Adware.PriceGong
[HKCU\Software\AppDataLow\Software\Smartbar] =>Hijacker.SmartBar
[HKCU\Software\Big Fish Games]
[HKCU\Software\BrowsersafeguardInstalled] =>PUP.BrowserSafeguard
[HKCU\Software\Canneverbe Limited]
[HKCU\Software\Conduit] =>Toolbar.Conduit
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\UpToDown] =>PUP.UpToDown
[HKCU\Software\Vittalia] =>Adware.PUP.Vittalia
[HKCU\Software\WEDLMNGR] =>PUP.weDownloadManager
[HKCU\Software\WinRAR SFX]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\iLivid] =>Adware.Bandoo
[HKLM\Software\ATI Technologies]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\SRS Labs]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node\ATI Technologies]
[HKLM\Software\Wow6432Node\Big Fish Games]
[HKLM\Software\Wow6432Node\Canneverbe Limited]
[HKLM\Software\Wow6432Node\Conduit] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\supWPM] =>PUP.WpManager
~ Key Software: 235 Scanned in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 14/01/2014 - 15:46:12 - [9,528] ----D C:\Program Files (x86)\Acer Remote
O43 - CFD: 27/05/2013 - 05:33:19 - [157,893] ---AD C:\Program Files (x86)\Acer Remote Demo
O43 - CFD: 11/02/2014 - 11:40:59 - [120,944] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 27/05/2013 - 05:40:21 - [2,145] ----D C:\Program Files (x86)\AMD APP
O43 - CFD: 27/05/2013 - 05:40:23 - [0,397] ----D C:\Program Files (x86)\AMD AVT
O43 - CFD: 19/02/2014 - 22:31:33 - [3,926] ----D C:\Program Files (x86)\Arovax AntiSpyware
O43 - CFD: 27/05/2013 - 05:40:16 - [56,071] ----D C:\Program Files (x86)\ATI Technologies
O43 - CFD: 05/02/2014 - 09:05:08 - [282,091] ----D C:\Program Files (x86)\Avira
O43 - CFD: 23/10/2013 - 12:54:37 - [11,343] ----D C:\Program Files (x86)\bfgclient
O43 - CFD: 17/01/2014 - 07:32:08 - [21,922] ----D C:\Program Files (x86)\CDBurnerXP
O43 - CFD: 19/02/2014 - 22:34:11 - [502,021] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 10/02/2014 - 18:59:23 - [0,609] ----D C:\Program Files (x86)\Conduit
O43 - CFD: 14/01/2014 - 15:54:16 - [180,117] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 16/02/2014 - 12:05:26 - [6,907] ----D C:\Program Files (x86)\DVDVideoSoft
O43 - CFD: 15/10/2013 - 08:03:53 - [0,124] ----D C:\Program Files (x86)\Free mp3 Wma Converter
O43 - CFD: 13/01/2014 - 17:57:21 - [81,410] ----D C:\Program Files (x86)\Freemake
O43 - CFD: 05/12/2013 - 14:53:50 - [0,074] ----D C:\Program Files (x86)\Glary Utilities 3
O43 - CFD: 19/02/2014 - 22:31:08 - [30,343] ----D C:\Program Files (x86)\Glary Utilities 4
O43 - CFD: 06/10/2013 - 13:54:27 - [469,316] ----D C:\Program Files (x86)\Google
O43 - CFD: 05/02/2014 - 08:38:05 - [168,056] ----D C:\Program Files (x86)\HP
O43 - CFD: 14/01/2014 - 16:09:39 - [32,944] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 16/02/2014 - 01:15:08 - [4,633] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 04/12/2013 - 21:01:33 - [0,028] ----D C:\Program Files (x86)\iSafe =>Trojan.Trojan.Staser
O43 - CFD: 16/01/2014 - 21:22:50 - [122,973] ----D C:\Program Files (x86)\Java
O43 - CFD: 04/11/2013 - 20:51:08 - [0,010] ----D C:\Program Files (x86)\JFileManager =>PUP.JFileManager
O43 - CFD: 26/12/2013 - 12:14:48 - [70,036] ----D C:\Program Files (x86)\Kaspersky Lab
O43 - CFD: 19/02/2014 - 22:46:05 - [14,015] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 05/02/2014 - 08:39:37 - [0] ----D C:\Program Files (x86)\Micro Application
O43 - CFD: 05/02/2014 - 08:36:26 - [0] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 27/05/2013 - 05:59:30 - [2,168] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 26/07/2012 - 09:12:59 - [0,023] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 18/11/2013 - 08:40:12 - [0,001] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 04/03/2013 - 05:44:36 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 27/05/2013 - 06:02:46 - [7,619] ----D C:\Program Files (x86)\Packard Bell
O43 - CFD: 18/11/2013 - 08:17:02 - [3,346] ----D C:\Program Files (x86)\PhotoFiltre 7
O43 - CFD: 27/05/2013 - 05:43:37 - [34,203] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 04/03/2013 - 05:44:36 - [36,536] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 28/11/2013 - 12:05:31 - [0] ----D C:\Program Files (x86)\SecretSauce =>Adware.SecretSauce
O43 - CFD: 27/05/2013 - 05:46:59 - [42,601] ----D C:\Program Files (x86)\Spotify
O43 - CFD: 22/11/2013 - 13:15:47 - [0] ----D C:\Program Files (x86)\Spybot - Search & Destroy 2
O43 - CFD: 04/03/2013 - 07:33:00 - [2,444] ----D C:\Program Files (x86)\SymSilent
O43 - CFD: 27/05/2013 - 05:44:20 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 13/01/2014 - 11:43:48 - [0] ----D C:\Program Files (x86)\ =>Hijacker.TornTV
O43 - CFD: 19/02/2014 - 22:24:12 - [0,764] ----D C:\Program Files (x86)\trend micro
O43 - CFD: 07/10/2013 - 18:25:10 - [98,660] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 04/12/2013 - 21:45:42 - [0,435] ----D C:\Program Files (x86)\VirtualDub
O43 - CFD: 04/11/2013 - 12:38:22 - [1,299] ----D C:\Program Files (x86)\VS Revo Group
O43 - CFD: 26/12/2013 - 19:06:50 - [36,313] ----D C:\Program Files (x86)\VTech
O43 - CFD: 20/10/2013 - 13:53:17 - [13,805] ----D C:\Program Files (x86)\WildGames
O43 - CFD: 04/03/2013 - 07:28:38 - [32,035] ----D C:\Program Files (x86)\WildTangent Games
O43 - CFD: 09/10/2013 - 13:58:05 - [1,038] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 27/05/2013 - 15:14:27 - [5,466] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 27/05/2013 - 15:14:27 - [3,494] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 26/07/2012 - 09:13:01 - [0,209] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 26/07/2012 - 09:12:59 - [7,243] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 09/10/2013 - 13:58:30 - [5,226] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 26/07/2012 - 09:13:01 - [0,209] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 26/07/2012 - 09:12:59 - [0] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 23/10/2013 - 12:10:00 - [3,707] ----D C:\Program Files (x86)\WinRAR
O43 - CFD: 19/02/2014 - 23:24:36 - [17,261] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 23/10/2013 - 12:57:37 - [18,323] ----D C:\Program Files (x86)\Zuma Deluxe
O43 - CFD: 11/02/2014 - 11:41:12 - [6,301] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 27/05/2013 - 05:40:23 - [2,238] ----D C:\Program Files (x86)\Common Files\ATI Technologies
O43 - CFD: 16/02/2014 - 12:05:21 - [101,336] ----D C:\Program Files (x86)\Common Files\DVDVideoSoft
O43 - CFD: 27/01/2014 - 11:15:15 - [2,453] ----D C:\Program Files (x86)\Common Files\Hewlett-Packard
O43 - CFD: 27/01/2014 - 11:15:17 - [1,348] ----D C:\Program Files (x86)\Common Files\HP
O43 - CFD: 27/05/2013 - 05:43:32 - [2,009] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 22/10/2013 - 10:19:18 - [1,191] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 09/10/2013 - 13:58:07 - [331,673] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 26/07/2012 - 09:13:01 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 07/10/2013 - 13:10:18 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 27/05/2013 - 15:14:27 - [9,406] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 12/10/2013 - 12:52:49 - [44,064] ----D C:\Program Files (x86)\Common Files\Wise Installation Wizard
O43 - CFD: 11/02/2014 - 11:45:35 - [147,951] ----D C:\ProgramData\Adobe
O43 - CFD: 27/05/2013 - 05:40:24 - [0,810] ----D C:\ProgramData\AMD
O43 - CFD: 26/07/2012 - 08:22:08 - [0] -SH-D C:\ProgramData\Application Data
O43 - CFD: 27/12/2013 - 17:50:13 - [2,368] ----D C:\ProgramData\Arovax
O43 - CFD: 17/10/2013 - 19:35:49 - [0] ----D C:\ProgramData\ATI
O43 - CFD: 10/02/2014 - 19:17:19 - [11,744] ----D C:\ProgramData\AVAST Software
O43 - CFD: 15/10/2013 - 07:37:42 - [0] ----D C:\ProgramData\AVG2014
O43 - CFD: 05/02/2014 - 09:05:08 - [224,843] ----D C:\ProgramData\Avira
O43 - CFD: 18/11/2013 - 08:10:09 - [85,819] ----D C:\ProgramData\Big Fish
O43 - CFD: 06/10/2013 - 13:38:43 - [0] -SH-D C:\ProgramData\Bureau
O43 - CFD: 22/11/2013 - 11:46:37 - [0] ----D C:\ProgramData\Canneverbe Limited
O43 - CFD: 27/05/2013 - 05:32:59 - [0] ----D C:\ProgramData\CLSK
O43 - CFD: 11/10/2013 - 12:49:30 - [0] --H-D C:\ProgramData\Common Files
O43 - CFD: 31/01/2014 - 23:18:15 - [1,637] ----D C:\ProgramData\Conduit
O43 - CFD: 31/10/2013 - 12:17:44 - [0,068] ----D C:\ProgramData\CyberLink
O43 - CFD: 26/07/2012 - 08:22:08 - [0] -SH-D C:\ProgramData\Desktop
O43 - CFD: 26/07/2012 - 08:22:08 - [0] -SH-D C:\ProgramData\Documents
O43 - CFD: 13/01/2014 - 17:57:39 - [7,828] ----D C:\ProgramData\Freemake
O43 - CFD: 05/12/2013 - 14:53:50 - [1,620] ----D C:\ProgramData\GlarySoft
O43 - CFD: 27/01/2014 - 10:28:30 - [0,035] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 27/01/2014 - 12:31:42 - [19,033] ----D C:\ProgramData\HP
O43 - CFD: 27/01/2014 - 11:17:04 - [0,009] ----D C:\ProgramData\HP Product Assistant
O43 - CFD: 27/05/2013 - 05:30:55 - [0,437] ----D C:\ProgramData\install_clap
O43 - CFD: 27/12/2013 - 16:48:12 - [443,591] ----D C:\ProgramData\Kaspersky Lab
O43 - CFD: 12/10/2013 - 13:06:25 - [6,966] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 11/02/2014 - 11:42:24 - [0,015] ----D C:\ProgramData\McAfee
O43 - CFD: 06/10/2013 - 13:38:43 - [0] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 18/11/2013 - 08:42:36 - [150,499] ----D C:\ProgramData\MFAData
O43 - CFD: 27/12/2013 - 10:39:46 - [0,960] ----D C:\ProgramData\Micro Application
O43 - CFD: 05/02/2014 - 08:36:26 - [-2028,317] -S--D C:\ProgramData\Microsoft
O43 - CFD: 06/10/2013 - 13:38:43 - [0] -SH-D C:\ProgramData\Modèles
O43 - CFD: 29/10/2013 - 11:56:58 - [0,007] ----D C:\ProgramData\Mozilla
O43 - CFD: 13/10/2013 - 13:57:15 - [0,131] ----D C:\ProgramData\Nero
O43 - CFD: 15/10/2013 - 07:37:39 - [0,104] ----D C:\ProgramData\Norton
O43 - CFD: 12/10/2013 - 13:36:56 - [34,979] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 06/10/2013 - 14:14:42 - [1,471] ----D C:\ProgramData\OEM
O43 - CFD: 06/10/2013 - 13:43:55 - [0] ----D C:\ProgramData\OEM_YAHOO
O43 - CFD: 16/01/2014 - 21:23:46 - [0] ----D C:\ProgramData\Oracle
O43 - CFD: 04/03/2013 - 07:29:03 - [0,009] ----D C:\ProgramData\Packard Bell
O43 - CFD: 09/10/2013 - 16:15:00 - [0,045] ----D C:\ProgramData\PRICache
O43 - CFD: 27/05/2013 - 05:59:37 - [0,002] ----D C:\ProgramData\
O43 - CFD: 04/12/2013 - 21:48:00 - [0,975] ----D C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 26/07/2012 - 08:22:08 - [0] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 22/10/2013 - 10:19:18 - [0] ----D C:\ProgramData\Sun
O43 - CFD: 28/11/2013 - 11:03:05 - [57,462] ----D C:\ProgramData\
O43 - CFD: 09/01/2014 - 21:35:13 - [0,386] ---AD C:\ProgramData\Temp
O43 - CFD: 26/07/2012 - 08:22:08 - [0] -SH-D C:\ProgramData\Templates
O43 - CFD: 26/12/2013 - 19:06:50 - [37,777] ----D C:\ProgramData\VTech
O43 - CFD: 27/01/2014 - 11:24:57 - [0] ----D C:\ProgramData\WEBREG
O43 - CFD: 04/03/2013 - 07:28:37 - [18,743] ----D C:\ProgramData\WildTangent
O43 - CFD: 05/12/2013 - 06:09:58 - [0] ----D C:\ProgramData\WPM =>PUP.WpManager
O43 - CFD: 13/10/2013 - 13:52:32 - [0,028] ----D C:\Users\fan\AppData\Roaming\Absolute Uninstaller
Messages postés
Date d'inscription
mercredi 13 janvier 2010
Dernière intervention
18 mars 2014
20 févr. 2014 à 02:11
20 févr. 2014 à 02:11
bonsoir, héberge moi le rapport sous
Messages postés
Date d'inscription
vendredi 14 septembre 2012
Dernière intervention
7 novembre 2014
20 févr. 2014 à 07:13
20 févr. 2014 à 07:13 voila je pence que c est ca excuce moi je suis pas tres bon en informatique merci a toi
Messages postés
Date d'inscription
mercredi 13 janvier 2010
Dernière intervention
18 mars 2014
21 févr. 2014 à 01:00
21 févr. 2014 à 01:00
Désinstalle : BitTorrent , BrowserSafeguard, Glary Utilities 4.6
Utilise cet outil de désinfection spécifique aux logiciels publicitaires :
▶ Télécharge AdwCleaner (de Xplode) sur ton Bureau.
▶ Lance le, clique sur Nettoyer puis patiente le temps du scan.
▶ Une fois le nettoyage terminée, un message de prévention va s'afficher, je te conseille de le lire attentivement (n'hésite pas à me poser des questions si tu n'as pas compris certaines choses dans ce message).
▶ Ensuite, le rapport s'ouvrira : poste le dans ta prochaine réponse.
Ensuite télécharge Junk Removal Tool. Suis ce tuto et poste moi le rapport :
Utilise ce logiciel de désinfection généraliste :
▶ Télécharge et installe Malwarebytes' Anti-Malware
▶ A la fin de l'installation, veille à ce que l'option « mettre a jour Malwarebyte's Anti-Malware » soit cochée. Par contre, il n'est pas nécessaire d'activer l'essai gratuit pour la protection.
▶ Lance MBAM et laisse les Mises à jour se télécharger (sinon fais les manuellement au lancement du programme)
▶ Puis va dans l'onglet "Recherche", coche "Exécuter un examen rapide" puis "Rechercher"
▶ A la fin de l'analyse, clique sur Afficher les résultats
▶ Coche tous les éléments détectés puis clique sur Supprimer la sélection
▶ S'il t'est demandé de redémarrer l'ordinateur, accepte.
▶ Poste dans ta prochaine réponse le rapport apparaissant après la suppression.
Reparamètre tes navigateurs WEB :
▶ Internet Explorer et modules complémentaires / moteurs de recherche :
▶ Firefox :
▶ Google Chrome :
Désinstalle : BitTorrent , BrowserSafeguard, Glary Utilities 4.6
Utilise cet outil de désinfection spécifique aux logiciels publicitaires :
▶ Télécharge AdwCleaner (de Xplode) sur ton Bureau.
▶ Lance le, clique sur Nettoyer puis patiente le temps du scan.
▶ Une fois le nettoyage terminée, un message de prévention va s'afficher, je te conseille de le lire attentivement (n'hésite pas à me poser des questions si tu n'as pas compris certaines choses dans ce message).
▶ Ensuite, le rapport s'ouvrira : poste le dans ta prochaine réponse.
Ensuite télécharge Junk Removal Tool. Suis ce tuto et poste moi le rapport :
Utilise ce logiciel de désinfection généraliste :
▶ Télécharge et installe Malwarebytes' Anti-Malware
▶ A la fin de l'installation, veille à ce que l'option « mettre a jour Malwarebyte's Anti-Malware » soit cochée. Par contre, il n'est pas nécessaire d'activer l'essai gratuit pour la protection.
▶ Lance MBAM et laisse les Mises à jour se télécharger (sinon fais les manuellement au lancement du programme)
▶ Puis va dans l'onglet "Recherche", coche "Exécuter un examen rapide" puis "Rechercher"
▶ A la fin de l'analyse, clique sur Afficher les résultats
▶ Coche tous les éléments détectés puis clique sur Supprimer la sélection
▶ S'il t'est demandé de redémarrer l'ordinateur, accepte.
▶ Poste dans ta prochaine réponse le rapport apparaissant après la suppression.
Reparamètre tes navigateurs WEB :
▶ Internet Explorer et modules complémentaires / moteurs de recherche :
▶ Firefox :
▶ Google Chrome :