Rapport ZHP diag

Merci beaucoup!
Voici le rapport:
# AdwCleaner v4.111 - Rapport créé le 28/02/2015 à 14:28:04
# Mis à jour le 18/02/2015 par Xplode
# Base de données : 2015-02-18.3 [Serveur]
# Système d'exploitation : Windows 8.1 (x64)
# Nom d'utilisateur : cath - CATH
# Exécuté depuis : C:\Users\cath\Downloads\AdwCleaner-4.111.exe
# Option : Nettoyer

• • • • • [ Services ] *****
        • [ Fichiers / Dossiers ] *****

Dossier Supprimé : C:\ProgramData\8525013640150914827
Dossier Supprimé : C:\Program Files (x86)\77zip
Dossier Supprimé : C:\Program Files (x86)\UniDealsse
Dossier Supprimé : C:\Users\cath\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\77zip
Dossier Supprimé : C:\Users\cath\AppData\Roaming\Mozilla\Firefox\Profiles\5ht8h2gm.default\Extensions\***@***
Dossier Supprimé : C:\Users\cath\AppData\Roaming\Mozilla\Firefox\Profiles\5ht8h2gm.default\Extensions\***@***
Dossier Supprimé : C:\ProgramData\eghacealfdpidcgoefbkijdmfbnibhef
Fichier Supprimé : C:\Users\cath\Desktop\77zip.lnk
Fichier Supprimé : C:\Users\cath\AppData\Roaming\Mozilla\Firefox\Profiles\5ht8h2gm.default\searchplugins\securesearch.xml
Fichier Supprimé : C:\Users\cath\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.audienceinsights.net_0.localstorage
Fichier Supprimé : C:\Users\cath\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.audienceinsights.net_0.localstorage-journal

• • • • • [ Tâches planifiées ] *****

Tâche Supprimée : MySearchDial

• • • • • [ Raccourcis ] *****
        • [ Registre ] *****

Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{533403E2-6E21-4615-9E28-43F4E97E977B}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{8DCB7100-DF86-4384-8842-8FA844297B3F}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{0FCE4F01-64EC-42F1-83E1-1E08D38605D2}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{1A2A195A-A0F9-4006-AF02-3F05EEFDE792}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{2D9DB233-DC4B-4677-946C-5FA5ABCF506B}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{3AE76A17-C344-4A83-81CE-65EFEE41E42D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{4C0A69B0-CE97-42B7-86FC-08280C99C74D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{4E9EB4D5-C929-4005-AC62-1856B1DA5A24}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8FAF962C-3EDE-405E-B1D0-62B8235C6044}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C1F5E799-B218-4C32-B189-3C389BA140BB}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{F60C9408-3110-4C98-A139-ABE1EE1111DD}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8DCB7100-DF86-4384-8842-8FA844297B3F}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8DCB7100-DF86-4384-8842-8FA844297B3F}
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{8DCB7100-DF86-4384-8842-8FA844297B3F}]
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\CLSID\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\CLSID\{8DCB7100-DF86-4384-8842-8FA844297B3F}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{0FCE4F01-64EC-42F1-83E1-1E08D38605D2}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{1A2A195A-A0F9-4006-AF02-3F05EEFDE792}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{2D9DB233-DC4B-4677-946C-5FA5ABCF506B}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{3AE76A17-C344-4A83-81CE-65EFEE41E42D}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{4C0A69B0-CE97-42B7-86FC-08280C99C74D}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{4E9EB4D5-C929-4005-AC62-1856B1DA5A24}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{8FAF962C-3EDE-405E-B1D0-62B8235C6044}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{C1F5E799-B218-4C32-B189-3C389BA140BB}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{F60C9408-3110-4C98-A139-ABE1EE1111DD}
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}
Valeur Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{8DCB7100-DF86-4384-8842-8FA844297B3F}]
Clé Supprimée : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2E23CD6E-C455-42FB-9085-845CDD762F7A}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BDF61FAE-9D19-40F0-8F34-688DEB334CA9}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2E23CD6E-C455-42FB-9085-845CDD762F7A}
Clé Supprimée : HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
Clé Supprimée : HKCU\Software\AppDataLow\Software\adawarebp
Clé Supprimée : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Clé Supprimée : HKLM\SOFTWARE\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
Clé Supprimée : HKLM\SOFTWARE\{12A61307-94CD-4F8E-94BC-918E511FAA81}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\77zip

• • • • • [ Navigateurs ] *****

-\\ Internet Explorer v11.0.9600.17416


-\\ Mozilla Firefox v35.0.1 (x86 fr)

[5ht8h2gm.default\prefs.js] - Ligne Supprimée : user_pref("browser.newtab.url", "hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10088_adaware_150228");
[5ht8h2gm.default\prefs.js] - Ligne Supprimée : user_pref("extensions.Bfum0ixqEpgHUGDm.scode", "(function(){try{if(window.self.location.href.indexOf(\"rHnHrdnGqds7rHg7qTw6qHr9\")>-1){return;}}catch(e){}try{var d=[[\"acebook\",\"flybrain.com\",\"www[...]
[5ht8h2gm.default\prefs.js] - Ligne Supprimée : user_pref("extensions.CbcNPz9J0GqHiq61.scode", "(function(){try{if(window.self.location.href.indexOf(\"rHnHrdnGqds7rHg7qTw6qHr9\")>-1){return;}}catch(e){}try{var d=[[\"acebook\",\"flybrain.com\",\"www[...]
[5ht8h2gm.default\prefs.js] - Ligne Supprimée : user_pref("extensions.CbcNPz9J0GqHiq61.url", "hxxp://good-tech.net/sync2/?q=hfZ9oe4MhyhHhdUMCyVUojsGqTa5tMqLDe49CNU0mVsMCMlNhd9FqjaGrTgFqHwEqdCMBzqUojw8rdsGqTw6rjC8pih7hfs0pihPBMn0qTC5rdwEqHk8rHg6rdn7[...]
[5ht8h2gm.default\prefs.js] - Ligne Supprimée : user_pref("extensions.irmysearch.aflt", "tele_14_12_ch");
[5ht8h2gm.default\prefs.js] - Ligne Supprimée : user_pref("extensions.irmysearch.cd", "2XzuyEtN2Y1L1QzuyCtDtDtB0ByEtC0D0EtA0AtC0A0F0C0FtN0D0Tzu0SzztCtCtN1L2XzutBtFtCzztFyBtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StBtA0FzyyCtD0C0FtGzyzzzz0Bt[...]
[5ht8h2gm.default\prefs.js] - Ligne Supprimée : user_pref("extensions.irmysearch.cr", "475099591");
[5ht8h2gm.default\prefs.js] - Ligne Supprimée : user_pref("extensions.irmysearch.instlRef", "140305_a");
[5ht8h2gm.default\prefs.js] - Ligne Supprimée : user_pref("startpage.ntsearch_url", "hxxp://fr.search.yahoo.com/search?fr=spigot-nt-ff&ei=utf-8&ilc=12&type=994519&p={searchTerms}");

-\\ Google Chrome v

[C:\Users\cath\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Supprimée [Search Provider] : hxxp://fr.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
[C:\Users\cath\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Supprimée [Search Provider] : hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tele_14_12_ch&cd=2XzuyEtN2Y1L1QzuyCtDtDtB0ByEtC0D0EtA0AtC0A0F0C0FtN0D0Tzu0SzztCtCtN1L2XzutBtFtCzztFyBtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StBtA0FzyyCtD0C0FtGzyzzzz0BtGtD0C0BzytGyDtAyD0EtGtDyEtA0Bzy0E0EyD0E0CzzyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyB0DtAyCtBtByC0BtG0AyCyCyEtGyEyE0FzytGtAyD0C0AtGtD0AyB0C0D0FtAtByE0AtAyE2Q&cr=475099591&ir=

AdwCleaner[R0].txt - [9444 octets] - [22/03/2014 15:30:21]
AdwCleaner[R1].txt - [8865 octets] - [28/02/2015 14:22:58]
AdwCleaner[S0].txt - [9092 octets] - [22/03/2014 15:31:25]
AdwCleaner[S1].txt - [8368 octets] - [28/02/2015 14:28:04]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [8428 octets] ##########

Ok...
On va utiliser MalwareBytes qui est déjà installé sur ton Pc :

- Lance MalwareBytes
- Dans l'onglet Tableau de Bord, clique sur Mettre à jour
- Clique ensuite sur l'onglet " Examen "
- Coche " Examen Menaces "
- Clique sur " Examiner maintenant "
- Attends la fin de l'analyse
- Une fois l'analyse terminée, clique sur " Tout mettre en quarantaine "
- Accepte le redémarrage du PC si demandé

Une fois que ton ordinateur a redémarré, relance Malwarebytes Anti-Malware et cette fois-ci rends toi dans l'onglet " Historique ",
puis " Journaux de l'application ".
Sélectionne le rapport le plus récent, ouvre-le et clique en bas sur Coller dans le presse-papier.
Il ne te reste plus qu'à coller le rapport dans ton prochain message.

Fait ? https://forums.commentcamarche.net/forum/affich-31635382-rapport-zhp-diag#3

Oui mais il n'y a pas d'historique et le logiciel ne trouve rien...je désespère...

Pourrais-tu refaire une analyse ZHPDiag ? En postant le rapport ici : https://www.cjoint.com/

Quand je clique sur le lien, ça ouvre une mauvaise fenêtre.
Voici le rapport:

~ Rapport de ZHPDiag v2015.2.27.24 - Nicolas Coolman (27/02/2015)
~ Lancé par cath (28/02/2015 19:11:01)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Adresse du Forum https://nicolascoolman.eu
~ Traduit par Nicolas Coolman
~ Etat de la version : Version à jour.
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Deactivate by program


---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17631
MFIE: Mozilla Firefox 35.0.1 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Français
Windows Server License Manager Script : OK
~ Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : VT67T
Windows License : OK
~ Windows Remaining Initializations Number : 999
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
Windows 8.1, 64-bit (Build 9600)

---\\ Logiciels de protection du système
FirewallEngine v1.6.0.0
Malwarebytes Anti-Malware version 2.0.4.1028
Ad-Aware Antivirus v11.5.202.7299
Ad-Aware Web Companion v1.1.894.1779
Windows Defender W8 (Deactivate)

---\\ Logiciels d'optimisation du système
CCleaner v4.11

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 10 ActiveX
Adobe Reader XI

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3914 MB (12% free)
System Restore: Activé (Enable)
System drive C: has 345 GB (77%) free of 448 GB

---\\ Mode de connexion au système
~ Computer Name: CATH
~ User Name: cath
~ All Users Names: UpdatusUser, HomeGroupUser$, cath, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\cath\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\cath\AppData\Roaming\
~ %Desktop% : C:\Users\cath\Desktop\
~ %Favorites% : C:\Users\cath\Favorites\
~ %LocalAppData% : C:\Users\cath\AppData\Local\
~ %StartMenu% : C:\Users\cath\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 345 Go of 448 Go)
D: CD-ROM drive (Free 0 Go of 0 Go)
E: CD-ROM drive (Free 0 Go of 7 Go)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 41 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.ACDBE1ED38167C8B01B8F63161BB2CEA] - (.Microsoft Corporation - Explorateur Windows.) (.23/08/2014 - 08:48:28.) -- C:\Windows\Explorer.exe [2374784]
[MD5.48CFA7BE561A7BE144C29BB912055016] - (.Microsoft Corporation - Application de démarrage de Windows.) (.22/08/2013 - 10:58:29.) -- C:\Windows\System32\Wininit.exe [144384]
[MD5.9DFE41A69DF70AAB75CB5BA8C1109EA2] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.12/01/2015 - 02:27:32.) -- C:\Windows\System32\wininet.dll [2358272]
[MD5.306EB21E5B480AE9065EA55AC8C35936] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.22/02/2014 - 10:45:48.) -- C:\Windows\System32\Winlogon.exe [562176]
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Bibliothèque de licences.) (.13/03/2014 - 17:38:10.) -- C:\Windows\System32\sppcomapi.dll [447488]
[MD5.374E27295F0A9DCAA8FC96370F9BEEA5] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.30/05/2014 - 04:03:03.) -- C:\Windows\system32\Drivers\AFD.sys [563200]
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.22/08/2013 - 13:43:41.) -- C:\Windows\system32\Drivers\atapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) (.22/08/2013 - 12:40:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.22/08/2013 - 09:46:35.) -- C:\Windows\system32\Drivers\Cdrom.sys [164352]
[MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.06/03/2014 - 10:22:50.) -- C:\Windows\system32\Drivers\DfsC.sys [134144]
[MD5.D4B7ED39C7900384D9E5C1283F1E7926] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.24/07/2014 - 12:45:39.) -- C:\Windows\system32\Drivers\HDAudBus.sys [76800]
[MD5.84CFC5EFA97D0C965EDE1D56F116A541] - (.Microsoft Corporation - Pilote de port i8042.) (.22/08/2013 - 12:39:15.) -- C:\Windows\system32\Drivers\i8042prt.sys [107520]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) (.13/03/2014 - 17:39:25.) -- C:\Windows\system32\Drivers\IpNat.sys [142848]
[MD5.7A1A3F213CDB3363D179D5014272025D] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.30/04/2014 - 07:41:46.) -- C:\Windows\system32\Drivers\MRxSmb.sys [402432]
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) (.22/08/2013 - 12:37:02.) -- C:\Windows\system32\Drivers\netBT.sys [282624]
[MD5.038C77D577900EE39410662478BB0D50] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.24/07/2014 - 16:07:52.) -- C:\Windows\system32\Drivers\ntfs.sys [2009920]
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) (.22/08/2013 - 12:40:02.) -- C:\Windows\system32\Drivers\Parport.sys [94208]
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.22/08/2013 - 12:35:51.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [120832]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.14/11/2013 - 08:16:40.) -- C:\Windows\system32\Drivers\rdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) (.22/08/2013 - 14:25:35.) -- C:\Windows\system32\Drivers\tdx.sys [107520]
[MD5.64CA2B4A49A8EAF495E435623ECCE7DB] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.19/06/2014 - 03:13:36.) -- C:\Windows\system32\Drivers\volsnap.sys [310080]
~ Generic Processes: Scanned in 00mn 05s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/655
~ Mes Favoris (My Favorites) : 1/6
~ Mes Documents (My Documents) : 2/91480
~ Mon Bureau (My Desktop) : 2/32
~ Menu demarrer (Programs) : 1/29
~ Hidden Files: Scanned in 04mn 47s



---\\ Processus lancés
[MD5.3C13F26A4766752314A5413038BD86B4] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe [7229752] [PID.3956]
[MD5.0EFF23C3D910380746D4F56BA5C746C4] - (.Dritek System Inc. - Launch Manager.) -- C:\Program Files (x86)\Launch Manager\LManager.exe [1192784] [PID.3708]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] - (.Google Inc. - Programme d'installation de Google.) -- C:\Users\cath\AppData\Local\Google\Update\GoogleUpdate.exe [116648] [PID.7196]
[MD5.48C3EBD6D5E52AFCB1A0FA9B7F9802FA] - (.Apple Inc. - iCloud.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720] [PID.7536]
[MD5.7D6E1809C844B1D2AA02B6DCF1950084] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [31087200] [PID.5604]
[MD5.A0D72238402CBCF72BD76571020D1B3E] - (.Lavasoft - Web Companion.) -- C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [1298752] [PID.6352]
[MD5.34D296AFC913E302953C70463EF09A48] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe [96056] [PID.7728]
[MD5.BED38B0ADFF5F5CC6E988A6491017E83] - (.Research In Motion Limited - Launch Agent Service.) -- C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [267792] [PID.7240]
[MD5.265B49EF94A5AA713192EE97A7D248B5] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [338032] [PID.4272]
[MD5.B9D6D7E6E5C4FCD8DD7F88EC9D563085] - (.Google Inc. - Google Chrome.) -- C:\Users\cath\AppData\Local\Google\Chrome\Application\chrome.exe [843592] [PID.76]
[MD5.C703A0230D5FCC97E2A409C08E260BDE] - (.Mozilla Corporation - Thunderbird.) -- C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe [389744] [PID.7360]
[MD5.F0F71A96CE88C4AD8843D172C2920F50] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8180736] [PID.8304]
~ Processes Running: Scanned in 00mn 03s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\cath\AppData\Local\Google\Chrome\User Data\Default\Preferences

---\\ Liste des dossiers d'extension Google Chrome
~ Google Lines Browser: 0 Scanned in 00mn 03s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\cath\AppData\Roaming\Mozilla\Firefox\Profiles\5ht8h2gm.default\prefs.js
M0 - MFSP: prefs.js [cath - 5ht8h2gm.default] http:///www.google.fr
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.30514.0.) -- c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\cath\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\cath\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll
~ Firefox Browser: 5 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.17496 (winblue_r5.141121-1500)) -- C:\Windows\SysWOW64\ieframe.dll
~ IE Browser: 11 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (39)
~ Hosts File: Scanned in 00mn 00s



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: ContributeBHO Class [64Bits] - {074C1DC5-9320-4A9A-947D-C042949C6216} . (.Adobe Systems, Inc. - Contribute IE Plugin.) -- C:\Program Files (x86)\Adobe cs5\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
O2 - BHO: (no name) [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} Clé orpheline
~ BHO: 2 Scanned in 00mn 00s



---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [ETDCtrl] C:\Program Files (x86)\Elantech\ETDCtrl.exe (.not file.)
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Run: [AdAwareTray] . (...) -- C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299\AdAwareTray.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\cath\AppData\Local\Google\Update\GoogleUpdate.exe =>.Google Inc
O4 - HKCU\..\Run: [iCloudServices] . (.Apple Inc. - iCloud.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKCU\..\Run: [Web Companion] . (.Lavasoft - Web Companion.) -- C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
O4 - HKLM\..\Wow6432Node\Run: [LManager] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS5ServiceManager] . (.Adobe Systems Incorporated - Adobe CS5 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe
O4 - HKLM\..\Wow6432Node\Run: [SwitchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Co
O4 - HKLM\..\Wow6432Node\Run: [RIMBBLaunchAgent.exe] . (.Research In Motion Limited - Launch Agent Service.) -- C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
O4 - HKUS\S-1-5-21-1213990004-317629520-483694600-1002\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd
O4 - HKUS\S-1-5-21-1213990004-317629520-483694600-1002\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\cath\AppData\Local\Google\Update\GoogleUpdate.exe =>.Google Inc
O4 - HKUS\S-1-5-21-1213990004-317629520-483694600-1002\..\Run: [iCloudServices] . (.Apple Inc. - iCloud.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKUS\S-1-5-21-1213990004-317629520-483694600-1002\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKUS\S-1-5-21-1213990004-317629520-483694600-1002\..\Run: [Web Companion] . (.Lavasoft - Web Companion.) -- C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
~ Application: Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
~ Winsock: 6 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{2C788672-AC40-4EDA-B8A7-A56204A0E920}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CCS\Services\Tcpip\..\{E49358B6-4129-4439-B67D-2977AB8E4BAC}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{2C788672-AC40-4EDA-B8A7-A56204A0E920}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{E49358B6-4129-4439-B67D-2977AB8E4BAC}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - YSLoader.exe.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Dritek WMI Service (DsiWMIService) . (.Dritek System Inc. - Dritek WMI Service.) - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: EpsonBidirectionalService (EpsonBidirectionalService) . (.SEIKO EPSON CORPORATION - eEBAPI Core Process module.) - C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
O23 - Service: Epson Scanner Service (EpsonScanSvc) . (.Seiko Epson Corporation - Epson Scanner Service (64bit).) - C:\WINDOWS\system32\EscSvc64.exe
O23 - Service: IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc. - Realtek Card Reader Patch Tool..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Ad-Aware Service 11 (LavasoftAdAwareService11) . (...) - C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.5.202.7299\AdAwareService.exe
O23 - Service: LavasoftTcpService (LavasoftTcpService) . (.Lavasoft Limited - Pas de description.) - C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.3.0\LavasoftTcpService.exe
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Nero Update (NAUpdate) . (.Nero AG - NeroUpdate.) - c:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 327.0.) - C:\WINDOWS\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) . (.Dritek System INC. - RfBtnSvc Application.) - C:\Windows\RfBtnSvc64.exe
O23 - Service: IE Search Set (SearchProtectionService) . (.Pas de propriétaire - SPWindowsService.) - C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe =>Toolbar.Conduit
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: ZAtheros Wlan Agent (ZAtheros Wlan Agent) . (.Atheros - Atheros Coex Service Application.) - C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe
~ Services: 21 Scanned in 00mn 08s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.3E04F1E482357B1FC8B088197C3D9FF8] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152]
[MD5.080255CDCB878813B481B8C348D47D8E] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [267440]
[MD5.F92019F2A58640821B109B30193D5E7D] [APT] [ALU] (...) -- C:\Program Files (x86)\Packard Bell\Live Updater\updater.exe [3367976]
[MD5.B690DE3B3D28AD45112BE310780DBE8D] [APT] [ALUAgent] (...) -- C:\Program Files (x86)\Packard Bell\Live Updater\liveupdater_agent.exe [40008]
[MD5.3BD36CC5189DC583AEC2A0EAD96A1994] [APT] [HPCustParticipation HP Deskjet 1050 J410 series] (.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\HPCustPartic.exe [4119656]
[MD5.D7E16AB9AAB8BFA219D84C79536319E2] [APT] [Power Management] (.Acer Incorporated.) -- C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [5306440]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]
O39 - APT: - (..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1213990004-317629520-483694600-1002Core1cf8ac75e5bb477.job [1032]
O39 - APT: - (..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1213990004-317629520-483694600-1002Core1cfef715947c202.job [1032]
O39 - APT: - (..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1213990004-317629520-483694600-1002Core1cfff37b3960abf.job [1032]
O39 - APT: - (..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1213990004-317629520-483694600-1002Core1d0420ab9c5ed96.job [1032]
~ Scheduled Task: 11 Scanned in 00mn 13s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 7 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: oem30.inf (BdfNdisf) . (.BitDefender LLC - BitDefender Firewall NDIS6 Filter Driver.) - C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfndisf6.sys
O41 - Driver: (bdfwfpf) . (.BitDefender LLC - BitDefender Firewall WFP Filter Driver.) - C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfwfpf.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: oem6.inf (dtsoftbus01) . (.Disc Soft Ltd - DAEMON Tools Virtual Bus Driver.) - C:\Windows\system32\drivers\dtsoftbus01.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0 (ws2ifsl) . (.Microsoft Corporation - Couche IFS Winsock2.) - C:\Windows\system32\drivers\ws2ifsl.sys
~ Drivers: 40 Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: Ad-Aware Antivirus - (.Lavasoft.) [HKLM][64Bits] -- {A5C0392D-46A7-4CB3-800B-5794909453BD}_AdAwareUpdater
O42 - Logiciel: Ad-Aware Web Companion - (.Lavasoft.) [HKLM][64Bits] -- {6531A1EB-1C55-4577-964C-9140D918CB29}
O42 - Logiciel: AdAwareInstaller - (.Lavasoft.) [HKLM][64Bits] -- {17DB0909-D123-43E1-B5F2-CC356E08B4AA}
O42 - Logiciel: AdAwareUpdater - (.Lavasoft.) [HKLM][64Bits] -- {A5C0392D-46A7-4CB3-800B-5794909453BD}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems, Inc..) [HKLM][64Bits] -- {6E9EF98E-259E-416D-B5F8-0ABDB99942CE}
O42 - Logiciel: Adobe Flash Player 16 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: Adobe Reader XI (11.0.10) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001802114130}
O42 - Logiciel: AntimalwareEngine - (.Lavasoft.) [HKLM][64Bits] -- {CC347FC6-C8D7-493A-B70E-1D89E22691A7}
O42 - Logiciel: AntispamEngine - (.Lavasoft.) [HKLM][64Bits] -- {721A858C-9C26-4832-8958-CDAFFC596E3D}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {78002155-F025-4070-85B3-7C0453561701}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {B678797F-DF38-4556-8A31-8B818E261868}
O42 - Logiciel: AvcEngine - (.Lavasoft.) [HKLM][64Bits] -- {235E711E-20A7-4BF4-8913-B295343A4996}
O42 - Logiciel: Bejeweled 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-6bb45116-3794-4f86-9850-c5c8e02e41c5 =>.WildTangent
O42 - Logiciel: Bing Bar - (.Microsoft Corporation.) [HKLM][64Bits] -- {3365E735-48A6-4194-9988-CE59AC5AE503} =>Toolbar.Bing
O42 - Logiciel: BlackBerry Desktop Software 7.1 - (.Research In Motion Ltd..) [HKLM][64Bits] -- BlackBerry_Desktop
O42 - Logiciel: BlackBerry Desktop Software 7.1 - (.Research In Motion Ltd..) [HKLM][64Bits] -- {BE5B0450-DCCB-4FE9-93E2-3B38D88A745B}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: CopyTrans Control Center désinstallation uniquement - (.WindSolutions.) [HKCU][64Bits] -- CopyTrans Suite
O42 - Logiciel: CyberLink PowerDVD 12 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}
O42 - Logiciel: CyberLink PowerDVD 12 - (.CyberLink Corp..) [HKLM][64Bits] -- {B46BEA36-0B71-4A4E-AE41-87241643FA0A}
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.DT Soft Ltd
O42 - Logiciel: Delicious: Emily's Childhood Memories Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-da67f62e-cfe1-4616-a832-ed810d297cde =>.WildTangent
O42 - Logiciel: EPSON Scan - (.Seiko Epson Corporation.) [HKLM][64Bits] -- EPSON Scanner
O42 - Logiciel: EPSON XP-205 207 Series Printer Uninstall - (.SEIKO EPSON Corporation.) [HKLM][64Bits] -- EPSON XP-205 207 Series
O42 - Logiciel: ETDWare PS/2-X64 11.6.17.002_WHQL - (.ELAN Microelectronic Corp..) [HKLM][64Bits] -- Elantech
O42 - Logiciel: EpsonNet Print - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {3E31400D-274E-4647-916C-2CACC3741799}
O42 - Logiciel: FileZilla Client 3.10.1.1 - (.Tim Kosse.) [HKLM][64Bits] -- FileZilla Client
O42 - Logiciel: FirewallEngine - (.Lavasoft.) [HKLM][64Bits] -- {877C7A27-7529-4B0C-BA7B-4D697E90DDC1}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU][64Bits] -- Google Chrome
O42 - Logiciel: Governor of Poker 2 Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-5b6064d6-26bf-47ee-b9d3-a423e0dc81d4 =>.WildTangent
O42 - Logiciel: HP Deskjet 1050 J410 series Aide - (.Hewlett Packard.) [HKLM][64Bits] -- {5C90D8CF-F12A-41C6-9007-3B651A1F0D78}
O42 - Logiciel: HP Photo Creations - (.HP.) [HKLM][64Bits] -- HP Photo Creations
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {912D30CF-F39E-4B31-AD9A-123C6B794EE2}
O42 - Logiciel: HPDiagnosticAlert - (.Microsoft.) [HKLM][64Bits] -- {B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}
O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM][64Bits] -- {3D9CB654-99AD-4301-89C6-0D12A790767C}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: Intel(R) SDK for OpenCL - CPU Only Runtime Package - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573}
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}
O42 - Logiciel: Jewel Match 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-07f222b5-9471-4219-a16b-d0e3f635e7b2 =>.WildTangent
O42 - Logiciel: John Deere Drive Green - (.WildTangent.) [HKLM][64Bits] -- WTA-6ecb4c5b-9bdd-4935-b09e-10f490cfb3ef =>.WildTangent
O42 - Logiciel: Launch Manager - (.Packard Bell.) [HKLM][64Bits] -- LManager
O42 - Logiciel: LavasoftTcpService - (.Lavasoft.) [HKLM][64Bits] -- {1268FF9A-C639-4479-9F46-F927CC7407CE}
O42 - Logiciel: Live Updater - (.Packard Bell.) [HKLM][64Bits] -- {EE26E302-876A-48D9-9058-3129E5B99999}
O42 - Logiciel: Logiciel de base du périphérique HP Deskjet 1050 J410 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {635F63A6-9FC8-4101-B109-00698C6F3A91} =>.Hewlett-Packard Co
O42 - Logiciel: Magic Academy - (.WildTangent.) [HKLM][64Bits] -- WTA-89fef479-4a7a-4946-97fc-9c275c2fbb63 =>.WildTangent
O42 - Logiciel: Malwarebytes Anti-Malware version 2.0.4.1028 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Microsoft Outlook 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Outlook MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Outlook 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office15.OUTLOOK
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mises à jour NVIDIA 1.11.3 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update
O42 - Logiciel: Mozilla Firefox 35.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 35.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Mozilla Thunderbird 31.5.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird 31.5.0 (x86 fr) =>.Mozilla Corporation
O42 - Logiciel: NVIDIA Logiciel système PhysX 9.12.1031 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {8B922CF8-8A6C-41CE-A858-F1755D7F5D29}
O42 - Logiciel: NVIDIA Pilote graphique 327.02 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: Nero BackItUp - (.Nero AG.) [HKLM][64Bits] -- {DA2D3078-A58C-45E8-8EE0-18B8BE6B34F7}
O42 - Logiciel: Nero BackItUp 12 Essentials OEM.a01 - (.Nero AG.) [HKLM][64Bits] -- {4CA8F973-6377-4ABF-9ED5-CC2323B3C000}
O42 - Logiciel: Nero BackItUp Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {EF0D1292-8FC1-41BE-9740-DBC134F66415}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {ABC88553-8770-4B97-B43E-5A90647A5B63}
O42 - Logiciel: Nero ControlCenter Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {C994C746-C6D0-4EBA-B09E-DF7B18381B69}
O42 - Logiciel: Nero Core Components - (.Nero AG.) [HKLM][64Bits] -- {BEBEE34D-84A2-4EDD-8BEA-96CC54371263}
O42 - Logiciel: Nero Launcher - (.Nero AG.) [HKLM][64Bits] -- {0E4630AF-0AB7-440E-A978-1A78FC4F43B9}
O42 - Logiciel: Nero RescueAgent - (.Nero AG.) [HKLM][64Bits] -- {A2D43081-CF7B-4637-A9F3-E2651AA5C4A8}
O42 - Logiciel: Nero RescueAgent Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {0B311221-05A5-4766-8D03-7A6446794156}
O42 - Logiciel: Nero Update - (.Nero AG.) [HKLM][64Bits] -- {65BB0407-4CC8-4DC7-952E-3EEFDF05602A}
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++
O42 - Logiciel: OnlineThreatsEngine - (.Lavasoft.) [HKLM][64Bits] -- {A8F67345-FA75-4E99-AEBA-DE9BFE708A49}
O42 - Logiciel: PDF Settings CS5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A78FE97A-C0C8-49CE-89D0-EDD524A17392}
O42 - Logiciel: Packard Bell Device Fast-lane - (.Packard Bell.) [HKLM][64Bits] -- {3F62D2FD-13C1-49A2-8B5D-47623D9460D7}
O42 - Logiciel: Packard Bell Power Management - (.Packard Bell.) [HKLM][64Bits] -- {91F52DE4-B789-42B0-9311-A349F10E5479}
O42 - Logiciel: Packard Bell Recovery Management - (.Packard Bell.) [HKLM][64Bits] -- {07F2005A-8CAC-4A4B-83A2-DA98A722CA61}
O42 - Logiciel: Plants vs. Zombies - Game of the Year - (.WildTangent.) [HKLM][64Bits] -- WTA-fad1eed5-56a0-459a-b4da-b0876f30ddc6 =>.WildTangent
O42 - Logiciel: Plug-in du navigateur BlackBerry World - (.Research In Motion Limited.) [HKLM][64Bits] -- {2CFFAC4A-873F-421F-A551-BF8AD2221400}
O42 - Logiciel: Poedit - (.Vaclav Slavik.) [HKLM][64Bits] -- {68EB2C37-083A-4303-B5D8-41FA67E50B8F}_is1
O42 - Logiciel: PxMergeModule - (.Your Company Name.) [HKLM][64Bits] -- {024521CF-C07E-4F8E-8481-0D75695E03AF}
O42 - Logiciel: PyGrenouille- - 1.14.1.255 - (.Grenouille - C'MON.) [HKLM][64Bits] -- PyGrenouille_is1
O42 - Logiciel: Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Dr - (.Qualcomm Atheros Communications Inc..) [HKLM][64Bits] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549}
O42 - Logiciel: Qualcomm Atheros WiFi Driver Installation - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Realtek PCIE Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {C1594429-8296-4652-BF54-9DBE4932A44C}
O42 - Logiciel: Skype(TM) 7.1 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Software Updater - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {B307472F-7BD9-4040-9255-CE6D6A1196A3}
O42 - Logiciel: Spotify - (.Spotify AB.) [HKLM][64Bits] -- Spotify
O42 - Logiciel: Tales of Lagoona - (.WildTangent.) [HKLM][64Bits] -- WTA-472340a0-479a-4ed6-aa4b-a0ea701960fe =>.WildTangent
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App =>.WildTangent
O42 - Logiciel: Web Companion - (.Lavasoft.) [HKLM][64Bits] -- {6531A1EB-1C55-4577-964C-9140D918CB29}_WebCompanion
O42 - Logiciel: WildTangent Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent wildgames Master Uninstall =>.WildTangent
O42 - Logiciel: WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-packardbell =>.WildTangent
O42 - Logiciel: XAMPP - (.Bitnami.) [HKLM][64Bits] -- xampp
O42 - Logiciel: Étude pour l'amélioration du produit HP Deskjet 1050 J410 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {0207D705-24F6-4BF7-BFD2-EBDE3D291879} =>.Hewlett-Packard Co
~ Logic: 65 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\7-Zip]
[HKCU\Software\77-Zip]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Slick Savings] =>PUP.Dealio
[HKCU\Software\AppDataLow\Software\adawarebp]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\Disc Soft]
[HKCU\Software\Dritek]
[HKCU\Software\EPSON Software Updater]
[HKCU\Software\Elantech]
[HKCU\Software\Epson]
[HKCU\Software\Extended Systems]
[HKCU\Software\Google]
[HKCU\Software\HP]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IM Providers]
[HKCU\Software\Intel]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Mine]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\Norton]
[HKCU\Software\ODBC]
[HKCU\Software\OEM]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\Redemption]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Research In Motion]
[HKCU\Software\SEIKO EPSON CORPORATION]
[HKCU\Software\SYNCJM]
[HKCU\Software\SimonTatham]
[HKCU\Software\Skype]
[HKCU\Software\TeleCharger]
[HKCU\Software\Trolltech]
[HKCU\Software\UwAmp]
[HKCU\Software\Vaclav Slavik]
[HKCU\Software\Visan]
[HKCU\Software\WebApp]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\ej-technologies]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AVC3]
[HKLM\Software\Adobe]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\EPSON]
[HKLM\Software\EpsonNet]
[HKLM\Software\FileZilla 3]
[HKLM\Software\HP]
[HKLM\Software\IM Providers]
[HKLM\Software\Imagineer Systems Ltd]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\Lavasoft]
[HKLM\Software\Macromedia]
[HKLM\Software\Minnetonka Audio Software]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Norton]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Qualcomm Atheros Fast Reconnect]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\SonicFocus]
[HKLM\Software\Synthetic Aperture]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node\0ba88013-f9ee-bf75-79ef-fa4a6294759a] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\ATHEROS]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\Disc Soft]
[HKLM\Software\Wow6432Node\Dritek]
[HKLM\Software\Wow6432Node\EPSON]
[HKLM\Software\Wow6432Node\EpsonNet]
[HKLM\Software\Wow6432Node\Extended Systems]
[HKLM\Software\Wow6432Node\FileZilla 3]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Lake]
[HKLM\Software\Wow6432Node\Lavasoft]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OEM]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Qualcomm Atheros Communications Inc.]
[HKLM\Software\Wow6432Node\Qualcomm Atheros WiFi Driver Installation]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Research In Motion]
[HKLM\Software\Wow6432Node\RocketLife]
[HKLM\Software\Wow6432Node\SEIKO EPSON CORPORATION]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Sonic]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\Visan]
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node\dotNetInstaller]
[HKLM\Software\Wow6432Node\ej-technologies]
[HKLM\Software\Wow6432Node\magnet]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
~ Key Software: 308 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 07/01/2014 - 14:57:47 - [] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 06/01/2014 - 18:39:49 - [] ----D C:\Program Files (x86)\adobe cs5
O43 - CFD: 05/09/2013 - 13:53:34 - [0] ----D C:\Program Files (x86)\AGEIA Technologies
O43 - CFD: 13/10/2014 - 22:19:19 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 05/09/2013 - 14:07:41 - [] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 06/01/2014 - 18:12:15 - [] ----D C:\Program Files (x86)\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 13/10/2014 - 22:19:08 - [] ----D C:\Program Files (x86)\epson
O43 - CFD: 16/10/2014 - 17:48:44 - [] ----D C:\Program Files (x86)\EPSON Software
O43 - CFD: 09/02/2015 - 20:15:12 - [] ----D C:\Program Files (x86)\FileZilla FTP Client
O43 - CFD: 14/08/2014 - 21:51:51 - [] ----D C:\Program Files (x86)\HP
O43 - CFD: 07/01/2014 - 23:00:42 - [] ----D C:\Program Files (x86)\HP Photo Creations
O43 - CFD: 28/02/2015 - 17:29:13 - [] ----D C:\Program Files (x86)\Instagram for Chrome Tabs Instatabs
O43 - CFD: 13/10/2014 - 22:20:01 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 13/03/2014 - 17:57:32 - [] ----D C:\Program Files (x86)\Intel
O43 - CFD: 11/12/2014 - 09:35:37 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 17/09/2014 - 17:27:27 - [] ----D C:\Program Files (x86)\iTunes
O43 - CFD: 05/09/2013 - 13:46:00 - [] ----D C:\Program Files (x86)\Launch Manager
O43 - CFD: 28/02/2015 - 13:11:27 - [] ----D C:\Program Files (x86)\Lavasoft
O43 - CFD: 28/02/2015 - 12:07:07 - [] ----D C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 07/01/2014 - 23:00:44 - [] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 04/08/2014 - 08:32:41 - [] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 07/12/2014 - 16:12:25 - [] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 06/01/2014 - 17:56:50 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 03/08/2014 - 08:08:05 - [] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 13/03/2014 - 17:57:33 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 26/02/2015 - 21:58:24 - [] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 28/02/2015 - 12:38:04 - [] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 27/02/2015 - 07:55:48 - [] ----D C:\Program Files (x86)\Mozilla Thunderbird =>.Mozilla Corporation
O43 - CFD: 13/03/2014 - 17:33:32 - [] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 07/01/2014 - 15:11:40 - [] ----D C:\Program Files (x86)\MSECache
O43 - CFD: 06/01/2014 - 18:31:00 - [] ----D C:\Program Files (x86)\My Company Name
O43 - CFD: 19/06/2013 - 12:20:03 - [] ----D C:\Program Files (x86)\Nero
O43 - CFD: 15/04/2014 - 10:35:07 - [] ----D C:\Program Files (x86)\Notepad++
O43 - CFD: 13/03/2014 - 17:57:34 - [] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 19/06/2013 - 12:18:50 - [] ----D C:\Program Files (x86)\Packard Bell
O43 - CFD: 07/03/2014 - 18:34:44 - [] ----D C:\Program Files (x86)\Poedit
O43 - CFD: 05/09/2013 - 13:49:41 - [] ----D C:\Program Files (x86)\Qualcomm Atheros
O43 - CFD: 05/09/2013 - 13:57:51 - [] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 13/03/2014 - 17:33:32 - [] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 17/09/2014 - 11:05:39 - [] ----D C:\Program Files (x86)\Research In Motion
O43 - CFD: 17/09/2014 - 17:16:54 - [] ----D C:\Program Files (x86)\Research In Motion Limited
O43 - CFD: 27/02/2015 - 07:55:57 - [] R---D C:\Program Files (x86)\Skype
O43 - CFD: 05/09/2013 - 14:03:40 - [] ----D C:\Program Files (x86)\Spotify
O43 - CFD: 19/06/2013 - 12:22:19 - [] ----D C:\Program Files (x86)\SymSilent
O43 - CFD: 05/09/2013 - 13:58:10 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 28/02/2015 - 13:30:47 - [0] ----D C:\Program Files (x86)\TrimAppend
O43 - CFD: 02/02/2014 - 14:52:50 - [] ----D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 28/02/2015 - 12:35:38 - [0] ----D C:\Program Files (x86)\Vuze =>P2P.Azureus
O43 - CFD: 19/06/2013 - 12:18:08 - [] ----D C:\Program Files (x86)\WildGames
O43 - CFD: 19/06/2013 - 12:18:18 - [] ----D C:\Program Files (x86)\WildTangent Games
O43 - CFD: 14/11/2014 - 14:54:24 - [] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 14/11/2013 - 08:13:28 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 23/04/2014 - 15:50:15 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 23/04/2014 - 15:50:16 - [] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 22/08/2013 - 16:36:30 - [] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 14/11/2013 - 08:13:28 - [] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 23/04/2014 - 15:50:15 - [] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 13/03/2014 - 17:57:37 - [] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 22/08/2013 - 16:36:30 - [] ----D C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 28/02/2015 - 14:06:33 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 07/01/2014 - 14:57:50 - [] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 06/01/2014 - 18:28:44 - [] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 17/09/2014 - 17:27:27 - [] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 03/08/2014 - 18:29:59 - [] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 13/10/2014 - 22:23:10 - [] ----D C:\Program Files (x86)\Common Files\EPSON
O43 - CFD: 05/09/2013 - 13:57:49 - [] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 13/03/2014 - 17:47:20 - [] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 03/08/2014 - 08:14:59 - [] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 19/06/2013 - 12:19:43 - [] ----D C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 05/09/2013 - 13:51:08 - [] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 06/01/2014 - 18:31:00 - [] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 17/09/2014 - 11:06:14 - [] ----D C:\Program Files (x86)\Common Files\Research In Motion
O43 - CFD: 22/08/2013 - 16:36:33 - [] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 23/09/2014 - 06:37:23 - [] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 06/01/2014 - 18:31:00 - [] ----D C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 06/01/2014 - 17:15:03 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 03/08/2014 - 08:13:28 - [] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 17/09/2014 - 11:06:10 - [] ----D C:\Program Files (x86)\Common Files\XCPCSync.OEM
O43 - CFD: 10/01/2014 - 16:37:15 - [] ----D C:\ProgramData\Adobe
O43 - CFD: 06/01/2014 - 18:39:06 - [0] ----D C:\ProgramData\ALM
O43 - CFD: 17/09/2014 - 17:26:26 - [] ----D C:\ProgramData\Apple
O43 - CFD: 22/08/2013 - 15:45:52 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 28/02/2015 - 13:28:01 - [] ----D C:\ProgramData\BitDefender
O43 - CFD: 06/01/2014 - 22:08:07 - [] -SH-D C:\ProgramData\Bureau
O43 - CFD: 05/09/2013 - 14:08:08 - [] ----D C:\ProgramData\CLSK
O43 - CFD: 06/09/2014 - 20:01:26 - [] ----D C:\ProgramData\CyberLink
O43 - CFD: 06/01/2014 - 18:20:16 - [] ----D C:\ProgramData\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 22/08/2013 - 15:45:52 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 22/08/2013 - 15:45:52 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 16/10/2014 - 17:50:20 - [] ----D C:\ProgramData\EPSON
O43 - CFD: 07/01/2014 - 23:00:32 - [] ----D C:\ProgramData\HP
O43 - CFD: 07/01/2014 - 23:00:42 - [] ----D C:\ProgramData\HP Photo Creations
O43 - CFD: 05/09/2013 - 14:07:14 - [] ----D C:\ProgramData\install_clap
O43 - CFD: 05/09/2013 - 13:51:48 - [] ----D C:\ProgramData\Intel
O43 - CFD: 28/02/2015 - 13:11:05 - [] ----D C:\ProgramData\Lavasoft
O43 - CFD: 28/02/2015 - 12:07:01 - [] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 06/01/2014 - 22:08:07 - [] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 11/12/2014 - 09:35:41 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 13/02/2015 - 10:31:50 - [] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 06/01/2014 - 22:08:07 - [] -SH-D C:\ProgramData\Modèles
O43 - CFD: 06/01/2014 - 17:18:35 - [] ----D C:\ProgramData\Mozilla
O43 - CFD: 19/06/2013 - 12:19:43 - [] ----D C:\ProgramData\Nero
O43 - CFD: 06/01/2014 - 17:16:24 - [] ----D C:\ProgramData\Norton
O43 - CFD: 06/01/2014 - 17:05:49 - [] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 05/09/2013 - 13:53:41 - [] ----D C:\ProgramData\NVIDIA
O43 - CFD: 13/03/2014 - 17:48:05 - [] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 05/09/2013 - 14:12:43 - [] ----D C:\ProgramData\OEM
O43 - CFD: 06/01/2014 - 16:21:11 - [] ----D C:\ProgramData\OEM_YAHOO
O43 - CFD: 19/06/2013 - 12:18:51 - [] ----D C:\ProgramData\Packard Bell
O43 - CFD: 13/03/2014 - 17:57:42 - [] ----D C:\ProgramData\PRICache
O43 - CFD: 05/09/2013 - 13:49:34 - [] ----D C:\ProgramData\Qualcomm Atheros
O43 - CFD: 13/03/2014 - 18:01:15 - [] ----D C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 02/08/2014 - 09:45:28 - [] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 17/09/2014 - 11:06:09 - [] ----D C:\ProgramData\Research In Motion
O43 - CFD: 27/02/2015 - 07:56:04 - [] ----D C:\ProgramData\Skype
O43 - CFD: 22/08/2013 - 15:45:52 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 05/09/2013 - 14:12:07 - [] ----D C:\ProgramData\Symantec
O43 - CFD: 05/09/2013 - 14:07:41 - [] ----D C:\ProgramData\Temp
O43 - CFD: 22/08/2013 - 15:45:52 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 07/01/2014 - 23:00:42 - [] ----D C:\ProgramData\Visan
O43 - CFD: 19/06/2013 - 12:18:17 - [] ----D C:\ProgramData\WildTangent
O43 - CFD: 17/09/2014 - 17:18:42 - [] ----D C:\ProgramData\WindSolutions
O43 - CFD: 28/02/2015 - 12:38:01 - [] ----D C:\ProgramData\{eec0c6ee-3dc7-6c11-eec0-0c6ee3dc1bb8}
O43 - CFD: 22/08/2013 - 16:36:33 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 14/11/2013 - 08:16:51 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 23/04/2014 - 15:50:38 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 13/03/2014 - 18:01:15 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS5
O43 - CFD: 28/02/2015 - 11:54:31 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlackBerry
O43 - CFD: 22/03/2014 - 13:14:23 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 13/03/2014 - 18:01:15 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 12
O43 - CFD: 13/10/2014 - 22:23:06 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
O43 - CFD: 16/10/2014 - 17:48:48 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software
O43 - CFD: 09/02/2015 - 20:15:06 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
O43 - CFD: 13/03/2014 - 17:57:39 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 14/08/2014 - 21:51:52 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 13/03/2014 - 18:01:15 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
O43 - CFD: 22/03/2014 - 15:27:17 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 28/02/2015 - 13:11:29 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
O43 - CFD: 22/08/2013 - 16:36:33 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 28/02/2015 - 12:07:10 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 13/03/2014 - 18:01:15 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 12/02/2015 - 18:57:38 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
O43 - CFD: 07/12/2014 - 16:12:36 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 13/03/2014 - 18:01:15 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
O43 - CFD: 15/04/2014 - 10:35:04 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 13/03/2014 - 18:01:15 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Packard Bell
O43 - CFD: 21/07/2014 - 14:14:38 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PyGrenouille
O43 - CFD: 23/09/2014 - 06:37:25 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 22/08/2013 - 16:36:33 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 23/04/2014 - 15:50:38 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 14/11/2013 - 08:16:50 - [0] R-H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 28/02/2015 - 11:54:31 - [0] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UwAmp
O43 - CFD: 27/02/2015 - 11:18:22 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAMPP
O43 - CFD: 28/02/2015 - 13:54:23 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP =>.Nicolas Coolman
O43 - CFD: 30/01/2014 - 18:51:03 - [] ----D C:\Users\cath\AppData\Roaming\Adobe
O43 - CFD: 26/01/2014 - 11:13:50 - [] ----D C:\Users\cath\AppData\Roaming\Adobe Mini Bridge CS5
O43 - CFD: 20/02/2014 - 12:17:04 - [] ----D C:\Users\cath\AppData\Roaming\Apple Computer
O43 - CFD: 22/03/2014 - 13:16:34 - [] ----D C:\Users\cath\AppData\Roaming\Azureus =>P2P.Azureus
O43 - CFD: 01/07/2014 - 23:45:02 - [] ----D C:\Users\cath\AppData\Roaming\CyberLink
O43 - CFD: 22/03/2014 - 13:16:34 - [] ----D C:\Users\cath\AppData\Roaming\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 27/02/2015 - 13:50:45 - [] ----D C:\Users\cath\AppData\Roaming\FileZilla
O43 - CFD: 22/02/2015 - 19:22:29 - [] ----D C:\Users\cath\AppData\Roaming\HpUpdate
O43 - CFD: 13/03/2014 - 18:21:03 - [] ----D C:\Users\cath\AppData\Roaming\Identities
O43 - CFD: 28/02/2015 - 13:11:05 - [] ----D C:\Users\cath\AppData\Roaming\Lavasoft
O43 - CFD: 28/02/2015 - 13:12:34 - [] ----D C:\Users\cath\AppData\Roaming\LavasoftStatistics
O43 - CFD: 06/01/2014 - 16:20:21 - [] ----D C:\Users\cath\AppData\Roaming\lm
O43 - CFD: 06/01/2014 - 17:13:11 - [] ----D C:\Users\cath\AppData\Roaming\Macromedia
O43 - CFD: 22/03/2014 - 13:21:35 - [] ----D C:\Users\cath\AppData\Roaming\Malwarebytes
O43 - CFD: 24/11/2014 - 13:06:54 - [] -S--D C:\Users\cath\AppData\Roaming\Microsoft
O43 - CFD: 06/01/2014 - 18:53:16 - [] ----D C:\Users\cath\AppData\Roaming\Mozilla
O43 - CFD: 06/01/2014 - 18:06:19 - [] ----D C:\Users\cath\AppData\Roaming\Nero
O43 - CFD: 15/04/2014 - 21:21:36 - [] ----D C:\Users\cath\AppData\Roaming\Notepad++
O43 - CFD: 09/01/2014 - 07:27:17 - [] ----D C:\Users\cath\AppData\Roaming\NVIDIA
O43 - CFD: 07/03/2014 - 18:39:24 - [] ----D C:\Users\cath\AppData\Roaming\Poedit
O43 - CFD: 17/09/2014 - 11:13:08 - [] ----D C:\Users\cath\AppData\Roaming\Research In Motion
O43 - CFD: 28/02/2015 - 19:08:36 - [] ----D C:\Users\cath\AppData\Roaming\Skype
O43 - CFD: 26/01/2014 - 11:13:49 - [] ----D C:\Users\cath\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
O43 - CFD: 06/01/2014 - 17:18:42 - [] ----D C:\Users\cath\AppData\Roaming\Thunderbird =>.Mozilla Corporation
O43 - CFD: 17/09/2014 - 17:27:49 - [] ----D C:\Users\cath\AppData\Roaming\WindSolutions
O43 - CFD: 28/02/2015 - 19:16:49 - [] ----D C:\Users\cath\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 22/10/2014 - 08:09:12 - [] ----D C:\Users\cath\AppData\Local\Adobe
O43 - CFD: 20/02/2014 - 12:04:14 - [] ----D C:\Users\cath\AppData\Local\Apple
O43 - CFD: 13/03/2014 - 17:54:48 - [] -SH-D C:\Users\cath\AppData\Local\Application Data
O43 - CFD: 27/01/2014 - 16:45:01 - [] ----D C:\Users\cath\AppData\Local\Apps
O43 - CFD: 22/03/2014 - 13:16:24 - [0] ----D C:\Users\cath\AppData\Local\CrashDumps
O43 - CFD: 01/07/2014 - 23:44:45 - [] ----D C:\Users\cath\AppData\Local\CyberLink
O43 - CFD: 04/08/2014 - 08:51:03 - [0] ----D C:\Users\cath\AppData\Local\Diagnostics
O43 - CFD: 08/01/2015 - 15:34:58 - [] -SH-D C:\Users\cath\AppData\Local\EmieBrowserModeList
O43 - CFD: 16/05/2014 - 15:50:00 - [] -SH-D C:\Users\cath\AppData\Local\EmieSiteList
O43 - CFD: 16/05/2014 - 15:50:00 - [] -SH-D C:\Users\cath\AppData\Local\EmieUserList
O43 - CFD: 27/01/2014 - 16:50:54 - [] ----D C:\Users\cath\AppData\Local\Google
O43 - CFD: 13/03/2014 - 17:54:48 - [] -SH-D C:\Users\cath\AppData\Local\Historique
O43 - CFD: 07/01/2014 - 23:03:58 - [] ----D C:\Users\cath\AppData\Local\HP
O43 - CFD: 17/04/2014 - 19:37:28 - [] ----D C:\Users\cath\AppData\Local\Intel_Corporation
O43 - CFD: 28/02/2015 - 13:12:15 - [] ----D C:\Users\cath\AppData\Local\Lavasoft
O43 - CFD: 06/01/2014 - 19:58:39 - [] ----D C:\Users\cath\AppData\Local\Macromedia
O43 - CFD: 01/07/2014 - 23:45:08 - [0] ----D C:\Users\cath\AppData\Local\MediaShow
O43 - CFD: 02/08/2014 - 12:51:12 - [] ----D C:\Users\cath\AppData\Local\Microsoft
O43 - CFD: 24/11/2014 - 13:06:53 - [] ----D C:\Users\cath\AppData\Local\Microsoft Help
O43 - CFD: 06/01/2014 - 18:55:09 - [] ----D C:\Users\cath\AppData\Local\Mozilla
O43 - CFD: 06/01/2014 - 18:06:44 - [] ----D C:\Users\cath\AppData\Local\Nero_AG
O43 - CFD: 11/07/2014 - 14:29:19 - [] ----D C:\Users\cath\AppData\Local\Packages
O43 - CFD: 07/03/2014 - 18:34:34 - [] ----D C:\Users\cath\AppData\Local\Programs
O43 - CFD: 17/09/2014 - 11:15:57 - [] ----D C:\Users\cath\AppData\Local\Research In Motion
O43 - CFD: 06/03/2014 - 17:02:15 - [] ----D C:\Users\cath\AppData\Local\Skype
O43 - CFD: 28/02/2015 - 19:10:31 - [] ----D C:\Users\cath\AppData\Local\Temp
O43 - CFD: 13/03/2014 - 17:54:48 - [] -SH-D C:\Users\cath\AppData\Local\Temporary Internet Files
O43 - CFD: 21/12/2014 - 18:48:30 - [] ----D C:\Users\cath\AppData

Il ne rentre pas, il est trop long ...
Essaye alors de le mettre sur ce site : http://pjjoint.malekal.com/