Mots soulignés en bleus et fenêtres de pub

Bonjour,

Depuis quelques jours j'ai des mots qui s'affichent en bleus dans mes pages web et des fenêtres de pub qui s'affichent. J'avais déjà réussi à résoudre ce problème une fois avec adwcleaner mais cette fois ça ne fonctionne pas... J'ai également essayé Hijackthis mais sans succès.

Voici le rapport ZHPDiag
~ Rapport de ZHPDiag v2014.12.27.179 - Nicolas Coolman (27-12-14)
~ Lancé par Camille (09-02-15 18:58:14)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Adresse du Forum http://forum.nicolascoolman.fr
~ Traduit par Nicolas Coolman
~ Etat de la version : Nouvelle version disponible
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17498
MFIE: Mozilla Firefox 35.0.1 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Français
Windows 8.1, 64-bit (Build 9600)
Windows Server License Manager Script : OK
~ Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : 68Y8Q
Windows License : OK
~ Windows Remaining Initializations Number : 999
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection du système
AVG 2014 v14.0.4800
Windows Defender W8 (Deactivate)

---\\ Logiciels d'optimisation du système
CCleaner v4.10

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 16 NPAPI
Adobe Reader XI

---\\ Informations sur le système
~ Processor: AMD64 Family 22 Model 0 Stepping 1, AuthenticAMD
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3523 MB (70% free)
System Restore: Activé (Enable)
System drive C: has 351 GB (77%) free of 455 GB

---\\ Mode de connexion au système
~ Computer Name: CAM
~ User Name: Camille
~ All Users Names: Camille, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\Camille\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Camille\AppData\Roaming\
~ %Desktop% : C:\Users\Camille\Desktop\
~ %Favorites% : C:\Users\Camille\Favorites\
~ %LocalAppData% : C:\Users\Camille\AppData\Local\
~ %StartMenu% : C:\Users\Camille\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 351 Go of 455 Go)
D: CD-ROM drive (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 41 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.ACDBE1ED38167C8B01B8F63161BB2CEA] - (.Microsoft Corporation - Explorateur Windows.) (.23-08-14 - 08:48:28.) -- C:\Windows\Explorer.exe [2374784]
[MD5.48CFA7BE561A7BE144C29BB912055016] - (.Microsoft Corporation - Application de démarrage de Windows.) (.22-08-13 - 10:58:29.) -- C:\Windows\System32\Wininit.exe [144384]
[MD5.4AF089160FE082E5EA5C4AA72782DCA2] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.22-11-14 - 02:28:21.) -- C:\Windows\System32\wininet.dll [2358272]
[MD5.306EB21E5B480AE9065EA55AC8C35936] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.22-02-14 - 10:45:48.) -- C:\Windows\System32\Winlogon.exe [562176]
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Bibliothèque de licences.) (.21-12-13 - 09:54:07.) -- C:\Windows\System32\sppcomapi.dll [447488]
[MD5.374E27295F0A9DCAA8FC96370F9BEEA5] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.30-05-14 - 04:03:03.) -- C:\Windows\system32\Drivers\AFD.sys [563200]
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.22-08-13 - 13:43:41.) -- C:\Windows\system32\Drivers\atapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) (.22-08-13 - 12:40:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.22-08-13 - 09:46:35.) -- C:\Windows\system32\Drivers\Cdrom.sys [164352]
[MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.06-03-14 - 10:22:50.) -- C:\Windows\system32\Drivers\DfsC.sys [134144]
[MD5.D4B7ED39C7900384D9E5C1283F1E7926] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.24-07-14 - 12:45:39.) -- C:\Windows\system32\Drivers\HDAudBus.sys [76800]
[MD5.84CFC5EFA97D0C965EDE1D56F116A541] - (.Microsoft Corporation - Pilote de port i8042.) (.22-08-13 - 12:39:15.) -- C:\Windows\system32\Drivers\i8042prt.sys [107520]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) (.27-11-13 - 13:02:29.) -- C:\Windows\system32\Drivers\IpNat.sys [142848]
[MD5.7A1A3F213CDB3363D179D5014272025D] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.30-04-14 - 07:41:46.) -- C:\Windows\system32\Drivers\MRxSmb.sys [402432]
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) (.22-08-13 - 12:37:02.) -- C:\Windows\system32\Drivers\netBT.sys [282624]
[MD5.038C77D577900EE39410662478BB0D50] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.24-07-14 - 16:07:52.) -- C:\Windows\system32\Drivers\ntfs.sys [2009920]
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) (.22-08-13 - 12:40:02.) -- C:\Windows\system32\Drivers\Parport.sys [94208]
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.22-08-13 - 12:35:51.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [120832]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.22-08-13 - 20:11:06.) -- C:\Windows\system32\Drivers\rdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) (.22-08-13 - 14:25:35.) -- C:\Windows\system32\Drivers\tdx.sys [107520]
[MD5.64CA2B4A49A8EAF495E435623ECCE7DB] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.19-06-14 - 03:13:36.) -- C:\Windows\system32\Drivers\volsnap.sys [310080]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/1983
~ Mes musiques (My Musics) : 1/6580
~ Mes Videos (My Videos) : 1/2
~ Mes Favoris (My Favorites) : 1/10
~ Mes Documents (My Documents) : 1/145
~ Mon Bureau (My Desktop) : 1/11
~ Menu demarrer (Programs) : 1/23
~ Hidden Files: Scanned in 00mn 12s



---\\ Processus lancés
[MD5.28D29874E6B31DCB68A01127EF3D4DB5] - (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5188112] [PID.392]
[MD5.3F7CD7873FA942C38F9831F286698414] - (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Reader_sl.exe [41336] [PID.4632]
[MD5.E47AC731D42B2452D4C0BF096DF3DD6E] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8145408] [PID.2780]
[MD5.265B49EF94A5AA713192EE97A7D248B5] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [338032] [PID.4856]
~ Processes Running: Scanned in 00mn 01s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Camille\AppData\Roaming\Mozilla\Firefox\Profiles\z45n7lcf.default\prefs.js
M2 - MFEP: Extension [Camille - z45n7lcf.default] {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi =>.Adblock Plus Extension Mozilla Firefox
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll
~ Firefox Browser: 2 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.17496 (winblue_r5.141121-1500)) -- C:\Windows\SysWOW64\ieframe.dll
~ IE Browser: 15 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (23)
~ Hosts File: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\QuickLaunch [Camille]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\Camille\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent
O4 - GS\Desktop [Camille]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\Camille\AppData\Roaming\BitTorrent\BitTorrent.exe =>P2P.BitTorrent
~ Global Startup: 2 Scanned in 00mn 08s



---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [TCrdMain] . (.TOSHIBA Corporation - TOSHIBA Function Key Main Module.) -- C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
O4 - HKLM\..\Run: [TecoResident] . (.TOSHIBA Corporation - Resident module of eco Utility.) -- C:\Program Files\TOSHIBA\Teco\TecoResident.exe
O4 - HKLM\..\Run: [TSSSrv] . (.TOSHIBA Corporation - TOSHIBA System Settings Service.) -- C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [AVG_UI] . (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2014\avgui.exe
~ Application: Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\WINDOWS\system32\wshbth.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Winsock: 8 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{7C2F2199-5B9F-468E-BE52-553E7A4CD2E9}: DhcpNameServer = 62.197.111.140 109.88.203.3
O17 - HKLM\System\CCS\Services\Tcpip\..\{F58DE8B8-77C2-41CC-A548-11B8D2C4FC82}: DhcpNameServer = 192.168.160.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{F58DE8B8-77C2-41CC-A548-11B8D2C4FC82}: DhcpDomain = CN03.com
O17 - HKLM\System\CS1\Services\Tcpip\..\{7C2F2199-5B9F-468E-BE52-553E7A4CD2E9}: DhcpNameServer = 62.197.111.140 109.88.203.3
O17 - HKLM\System\CS1\Services\Tcpip\..\{F58DE8B8-77C2-41CC-A548-11B8D2C4FC82}: DhcpNameServer = 192.168.160.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{F58DE8B8-77C2-41CC-A548-11B8D2C4FC82}: DhcpDomain = CN03.com
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.197.111.140 109.88.203.3
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: AdaptiveSleepService (AdaptiveSleepService) . (...) - C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AtherosSvc (AtherosSvc) . (.Windows (R) Win 7 DDK provider - Windows Setup API.) - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: AVGIDSAgent (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) . (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: DTS APO Service (dts_apo_service) . (.Pas de propriétaire - dts_apo_service.) - C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
O23 - Service: GFNEX Service (GFNEXSrv) . (.Pas de propriétaire - GFNEXSrv.) - C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe
O23 - Service: Ma-Config Agent (MaConfigAgent) . (.CybelSoft - Service de détection matériel.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
O23 - Service: McAfee Firewall Core Service (mfefire) . (.McAfee, Inc. - McAfee Core Firewall Service.) - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) . (.McAfee, Inc. - McAfee Process Validation Service.) - C:\Windows\system32\mfevtps.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: C:\Windows\System32\stlang64.dll (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Program Files\IDT\WDM\STacSV64.exe
~ Services: 15 Scanned in 00mn 34s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.3E04F1E482357B1FC8B088197C3D9FF8] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152]
[MD5.080255CDCB878813B481B8C348D47D8E] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [267440]
[MD5.5B1AA494C27CF0BC3B03E8666ACB225E] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [4455704]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]
~ Scheduled Task: 5 Scanned in 00mn 21s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 8 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys
O41 - Driver: (Avgdiska) . (.AVG Technologies CZ, s.r.o. - AVG File Vault Driver.) - C:\Windows\System32\DRIVERS\avgdiska.sys
O41 - Driver: (AVGIDSDriver) . (.AVG Technologies CZ, s.r.o. - AVG IDS Application Activity Monitor Driver.) - C:\Windows\System32\DRIVERS\avgidsdrivera.sys
O41 - Driver: (Avgldx64) . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - C:\Windows\System32\DRIVERS\avgldx64.sys
O41 - Driver: (Avgwfpa) . (.AVG Technologies CZ, s.r.o. - AVG Firewall driver.) - C:\Windows\system32\DRIVERS\avgwfpa.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
~ Drivers: 40 Scanned in 00mn 01s



---\\ Logiciels installés (O42)
O42 - Logiciel: ALPS Touch Pad Driver - (.Alps Electric.) [HKLM][64Bits] -- {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}
O42 - Logiciel: AMD Accelerated Video Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {509E2F77-9E85-EDA9-1EBA-B79B080A3394}
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {60BBC176-C393-6033-837E-B6BF4CDCBFB9}
O42 - Logiciel: AMD Quick Stream - (.AppEx Networks.) [HKLM][64Bits] -- {E9EED4AE-682B-4501-9574-D09A21717599}_is1
O42 - Logiciel: AVG 2014 - (.AVG Technologies.) [HKLM][64Bits] -- AVG
O42 - Logiciel: AVG 2014 - (.AVG Technologies.) [HKLM][64Bits] -- {13E3AF39-7F7F-43E5-9BCE-FA89A52B659E}
O42 - Logiciel: AVG 2014 - (.AVG Technologies.) [HKLM][64Bits] -- {C88D81A7-A796-4310-94C3-D67DE5273A94}
O42 - Logiciel: Adobe Flash Player 16 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: Adobe Reader XI (11.0.10) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001802114130}
O42 - Logiciel: Adobe Shockwave Player 12.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player
O42 - Logiciel: Alcor Micro USB Card Reader - (.Alcor Micro Corp..) [HKLM][64Bits] -- AmUStor
O42 - Logiciel: Apple Application Support (32 bits) - (.Apple Inc..) [HKLM][64Bits] -- {2FE00055-C4F3-4F7A-AEDD-E198D54CF12F}
O42 - Logiciel: Apple Application Support (64 bits) - (.Apple Inc..) [HKLM][64Bits] -- {28791292-D18D-42FA-AE66-3D3D20AA8618}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {5ED7462B-EF58-4757-B609-53755021EC34}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc
O42 - Logiciel: Atheros Driver Installation Program - (.Atheros.) [HKLM][64Bits] -- {C3A32068-8AB1-4327-BB16-BED9C6219DC7}
O42 - Logiciel: BitTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- BitTorrent =>P2P.BitTorrent
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {AD29E049-CAA6-4EC0-9553-19B375DB8658}
O42 - Logiciel: DTS Sound - (.DTS, Inc..) [HKLM][64Bits] -- {2DFA9084-CEB3-4A48-B9F7-9038FEF1B8F4}
O42 - Logiciel: IDT Audio Driver - (.IDT.) [HKLM][64Bits] -- {588A747E-CFF6-46B3-9207-CD754F9473AF}
O42 - Logiciel: Ma-Config.com (64 bits) - (.Cybelsoft.) [HKLM][64Bits] -- {4E993C43-8E89-46A2-A89C-54A0CB5421DA}
O42 - Logiciel: Mozilla Firefox 35.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 35.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: OEM Application Profile - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {70D5F822-F4C4-33D9-7EEC-2A4AF4EA7BDC}
O42 - Logiciel: OpenOffice 4.1.0 - (.Apache Software Foundation.) [HKLM][64Bits] -- {B3B009FC-6909-4E00-9F43-FFB5CA93D606}
O42 - Logiciel: PhotoFiltre - (...) [HKCU][64Bits] -- PhotoFiltre
O42 - Logiciel: Qualcomm Atheros Bluetooth Suite (64) - (.Qualcomm Atheros.) [HKLM][64Bits] -- {A84A4FB1-D703-48DB-89E0-68B6499D2801}
O42 - Logiciel: Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver - (.Qualcomm Atheros Inc..) [HKLM][64Bits] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549}
O42 - Logiciel: Skype(TM) 6.16 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}
O42 - Logiciel: Spotify - (.Spotify AB.) [HKLM][64Bits] -- Spotify
O42 - Logiciel: TOSHIBA Addendum - (.TOSHIBA.) [HKLM][64Bits] -- {CE0374A6-B204-4336-8293-63FBB1DADBF4}
O42 - Logiciel: TOSHIBA Function Key - (.Toshiba Corporation.) [HKLM][64Bits] -- {16562A90-71BC-41A0-B890-D91B0C267120}
O42 - Logiciel: TOSHIBA Password Utility - (.Toshiba Corporation.) [HKLM][64Bits] -- InstallShield_{78931270-BC9E-441A-A52B-73ECD4ACFAB5}
O42 - Logiciel: TOSHIBA System Driver - (.Toshiba Corporation.) [HKLM][64Bits] -- {1E6A96A1-2BAB-43EF-8087-30437593C66C}
O42 - Logiciel: TOSHIBA System Settings - (.Toshiba Corporation.) [HKLM][64Bits] -- {05A55927-DB9B-4E26-BA44-828EBFF829F0}
O42 - Logiciel: TOSHIBA eco Utility - (.Toshiba Corporation.) [HKLM][64Bits] -- {5944B9D4-3C2A-48DE-931E-26B31714A2F7} =>.Toshiba Corporation
O42 - Logiciel: Visual Studio 2012 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {8C775E70-A791-4DA8-BCC3-6AB7136F4484}
O42 - Logiciel: Visual Studio 2012 x86 Redistributables - (.AVG Technologies CZ, s.r.o..) [HKLM][64Bits] -- {98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {7B8D4E8A-EA2B-4A71-BFEB-A4AAAB87C5D0}
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}
~ Logic: 38 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\ATI]
[HKCU\Software\Adobe]
[HKCU\Software\Alps]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Avg Secure Update]
[HKCU\Software\Avg]
[HKCU\Software\Chromium]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IM Providers]
[HKCU\Software\Licenses]
[HKCU\Software\Macromedia]
[HKCU\Software\Mine]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\OpenOffice]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Skype]
[HKCU\Software\TeleCharger]
[HKCU\Software\Toshiba]
[HKCU\Software\Trolltech]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\kde.org]
[HKCU\Software\telecharger-gratuit]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\Alps]
[HKLM\Software\AppEx Accelerator]
[HKLM\Software\AppEx Networks]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Atheros]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\GEAR Software]
[HKLM\Software\IDT]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Macromedia]
[HKLM\Software\McAfee.com]
[HKLM\Software\McAfee]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\Toshiba]
[HKLM\Software\Wow6432Node\ATI Technologies]
[HKLM\Software\Wow6432Node\ATI]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\AppDataLow]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\Atheros]
[HKLM\Software\Wow6432Node\Avg Secure Update]
[HKLM\Software\Wow6432Node\Avg]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\DTS, Inc.]
[HKLM\Software\Wow6432Node\DTS]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\McAfee]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OldTimer Tools]
[HKLM\Software\Wow6432Node\OpenOffice]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Qualcomm Atheros Inc.]
[HKLM\Software\Wow6432Node\Qualcomm Atheros]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\SRS Labs]
[HKLM\Software\Wow6432Node\SharingMax]
[HKLM\Software\Wow6432Node\SiteSee]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\TOSHIBA]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node\sMedio]
[HKLM\Software\Wow6432Node]
[HKLM\Software\cybelsoft]
~ Key Software: 185 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 26-05-14 - 14:15:37 - [] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 21-11-13 - 17:24:26 - [] ----D C:\Program Files (x86)\Amazon
O43 - CFD: 21-11-13 - 16:48:34 - [] ----D C:\Program Files (x86)\AMD AVT
O43 - CFD: 21-11-13 - 17:04:57 - [] ----D C:\Program Files (x86)\AmIcoSingLun
O43 - CFD: 01-03-14 - 01:00:10 - [] ----D C:\Program Files (x86)\Apple Software Update =>.Apple Inc
O43 - CFD: 21-11-13 - 16:56:37 - [] ----D C:\Program Files (x86)\Atheros
O43 - CFD: 21-11-13 - 16:48:33 - [] ----D C:\Program Files (x86)\ATI Technologies
O43 - CFD: 14-05-14 - 15:53:35 - [] ----D C:\Program Files (x86)\AVG
O43 - CFD: 21-11-13 - 17:03:38 - [] ----D C:\Program Files (x86)\Bluetooth Suite
O43 - CFD: 01-03-14 - 00:55:36 - [] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 26-06-14 - 18:25:48 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 21-11-13 - 16:55:35 - [] ----D C:\Program Files (x86)\DTS, Inc
O43 - CFD: 21-11-13 - 17:24:45 - [] ----D C:\Program Files (x86)\eBay =>Toolbar.eBay
O43 - CFD: 14-05-14 - 14:29:51 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 19-12-14 - 15:12:28 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 01-02-15 - 18:17:51 - [] ----D C:\Program Files (x86)\iTunes
O43 - CFD: 21-05-14 - 09:53:16 - [] ----D C:\Program Files (x86)\McAfee
O43 - CFD: 10-09-13 - 18:58:36 - [] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 22-08-13 - 16:36:30 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 01-02-15 - 14:27:10 - [] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 04-02-15 - 14:27:36 - [] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 28-08-13 - 10:51:17 - [] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 15-09-14 - 21:09:25 - [] ----D C:\Program Files (x86)\OneStopSoft.com
O43 - CFD: 14-05-14 - 13:04:11 - [] ----D C:\Program Files (x86)\OpenOffice 4
O43 - CFD: 01-03-14 - 22:27:18 - [] ----D C:\Program Files (x86)\PhotoFiltre
O43 - CFD: 28-08-13 - 10:51:17 - [] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 26-06-14 - 18:25:49 - [] R---D C:\Program Files (x86)\Skype
O43 - CFD: 26-05-14 - 15:40:27 - [] ----D C:\Program Files (x86)\Slowin Killer
O43 - CFD: 10-09-13 - 18:59:07 - [] ----D C:\Program Files (x86)\Spotify
O43 - CFD: 14-05-14 - 14:30:16 - [] ----D C:\Program Files (x86)\TOSHIBA
O43 - CFD: 21-05-14 - 14:27:51 - [0] ----D C:\Program Files (x86)\TOSHIBA Games
O43 - CFD: 03-05-14 - 23:09:15 - [] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 12-12-14 - 14:25:43 - [] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 17-03-14 - 05:02:47 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 05-05-14 - 17:35:04 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 05-05-14 - 17:35:04 - [] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 22-08-13 - 16:36:30 - [] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 17-03-14 - 05:02:47 - [] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 05-05-14 - 17:35:04 - [] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 22-08-13 - 16:36:30 - [] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 22-08-13 - 16:36:30 - [] ----D C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 09-02-15 - 12:48:36 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 26-05-14 - 14:16:00 - [] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 01-02-15 - 16:17:17 - [] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 21-11-13 - 17:03:39 - [] ----D C:\Program Files (x86)\Common Files\Atheros
O43 - CFD: 21-11-13 - 16:48:34 - [] ----D C:\Program Files (x86)\Common Files\ATI Technologies
O43 - CFD: 21-05-14 - 09:53:16 - [] ----D C:\Program Files (x86)\Common Files\mcafee
O43 - CFD: 06-03-14 - 06:42:53 - [] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 22-08-13 - 16:36:33 - [] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 26-06-14 - 18:25:48 - [] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 17-03-14 - 05:02:47 - [] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 14-05-14 - 14:29:41 - [] ----D C:\Program Files (x86)\Common Files\Toshiba Shared
O43 - CFD: 01-02-15 - 16:17:18 - [] ----D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 26-05-14 - 15:07:14 - [] ----D C:\ProgramData\Adobe
O43 - CFD: 01-03-14 - 00:48:11 - [] ----D C:\ProgramData\AMD
O43 - CFD: 21-11-13 - 17:04:57 - [] ----D C:\ProgramData\AmUStor
O43 - CFD: 01-03-14 - 00:59:11 - [] ----D C:\ProgramData\Apple
O43 - CFD: 01-03-14 - 01:40:31 - [] ----D C:\ProgramData\Apple Computer
O43 - CFD: 22-08-13 - 15:45:52 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 21-11-13 - 16:56:09 - [] ----D C:\ProgramData\ATI
O43 - CFD: 21-05-14 - 14:25:28 - [] ----D C:\ProgramData\AVG2014
O43 - CFD: 02-09-14 - 14:37:12 - [] ----D C:\ProgramData\Avg_Update_0814av
O43 - CFD: 28-02-14 - 18:56:12 - [] -SH-D C:\ProgramData\Bureau
O43 - CFD: 14-05-14 - 14:22:47 - [] --H-D C:\ProgramData\Common Files
O43 - CFD: 22-08-13 - 15:45:52 - [] -S--D C:\ProgramData\Desktop
O43 - CFD: 22-08-13 - 15:45:52 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 01-02-15 - 19:11:02 - [] ----D C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
O43 - CFD: 04-03-14 - 23:29:29 - [] ----D C:\ProgramData\IsolatedStorage
O43 - CFD: 01-03-14 - 22:19:46 - [] ----D C:\ProgramData\ma-config.com
O43 - CFD: 21-05-14 - 09:53:16 - [] ----D C:\ProgramData\McAfee
O43 - CFD: 28-02-14 - 18:56:12 - [] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 09-02-15 - 18:03:22 - [] ----D C:\ProgramData\MFAData
O43 - CFD: 19-12-14 - 15:12:34 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 28-02-14 - 18:56:12 - [] -SH-D C:\ProgramData\Modèles
O43 - CFD: 01-03-14 - 00:37:58 - [] ----D C:\ProgramData\Mozilla
O43 - CFD: 04-02-15 - 11:26:42 - [0] ----D C:\ProgramData\OEM Links
O43 - CFD: 21-11-13 - 17:11:23 - [] ----D C:\ProgramData\Package Cache
O43 - CFD: 21-11-13 - 16:56:05 - [] ----D C:\ProgramData\Qualcomm Atheros
O43 - CFD: 10-09-13 - 18:58:41 - [] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 26-06-14 - 18:26:00 - [] ----D C:\ProgramData\Skype
O43 - CFD: 21-11-13 - 16:55:35 - [] ----D C:\ProgramData\SRS Labs
O43 - CFD: 22-08-13 - 15:45:52 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 22-08-13 - 15:45:52 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 01-03-14 - 00:33:59 - [] ----D C:\ProgramData\Toshiba
O43 - CFD: 01-03-14 - 23:38:49 - [] ----D C:\ProgramData\WildTangent
O43 - CFD: 22-08-13 - 16:36:33 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 22-08-13 - 20:11:12 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 05-05-14 - 17:35:18 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 21-11-13 - 16:48:19 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
O43 - CFD: 21-11-13 - 16:48:39 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Quick Stream
O43 - CFD: 10-01-15 - 14:47:42 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
O43 - CFD: 01-03-14 - 23:32:15 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 21-11-13 - 16:55:36 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DTS, Inc
O43 - CFD: 01-03-14 - 23:38:43 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 01-02-15 - 19:11:14 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
O43 - CFD: 01-03-14 - 22:19:47 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ma-config.com
O43 - CFD: 22-08-13 - 16:36:33 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 14-05-14 - 13:04:11 - [] -S--D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0
O43 - CFD: 01-03-14 - 22:27:20 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre
O43 - CFD: 27-03-14 - 16:14:11 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 21-11-13 - 18:10:42 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 05-05-14 - 17:35:18 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 22-08-13 - 20:11:12 - [0] R-H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 14-05-14 - 14:26:51 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA
O43 - CFD: 03-05-14 - 23:14:16 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 09-02-15 - 12:48:42 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP =>.Nicolas Coolman
O43 - CFD: 26-05-14 - 15:06:19 - [] ----D C:\Users\Camille\AppData\Roaming\Adobe
O43 - CFD: 01-03-14 - 09:06:02 - [] ----D C:\Users\Camille\AppData\Roaming\Apple Computer
O43 - CFD: 01-03-14 - 00:21:12 - [] ----D C:\Users\Camille\AppData\Roaming\ATI
O43 - CFD: 14-05-14 - 15:57:32 - [] ----D C:\Users\Camille\AppData\Roaming\AVG2014
O43 - CFD: 09-02-15 - 18:33:48 - [] ----D C:\Users\Camille\AppData\Roaming\BitTorrent =>P2P.BitTorrent
O43 - CFD: 01-03-14 - 00:28:19 - [] ----D C:\Users\Camille\AppData\Roaming\Macromedia
O43 - CFD: 01-03-14 - 09:23:15 - [] -S--D C:\Users\Camille\AppData\Roaming\Microsoft
O43 - CFD: 01-03-14 - 01:32:18 - [] ----D C:\Users\Camille\AppData\Roaming\Mozilla
O43 - CFD: 09-04-14 - 01:57:38 - [] ----D C:\Users\Camille\AppData\Roaming\OpenOffice
O43 - CFD: 01-03-14 - 22:27:36 - [] ----D C:\Users\Camille\AppData\Roaming\PhotoFiltre
O43 - CFD: 03-05-14 - 23:02:23 - [] ----D C:\Users\Camille\AppData\Roaming\Shortcut
O43 - CFD: 16-09-14 - 09:07:37 - [] ----D C:\Users\Camille\AppData\Roaming\Skype
O43 - CFD: 29-03-14 - 20:30:57 - [] ----D C:\Users\Camille\AppData\Roaming\sMedio
O43 - CFD: 08-09-14 - 00:41:31 - [] ----D C:\Users\Camille\AppData\Roaming\Spotify
O43 - CFD: 14-05-14 - 15:54:41 - [] ----D C:\Users\Camille\AppData\Roaming\TuneUp Software
O43 - CFD: 05-02-15 - 10:25:00 - [] ----D C:\Users\Camille\AppData\Roaming\vlc
O43 - CFD: 09-02-15 - 18:59:40 - [] ----D C:\Users\Camille\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 26-05-14 - 15:06:19 - [] ----D C:\Users\Camille\AppData\Local\Adobe
O43 - CFD: 01-03-14 - 01:00:30 - [] ----D C:\Users\Camille\AppData\Local\Apple
O43 - CFD: 01-03-14 - 01:51:41 - [] ----D C:\Users\Camille\AppData\Local\Apple Computer
O43 - CFD: 28-02-14 - 18:53:11 - [] -SH-D C:\Users\Camille\AppData\Local\Application Data
O43 - CFD: 01-03-14 - 00:21:12 - [] ----D C:\Users\Camille\AppData\Local\ATI
O43 - CFD: 09-12-14 - 10:23:56 - [] ----D C:\Users\Camille\AppData\Local\Avg
O43 - CFD: 14-05-14 - 19:22:38 - [] ----D C:\Users\Camille\AppData\Local\Avg2014
O43 - CFD: 03-05-14 - 23:26:49 - [0] ----D C:\Users\Camille\AppData\Local\cache
O43 - CFD: 14-08-14 - 16:35:16 - [0] ----D C:\Users\Camille\AppData\Local\Diagnostics
O43 - CFD: 01-02-15 - 20:48:04 - [] -SH-D C:\Users\Camille\AppData\Local\EmieBrowserModeList
O43 - CFD: 17-05-14 - 11:02:44 - [] -SH-D C:\Users\Camille\AppData\Local\EmieSiteList
O43 - CFD: 17-05-14 - 11:02:45 - [] -SH-D C:\Users\Camille\AppData\Local\EmieUserList
O43 - CFD: 28-02-14 - 18:53:11 - [] -SH-D C:\Users\Camille\AppData\Local\Historique
O43 - CFD: 01-03-14 - 09:23:15 - [] ----D C:\Users\Camille\AppData\Local\Macromedia
O43 - CFD: 14-05-14 - 14:22:47 - [] ----D C:\Users\Camille\AppData\Local\MFAData
O43 - CFD: 03-05-14 - 23:11:30 - [] ----D C:\Users\Camille\AppData\Local\Microsoft
O43 - CFD: 01-03-14 - 01:32:20 - [] ----D C:\Users\Camille\AppData\Local\Mozilla
O43 - CFD: 11-03-14 - 02:04:58 - [] ----D C:\Users\Camille\AppData\Local\Packages
O43 - CFD: 01-03-14 - 00:18:31 - [0] ----D C:\Users\Camille\AppData\Local\PackageStaging
O43 - CFD: 08-02-15 - 18:23:44 - [] ----D C:\Users\Camille\AppData\Local\Popcorn Time
O43 - CFD: 08-02-15 - 22:18:05 - [] ----D C:\Users\Camille\AppData\Local\Popcorn-Time
O43 - CFD: 03-05-14 - 23:05:41 - [] ----D C:\Users\Camille\AppData\Local\Programs
O43 - CFD: 27-03-14 - 16:14:46 - [] ----D C:\Users\Camille\AppData\Local\Skype
O43 - CFD: 08-09-14 - 00:36:38 - [] ----D C:\Users\Camille\AppData\Local\Spotify
O43 - CFD: 09-02-15 - 18:59:15 - [] ----D C:\Users\Camille\AppData\Local\Temp
O43 - CFD: 28-02-14 - 18:53:11 - [] -SH-D C:\Users\Camille\AppData\Local\Temporary Internet Files
O43 - CFD: 01-03-14 - 00:16:26 - [] ----D C:\Users\Camille\AppData\Local\TOSHIBA
O43 - CFD: 09-02-15 - 17:52:43 - [] ----D C:\Users\Camille\AppData\Local\VirtualStore
O43 - CFD: 22-08-13 - 16:36:32 - [] R---D C:\Users\Camille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 22-08-13 - 16:36:32 - [] R---D C:\Users\Camille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 12-12-14 - 14:32:03 - [] R---D C:\Users\Camille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 22-08-13 - 16:36:32 - [] ----D C:\Users\Camille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 01-03-14 - 22:27:18 - [0] ----D C:\Users\Camille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre
O43 - CFD: 08-02-15 - 18:23:45 - [] ----D C:\Users\Camille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time
O43 - CFD: 12-12-14 - 14:32:03 - [] R---D C:\Users\Camille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 22-08-13 - 16:36:32 - [] R---D C:\Users\Camille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
~ Program Folder: 159 Scanned in 00mn 02s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.61EA45A645854FE81D8A924E2D93DFFE] - 01-02-15 - 13:33:10 ---A- . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [911360]
O44 - LFC:[MD5.D1E3B8D9130C70F6A3D4FDB52373FF34] - 01-02-15 - 13:33:10 ---A- . (.Microsoft Corporation - WER Diagnostic Controller.) -- C:\Windows\System32\werdiagcontroller.dll [37888]
O44 - LFC:[MD5.6F237EE5DDA34EAF3D9C79D4A283E250] - 01-02-15 - 13:33:11 ---A- . (.Microsoft Corporation - Audio Engine.) -- C:\Windows\System32\AudioEng.dll [482872]
O44 - LFC:[MD5.E24D3259769A0218FE19BB306821C2E5] - 01-02-15 - 13:33:11 ---A- . (.Microsoft Corporation - Audio Ks Endpoint.) -- C:\Windows\System32\AUDIOKSE.dll [394120]
O44 - LFC:[MD5.A41B72F81B389786805CC4D5767B5FBC] - 01-02-15 - 13:33:11 ---A- . (.Microsoft Corporation - Code Integrity Module (Test).) -- C:\Windows\System32\ci.dll [531616]
O44 - LFC:[MD5.8779FDAE68BC948B0FE152E758CC8DA7] - 01-02-15 - 13:33:11 ---A- . (.Microsoft Corporation - Générateur de points de terminaison du serv.) -- C:\Windows\System32\AudioEndpointBuilder.dll [229888]
O44 - LFC:[MD5.770BAA636F3B61DA7E414421444F84FD] - 01-02-15 - 13:33:11 ---A- . (.Microsoft Corporation - Isolation graphique de périphérique audio W.) -- C:\Windows\System32\audiodg.exe [272248]
O44 - LFC:[MD5.41C501FD9D42F3F04A8532C73E09F356] - 01-02-15 - 13:33:11 ---A- . (.Microsoft Corporation - Media Foundation Crash Dump Encryption DLL.) -- C:\Windows\System32\EncDump.dll [108944]
O44 - LFC:[MD5.9404704666256045F5BA9B290953B4D0] - 01-02-15 - 13:33:11 ---A- . (.Microsoft Corporation - Rapport d'erreurs Windows.) -- C:\Windows\System32\WerFaultSecure.exe [38264]
O44 - LFC:[MD5.428F083690D7AAA012338FD5A0663EE3] - 01-02-15 - 13:33:11 ---A- . (.Microsoft Corporation - Session audio.) -- C:\Windows\System32\AudioSes.dll [500016]
O44 - LFC:[MD5.0BCDEB035B9346D3C3C6C8BB1AA7F38C] - 01-02-15 - 13:33:11 ---A- . (.Microsoft Corporation - Windows Problem Reporting.) -- C:\Windows\System32\wermgr.exe [139984]
O44 - LFC:[MD5.8EBC741DDE9409038262E2F317ED7CCE] - 01-02-15 - 13:33:12 ---A- . (.Microsoft Corporation - DLL du rapport d'erreurs Windows.) -- C:\Windows\System32\wer.dll [535640]
O44 - LFC:[MD5.2C354FA91EF605007FD11BB89EED2266] - 01-02-15 - 13:33:12 ---A- . (.Microsoft Corporation - DLL du rapport d'incident dans le mode util.) -- C:\Windows\System32\Faultrep.dll [413248]
O44 - LFC:[MD5.6DCD12586353DC6307AC781045CA13A4] - 01-02-15 - 13:33:12 ---A- . (.Microsoft Corporation - Rapports de problèmes Windows.) -- C:\Windows\System32\WerFault.exe [465320]
O44 - LFC:[MD5.E94EB2A95D7D016E119C4D6868788831] - 01-02-15 - 13:33:34 ---A- . (.Microsoft Corporation - Connaissance des emplacements réseau 2.) -- C:\Windows\System32\nlasvc.dll [391680]
O44 - LFC:[MD5.6319232C1CE39AC35316CF51910EEEB5] - 01-02-15 - 13:33:34 ---A- . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\System32\nlaapi.dll [86016]
O44 - LFC:[MD5.FE11972797DED38CA55E88BD3579F6A2] - 01-02-15 - 13:33:35 ---A- . (.Microsoft Corporation - Indicateur d'état de la connectivité réseau.) -- C:\Windows\System32\ncsi.dll [360448]
O44 - LFC:[MD5.DB32958F0E704EFBF7F15161A569E39F] - 01-02-15 - 13:33:37 ---A- . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\Windows\System32\Drivers\mrxdav.sys [140800]
O44 - LFC:[MD5.F0CB6DB513CAC393D04A0FCE0A59E1BF] - 01-02-15 - 13:33:40 ---A- . (.Microsoft Corporation - Application Compatibility Cache.) -- C:\Windows\System32\Drivers\ahcache.sys [75776]
O44 - LFC:[MD5.29A888F3136B2643E22113B5422B46F9] - 01-02-15 - 13:33:42 ---A- . (.Microsoft Corporation - Microsoft Remote Desktop Services Web Proxy.) -- C:\Windows\System32\TSWbPrxy.exe [87040]
O44 - LFC:[MD5.19424364D8C03B990C4281BE53963FD0] - 01-02-15 - 13:33:44 ---A- . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [225280]
O44 - LFC:[MD5.93B0550500D1BD86CBAB9C4CC6B6A356] - 02-02-15 - 12:41:53 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe [113365784]
O44 - LFC:[MD5.8929A3A97B8F0489DB654216FCC7FA6F] - 02-02-15 - 20:25:01 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1824010]
O44 - LFC:[MD5.82698524CDA358978C777EAC75C76537] - 02-02-15 - 20:25:01 ---A- . (...) -- C:\Windows\System32\perfc009.dat [135592]
O44 - LFC:[MD5.7238A95047B80730A8A79A2E7E416BA1] - 02-02-15 - 20:25:01 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [159412]
O44 - LFC:[MD5.65AE58F95E4AAEBF87AB281C2FAC19CA] - 02-02-15 - 20:25:01 ---A- . (...) -- C:\Windows\System32\perfh009.dat [722476]
O44 - LFC:[MD5.135C47D40585D204EE259EC4CB449D2C] - 02-02-15 - 20:25:01 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [812350]
O44 - LFC:[MD5.00582FEF1F598D8076B4EDB2626D979E] - 04-02-15 - 14:28:05 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [371536]
O44 - LFC:[MD5.A84DD93B5B19931CEADDBCCC47850486] - 09-02-15 - 13:02:09 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512]
O44 - LFC:[MD5.5D8136E211C1012A5AEEDEA7A38B8EE7] - 09-02-15 - 14:12:41 ---A- . (...) -- C:\Windows\System32\spu_storage.bin [65536]
O44 - LFC:[MD5.45504574962D16468D3A80D403DF97A7] - 09-02-15 - 18:45:09 ---A- . (...) -- C:\Windows\setupact.log [116]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 09-02-15 - 18:45:09 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.00780D05C586921DAEB4EAB6B830D205] - 09-02-15 - 18:47:06 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
~ Files: 33 Scanned in 00mn 28s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.59D50243477E10B6CC711EECDD4814A4] - 04-03-14 - 09:04:22 ---A- - C:\Windows\Prefetch\BITTORRENT(1).EXE-A12A5164.pf =>P2P.BitTorrent
O45 - LFCP:[MD5.D62EC9037CBC0CF8CEFD3AEE7625C935] - 09-02-15 - 12:33:13 ---A- - C:\Windows\Prefetch\BITTORRENT.EXE-FE5ED134.pf =>P2P.BitTorrent
O45 - LFCP:[MD5.A1B292BB267913D9D98F2F315C129F31] - 04-02-15 - 11:26:24 ---A- - C:\Windows\Prefetch\JAN7_COR_SWEET-PAGE.EXE-FE0A580B.pf =>PUP.SweetPage
~ Prefetcher: 3 Scanned in 00mn 02s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l'Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
~ LSA: 3 Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d'extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\mfefirek.sys . (.McAfee, Inc. - McAfee Core Firewall Engine Driver.) -- C:\Windows\System32\Drivers\mfefirek.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\mfehidk.sys . (.McAfee, Inc. - McAfee Link Driver.) -- C:\Windows\System32\Drivers\mfehidk.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d'extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 19 Scanned in 00mn 00s



---\\ Clé de registre Shell MountPoints2 (MPSK) (O51)
O51 - MPSK:{b309f081-a8b6-11e3-8262-40f02f36bd62}\AutoRun\command. (...) -- E:\HPLauncher.exe (.not file.)
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "DisableTaskMgr"=0
O55 - MWPS:[HKLM\...\Policies\System] - "DisableRegistryTools"=0
~ MWPS: 19 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoRun"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoFolderOptions"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoControlPanel"=0
~ MWPE Keys: 6 Scanned in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:22-08-13 - 13:43:41 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [108896]
O58 - SDL:22-08-13 - 13:43:41 ---A- . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS/SATA controller.) -- C:\Windows\System32\Drivers\adp80xx.sys [782176]
O58 - SDL:06-02-13 - 19:45:32 ---A- . (.Advanced Micro Devices, INC. - AMD AS4 Driver.) -- C:\Windows\System32\Drivers\AmdAS4.sys [17504]
O58 - SDL:22-08-13 - 13:43:41 ---A- . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [79200]
O58 - SDL:22-08-13 - 13:43:41 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys [259424]
O58 - SDL:22-08-13 - 13:43:40 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [25952]
O58 - SDL:23-07-13 - 06:37:18 ---A- . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\Drivers\amd_sata.sys [80640]
O58 - SDL:23-07-13 - 06:37:20 ---A- . (.Advanced Micro Devices - Stor Filter Driver.) -- C:\Windows\System32\Drivers\amd_xata.sys [25344]
O58 - SDL:25-06-13 - 03:34:22 ---A- . (.Alcor Micro, Corp. - Alocr Micro USB Mass Storage Driver.) -- C:\Windows\System32\Drivers\AmUStor.sys [109336]
O58 - SDL:19-07-13 - 07:49:58 ---A- . (.Alps Electric Co., Ltd. - Alps Touch Pad Driver.) -- C:\Windows\System32\Drivers\Apfiltr.sys [499504]
O58 - SDL:18-04-13 - 16:04:28 ---A- . (.AppEx Networks Corporation - AppEx Accelerator LWF/WFP Driver L.E..) -- C:\Windows\System32\Drivers\appexDrv.sys [219360]
O58 - SDL:22-08-13 - 13:43:41 ---A- . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [114016]
O58 - SDL:24-10-13 - 08:03:40 ---A- . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\Drivers\athwbx.sys [3858944]
O58 - SDL:22-06-13 - 05:49:50 ---A- . (.Advanced Micro Devices - AMD High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\AtihdWB6.sys [138240]
O58 - SDL:30-08-13 - 13:11:30 ---A- . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\Drivers\atikmdag.sys [12528640]
O58 - SDL:30-08-13 - 11:32:34 ---A- . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\System32\Drivers\atikmpag.sys [618496]
O58 - SDL:04-09-13 - 15:35:06 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Early Launch Anti-Malware Driver.) -- C:\Windows\System32\Drivers\avgboota.sys [20496]
O58 - SDL:30-06-14 - 11:43:02 ---A- . (.AVG Technologies CZ, s.r.o. - AVG File Vault Driver.) -- C:\Windows\System32\Drivers\avgdiska.sys [152344]
O58 - SDL:21-07-14 - 20:03:12 ---A- . (.AVG Technologies CZ, s.r.o. - AVG IDS Application Activity Monitor Driver..) -- C:\Windows\System32\Drivers\avgidsdrivera.sys [244504]
O58 - SDL:17-06-14 - 15:06:24 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Application Activity Monitor Helper Driver.) -- C:\Windows\System32\Drivers\avgidsha.sys [190744]
O58 - SDL:24-10-14 - 10:20:06 ---A- . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) -- C:\Windows\System32\Drivers\avgldx64.sys [237848]
O58 - SDL:17-06-14 - 15:07:12 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Logging Driver.) -- C:\Windows\System32\Drivers\avgloga.sys [328984]
O58 - SDL:29-10-14 - 21:03:36 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) -- C:\Windows\System32\Drivers\avgmfx64.sys [123672]
O58 - SDL:17-06-14 - 15:06:06 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Anti-Rootkit Driver.) -- C:\Windows\System32\Drivers\avgrkx64.sys [31512]
O58 - SDL:30-06-14 - 11:43:18 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Firewall driver.) -- C:\Windows\System32\Drivers\avgwfpa.sys [270104]
O58 - SDL:13-08-13 - 00:25:46 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\Drivers\bcmfn2.sys [17624]
O58 - SDL:22-08-13 - 10:59:58 ---A- . (.Qualcomm Atheros - Qualcomm Atheros BtFilter Driver.) -- C:\Windows\System32\Drivers\btfilter.sys [590024]
O58 - SDL:22-08-13 - 13:43:41 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys [531296]
O58 - SDL:17-03-14 - 18:02:08 ---A- . (.McAfee, Inc. - McAfee Personal Firewall IDS Plugin.) -- C:\Windows\System32\Drivers\cfwids.sys [70592]
O58 - SDL:22-08-13 - 13:43:45 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbda.sys [3357024]
O58 - SDL:21-08-12 - 22:01:20 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys [33240]
O58 - SDL:22-08-13 - 13:43:45 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [64352]
O58 - SDL:30-07-13 - 19:47:35 ---A- . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\Drivers\iaLPSSi_GPIO.sys [24568]
O58 - SDL:25-07-13 - 20:05:39 ---A- . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\Drivers\iaLPSSi_I2C.sys [99320]
O58 - SDL:10-08-13 - 01:39:30 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver (inbox) - x64.) -- C:\Windows\System32\Drivers\iaStorAV.sys [651248]
O58 - SDL:22-08-13 - 13:43:45 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStorV.sys [412000]
O58 - SDL:18-07-13 - 22:55:44 ---A- . (.Qualcomm Atheros Co., Ltd. - Qualcomm Atheros Ar81xx series PCI-E Gigabit Ethernet Controlle.) -- C:\Windows\System32\Drivers\L1C63x64.sys [130248]
O58 - SDL:22-08-13 - 13:43:44 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [109408]
O58 - SDL:22-08-13 - 13:43:45 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\W