Pages publicitaires qui s'affichent sans cesse [W7]

zicrall Messages postés 3 Date d'inscription vendredi 25 juillet 2014 Statut Membre Dernière intervention 30 juillet 2014 - Modifié par LordMacDragus le 25/07/2014 à 22:37
zicrall Messages postés 3 Date d'inscription vendredi 25 juillet 2014 Statut Membre Dernière intervention 30 juillet 2014 - 30 juil. 2014 à 10:39
Bonjour, à tous je suis nouveau sur le forum et j'ai un soucis depuis deja quelques temps. Tout est dit dans le titre j'ai des pages publicitaires qui apparaissent (souvent des annonces ect) sans cesse et je n'arrive pas à m'en débarrasser. J'ai beau utiliser ccleaner et mon anti virus avast mais rien n'y vient à bout ! merci de m'aider
PS : je suis sous windows 7 et j'utilise chrome

Known001 Messages postés 2385 Date d'inscription mardi 28 août 2012 Statut Membre Dernière intervention 16 novembre 2018 322
Modifié par Known001 le 25/07/2014 à 23:46
Ok passons un adwcleaner assure toi d'avoir la dernière version
1- scan
2- nettoyage
3- quand le pc aura redemarré ferme le rapport qui s'ouvre et poste le sur cjoint
(il se trouvera dans C:\adwcleaner\adwcleaner[S"n"].txt ("n" est le dernier numéro attribué du rapport)

lien Adwcleaner
SpryTi Messages postés 53 Date d'inscription vendredi 25 juillet 2014 Statut Membre Dernière intervention 29 décembre 2014 31
25 juil. 2014 à 22:38
J'ai la solution regarde la vidéo sur ma chaîne, exactement sur ce sujet là :
piquesous Messages postés 15928 Date d'inscription mercredi 9 janvier 2013 Statut Contributeur Dernière intervention 13 août 2023 6 064
25 juil. 2014 à 23:14

adblock peut être pas mal , mais avant , il faut faire un petit nettoyage de l'ordi , car adblock n'enlèvera pas comme ça les pubs .
zicrall Messages postés 3 Date d'inscription vendredi 25 juillet 2014 Statut Membre Dernière intervention 30 juillet 2014
28 juil. 2014 à 20:24
Merci pour vos messages qui ont été si rapides !
voici le rapport que j'ai eu en redémarrant mon PC :
***** [ Services ] *****

Service Supprimé : IePluginServices
[#] Service Supprimé : Update NetCrawl
[#] Service Supprimé : Util NetCrawl
Service Supprimé : {6fcd6092-9615-4f7f-8898-8df53980e5d2}Gw64

***** [ Fichiers / Dossiers ] *****

Dossier Supprimé : C:\ProgramData\IePluginServices
Dossier Supprimé : C:\ProgramData\WindowsMangerProtect
[!] Dossier Supprimé : C:\Program Files (x86)\NetCrawl
Dossier Supprimé : C:\Program Files (x86)\SearchProtect
Dossier Supprimé : C:\Program Files (x86)\SupTab
Dossier Supprimé : C:\Program Files (x86)\WSE Rocket
[!] Dossier Supprimé : C:\Program Files (x86)\NetCrawl
Dossier Supprimé : C:\Users\willy\AppData\Local\SearchProtect
Dossier Supprimé : C:\Users\willy\AppData\Roaming\RocketUpdater
Dossier Supprimé : C:\Users\willy\AppData\Roaming\webssearches
Fichier Supprimé : C:\Windows\System32\drivers\{6fcd6092-9615-4f7f-8898-8df53980e5d2}Gw64.sys
Fichier Supprimé : C:\Users\willy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
Fichier Supprimé : C:\Users\willy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal

***** [ Tâches planifiées ] *****

Tâche Supprimée : Rocket Updater

***** [ Raccourcis ] *****

Raccourci Désinfecté : C:\Users\willy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Raccourci Désinfecté : C:\Users\willy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Raccourci Désinfecté : C:\Users\willy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

***** [ Registre ] *****

Clé Supprimée : HKCU\Software\Google\Chrome\Extensions\ibnjmihbbanannlbobkbmnmckjnmdnom
Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\ibnjmihbbanannlbobkbmnmckjnmdnom
Clé Supprimée : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\ibnjmihbbanannlbobkbmnmckjnmdnom
Valeur Supprimée : HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel [Homepage]
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASMANCS
Clé Supprimée : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Clé Supprimée : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{91C6335B-B94B-4CED-BCE3-BC33A09F5DB5}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{769A91DA-209F-47FE-88B9-B0321B0982C8}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{91C6335B-B94B-4CED-BCE3-BC33A09F5DB5}
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Clé Supprimée : HKCU\Software\InstallCore
Clé Supprimée : HKCU\Software\NetCrawl
Clé Supprimée : HKCU\Software\Rocket Browser
Clé Supprimée : HKCU\Software\RocketUpdater
Clé Supprimée : HKCU\Software\WSE Rocket
Clé Supprimée : HKLM\Software\InstallCore
Clé Supprimée : HKLM\Software\NetCrawl
Clé Supprimée : HKLM\Software\SupDp
Clé Supprimée : HKLM\Software\SupTab
Clé Supprimée : HKLM\Software\supWindowsMangerProtect
Clé Supprimée : HKLM\Software\supWPM
Clé Supprimée : HKLM\Software\webssearchesSoftware
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\webssearches uninstall
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WindowsMangerProtect
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WSE Rocket
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\NetCrawl
Donnée Supprimée : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SupTab\SEARCH~1.DLL
Donnée Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SupTab\SEARCH~2.DLL

***** [ Navigateurs ] *****

-\\ Internet Explorer v11.0.9600.17207

Paramètre Restauré : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Paramètre Restauré : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Google Chrome v36.0.1985.125

[ Fichier : C:\Users\willy\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Supprimée [Search Provider] : hxxp://{searchTerms}&a=rckt_tele_14_28_ch&cd=2XzuyEtN2Y1L1QzutDtDtByBtCtAtB0EyCtCtDtA0E0CtCzztN0D0Tzu0SzytBtAtN1L2XzutBtFtBtCtFtCyEtFtCtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StDtByC0E0E0BtAtDtGtAyD0EyCtGtCtAyByCtGyD0DyByCtGyB0EtDtByEyD0ByDtDyByCtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyDtA0B0EyBtDtA0BtGyByE0FyCtG0A0AtDzytGtC0EtAyCtGyB0AyE0B0DzztDtC0AyD0EtD2Q&cr=2002943399&ir=
Supprimée [Search Provider] : hxxp://{searchTerms}&SSPV=
Supprimée [Homepage] : hxxp://
Supprimée [Extension] : ibnjmihbbanannlbobkbmnmckjnmdnom


AdwCleaner[R0].txt - [8229 octets] - [28/07/2014 20:08:04]
AdwCleaner[S0].txt - [7343 octets] - [28/07/2014 20:14:50]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [7403 octets] ##########
Known001 Messages postés 2385 Date d'inscription mardi 28 août 2012 Statut Membre Dernière intervention 16 novembre 2018 322
28 juil. 2014 à 22:48
Un scan de ZHP diag pour s'en assurer

Télécharge ZHPDiag (de Nicolas coolman) :

Double clique sur le fichier téléchargé, puis installe le avec les paramètres par défaut ( N'oublie pas de cocher Créer une icône sur le bureau)
Pour Vista, Seven et Windows 8 fais un clic droit sur le fichier téléchargé et Exécuter en tant qu'administrateur
Trois icônes seront crées sur le bureau lors de son installation

Lance ZHPDiag en double cliquant sur son icône présente sur le bureau
Pour Vista et Windows 7 clic droit sur le raccourci de ZHPDiag et Exécuter en tant qu'administrateur
Clique sur le bouton Tournevis (Options)
Coche toutes les cases sauf celle devant :
Derniers fichiers créés dans Windows Prefetcher (045)
Derniers fichiers modifiés ou crées (Utilsateur) (061)
Alternate Data Stream File (062)

Clique en haut à gauche sur la loupe

Laisse le scan se dérouler.

Le scan terminé, clique sur la disquette
Enregistre le rapport sur le bureau.
Sinon le rapport se trouvera aussi ici ==> c:\ZHP\ZHPDiag.txt

Pour poster le rapport en lien dans ta réponse utilise cet hébergeur de fichiers :

zicrall Messages postés 3 Date d'inscription vendredi 25 juillet 2014 Statut Membre Dernière intervention 30 juillet 2014
30 juil. 2014 à 10:39
Merci de ta réponse et de tes instructions si précices !
voila le rapport : ---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17207
GCIE: Google Chrome v36.0.1985.125 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Français
Windows Vista (TM) Ultimate, 64-bit Service Pack 1 (Build 6000)
Windows Server License Manager Script : OK
~ Windows Operating System - Windows(R) 7, OEM_COA_SLP channel
Windows ID Activation : OK
~ Windows Partial Key : 26438
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK

---\\ Logiciels de protection du système
avast! Free Antivirus v9.0.2021

---\\ Logiciels d'optimisation du système
CCleaner v4.16

---\\ Logiciels de partage PeerToPeer
Pando Media Booster v2.6.0.7

---\\ Surveillance de Logiciels
Adobe Flash Player 14 Plugin
Adobe Reader XI
Java 7 Update 60

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3039 MB (38% free)
System Restore: Activé (Enable)
System drive C: has 420 GB (90%) free of 466 GB

---\\ Mode de connexion au système
~ Computer Name: WILLY-PC
~ User Name: willy
~ All Users Names: willy, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\willy\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\willy\AppData\Roaming\
~ %Desktop% : C:\Users\willy\Desktop\
~ %Favorites% : C:\Users\willy\Favorites\
~ %LocalAppData% : C:\Users\willy\AppData\Local\
~ %StartMenu% : C:\Users\willy\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 420 Go of 466 Go)
D: Hard drive, Flash drive, Thumb drive (Free 446 Go of 466 Go)
E: CD-ROM drive (Not Inserted)

---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 46 Scanned in 00mn 00s

---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.2EE102DF0EDD8A1EDD3D1E9B99A91BEC] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.18/06/2014 - 23:58:27.) -- C:\Windows\System32\wininet.dll [2266112]
[MD5.88AB9B72B4BF3963A0DE0820B4B0B06C] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.04/03/2014 - 10:43:50.) -- C:\Windows\System32\Winlogon.exe [455168]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.21/11/2010 - 04:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 07:45:52.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 04:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.24/01/2014 - 03:37:55.) -- C:\Windows\system32\Drivers\ntfs.sys [1684928]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 04:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 00s

---\\ Etat des fichiers cachés (Caché/Total)
~ Mes musiques (My Musics) : 1/97
~ Mes Videos (My Videos) : 1/2
~ Mes Favoris (My Favorites) : 1/76
~ Mes Documents (My Documents) : 1/376
~ Mon Bureau (My Desktop) : 1/16
~ Menu demarrer (Programs) : 1/60
~ Hidden Files: Scanned in 00mn 00s

---\\ Processus lancés
[MD5.26AFC1F16494FFE66F2197153B342A27] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4086432] [PID.2316]
[MD5.00AB2B491C7037BB219BEB26FAD34C72] - (.CANON INC. - Canon Solution Menu EX.) -- C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.exe [1612920] [PID.916]
[MD5.5F7EE76129F9A591F22F99F95D97AC95] - (.CANON INC. - Canon IJ Network Scanner Selector EX.) -- C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452016] [PID.3188]
[MD5.1DE859B82E381A645C44284A5044BC33] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896] [PID.3628]
[MD5.603668084332DDB58D8C5AACE30B04FC] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392] [PID.3636]
[MD5.8334E5088E74401490001EF65E07CAC5] - (.CANON INC. - Canon Solution Menu EX Updater.) -- C:\Program Files (x86)\Canon\Solution Menu EX\CNSEUPDT.exe [593032] [PID.3572]
[MD5.06CDFF18C88D984938608DABE269897F] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [21438592] [PID.3716]
[MD5.B43E68B8A022FB00FF54360D408E871B] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [860488] [PID.3712]
[MD5.1F62DCBF33A67CAA5E68ADECBB25C3C7] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8071680] [PID.4416]
[MD5.73F5C13B431915BAE35254B4E95DFB71] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344] [PID.1560]
[MD5.6B73E94F9FE82D45781B8C8A09483082] - (.Apple Inc. - YSLoader.exe.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [43336] [PID.1180]
[MD5.F75B2A6E170290E1EF32892A72B58850] - (.????????????? - ????-????.) -- C:\Users\Public\Thunder Network\KKVideo\Core\Program\KKV.exe [231072] [PID.2208]
~ Processes Running: Scanned in 00mn 00s

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\willy\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] =>Hijacker.WebsSearches
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Google Store v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Docs v.0.7 (Activé)
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Drive v.6.3 (Activé)
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.6 (Activé)
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v. (Activé)
G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [gfdkimpbcpahaombhbimeihdjnejgicl] Feedback v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [gighmmpiobklfepjocnamgkkbiglidom] AdBlock v.2.7.8, (Activé)
G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] avast! Online Security v.9.0.2022.121, (Activé)
G2 - GCE: Preference [User Data\Default] [kmendfapggjehodndflmmgagdbamhnfd] CryptoTokenExtension v.0.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mfffpogegjflfpflabcdkioaeobkgjik] GaiaAuthExtension v.0.0.1, (Activé)
G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Google+ Hangouts v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v. (Activé)
G2 - GCE: Preference [User Data\Default] [pafkbggdmjlpgkdkcbjmhmfcdpncadgh] Google Now v. (Activé)
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activé)

---\\ Liste des dossiers d'extension Google Chrome
G2 - EXT: C:\Users\willy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [Google Docs]
G2 - EXT: C:\Users\willy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [Google Drive]
G2 - EXT: C:\Users\willy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [YouTube]
G2 - EXT: C:\Users\willy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [Recherche Google]
G2 - EXT: C:\Users\willy\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [AdBlock]
G2 - EXT: C:\Users\willy\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [avast! Online Security]
G2 - EXT: C:\Users\willy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [Google Wallet]
G2 - EXT: C:\Users\willy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [Gmail]
~ Google Lines Browser: 55 Scanned in 00mn 12s

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll
P2 - FPN: [HKCU] [] - (.Pando Networks - Pando Web Plugin.) -- C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
~ Firefox Browser: 2 Scanned in 00mn 00s

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL =
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = about:newtab
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.17041 (winblue_gdr.140305-1710)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
~ IE Browser: 17 Scanned in 00mn 00s

---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s

---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s

---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21

---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: VideoUrlSniffer [64Bits] - {00000ADA-7E0D-47C1-986C-F017D09C4304} . (.????????????? - VideoUrlSniffer Module.) -- C:\Users\Public\Thunder Network\XMP4\Addins\VideoUrlSniffer.
O2 - BHO: Canon Easy-WebPrint EX BHO [64Bits] - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} . (.CANON INC. - Easy-WebPrint EX.) -- C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
~ BHO: 14 Scanned in 00mn 00s

---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Canon Easy-WebPrint EX - [HKLM]{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} . (.CANON INC. - Easy-WebPrint EX.) -- C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll
~ Toolbar: Scanned in 00mn 00s

---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [CanonMyPrinter] . (.CANON INC. - Canon My Printer.) -- C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\System32\StikyNot.exe =>.Microsoft Corporation
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [CanonSolutionMenuEx] . (.CANON INC. - Canon Solution Menu EX.) -- C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.exe
O4 - HKLM\..\Wow6432Node\Run: [IJNetworkScannerSelectorEX] . (.CANON INC. - Canon IJ Network Scanner Selector EX.) -- C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3448202426-903507667-3129205513-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3448202426-903507667-3129205513-1000\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\System32\StikyNot.exe =>.Microsoft Corporation
~ Application: Scanned in 00mn 00s

---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s

---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Winsock: 8 Scanned in 00mn 00s

---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{8C8A80D2-E7F3-4BFF-9F7F-5A88B2BF3BCD}: NameServer =, =>.Google DNS Redirections
O17 - HKLM\System\CCS\Services\Tcpip\..\{8ACC77B5-7E09-4FE1-877E-A6FB35BE1AAA}: DhcpNameServer =
O17 - HKLM\System\CCS\Services\Tcpip\..\{8C8A80D2-E7F3-4BFF-9F7F-5A88B2BF3BCD}: DhcpNameServer =
O17 - HKLM\System\CS1\Services\Tcpip\..\{8C8A80D2-E7F3-4BFF-9F7F-5A88B2BF3BCD}: NameServer =, =>.Google DNS Redirections
O17 - HKLM\System\CS1\Services\Tcpip\..\{8ACC77B5-7E09-4FE1-877E-A6FB35BE1AAA}: DhcpNameServer =
O17 - HKLM\System\CS1\Services\Tcpip\..\{8C8A80D2-E7F3-4BFF-9F7F-5A88B2BF3BCD}: DhcpNameServer =
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer =
~ Domain: Scanned in 00mn 00s

---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s

---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - YSLoader.exe.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: HP Service (hpsrv) . (.Hewlett-Packard - HpService.) - C:\Windows\System32\Hpservice.exe
O23 - Service: C:\Windows\System32\stlang64.dll (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Program Files\IDT\WDM\STacSV64.exe
~ Services: 8 Scanned in 00mn 11s

---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s

---\\ Tâches planifiées en automatique (O39)
[MD5.A6B6AB9502B63F43A9A56AE6AFB22078] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [262320]
[MD5.1AD8512A5C40AD1A0558498D8E0AC2AA] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [808448]
[MD5.88077CF32319BEE612C82EBF54680DE8] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [4626712]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.C155A13687144076286989EF078112C2] [APT] [{34E9741F-1B35-4278-BF3A-A2CA3589338C}] (.Nicolas Coolman.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe [1917440]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1062]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1062]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1066]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1066]
~ Scheduled Task: 24 Scanned in 00mn 04s

---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s

---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\drivers\aswRdr2.sys
O41 - Driver: (aswSnx) . (.AVAST Software - avast! Virtualization Driver.) - C:\Windows\system32\drivers\aswSnx.sys
O41 - Driver: (aswSP) . (.AVAST Software - avast! self protection module.) - C:\Windows\system32\drivers\aswSP.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
O41 - Driver: (360AntiHacker) . (. - .) - C:\Windows\System32\Drivers\360AntiHacker64.sys (.not file.)
O41 - Driver: (360Box64) . (. - .) - C:\Windows\System32\DRIVERS\360Box64.sys (.not file.)
O41 - Driver: (360Camera) . (. - .) - C:\Windows\System32\Drivers\360Camera64.sys (.not file.)
O41 - Driver: (360FsFlt) . (. - .) - C:\Windows\System32\DRIVERS\360FsFlt.sys (.not file.)
O41 - Driver: (360netmon) . (. - .) - C:\Windows\System32\DRIVERS\360netmon.sys (.not file.)
O41 - Driver: (BAPIDRV) . (. - .) - C:\Windows\System32\DRIVERS\BAPIDRV64.sys (.not file.)
~ Drivers: 72 Scanned in 00mn 00s

---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe Flash Player 14 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 14 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader XI (11.0.07) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {21ECABC3-40B2-42DF-8E21-ACF3A4D0D95A}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {6AF2AC2A-3532-43FD-9F4D-BDC9C0D724C7}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Canon Easy-PhotoPrint EX - (...) [HKLM][64Bits] -- Easy-PhotoPrint EX
O42 - Logiciel: Canon Easy-WebPrint EX - (.Canon Inc..) [HKLM][64Bits] -- Easy-WebPrint EX
O42 - Logiciel: Canon IJ Network Scanner Selector EX - (...) [HKLM][64Bits] -- Canon_IJ_Network_Scanner_Selector_EX
O42 - Logiciel: Canon IJ Network Tool - (.Canon Inc..) [HKLM][64Bits] -- Canon_IJ_Network_UTILITY
O42 - Logiciel: Canon MG5300 series MP Drivers - (.Canon Inc..) [HKLM][64Bits] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5300_series
O42 - Logiciel: Canon MG5300 series On-screen Manual - (...) [HKLM][64Bits] -- Canon MG5300 series On-screen Manual
O42 - Logiciel: Canon MP Navigator EX 5.0 - (...) [HKLM][64Bits] -- MP Navigator EX 5.0
O42 - Logiciel: Canon My Printer - (...) [HKLM][64Bits] -- CanonMyPrinter
O42 - Logiciel: Canon Solution Menu EX - (...) [HKLM][64Bits] -- CanonSolutionMenuEX
O42 - Logiciel: Enregistrement utilisateur de Canon MG5300 series - (...) [HKLM][64Bits] -- Enregistrement utilisateur de Canon MG5300 series =>.Canon Inc
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Java 7 Update 60 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F03217060FF}
O42 - Logiciel: League of Legends - (.Riot Games.) [HKLM][64Bits] -- League of Legends 3.0.1
O42 - Logiciel: League of Legends - (.Riot Games.) [HKLM][64Bits] -- {3E75652D-99B1-417E-B163-BEF33CAD3F16}
O42 - Logiciel: OpenOffice 4.1.0 - (.Apache Software Foundation.) [HKLM][64Bits] -- {B3B009FC-6909-4E00-9F43-FFB5CA93D606}
O42 - Logiciel: Pando Media Booster - (.Pando Networks Inc..) [HKLM][64Bits] -- {980A182F-E0A2-4A40-94C1-AE0C1235902E}
O42 - Logiciel: S4 League_EU - (...) [HKLM][64Bits] -- {8E84657C-06A3-42D8-943D-004662467EEB}
O42 - Logiciel: Skype(TM) 6.16 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}
O42 - Logiciel: WinRAR 5.01 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: avast! Free Antivirus v9.0.2021 - (.AVAST Software.) [HKLM][64Bits] -- Avast
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {33E28B58-7BA0-47B7-AA01-9225ABA2B8A9}
O42 - Logiciel: ??????? 7.1??? - (.final.) [HKLM][64Bits] -- Sogou Input =>PUP.Sogou
O42 - Logiciel: ????-???? - (.??????????.) [HKLM][64Bits] -- ????-????
O42 - Logiciel: ??????? - (.??????????.) [HKLM][64Bits] -- ???????
O42 - Logiciel: ?????????? - (.??????????.) [HKLM][64Bits] -- ??????????
~ Logic: 47 Scanned in 00mn 00s

---\\ HKCU & HKLM Software Keys
[HKCU\Software\AVAST Software]
[HKCU\Software\AppDataLow\Thunder Network]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Disc Soft]
[HKCU\Software\IM Providers]
[HKCU\Software\Pando Networks]
[HKCU\Software\SogouInput] =>PUP.Sogou
[HKCU\Software\Thunder Network]
[HKCU\Software\WinRAR SFX]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\GEAR Software]
[HKLM\Software\IM Providers]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\Disc Soft]
[HKLM\Software\Wow6432Node\Electronic Arts]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\Origin Games]
[HKLM\Software\Wow6432Node\Pando Networks]
[HKLM\Software\Wow6432Node\Riot Games]
[HKLM\Software\Wow6432Node\SogouComponents] =>PUP.Sogou
[HKLM\Software\Wow6432Node\SogouInput] =>PUP.Sogou
[HKLM\Software\Wow6432Node\Thunder Network]
~ Key Software: 179 Scanned in 00mn 00s

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 02/07/2014 - 22:43:50 - [] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 25/07/2014 - 21:07:51 - [] ----D C:\Program Files (x86)\Apple Software Update =>.Apple Inc
O43 - CFD: 25/07/2014 - 21:07:18 - [] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 15/07/2014 - 00:04:52 - [] ----D C:\Program Files (x86)\Canon
O43 - CFD: 25/07/2014 - 21:07:01 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 03/07/2014 - 00:07:08 - [] ----D C:\Program Files (x86)\Convar
O43 - CFD: 14/07/2014 - 22:45:17 - [] ----D C:\Program Files (x86)\Google
O43 - CFD: 11/07/2014 - 23:21:47 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 21/07/2014 - 00:33:05 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 25/07/2014 - 21:09:06 - [] ----D C:\Program Files (x86)\iTunes
O43 - CFD: 17/07/2014 - 12:17:15 - [] ----D C:\Program Files (x86)\Java
O43 - CFD: 02/07/2014 - 22:59:50 - [] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 02/07/2014 - 22:59:48 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 02/07/2014 - 22:57:44 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 02/07/2014 - 22:59:58 - [] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 27/07/2014 - 17:30:46 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 02/07/2014 - 22:59:51 - [] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 28/07/2014 - 20:14:57 - [] ----D C:\Program Files (x86)\NetCrawl
O43 - CFD: 03/07/2014 - 00:03:01 - [] ----D C:\Program Files (x86)\OpenOffice 4
O43 - CFD: 03/07/2014 - 00:30:31 - [] ----D C:\Program Files (x86)\OpenOffice 4.1.0 (fr) Installation Files
O43 - CFD: 28/07/2014 - 21:37:22 - [] ----D C:\Program Files (x86)\Pando Networks
O43 - CFD: 14/07/2009 - 07:32:38 - [] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 07/07/2014 - 22:22:31 - [] R---D C:\Program Files (x86)\Skype
O43 - CFD: 02/07/2014 - 22:51:30 - [] ----D C:\Program Files (x86)\SogouInput =>PUP.Sogou
O43 - CFD: 02/07/2014 - 22:48:33 - [] ----D C:\Program Files (x86)\Thunder Network
O43 - CFD: 14/07/2009 - 06:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 13/07/2014 - 17:24:54 - [] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 12/04/2011 - 11:16:36 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 26/07/2014 - 17:09:16 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - 07:32:38 - [] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 12/04/2011 - 11:16:36 - [] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 21/11/2010 - 05:31:38 - [] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 12/04/2011 - 11:16:36 - [] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 02/07/2014 - 22:43:08 - [] ----D C:\Program Files (x86)\WinRAR
O43 - CFD: 02/07/2014 - 22:41:14 - [] ----D C:\Program Files (x86)\yckz
O43 - CFD: 30/07/2014 - 10:02:08 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 02/07/2014 - 22:43:55 - [] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 25/07/2014 - 21:08:35 - [] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 02/07/2014 - 22:59:48 - [] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 11/07/2014 - 23:15:46 - [] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 17/07/2014 - 12:17:38 - [] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 02/07/2014 - 23:16:04 - [] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 14/07/2009 - 05:20:08 - [] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 07/07/2014 - 22:22:31 - [] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 14/07/2009 - 05:20:08 - [] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 13/07/2014 - 17:25:16 - [] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 02/07/2014 - 22:48:48 - [] ----D C:\Program Files (x86)\Common Files\Thunder Network
O43 - CFD: 25/07/2014 - 21:09:10 - [] ----D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 02/07/2014 - 23:13:07 - [0] ----D C:\ProgramData\360safe
O43 - CFD: 11/07/2014 - 22:59:48 - [] ----D C:\ProgramData\Adobe
O43 - CFD: 25/07/2014 - 21:07:42 - [] ----D C:\ProgramData\Apple
O43 - CFD: 25/07/2014 - 21:08:35 - [] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 07:08:56 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 02/07/2014 - 23:24:08 - [] ----D C:\ProgramData\AVAST Software
O43 - CFD: 02/07/2014 - 22:27:51 - [] -SH-D C:\ProgramData\Bureau
O43 - CFD: 15/07/2014 - 00:01:14 - [0] ----D C:\ProgramData\Canon IJ Network Tool
O43 - CFD: 14/07/2014 - 23:55:01 - [] --H-D C:\ProgramData\CanonBJ
O43 - CFD: 15/07/2014 - 00:04:53 - [0] --H-D C:\ProgramData\CanonEPP
O43 - CFD: 16/07/2014 - 00:43:50 - [] --H-D C:\ProgramData\CanonIJEGV
O43 - CFD: 15/07/2014 - 00:04:53 - [0] --H-D C:\ProgramData\CanonIJEPPEX2
O43 - CFD: 14/07/2014 - 23:57:57 - [] ----D C:\ProgramData\CanonIJWSpt
O43 - CFD: 12/07/2014 - 11:10:27 - [] ----D C:\ProgramData\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 14/07/2009 - 07:08:56 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 07:08:56 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 02/07/2014 - 22:27:51 - [] -SH-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 07:08:56 - [] -SH-D C:\ProgramData\Favorites
O43 - CFD: 02/07/2014 - 22:27:51 - [] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 27/07/2014 - 17:30:40 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 02/07/2014 - 23:00:52 - [] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 02/07/2014 - 22:27:51 - [] -SH-D C:\ProgramData\Modèles
O43 - CFD: 17/07/2014 - 12:17:48 - [0] ----D C:\ProgramData\Oracle
O43 - CFD: 17/07/2014 - 12:14:02 - [] ----D C:\ProgramData\Origin
O43 - CFD: 02/07/2014 - 23:18:17 - [] ----D C:\ProgramData\Package Cache
O43 - CFD: 30/07/2014 - 09:56:03 - [] ----D C:\ProgramData\PMB Files =>P2P.Pando
O43 - CFD: 28/07/2014 - 21:53:13 - [] ----D C:\ProgramData\Riot Games
O43 - CFD: 07/07/2014 - 22:22:35 - [] ----D C:\ProgramData\Skype
O43 - CFD: 14/07/2009 - 07:08:56 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 02/07/2014 - 22:45:17 - [] ----D C:\ProgramData\Sun
O43 - CFD: 14/07/2009 - 07:08:56 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 02/07/2014 - 23:23:45 - [] ----D C:\ProgramData\Thunder Network
O43 - CFD: 02/07/2014 - 23:04:06 - [] ----D C:\Users\willy\AppData\Roaming\360Login
O43 - CFD: 02/07/2014 - 23:13:18 - [] ----D C:\Users\willy\AppData\Roaming\Adobe
O43 - CFD: 25/07/2014 - 21:21:27 - [] ----D C:\Users\willy\AppData\Roaming\Apple Computer
O43 - CFD: 02/07/2014 - 23:25:41 - [] ----D C:\Users\willy\AppData\Roaming\AVAST Software
O43 - CFD: 16/07/2014 - 00:24:37 - [] ----D C:\Users\willy\AppData\Roaming\Canon
O43 - CFD: 12/07/2014 - 11:11:01 - [0] ----D C:\Users\willy\AppData\Roaming\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 02/07/2014 - 22:28:21 - [] ----D C:\Users\willy\AppData\Roaming\Identities
O43 - CFD: 28/07/2014 - 23:45:56 - [] ----D C:\Users\willy\AppData\Roaming\LolClient
O43 - CFD: 02/07/2014 - 22:49:37 - [] ----D C:\Users\willy\AppData\Roaming\Macromedia
O43 - CFD: 12/04/2011 - 11:27:52 - [0] ----D C:\Users\willy\AppData\Roaming\Media Center Programs
O43 - CFD: 14/07/2014 - 23:03:47 - [] -S--D C:\Users\willy\AppData\Roaming\Microsoft
O43 - CFD: 03/07/2014 - 00:20:51 - [] ----D C:\Users\willy\AppData\Roaming\OpenOffice
O43 - CFD: 12/07/2014 - 14:43:47 - [] ----D C:\Users\willy\AppData\Roaming\Origin
O43 - CFD: 28/07/2014 - 21:37:16 - [] ----D C:\Users\willy\AppData\Roaming\Riot Games
O43 - CFD: 30/07/2014 - 10:10:58 - [] ----D C:\Users\willy\AppData\Roaming\Skype
O43 - CFD: 02/07/2014 - 22:47:15 - [] ----D C:\Users\willy\AppData\Roaming\WinRAR
O43 - CFD: 30/07/2014 - 10:14:14 - [] ----D C:\Users\willy\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 15/07/2014 - 15:01:35 - [] ----D C:\Users\willy\AppData\Local\Adobe
O43 - CFD: 25/07/2014 - 21:07:52 - [] ----D C:\Users\willy\AppData\Local\Apple
O43 - CFD: 25/07/2014 - 21:09:45 - [] ----D C:\Users\willy\AppData\Local\Apple Computer
O43 - CFD: 02/07/2014 - 22:28:02 - [] -SH-D C:\Users\willy\AppData\Local\Application Data
O43 - CFD: 14/07/2014 - 22:30:50 - [] ----D C:\Users\willy\AppData\Local\Apps
O43 - CFD: 14/07/2014 - 22:43:49 - [0] ----D C:\Users\willy\AppData\Local\Deployment
O43 - CFD: 25/07/2014 - 23:17:08 - [] ----D C:\Users\willy\AppData\Local\ElevatedDiagnostics
O43 - CFD: 23/07/2014 - 19:42:42 - [] -SH-D C:\Users\willy\AppData\Local\EmieSiteList
O43 - CFD: 23/07/2014 - 19:42:42 - [] -SH-D C:\Users\willy\AppData\Local\EmieUserList
O43 - CFD: 14/07/2014 - 22:45:30 - [] ----D C:\Users\willy\AppData\Local\Google
O43 - CFD: 02/07/2014 - 22:28:02 - [] -SH-D C:\Users\willy\AppData\Local\Historique
O43 - CFD: 13/07/2014 - 17:34:03 - [] ----D C:\Users\willy\AppData\Local\Microsoft
O43 - CFD: 02/07/2014 - 22:57:20 - [0] ----D C:\Users\willy\AppData\Local\Microsoft Help
O43 - CFD: 17/07/2014 - 12:14:02 - [] ----D C:\Users\willy\AppData\Local\Origin
O43 - CFD: 30/07/2014 - 09:56:04 - [] ----D C:\Users\willy\AppData\Local\PMB Files =>P2P.Pando
O43 - CFD: 02/07/2014 - 22:46:54 - [] ----D C:\Users\willy\AppData\Local\Skype
O43 - CFD: 30/07/2014 - 10:14:12 - [] ----D C:\Users\willy\AppData\Local\Temp
O43 - CFD: 02/07/2014 - 22:28:02 - [] -SH-D C:\Users\willy\AppData\Local\Temporary Internet Files
O43 - CFD: 02/07/2014 - 22:28:17 - [0] ----D C:\Users\willy\AppData\Local\VirtualStore
O43 - CFD: 14/07/2009 - 06:54:32 - [] R---D C:\Users\willy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 13/07/2014 - 17:34:08 - [] R---D C:\Users\willy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 03/07/2014 - 00:07:08 - [] ----D C:\Users\willy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Convar
O43 - CFD: 14/07/2009 - 06:49:38 - [] R---D C:\Users\willy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 13/07/2014 - 17:34:08 - [] R---D C:\Users\willy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 02/07/2014 - 22:43:08 - [] ----D C:\Users\willy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ Program Folder: 122 Scanned in 00mn 00s

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.F188B7394D81010767B6DF3178519A37] - 20/07/2014 - 23:19:59 ---A- . (.Microsoft Corporation - Pilote de Miniport Bluetooth.) -- C:\Windows\System32\Drivers\BTHUSB.SYS [80384]
O44 - LFC:[MD5.89A53CDE0DA5680AF48A181D82C752CA] - 20/07/2014 - 23:27:26 ---A- . (.Microsoft Corporation - DAC for Trident DOM.) -- C:\Windows\System32\MshtmlDac.dll [83968]
O44 - LFC:[MD5.F876957CA193B20A21D52F91418657D7] - 20/07/2014 - 23:27:26 ---A- . (.Microsoft Corporation - DLL de gestion d'utilisateur local et de co.) -- C:\Windows\System32\msrating.dll [195584]
O44 - LFC:[MD5.2EE102DF0EDD8A1EDD3D1E9B99A91BEC] - 20/07/2014 - 23:27:26 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [2266112]
O44 - LFC:[MD5.BDD4A74421B023C81DA63168BD10C01B] - 20/07/2014 - 23:27:26 ---A- . (.Microsoft Corporation - Microsoft SmartScreen Filter.) -- C:\Windows\System32\ieapfltr.dll [846336]
O44 - LFC:[MD5.52012C83F7E9AF65D13F04415F0508F5] - 20/07/2014 - 23:27:26 ---A- . (.Microsoft Corporation - Microsoft Spell Checking Facility.) -- C:\Windows\System32\MsSpellCheckingFacility.exe [940032]
O44 - LFC:[MD5.00401347C3BC466E5F2516387EBBCA7D] - 20/07/2014 - 23:27:26 ---A- . (.Microsoft Corporation - Microsoft ® VBScript.) -- C:\Windows\System32\vbscript.dll [548352]
O44 - LFC:[MD5.FEC19C351EF1B2C998A85D1BFD765675] - 20/07/2014 - 23:27:26 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [23464448]
O44 - LFC:[MD5.4EC7738394D2BC7BCB5F7A3657F57252] - 20/07/2014 - 23:27:32 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript9.dll [5721088]
O44 - LFC:[MD5.A21C6231459F4CAC212676A9367A1A68] - 20/07/2014 - 23:27:32 ---A- . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\System32\iertutil.dll [2768384]
O44 - LFC:[MD5.945FA19B388FCF0FEA6124B5FD71C72F] - 20/07/2014 - 23:27:33 ---A- . (.Microsoft Corporation - Microsoft (R) HTML Media DLL.) -- C:\Windows\System32\mshtmlmedia.dll [1249280]
O44 - LFC:[MD5.854C5F171F5CEE272232AC0286F3B3B9] - 20/07/2014 - 23:27:34 ---A- . (.Microsoft Corporation - Moteur de l'interface utilisateur d'Interne.) -- C:\Windows\System32\ieui.dll [598016]
O44 - LFC:[MD5.366FA6D38406DC8BED62825C196144D1] - 20/07/2014 - 23:27:34 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll [13527040]
O44 - LFC:[MD5.391D68668CFC061F26BE593A61F745E0] - 20/07/2014 - 23:27:35 ---A- . (.Microsoft Corporation - IE ETW Collector Service Resources.) -- C:\Windows\System32\ieetwcollectorres.dll [4096]
O44 - LFC:[MD5.7469D4E046BD7D155CAC2697BD28B58B] - 20/07/2014 - 23:27:35 ---A- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\System32\iesetup.dll [66048]
O44 - LFC:[MD5.50FF2DD806CC6CF3B3F98F9A1A711603] - 20/07/2014 - 23:27:35 ---A- . (.Microsoft Corporation - Microsoft ® JScript Diagnostics.) -- C:\Windows\System32\jscript9diag.dll [752640]
O44 - LFC:[MD5.CD76B3D60D28634A67B0AD7CB2E45929] - 20/07/2014 - 23:27:35 ---A- . (.Microsoft Corporation - Outil d'installation sans assistance d'IE 7.) -- C:\Windows\System32\ieUnatt.exe [139264]
O44 - LFC:[MD5.1685AA234852657C4A6D253CCBBE84E0] - 20/07/2014 - 23:27:35 ---A- . (.Microsoft Corporation - Panneau de configuration Internet.) -- C:\Windows\System32\inetcpl.cpl [2040832]
O44 - LFC:[MD5.73C7D1FCF6F58F3BF077FB42B0214BC0] - 20/07/2014 - 23:27:36 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [1393664]
O44 - LFC:[MD5.D8E6706AECD7AA50764E126CE3F36555] - 20/07/2014 - 23:27:36 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll [631808]
O44 - LFC:[MD5.1FD6C2F6AC489C271565730F6E9E1A05] - 20/07/2014 - 23:27:36 ---A- . (.Microsoft Corporation - Microsoft® HTML Editing Component.) -- C:\Windows\System32\mshtmled.dll [85504]
O44 - LFC:[MD5.DA5BAC4C5BDB22BBC6771534EA95AD33] - 20/07/2014 - 23:27:36 ---A- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb [2724864]
O44 - LFC:[MD5.C0F9F52C36E584C0339406ABF6DA1FBA] - 20/07/2014 - 23:27:36 ---A- . (.Microsoft Corporation - Personnalisation d'IEAK.) -- C:\Windows\System32\iedkcs32.dll [266424]
O44 - LFC:[MD5.FC50DF22550C565DD096ACFAF18A37ED] - 20/07/2014 - 23:27:36 ---A- . (.Microsoft Corporation - Traitement de RunOnce complet avec interfac.) -- C:\Windows\System32\iernonce.dll [33792]
O44 - LFC:[MD5.8B2ADE09864BF3F7AA6D395DAFEC41B5] - 20/07/2014 - 23:27:37 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll [51200]
O44 - LFC:[MD5.CA67F68CEC788C0C69AD47C5125DDD8E] - 20/07/2014 - 23:27:37 ---A- . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe [608768]
O44 - LFC:[MD5.C2F62DF01E3552DB0571FEF4D514675B] - 20/07/2014 - 23:27:38 ---A- . (.Microsoft Corporation - IE ETW Collector Proxy Stub Resources.) -- C:\Windows\System32\ieetwproxystub.dll [48640]
O44 - LFC:[MD5.7176CB0FFAAC3E54ABB2014E821120F9] - 20/07/2014 - 23:27:38 ---A- . (.Microsoft Corporation - IE ETW Collector Service.) -- C:\Windows\System32\ieetwcollector.exe [111616]
O44 - LFC:[MD5.5E646AD50848A409291418B5759595B9] - 20/07/2014 - 23:27:38 ---A- . (.Microsoft Corporation - JavaScript Performance Collection Agent.) -- C:\Windows\System32\JavaScriptCollectionAgent.dll [38400]
O44 - LFC:[MD5.8E98D21EE06192492A5671A6144D092F] - 25/07/2014 - 20:09:13 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys [33240]
O44 - LFC:[MD5.56661BB55AE4633677F846FFCD080ECA] - 25/07/2014 - 22:20:17 ---A- . (.Microsoft Corporation - Nettoyage de la mise à jour.) -- C:\Windows\System32\scavengeui.dll [461312]
O44 - LFC:[MD5.AFCA5C1ECEAF948FC815178BC077680E] - 25/07/2014 - 22:26:35 ---A- . (.Microsoft Corporation - Microsoft Windows Codecs Library.) -- C:\Windows\System32\WindowsCodecs.dll [1424384]
O44 - LFC:[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - 25/07/2014 - 22:26:37 ---A- . (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\Drivers\ntfs.sys [1684928]
O44 - LFC:[MD5.D5164131D596A070FF9C82BC4A488F1F] - 25/07/2014 - 22:26:41 ---A- . (.Microsoft Corporation - Bibliothèque principale de Restauration du.) -- C:\Windows\System32\srcore.dll [503808]
O44 - LFC:[MD5.8F6322049018354F45F05A2FD2D4E5E0] - 25/07/2014 - 22:26:42 ---A- . (.Microsoft Corporation - BitLocker Drive Encryption Driver.) -- C:\Windows\System32\Drivers\fvevol.sys [223752]
O44 - LFC:[MD5.5FAC5F264D61D99EE8961480818B9DEF] - 25/07/2014 - 22:26:43 ---A- . (.Microsoft Corporation - Preview Handler Surrogate Host.) -- C:\Windows\System32\prevhost.exe [31232]
O44 - LFC:[MD5.D4121AE6D0C0E7E13AA221AA57EF2D49] - 25/07/2014 - 22:26:55 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [107904]
O44 - LFC:[MD5.AAAF44DB3BD0B9D1FB6969B23ECC8366] - 25/07/2014 - 22:26:55 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStorV.sys [410496]
O44 - LFC:[MD5.FED648B01349A3C8395A5169DB5FB7D6] - 25/07/2014 - 22:26:55 ---A- . (.Microsoft Corporation - USB Mass Storage Class Driver.) -- C:\Windows\System32\Drivers\USBSTOR.SYS [91648]
O44 - LFC:[MD5.0A92CB65770442ED0DC44834632F66AD] - 25/07/2014 - 22:26:55 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [148352]
O44 - LFC:[MD5.DAB0E87525C10052BF65F06152F37E4A] - 25/07/2014 - 22:26:55 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [166272]
O44 - LFC:[MD5.540DAF1CEA6094886D72126FD7C33048] - 25/07/2014 - 22:26:56 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [27008]
O44 - LFC:[MD5.6804A0B4AAF1F65277FB8A58DE40EABC] - 25/07/2014 - 22:26:56 ---A- . (.Microsoft Corporation - fsutil.exe.) -- C:\Windows\System32\fsutil.exe [96768]
O44 - LFC:[MD5.522B0466ED967A0762E9AF5B37D8F40A] - 25/07/2014 - 22:26:57 ---A- . (.Microsoft Corporation - Moteur de stockage extensible pour Microsof.) -- C:\Windows\System32\esent.dll [2565632]
O44 - LFC:[MD5.C06FAAF13E37CE482F612AFF2D2331F3] - 25/07/2014 - 22:27:12 ---A- . (.Microsoft Corporation - Dialogues communs de certificats Microsoft.) -- C:\Windows\System32\cryptdlg.dll [30720]
O44 - LFC:[MD5.C9DD5C0D5AF2D7A54BA32E8FBD3B67F1] - 25/07/2014 - 22:27:30 ---A- . (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll [22016]
O44 - LFC:[MD5.79EE13A5A406E4603874686B8005DA72] - 25/07/2014 - 22:27:30 ---A- . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\TSpkg.dll [86528]
O44 - LFC:[MD5.E23BA7A7BD97FC6B8AB5EA32A46D05CD] - 25/07/2014 - 22:27:31 ---A- . (.Microsoft Corporation - Bibliothèque de chiffrement Windows.) -- C:\Windows\System32\ncrypt.dll [307200]
O44 - LFC:[MD5.7D1017ED11B7C3B162628069742B5E58] - 25/07/2014 - 22:27:31 ---A- . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll [314880]
O44 - LFC:[MD5.BFC98590EAB40C785D6134B1FA818A62] - 25/07/2014 - 22:27:31 ---A- . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll [210944]
O44 - LFC:[MD5.A805B5E68262302D1A60BE3DED5846C9] - 25/07/2014 - 22:27:31 ---A- . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll [728064]
O44 - LFC:[MD5.E8E98B3B7A6E1250F4AA7AF8FA17D5BB] - 25/07/2014 - 22:27:32 ---A- . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll [340992]
O44 - LFC:[MD5.B3222734D80013D2C73841B0C549FA63] - 25/07/2014 - 22:27:42 ---A- . (.Microsoft Corporation - Crash Dump Disk Driver.) -- C:\Windows\System32\Drivers\Diskdump.sys [27584]
O44 - LFC:[MD5.1F34470A484B001CC95B66CFE4753960] - 25/07/2014 - 22:27:42 ---A- . (.Microsoft Corporation - DLL de journalisation des E/S.) -- C:\Windows\System32\iologmsg.dll [2048]
O44 - LFC:[MD5.A3F0BC5897F9D3786A3CB695B163633A] - 25/07/2014 - 22:27:43 ---A- . (.Microsoft Corporation - Microsoft Storage Port Driver.) -- C:\Windows\System32\Drivers\storport.sys [190912]
O44 - LFC:[MD5.96BB922A0981BC7432C8CF52B5410FE6] - 25/07/2014 - 22:27:43 ---A- . (.Microsoft Corporation - Microsoft iSCSI Initiator Driver.) -- C:\Windows\System32\Drivers\msiscsi.sys [274880]
O44 - LFC:[MD5.738D0E9272F59EB7A1449C3EC118E6C4] - 25/07/2014 - 22:27:45 ---A- . (.Microsoft Corporation - Pilote de bus Bluetooth.) -- C:\Windows\System32\Drivers\bthport.sys [552960]
O44 - LFC:[MD5.5EB6E9C8BE1ACC5830780E0F9A846255] - 25/07/2014 - 22:28:14 ---A- . (.Microsoft Corporation - Windows Installer.) -- C:\Windows\System32\msi.dll [3216384]
O44 - LFC:[MD5.D0C01412FBF59C1C25630C49F0C1B803] - 25/07/2014 - 22:28:27 ---A- . (.Microsoft - Système de classement CERO.) -- C:\Windows\System32\cero.