Sujet Précédent Sujet Suivant

Adware.Generic.949663

Fermé
christi1984 - 14 avril 2015 à 19:35
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 19 juillet 2024 - 16 avril 2015 à 11:28
Bonjour,

Un virus (Adware.Generic.949663) a pris possession de mon PC.

Il a désactivé l'antivirus (BitDefender2011).

Que faire pour l'éliminer ?

Je vous remercie.

15 réponses

Réponse 1 / 15
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 19 juillet 2024 3 807
14 avril 2015 à 19:38
▶ Télécharge ici : FRST (de Farbar)
!!! En fonction de ta version de Windows, prends la "32-Bit Version" ou la "64-Bit Version" !!!
Aide : va dans Démarrer > Panneau de configuration > Système pour savoir si tu es sous 32 bits ou 64 bits.

▶ Double-clique sur l'icône FRST.exe pour lancer le programme. (Sous Windows Vista, 7 et 8, il faut faire un clic droit dessus, puis exécuter en tant qu'administrateur.) Clique ensuite sur Oui lorsqu'un message d'avertissement (Disclaimer) s'affiche.

▶ Sur le menu principal, clique sur le bouton Scan et patiente le temps de l'analyse.

▶ A la fin du scan, deux rapports s'affichent, FRST.txt et Addition.txt Poste les rapports dans ta prochaine réponse.

Les rapport se trouvent ici : C:\FRST\Logs

▶ Envoie-les sur https://www.cjoint.com/ et poste les liens obtenus en échange.
0
Réponse 2 / 15
christi1984
14 avril 2015 à 19:55
Je viens d'installer Farbar mais je n'arrive pas à lancer le Scan ? Il n'y a aucun signe que le Scan est en cours. Au dessus une phrase apparaît (Backing up registry, this should take a few seconds...).

Est-ce normal ?

Merci.
0
Réponse 3 / 15
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 19 juillet 2024 3 807
14 avril 2015 à 20:01
Laisse le faire
0
Réponse 4 / 15
christi1984
14 avril 2015 à 21:42
Cela fait 2 heures et toujours rien ?
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 15
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 19 juillet 2024 3 807
14 avril 2015 à 22:17
essaie en mode sans échec
0
Réponse 6 / 15
christi1984
15 avril 2015 à 20:32
Toujours rien ?

Il n'y a pas un autre moyen ?

Merci.
0
Réponse 7 / 15
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 19 juillet 2024 3 807
15 avril 2015 à 20:35
  • Télécharge ZHPDiag (de Nicolas Coolman)

https://nicolascoolman.eu ou https://www.commentcamarche.net/telecharger/utilitaires/24803-zhpdiag/
  • Au cas où le premier lien ne marcherai pas, clique sur celui de dessous

ftp://zebulon.fr/ZHPDiag2.exe
  • Double clic si tu es sous windows xp(sinon clic droit afin de l'exécuter en tant qu'admin à partir de Vista)
  • Laisse toi guider lors de l'installation, il se lancera automatiquement à la fin.
  • Surtout, n'oublie pas d'installer son icône sur le bureau l'icône est en forme de parchemin

https://www.cjoint.com/13sp/CIvuQfap3YY_zhpdiag.png
  • A l'ouverture du logiciel il te sera proposé 3 options "rechercher", "configurer" et complet
  • Cliques sur "complet"
  • Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
  • Pour héberger le rapport, rends toi sur cjoint.com
  • Clique sur choisissez un fichier va chercher le rapport dans ton PC.
  • Le rapport est hébergé:

- Pour XP : C:\Documents and Settings\username\Local Settings\Application Data\ZHP
- Depuis Vista : C:\Users\username\AppData\Roaming\ZHP

0
Réponse 8 / 15
christi1984
15 avril 2015 à 21:31
~ Rapport de ZHPDiag v2015.4.13.38 - Nicolas Coolman (13/04/2015)
~ Lancé par user (15/04/2015 20:45:54)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Adresse du Forum http://forum.nicolascoolman.fr
~ Traduit par Nicolas Coolman
~ Etat de la version : Version à jour.
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v9.0.8112.16421

---\\ Informations sur les produits Windows
~ Langage: Français
Windows Server License Manager Script : OK
~ Windows Operating System - Vista, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : WQD8Q
Windows License : OK
Windows Automatic Updates : OK
Windows Vista (TM) Home Premium, 32-bit Service Pack 2 (Build 6002)

---\\ Logiciels de protection du système
BitDefender Total Security 2011 v14.0.24
Microsoft Security Client v4.7.0205.0
Norton Internet Security v16.0.0.125

---\\ Logiciels d'optimisation du système
CCleaner v2.30

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Reader 9.5.5 - Français

---\\ Informations sur le système
~ Processor: x86 Family 6 Model 15 Stepping 13, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3002 MB (31% free)
System Restore: Activé (Enable)
System drive C: has 82 GB (37%) free of 222 GB

---\\ Mode de connexion au système
~ Computer Name: PC-DE-USER
~ User Name: user
~ All Users Names: user, ASPNET, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\user\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\user\AppData\Roaming\
~ %Desktop% : C:\Users\user\Desktop\
~ %Favorites% : C:\Users\user\Favorites\
~ %LocalAppData% : C:\Users\user\AppData\Local\
~ %StartMenu% : C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 82 Go of 222 Go)
D: Hard drive, Flash drive, Thumb drive (Free 2 Go of 11 Go)
E: CD-ROM drive (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 50 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 - 7:27:36.) -- C:\Windows\Explorer.exe [2926592]
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 - 3:23:42.) -- C:\Windows\System32\Wininit.exe [96768]
[MD5.19B481D70FBC176AE5D3E91347B0128F] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.9/03/2015 - 23:57:20.) -- C:\Windows\System32\wininet.dll [1129472]
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 - 7:28:13.) -- C:\Windows\System32\Winlogon.exe [314368]
[MD5.F5272A105F59A7B3B345D9D6D87DA7AD] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 7:53:22.) -- C:\Windows\system32\Drivers\AFD.sys [273408]
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 - 7:32:26.) -- C:\Windows\system32\Drivers\atapi.sys [19944]
[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.21/01/2008 - 3:23:51.) -- C:\Windows\system32\Drivers\Cdfs.sys [70144]
[MD5.6B4BFFB9BECD728097024276430DB314] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.11/04/2009 - 5:39:17.) -- C:\Windows\system32\Drivers\Cdrom.sys [67072]
[MD5.622C41A07CA7E6DD91770F50D532CB6C] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/04/2011 - 15:59:03.) -- C:\Windows\system32\Drivers\DfsC.sys [75264]
[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.11/04/2009 - 5:42:42.) -- C:\Windows\system32\Drivers\HDAudBus.sys [561152]
[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - (.Microsoft Corporation - Pilote de port i8042.) (.21/01/2008 - 3:23:20.) -- C:\Windows\system32\Drivers\i8042prt.sys [54784]
[MD5.8793643A67B42CEC66490B2A0CF92D68] - (.Microsoft Corporation - IP Network Address Translator.) (.21/01/2008 - 3:24:25.) -- C:\Windows\system32\Drivers\IpNat.sys [100864]
[MD5.1E94971C4B446AB2290DEB71D01CF0C2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29/04/2011 - 14:24:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [106496]
[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - (.Microsoft Corporation - MBT Transport driver.) (.11/04/2009 - 5:45:37.) -- C:\Windows\system32\Drivers\netBT.sys [185856]
[MD5.2C1121F2B87E9A6B12485DF53CD848C7] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.3/03/2013 - 20:07:52.) -- C:\Windows\system32\Drivers\ntfs.sys [1082232]
[MD5.0FA9B5055484649D63C303FE404E5F4D] - (.Microsoft Corporation - Pilote de port parallèle.) (.2/11/2006 - 9:51:30.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/01/2008 - 3:24:55.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [76288]
[MD5.FBC0BACD9C3D7F6956853F64A66E252D] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/01/2008 - 3:23:01.) -- C:\Windows\system32\Drivers\rdpdr.sys [248832]
[MD5.7B75299A4D201D6A6533603D6914AB04] - (.Microsoft Corporation - SMB Transport driver.) (.11/04/2009 - 5:45:22.) -- C:\Windows\system32\Drivers\smb.sys [66560]
[MD5.76B06EB8A01FC8624D699E7045303E54] - (.Microsoft Corporation - TDI Translation Driver.) (.11/04/2009 - 5:45:56.) -- C:\Windows\system32\Drivers\tdx.sys [72192]
[MD5.786DB5771F05EF300390399F626BF30A] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/08/2012 - 12:47:42.) -- C:\Windows\system32\Drivers\volsnap.sys [224640]
~ Generic Processes: Scanned in 00mn 07s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/4656
~ Mes musiques (My Musics) : 1/1967
~ Mes Videos (My Videos) : 1/12
~ Mes Favoris (My Favorites) : 1/501
~ Mes Documents (My Documents) : 7/1823
~ Mon Bureau (My Desktop) : 9/30
~ Menu demarrer (Programs) : 1/51
~ Hidden Files: Scanned in 00mn 36s



---\\ Processus lancés
[MD5.45183EBEDD35B06F4E3283A53985B9E3] - (.BitDefender S.R.L. - BitDefender Agent.) -- C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe [1412288] [PID.348]
[MD5.7324508893A74BFC99C21FAA66A80190] - (.BitDefender S.R.L. - Pas de description.) -- C:\Program Files\BitDefender\BitDefender 2011\pchooklaunch32.exe [64048] [PID.2052]
[MD5.AE567D261D281B51BE55E53A786E8574] - (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1049896] [PID.2600]
[MD5.5E5208A733BBCC4571F384754A9A6746] - (.CyberLink Corp. - HP QuickPlay Resident Program.) -- C:\Program Files\HP\QuickPlay\QPService.exe [468264] [PID.2632]
[MD5.F7CF218E5CAA6FC0BB55791AD31E2B3F] - (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe [202032] [PID.2664]
[MD5.8CB896C573FD15AE8B13180DA53E93D2] - (.Hewlett-Packard Development Company, L.P. - HPWAMain Module.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [488752] [PID.2684]
[MD5.635EB7B28066056BB5C99A47501FD794] - (.Promethean Technologies Group Ltd - ActivControl v2.) -- C:\Program Files\Activ Software\ActivDriver\ActivControl2.exe [1092896] [PID.2712]
[MD5.5E350C463EE596321C79CF23ADA56E7A] - (.Intel Corporation - igfxsrvc Module.) -- C:\Windows\system32\igfxsrvc.exe [267800] [PID.2764]
[MD5.C637FC4638A96165256B28D38DE7B953] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\HP\HP Software Update\hpwuschd2.exe [49208] [PID.2880]
[MD5.87D78CF6365BDDACBE9D34B60FE0E23B] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [171032] [PID.3736]
[MD5.89D3DE5E2C77DCD99C56F0E46310AEA0] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [172568] [PID.3808]
[MD5.1AF1360E070BD8EA402F793EF6FBAAEB] - (.Macrovision Corporation - Macrovision Software Manager.) -- C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe [222128] [PID.3852]
[MD5.BF08674925F151BD4537B89A493E3E0C] - (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe [125952] [PID.3860]
[MD5.F5A0554F655C566EB946841E6E7AE061] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe [30877280] [PID.3872]
[MD5.8D07F0687318214A3CEF62EA1048D101] - (.Hewlett-Packard Development Company, L.P. - Module to process WiFi messages..) -- C:\Program Files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.exe [316720] [PID.3076]
[MD5.1EDC4865C8003A0251956835273904B1] - (.Pas de propriétaire - HpqToaster Module.) -- C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe [685360] [PID.1032]
[MD5.B19B204CABFA9F225618EDA4A90C1A2C] - (.Microsoft Corporation - Serveur de personnalisation d'entrée.) -- C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe [198656] [PID.3708]
[MD5.A8AD97956A0F4408CB3AA03EDD2B8BC1] - (.Synaptics, Inc. - Synaptics Pointing Device Helper.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe [103720] [PID.4412]
[MD5.0F4195B9B348DE5CF9B822F81704B20E] - (.Microsoft Corporation - Media Center Media Status Aggregator Servic.) -- C:\Windows\ehome\ehmsas.exe [37376] [PID.4836]
[MD5.47FC3A8B4C997D97DF5FD13136F30E14] - (.Pas de propriétaire - ActivManager.) -- C:\Program Files\Activ Software\ActivDriver\activmgr.exe [493336] [PID.4876]
[MD5.ADE2DBDEE9C196158D82D3507C3C9891] - (.BitDefender S.R.L. - BitDefender Antivirus Scanner.) -- C:\Program Files\BitDefender\BitDefender 2011\odscanui.exe [875664] [PID.5608]
[MD5.F6A99C1FA53F6CBA2306EAFAEE4DC7C9] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [757968] [PID.2704]
[MD5.3446EFE5B35A7478CA26932084F2E1C6] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [8197120] [PID.2924]
[MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe [69120] [PID.2792]
[MD5.F26F7A5B18C717E57E3B6B306ABEC00B] - (.Microsoft Corporation - Antimalware Service Executable.) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe [22184] [PID.1104]
[MD5.A1B3E6DA0A5293F8296AEC77C5B023A0] - (.BitDefender S.R.L. - BitDefender Security Service.) -- C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe [1999864] [PID.1272]
[MD5.862BB4CBC05D80C5B45BE430E5EF872F] - (.Microsoft Corporation - Service de gestion des licences Microsoft.) -- C:\Windows\system32\SLsvc.exe [3408896] [PID.1480]
[MD5.23C3A0680042C0D1DE1F360F8B62BC57] - (.Microsoft Corporation - Infrastructure d'extensibilité pour les ser.) -- C:\Windows\system32\WLANExt.exe [74240] [PID.2004]
[MD5.1778EBA872274C1226D869CD9486847E] - (.InterVideo Inc. - Capture Device Service.) -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe [198168] [PID.2132]
[MD5.ABF90FC5A127F481219B873C1B8DFC1C] - (.Hewlett-Packard Company - LightScribe Service.) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728] [PID.2220]
[MD5.0D362785BEF9BDF5A6E1F4628D06716D] - (.Pas de propriétaire - STServices.) -- C:\Program Files\SMINST\BLService.exe [365952] [PID.2752]
[MD5.D5B0B974C4C3A8FBCFCC3FFF013D12F1] - (.BitDefender S.R.L. - BitDefender Update Service.) -- C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe [43424] [PID.3060]
[MD5.CD5F291A1161F15896D1A4D63DAFF5DF] - (.Conexant Systems, Inc. - Modem Audio Service.) -- C:\Windows\system32\DRIVERS\xaudio.exe [386560] [PID.3448]
[MD5.1665C7121A026DF10C903DB9BC5E9D43] - (.Hewlett-Packard Development Company, L.P. - hpqwmiex Module.) -- C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [165192] [PID.2152]
[MD5.7795F8CEBC284A426B53F541E538695F] - (.Hewlett-Packard Development Company, L.P. - Com for QLB application.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [193840] [PID.4960]
[MD5.A19B0BB5A7EB6DF2DD4A0711D36955EE] - (.Hewlett-Packard - HP Health Check Service.) -- c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [94208] [PID.5488]
[MD5.97D9D6A04E3AD9B6C626B9931DB78DBA] - (.Microsoft Corporation - Programme d'installation de modules Windows.) -- C:\Windows\servicing\TrustedInstaller.exe [39424] [PID.888]
~ Processes Running: Scanned in 00mn 25s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M3 - MFPP: Plugins - [user] -- C:\Program Files\Mozilla FireFox\searchplugins\Search_Results.xml =>PUP.SearchResults
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.5.5".) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.0.) -- C:\Windows\system32\Adobe\Director\np32dsw.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.25.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Windows\system32\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (...) -- C:\Program Files\Java\jre1.6.0_07\bin\new_plugin\npjp2.dll (.not file.)
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.30514.0.) -- c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.5] - (.Microsoft Corp. - Office Live Update v1.5.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3502.0922] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3508.1109] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.5.5".) -- C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
~ Firefox Browser: 12 Scanned in 00mn 01s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.5.5".) (No version) -- (.not file.)
~ IE Browser: 8 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (20)
~ Hosts File: Scanned in 00mn 00s



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: AOL Toolbar BHO - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} . (.AOL LLC - AOL IE Toolbar Dynamic Link Library.) -- C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
~ BHO: 6 Scanned in 00mn 01s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: AOL Toolbar - [HKLM]{DE9C389F-3316-41A7-809B-AA305ED9D922} . (.AOL LLC - AOL IE Toolbar Dynamic Link Library.) -- C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O3 - Toolbar: SYSTRAN Toolbar - [HKLM]{95daa571-4def-4a6d-97d8-98a346672a24} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O3 - Toolbar: BitDefender Toolbar - [HKLM]{381FFDE8-2394-4F90-B10D-FC6124A40F8C} . (.BitDefender S.R.L. - BitDefender Antiphishing Toolbar.) -- C:\Program Files\BitDefender\BitDefender 2011\IEToolbar.dll
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{DE9C389F-3316-41A7-809B-AA305ED9D922} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline
~ Toolbar: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Program [Public]: Visitez eBay.be.lnk . (...) -- C:\Program Files\Hewlett-Packard\Shared\WizLink.exe =>Toolbar.eBay
~ Global Startup: 1 Scanned in 00mn 16s



---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QPService] . (.CyberLink Corp. - HP QuickPlay Resident Program.) -- C:\Program Files\HP\QuickPlay\QPService.exe
O4 - HKLM\..\Run: [UpdatePSTShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Run: [UCam_Menu] . (.CyberLink Corp. - StartMen Application.) -- C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Run: [QlbCtrl.exe] . (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
O4 - HKLM\..\Run: [HP Health Check Scheduler] . (.Hewlett-Packard - HP Health Check Scheduler.) -- c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] . (.Hewlett-Packard Development Company, L.P. - HPWAMain Module.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [NPSStartup] Clé orpheline
O4 - HKLM\..\Run: [ActivControl] . (.Promethean Technologies Group Ltd - ActivControl v2.) -- C:\Program Files\Activ Software\ActivDriver\ActivControl2.exe
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] . (.BitDefender S.R.L. - IEShow Application.) -- C:\Program Files\BitDefender\BitDefender 2011\ieshow.exe
O4 - HKLM\..\Run: [BDAgent] . (.BitDefender S.R.L. - BitDefender Agent.) -- C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Co
O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKCU\..\Run: [ISUSPM] . (.Macrovision Corporation - Macrovision Software Manager.) -- C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe
O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKCU\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKUS\.DEFAULT\..\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\FlashUtil32_15_0_0_167_ActiveX.exe (.not file.)
O4 - HKUS\S-1-5-18\..\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\FlashUtil32_15_0_0_167_ActiveX.exe (.not file.)
O4 - HKUS\S-1-5-21-3199950812-567930957-2161498930-1000\..\Run: [ISUSPM] . (.Macrovision Corporation - Macrovision Software Manager.) -- C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe
O4 - HKUS\S-1-5-21-3199950812-567930957-2161498930-1000\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe
O4 - HKUS\S-1-5-21-3199950812-567930957-2161498930-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKUS\S-1-5-21-3199950812-567930957-2161498930-1000\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe =>.Microsoft Corporation
~ Application: Scanned in 00mn 01s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
~ Winsock: 7 Scanned in 00mn 00s



---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} ((no name)) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} ((no name)) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} ((no name)) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
~ Objets ActiveX: Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{B69FB33E-0ADD-476A-BCAC-13AD9113BA15}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{E8EFA4B7-667C-499E-87FA-432C08222DC1}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{B69FB33E-0ADD-476A-BCAC-13AD9113BA15}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{E8EFA4B7-667C-499E-87FA-432C08222DC1}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{E8EFA4B7-667C-499E-87FA-432C08222DC1}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{E8EFA4B7-667C-499E-87FA-432C08222DC1}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll
~ SSODL: 1 Scanned in 00mn 00s



---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\System32\browseui.dll
~ STS/SSO: Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Capture Device Service (Capture Device Service) . (.InterVideo Inc. - Capture Device Service.) - C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
O23 - Service: HP Health Check Service (HP Health Check Service) . (.Hewlett-Packard - HP Health Check Service.) - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Norton Internet Security (Norton Internet Security) . (...) - C:\Program Files\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe (.not file.)
O23 - Service: Recovery Service for Windows (Recovery Service for Windows) . (.Pas de propriétaire - STServices.) - C:\Program Files\SMINST\BLService.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: BitDefender Desktop Update Service (UPDATESRV) . (.BitDefender S.R.L. - BitDefender Update Service.) - C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe
O23 - Service: BitDefender Virus Shield (VSSERV) . (.BitDefender S.R.L. - BitDefender Security Service.) - C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe
O23 - Service: XAudioService (XAudioService) . (.Conexant Systems, Inc. - Modem Audio Service.) - C:\Windows\System32\DRIVERS\xaudio.exe
~ Services: 8 Scanned in 00mn 48s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
O24 - Desktop General: BackupWallPaper - .(...) - C:\Windows\Web\Wallpaper\img36.jpg
O24 - Desktop General: WallPaper - .(...) - C:\Windows\Web\Wallpaper\img36.jpg
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.00000000000000000000000000000000] [APT] [Google Software Updater] (...) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskMachine] (...) -- C:\Program Files\Google\Update\GoogleUpdate.exe (.not file.) [0]
[MD5.AE37F6508716D2DD6122744C46686BEC] [APT] [HP Health Check] (.Hewlett-Packard.) -- c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [75008]
[MD5.00000000000000000000000000000000] [APT] [PCConfidential] (...) -- C:\Program Files\Winferno\PC Confidential\PCConfidential.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [WIN-fdfEfEfAfC] (...) -- C:\users\user\AppData\Roaming\~ydipwpm.exe (.not file.) [0] =>PUP.WpManager
[MD5.00000000000000000000000000000000] [APT] [{759CFE7E-41F2-4021-837E-FEF669DD8690}] (...) -- E:\setup.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{EE607EED-522F-41D6-AE2F-87375DB3D31C}] (...) -- C:\Program Files\eMule\Uninstall.exe (.not file.) [0] =>P2P.eMule
O39 - APT: - (..) -- C:\Windows\Tasks\HPCeeScheduleForuser.job [318]
O39 - APT: PCConfidential - (...) -- C:\Windows\Tasks\PCConfidential.job [416]
O39 - APT: PCConfidential - (...) -- C:\Windows\System32\Tasks\PCConfidential [416]
~ Scheduled Task: 12 Scanned in 00mn 19s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\system32\ie4uinit.exe
O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d'IEAK.) -- C:\Windows\system32\iedkcs32.dll
O40 - ASIC: Microsoft Reader - {05466845-FF44-4671-92C1-A5FD0F9EEE1C} . (.Microsoft Corporation - Microsoft Reader.) -- C:\Program Files\Microsoft Reader\msreader.exe
O40 - ASIC: LightScribe Control Panel - {10880D85-AAD9-4558-ABDC-2AB1552D831F} . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Common Files\LightScribe\LSRunOnce.exe
O40 - ASIC: Microsoft Windows Media Player 11.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows Mail 7 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 13 Scanned in 00mn 01s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (Bdfndisf) . (.BitDefender - BitDefender Firewall NDIS6 Filter Driver.) - c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys
O41 - Driver: (Bdftdif) . (.BitDefender LLC - BitDefender Firewall TDI Filter Driver.) - C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdftdif.sys
O41 - Driver: (Bdvedisk) . (.BitDefender - FileVault Disk Driver.) - C:\Windows\System32\DRIVERS\bdvedisk.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys
O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver: (MpKslf29a47f8) . (.Microsoft Corporation - KSLDriver.) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{1DA5057B-B5C1-450E-ABFE-CF9F69ECCE68}\MpKslf29a47f8.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
~ Drivers: 88 Scanned in 00mn 05s



---\\ Logiciels installés (O42)
O42 - Logiciel: ABBYY FineReader 10 Professional Edition - (.ABBYY.) [HKLM] -- {F1000000-0001-0000-0000-074957833700}
O42 - Logiciel: ABBYY FineReader 9.0 Professional Edition - (.ABBYY.) [HKLM] -- {F9000000-0001-0000-0000-074957833700}
O42 - Logiciel: AOL Toolbar 5.0 - (.AOL LLC.) [HKLM] -- AOL Toolbar
O42 - Logiciel: AVS Update Manager 1.0 - (.Online Media Technologies Ltd..) [HKLM] -- AVS Update Manager_is1
O42 - Logiciel: AVS4YOU Software Navigator 1.3 - (.Online Media Technologies Ltd..) [HKLM] -- AVS4YOU Software Navigator_is1
O42 - Logiciel: ActivDriver x86 v5.5 - (.Promethean.) [HKLM] -- {FB4291BF-594B-4AA9-883B-1E7509DCA092}
O42 - Logiciel: ActivInspire HWR Resources (FRA) v1 - (.Promethean.) [HKLM] -- {5861ECE7-1638-4363-8DF5-11C494BEBE11}
O42 - Logiciel: ActivInspire Help (FRA) v1 - (.Promethean.) [HKLM] -- {CEDCF65C-4BE4-4A8C-99B7-752618DFB55C}
O42 - Logiciel: ActivInspire v1 - (.Promethean.) [HKLM] -- {6EA9DEAF-B633-44B8-89F6-2EF0C4944A19}
O42 - Logiciel: ActiveCheck component for HP Active Support Library - (.Hewlett-Packard.) [HKLM] -- {254C37AA-6B72-4300-84F6-98A82419187E}
O42 - Logiciel: Adobe Reader 9.5.5 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A95000000001}
O42 - Logiciel: Adobe Shockwave Player - (.Adobe Systems, Inc..) [HKLM] -- {AD72CFB4-C2BF-424E-9DF0-C7BAD1F30A11}
O42 - Logiciel: Atheros Driver Installation Program - (.Atheros.) [HKLM] -- {C3A32068-8AB1-4327-BB16-BED9C6219DC7}
O42 - Logiciel: BitDefender Total Security 2011 - (.BitDefender.) [HKLM] -- BitDefender
O42 - Logiciel: BitDefender Total Security 2011 - (.BitDefender.) [HKLM] -- {340A2AD6-0679-46DA-9180-DABBD5B36FD1}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: CDRWIN 8 - (.Engelmann Media GmbH.) [HKLM] -- {23D4A873-14FF-474E-0001-6529DDC11226}
O42 - Logiciel: CamStudio 2.0 Fr - (...) [HKLM] -- CamStudio 2.0 Fr_is1
O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM] -- {415B2719-AD3A-4944-B404-C472DB6085B3}
O42 - Logiciel: Cisco LEAP Module - (.Cisco Systems, Inc..) [HKLM] -- {83770D14-21B9-44B3-8689-F7B523F94560}
O42 - Logiciel: Cisco PEAP Module - (.Cisco Systems, Inc..) [HKLM] -- {669C7BD8-DAA2-49B6-966C-F1E2AAE6B17E}
O42 - Logiciel: Conexant HD Audio - (.Conexant.) [HKLM] -- CNXT_AUDIO_HDA
O42 - Logiciel: CutePDF Writer 2.8 - (...) [HKLM] -- CutePDF Writer Installation
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DVD Shrink 3.2 - (.DVD Shrink.) [HKLM] -- DVD Shrink_is1
O42 - Logiciel: DVDFab 6.2.0.5 (11/11/2009) - (.Fengtao Software Inc..) [HKLM] -- DVDFab 6_is1
O42 - Logiciel: ESU for Microsoft Vista - (.Hewlett-Packard.) [HKLM] -- {3877C901-7B90-4727-A639-B6ED2DD59D43}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HDAUDIO Soft Data Fax Modem with SmartCP - (...) [HKLM] -- CNXT_MODEM_HDAUDIO_HERMOSA_HSF
O42 - Logiciel: HP Active Support Library - (.Hewlett-Packard.) [HKLM] -- {CE7E3BE0-2DD3-4416-A690-F9E4A99A8CFF}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM] -- {57A5AEC1-97FC-474D-92C4-908FCC2253D4}
O42 - Logiciel: HP DVD Play 3.7 - (.Hewlett-Packard.) [HKLM] -- {45D707E9-F3C4-11D9-A373-0050BAE317E1}
O42 - Logiciel: HP Doc Viewer - (.Hewlett-Packard.) [HKLM] -- {082702D5-5DD8-4600-BCE5-48B15174687F}
O42 - Logiciel: HP Help and Support - (.Hewlett-Packard Company.) [HKLM] -- {0054A0F6-00C9-4498-B821-B5C9578F433E}
O42 - Logiciel: HP Quick Launch Buttons 6.40 H2 - (.Hewlett-Packard.) [HKLM] -- {34D2AB40-150D-475D-AE32-BD23FB5EE355}
O42 - Logiciel: HP Total Care Setup - (.Hewlett-Packard Company.) [HKLM] -- {38058455-8C21-4C2F-B2F6-14ED166039CB}
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {912D30CF-F39E-4B31-AD9A-123C6B794EE2}
O42 - Logiciel: HP User Guides 0118 - (.Hewlett-Packard.) [HKLM] -- {B6D0B141-B2BE-4DD0-B08F-B9186F3E36B3}
O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM] -- {9ADABDDE-9644-461B-9E73-83FA3EFCAB50}
O42 - Logiciel: HPAsset component for HP Active Support Library - (.Hewlett-Packard.) [HKLM] -- {669D4A35-146B-4314-89F1-1AC3D7B88367}
O42 - Logiciel: HPNetworkAssistant - (.Hewlett-Packard..) [HKLM] -- {228C6B46-64E2-404E-898A-EF0830603EF4}
O42 - Logiciel: Integrated Webcam Driver (1.00.03.0720) - (...) [HKLM] -- Creative OA004
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- HDMI
O42 - Logiciel: InterVideo DeviceService - (.InterVideo.) [HKLM] -- {521AAD14-5030-44BB-8B0E-5CE65FCE57E0}
O42 - Logiciel: Java(TM) 6 Update 7 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160070}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: Lagarde et Michard - (...) [HKLM] -- {6A60C845-027E-4235-81B2-B5DB2DC99AA5}
O42 - Logiciel: LauncherMA - (.Micro Application.) [HKLM] -- {C06EFB22-B5DB-46C5-9215-BCB5C19C0858}
O42 - Logiciel: LightScribe System Software 1.14.17.1 - (.LightScribe.) [HKLM] -- {0E7DBD52-B097-4F2B-A7C7-F105B0D20FDB}
O42 - Logiciel: Logiciel d'archivage WinRAR - (...) [HKLM] -- WinRAR archiver
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Magic Desktop - (.EasyBits Software AS.) [HKLM] -- EasyBits Magic Desktop =>.EasyBits Software AS
O42 - Logiciel: Microsoft Reader - (...) [HKLM] -- {B6F7DBE7-2FE2-458F-A738-B10832746036}
O42 - Logiciel: Microsoft Reader Text-to-Speech pour le français - (.Microsoft Corporation.) [HKLM] -- {6F1547AA-8DA7-4FAC-BA11-BE1659E7086E}
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM] -- {D6F9CBDC-58B6-430A-8DD4-8F61CBC1ADF4}
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM] -- Microsoft Security Client
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {3B160861-7250-451E-B5EE-8B92BF30A710}
O42 - Logiciel: My HP Games - (.WildTangent.) [HKLM] -- WildTangent hp Master Uninstall =>.WildTangent
O42 - Logiciel: NetWaiting - (.BVRP Software, Inc.) [HKLM] -- {3F92ABBB-6BBF-11D5-B229-002078017FBF}
O42 - Logiciel: Norton Internet Security - (.Symantec Corporation.) [HKLM] -- {7B15D70E-9449-4CFB-B9BC-798465B2BD5C}
O42 - Logiciel: OGA Notifier 2.0.0048.0 - (.Microsoft Corporation.) [HKLM] -- {B2544A03-10D0-4E5E-BA69-0362FFC20D18}
O42 - Logiciel: QuickTime - (.Apple Computer, Inc..) [HKLM] -- {F07B861C-72B9-40A4-8B1A-AAED4C06A7E8}
O42 - Logiciel: Realtek 8169 8168 8101E 8102E Ethernet Driver - (.Realtek.) [HKLM] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM] -- {DC24971E-1946-445D-8A82-CE685433FA7D}
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44}
O42 - Logiciel: SYSTRAN - (.SYSTRAN.) [HKCU] -- InstallShield_{4C94F105-81D0-4AFC-8F0A-38949DC07F65}
O42 - Logiciel: Security Update for Windows Media Encoder (KB2447961) - (.Microsoft Corporation.) [HKLM] -- KB2447961
O42 - Logiciel: Security Update for Windows Media Encoder (KB954156) - (.Microsoft Corporation.) [HKLM] -- KB954156
O42 - Logiciel: Security Update for Windows Media Encoder (KB979332) - (.Microsoft Corporation.) [HKLM] -- KB979332
O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}
O42 - Logiciel: Skype(TM) 7.0 - (.Skype Technologies S.A..) [HKLM] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics.) [HKLM] -- SynTPDeinstKey
O42 - Logiciel: Ulead VideoStudio 11 - (.InterVideo Digital Technology Corporation.) [HKLM] -- InstallShield_{F99F9E24-EE2F-47FD-AEB0-FDB82859B5C9}
O42 - Logiciel: VLC media player 0.9.8a - (.VideoLAN Team.) [HKLM] -- VLC media player =>.VideoLAN
O42 - Logiciel: WidgetMe Beta - (.Reallusion.) [HKLM] -- {ED4ACDF2-F04A-48FC-B281-D0D4E086426E}
O42 - Logiciel: Windows Media Encoder 9 Series - (...) [HKLM] -- Windows Media Encoder 9
O42 - Logiciel: Windows Media Encoder 9 Series - (.Microsoft Corporation.) [HKLM] -- {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
O42 - Logiciel: iClone v3.2 EX - (.Reallusion.) [HKLM] -- InstallShield_{C2E1ED34-EF54-43D4-B634-8C76B15CFF18}
~ Logic: 73 Scanned in 00mn 01s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\ABBYY]
[HKCU\Software\AOL]
[HKCU\Software\ASKDefaultSearch]
[HKCU\Software\ASProtect]
[HKCU\Software\AVS4YOU]
[HKCU\Software\Acro Software Inc]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\AskHomepage]
[HKCU\Software\AppDataLow\Aurigma]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\iGraal] =>PUP.iGraal
[HKCU\Software\AppDataLow]
[HKCU\Software\Audacity]
[HKCU\Software\BitDefender]
[HKCU\Software\BrowserChoice]
[HKCU\Software\CeWe Color]
[HKCU\Software\ChicaLogic, Inc.]
[HKCU\Software\ChrmTB]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\DVD Shrink]
[HKCU\Software\DVDFab]
[HKCU\Software\EasyBits]
[HKCU\Software\Engelmann Media]
[HKCU\Software\Google]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IM Providers]
[HKCU\Software\InstallShield]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Licenses]
[HKCU\Software\LightScribe]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\LowRegistry]
[HKCU\Software\MAP-DN]
[HKCU\Software\Macromedia]
[HKCU\Software\Macrovision]
[HKCU\Software\MainConcept]
[HKCU\Software\MimarSinan]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Promethean]
[HKCU\Software\Reallusion]
[HKCU\Software\SYSTRAN]
[HKCU\Software\Samsung]
[HKCU\Software\SecuROM]
[HKCU\Software\Skype]
[HKCU\Software\Softthinks]
[HKCU\Software\Synaptics]
[HKCU\Software\TechSmith]
[HKCU\Software\TeleCharger]
[HKCU\Software\Trolltech]
[HKCU\Software\Ubisoft]
[HKCU\Software\Ulead Systems]
[HKCU\Software\Ulead]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Windows Live Writer]
[HKCU\Software\Winferno]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\eMule]
[HKCU\Software\keyhole.com]
[HKLM\Software\ABBYY]
[HKLM\Software\ACTIV Software]
[HKLM\Software\AVC3]
[HKLM\Software\AVS4YOU]
[HKLM\Software\Acro Software Inc]
[HKLM\Software\Adobe]
[HKLM\Software\AdwCleaner]
[HKLM\Software\America Online]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Atheros]
[HKLM\Software\BVRP Software, Inc]
[HKLM\Software\Bordas]
[HKLM\Software\BrowserChoice]
[HKLM\Software\CLSYSTEM]
[HKLM\Software\CSI2]
[HKLM\Software\CXT]
[HKLM\Software\ChicaLogic, Inc.]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Conexant]
[HKLM\Software\Creative Tech]
[HKLM\Software\Cyberlink]
[HKLM\Software\DIOC]
[HKLM\Software\DVDFab]
[HKLM\Software\EasyBits]
[HKLM\Software\Engelmann Media]
[HKLM\Software\GPL Ghostscript]
[HKLM\Software\Google]
[HKLM\Software\HPQLOG]
[HKLM\Software\HPQ]
[HKLM\Software\HP]
[HKLM\Software\Havas Interactive]
[HKLM\Software\Hewlett-Packard Company]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IM Providers]
[HKLM\Software\InstallShield]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\InterVideo]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\L&H]
[HKLM\Software\Licenses]
[HKLM\Software\LightScribe]
[HKLM\Software\MCCI]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MarkAny]
[HKLM\Software\Matrox]
[HKLM\Software\MidasHeurScanner]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Ntpad]
[HKLM\Software\ODBC]
[HKLM\Software\Policies]
[HKLM\Software\Product_Upgrade]
[HKLM\Software\RTLSetup]
[HKLM\Software\Rainbow Technologies]
[HKLM\Software\Reallusion]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek USB 2.0 Card Reader]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SYSTRAN]
[HKLM\Software\Samsung]
[HKLM\Software\Skype]
[HKLM\Software\SmartSound Software]
[HKLM\Software\Sonic]
[HKLM\Software\Sony Corporation]
[HKLM\Software\Symantec]
[HKLM\Software\Synaptics]
[HKLM\Software\UCAM_Upgrade]
[HKLM\Software\Ubisoft]
[HKLM\Software\Ulead Systems]
[HKLM\Software\VideoLAN]
[HKLM\Software\Volatile]
[HKLM\Software\W3i]
[HKLM\Software\WOW6432Node]
[HKLM\Software\WebSupergoo]
[HKLM\Software\WildTangent]
[HKLM\Software\WinRAR]
[HKLM\Software\WinU]
[HKLM\Software\Windows]
[HKLM\Software\Winferno]
[HKLM\Software\Xerox]
[HKLM\Software\mcafeeupdater]
[HKLM\Software\mozilla.org]
~ Key Software: 318 Scanned in 00mn 01s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 12/08/2011 - 18:04:05 - [] ----D C:\Program Files\ABBYY FineReader 10
O43 - CFD: 7/03/2010 - 23:19:19 - [] ----D C:\Program Files\ABBYY FineReader 9.0
O43 - CFD: 22/10/2009 - 9:48:56 - [] ----D C:\Program Files\Acro Software
O43 - CFD: 2/02/2011 - 17:30:45 - [] ----D C:\Program Files\Activ Software
O43 - CFD: 17/04/2009 - 15:00:48 - [] ----D C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
O43 - CFD: 14/04/2015 - 19:10:20 - [] ----D C:\Program Files\Adobe
O43 - CFD: 22/11/2008 - 20:41:07 - [] ----D C:\Program Files\AOL
O43 - CFD: 31/01/2009 - 14:00:54 - [] ----D C:\Program Files\Atheros
O43 - CFD: 5/04/2010 - 14:46:56 - [] ----D C:\Program Files\AVS4YOU
O43 - CFD: 22/04/2009 - 18:30:26 - [] ----D C:\Program Files\Belgique Loisirs
O43 - CFD: 17/03/2015 - 22:12:53 - [] ----D C:\Program Files\BitDefender
O43 - CFD: 21/11/2009 - 14:44:10 - [] ----D C:\Program Files\Bordas
O43 - CFD: 6/12/2009 - 12:26:45 - [] ----D C:\Program Files\CamStudio
O43 - CFD: 5/04/2010 - 14:56:16 - [] ----D C:\Program Files\CCleaner
O43 - CFD: 17/08/2010 - 17:13:14 - [] ----D C:\Program Files\CDRWIN 8
O43 - CFD: 31/01/2009 - 13:59:47 - [] ----D C:\Program Files\Cisco
O43 - CFD: 14/04/2015 - 19:10:22 - [] ----D C:\Program Files\Common Files
O43 - CFD: 14/04/2015 - 22:13:16 - [] ----D C:\Program Files\CONEXANT
O43 - CFD: 29/09/2014 - 20:31:57 - [] ----D C:\Program Files\CyberLink
O43 - CFD: 9/01/2011 - 1:09:18 - [] ----D C:\Program Files\DIFX
O43 - CFD: 6/12/2009 - 10:24:17 - [] ----D C:\Program Files\DVD Shrink
O43 - CFD: 6/12/2009 - 11:43:42 - [] ----D C:\Program Files\DVDFab 6
O43 - CFD: 20/04/2009 - 18:14:50 - [] ----D C:\Program Files\EasyBits For Kids
O43 - CFD: 15/04/2015 - 4:00:13 - [] ----D C:\Program Files\Google
O43 - CFD: 27/11/2010 - 12:45:03 - [] ----D C:\Program Files\GPLGS
O43 - CFD: 18/09/2012 - 15:44:03 - [] ----D C:\Program Files\GUMA06D.tmp
O43 - CFD: 31/01/2009 - 14:33:35 - [] ----D C:\Program Files\Hewlett-Packard
O43 - CFD: 22/11/2008 - 19:24:32 - [] ----D C:\Program Files\Hewlett-Packard Company
O43 - CFD: 16/11/2012 - 17:25:26 - [] ----D C:\Program Files\HP
O43 - CFD: 18/08/2014 - 11:38:30 - [] ----D C:\Program Files\HP Games
O43 - CFD: 20/11/2014 - 14:41:39 - [] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 20/11/2014 - 17:38:26 - [] ----D C:\Program Files\Intel
O43 - CFD: 15/04/2015 - 3:48:29 - [] ----D C:\Program Files\Internet Explorer
O43 - CFD: 7/10/2014 - 6:55:58 - [] ----D C:\Program Files\Java
O43 - CFD: 21/11/2009 - 14:44:16 - [] ----D C:\Program Files\Larousse
O43 - CFD: 17/08/2010 - 17:11:08 - [] ----D C:\Program Files\Micro Application
O43 - CFD: 30/10/2010 - 11:21:19 - [] ----D C:\Program Files\Microsoft
O43 - CFD: 2/11/2006 - 14:37:34 - [] ----D C:\Program Files\Microsoft Games
O43 - CFD: 18/04/2009 - 15:44:30 - [] ----D C:\Program Files\Microsoft Office
O43 - CFD: 29/04/2009 - 23:26:59 - [] ----D C:\Program Files\Microsoft Reader
O43 - CFD: 15/04/2015 - 3:09:11 - [] ----D C:\Program Files\Microsoft Security Client
O43 - CFD: 6/08/2014 - 8:36:29 - [] ----D C:\Program Files\Microsoft Silverlight
O43 - CFD: 27/04/2009 - 17:49:43 - [] ----D C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 12/10/2012 - 10:35:34 - [] ----D C:\Program Files\Microsoft Works
O43 - CFD: 18/07/2010 - 22:54:36 - [] ----D C:\Program Files\Microsoft.NET
O43 - CFD: 19/11/2014 - 20:22:10 - [] ----D C:\Program Files\monAlbumPhoto
O43 - CFD: 21/10/2010 - 17:33:56 - [] ----D C:\Program Files\Movie Maker
O43 - CFD: 28/08/2014 - 12:11:36 - [] ----D C:\Program Files\Mozilla Firefox
O43 - CFD: 2/11/2006 - 14:37:34 - [] ----D C:\Program Files\MSBuild
O43 - CFD: 18/04/2009 - 15:55:11 - [0] ----D C:\Program Files\MSXML 4.0
O43 - CFD: 31/01/2009 - 14:03:44 - [] ----D C:\Program Files\NetWaiting
O43 - CFD: 17/04/2009 - 15:03:48 - [] R---D C:\Program Files\Online Services
O43 - CFD: 20/11/2014 - 14:41:38 - [] ----D C:\Program Files\Photo Print Calendar from YOKOHAMA Ver.3.00E beta
O43 - CFD: 29/04/2009 - 8:30:28 - [] ----D C:\Program Files\QuickTime
O43 - CFD: 29/04/2009 - 0:08:20 - [] ----D C:\Program Files\Reallusion
O43 - CFD: 31/01/2009 - 14:02:43 - [] ----D C:\Program Files\Realtek
O43 - CFD: 2/11/2006 - 14:37:34 - [] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 5/04/2010 - 13:30:20 - [] ----D C:\Program Files\RegCleaner
O43 - CFD: 9/01/2011 - 1:54:11 - [] ----D C:\Program Files\Samsung
O43 - CFD: 15/04/2015 - 3:15:03 - [] R---D C:\Program Files\Skype
O43 - CFD: 17/04/2009 - 18:02:10 - [] ----D C:\Program Files\SMINST
O43 - CFD: 12/06/2012 - 14:18:50 - [] ----D C:\Program Files\Softinterface, Inc
O43 - CFD: 31/01/2009 - 14:02:17 - [] ----D C:\Program Files\Synaptics
O43 - CFD: 5/03/2010 - 17:32:39 - [] ----D C:\Program Files\SYSTRAN
O43 - CFD: 15/05/2009 - 21:52:54 - [] ----D C:\Program Files\Ubisoft
O43 - CFD: 29/04/2009 - 8:23:02 - [] ----D C:\Program Files\Ulead Systems
O43 - CFD: 2/11/2006 - 15:01:55 - [0] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 22/05/2009 - 12:04:40 - [] ----D C:\Program Files\VideoLAN
O43 - CFD: 24/10/2009 - 0:18:25 - [] ----D C:\Program Files\Windows Calendar
O43 - CFD: 24/10/2009 - 0:18:24 - [] ----D C:\Program Files\Windows Collaboration
O43 - CFD: 24/10/2009 - 0:18:18 - [] ----D C:\Program Files\Windows Defender
O43 - CFD: 18/07/2014 - 10:28:19 - [] ----D C:\Program Files\Windows Journal
O43 - CFD: 31/03/2011 - 22:15:25 - [] ----D C:\Program Files\Windows Live
O43 - CFD: 28/05/2012 - 14:47:27 - [] ----D C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 29/04/2009 - 8:26:52 - [] ----D C:\Program Files\Windows Media Components
O43 - CFD: 21/10/2010 - 17:34:01 - [] ----D C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 17/04/2009 - 14:53:02 - [] ----D C:\Program Files\Windows NT
O43 - CFD: 24/10/2009 - 0:18:22 - [] ----D C:\Program Files\Windows Photo Gallery
O43 - CFD: 22/11/2009 - 10:01:39 - [] ----D C:\Program Files\Windows Portable Devices
O43 - CFD: 24/10/2009 - 0:18:25 - [] ----D C:\Program Files\Windows Sidebar
O43 - CFD: 21/11/2009 - 22:36:20 - [] ----D C:\Program Files\WinRAR
O43 - CFD: 15/04/2015 - 20:45:02 - [] ----D C:\Program Files\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 12/08/2011 - 17:57:21 - [] ----D C:\Program Files\Common Files\ABBYY
O43 - CFD: 2/02/2011 - 17:30:52 - [] ----D C:\Program Files\Common Files\Activ Software
O43 - CFD: 15/08/2012 - 10:26:12 - [] ----D C:\Program Files\Common Files\Adobe
O43 - CFD: 5/04/2010 - 14:38:18 - [] ----D C:\Program Files\Common Files\AVSMedia
O43 - CFD: 31/03/2011 - 21:24:50 - [] ----D C:\Program Files\Common Files\BitDefender
O43 - CFD: 18/04/2009 - 15:45:01 - [] ----D C:\Program Files\Common Files\Designer
O43 - CFD: 31/01/2009 - 14:35:23 - [] ----D C:\Program Files\Common Files\InstallShield
O43 - CFD: 29/04/2009 - 8:28:25 - [] ----D C:\Program Files\Common Files\InterVideo
O43 - CFD: 8/08/2012 - 19:54:03 - [] ----D C:\Program Files\Common Files\Java
O43 - CFD: 29/04/2009 - 23:29:14 - [] ----D C:\Program Files\Common Files\L&H
O43 - CFD: 31/01/2009 - 14:35:15 - [] ----D C:\Program Files\Common Files\LightScribe
O43 - CFD: 30/10/2010 - 11:14:07 - [] ----D C:\Program Files\Common Files\microsoft shared
O43 - CFD: 29/04/2009 - 0:08:22 - [] ----D C:\Program Files\Common Files\Reallusion
O43 - CFD: 2/11/2006 - 13:18:33 - [] ----D C:\Program Files\Common Files\Services
O43 - CFD: 1/12/2014 - 19:18:03 - [] ----D C:\Program Files\Common Files\Skype
O43 - CFD: 2/11/2006 - 13:18:33 - [] ----D C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 11/12/2011 - 10:35:16 - [] ----D C:\Program Files\Common Files\System
O43 - CFD: 29/04/2009 - 8:26:46 - [] ----D C:\Program Files\Common Files\Ulead Systems
O43 - CFD: 27/04/2009 - 17:33:39 - [] ----D C:\Program Files\Common Files\Windows Live
O43 - CFD: 12/08/2011 - 17:42:53 - [] ----D C:\ProgramData\ABBYY
O43 - CFD: 2/02/2011 - 17:30:45 - [] ----D C:\ProgramData\Activ Software
O43 - CFD: 8/02/2014 - 15:11:11 - [] ----D C:\ProgramData\Adobe
O43 - CFD: 19/11/2014 - 20:22:09 - [] ----D C:\ProgramData\albumphoto
O43 - CFD: 22/11/2008 - 20:41:07 - [] ----D C:\ProgramData\AOL
O43 - CFD: 26/11/2013 - 14:24:41 - [] ----D C:\ProgramData\AppData
O43 - CFD: 20/11/2014 - 14:37:02 - [] ----D C:\ProgramData\Apple
O43 - CFD: 29/04/2009 - 8:29:49 - [] ----D C:\ProgramData\Apple Computer
O43 - CFD: 2/11/2006 - 15:02:03 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 31/01/2009 - 13:59:43 - [] ----D C:\ProgramData\Atheros
O43 - CFD: 29/04/2009 - 7:41:37 - [] ----D C:\ProgramData\AVS4YOU
O43 - CFD: 31/03/2011 - 21:43:48 - [] ----D C:\ProgramData\bdch
O43 - CFD: 31/03/2011 - 21:29:38 - [] ----D C:\ProgramData\BitDefender
O43 - CFD: 1/01/2012 - 22:03:13 - [] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 17/04/2009 - 14:53:02 - [] -SH-D C:\ProgramData\Bureaublad
O43 - CFD: 25/11/2012 - 20:30:59 - [] ----D C:\ProgramData\CDRWIN 8
O43 - CFD: 29/09/2014 - 20:31:56 - [] ----D C:\ProgramData\CyberLink
O43 - CFD: 2/11/2006 - 15:02:03 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 17/04/2009 - 14:53:02 - [] -SH-D C:\ProgramData\Documenten
O43 - CFD: 2/11/2006 - 15:02:03 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 4/10/2011 - 21:57:09 - [] ----D C:\ProgramData\Dumps
O43 - CFD: 23/12/2009 - 19:10:37 - [] ----D C:\ProgramData\DVD Shrink
O43 - CFD: 28/04/2009 - 16:33:44 - [] ----D C:\ProgramData\EscapeTheMuseum
O43 - CFD: 17/04/2009 - 14:53:02 - [] -SH-D C:\ProgramData\Favorieten
O43 - CFD: 2/11/2006 - 15:02:03 - [] -SH-D C:\ProgramData\Favorites
O43 - CFD: 14/04/2015 - 8:51:44 - [] ----D C:\ProgramData\Google
O43 - CFD: 11/11/2012 - 11:49:20 - [] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 22/04/2009 - 18:30:46 - [] ----D C:\ProgramData\hps
O43 - CFD: 5/08/2012 - 21:18:05 - [] ----D C:\ProgramData\InstallMate =>PUP.Tarma
O43 - CFD: 29/04/2009 - 8:28:18 - [] ----D C:\ProgramData\InterVideo
O43 - CFD: 17/08/2010 - 17:16:28 - [] ----D C:\ProgramData\Licenses
O43 - CFD: 20/04/2009 - 19:18:57 - [] ----D C:\ProgramData\LightScribe
O43 - CFD: 5/03/2010 - 17:32:39 - [] ----D C:\ProgramData\Macrovision
O43 - CFD: 20/11/2014 - 19:24:39 - [] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 25/10/2010 - 20:21:47 - [] ----D C:\ProgramData\McAfee
O43 - CFD: 17/04/2009 - 14:53:02 - [] -SH-D C:\ProgramData\Menu Start
O43 - CFD: 17/08/2010 - 17:10:43 - [] ----D C:\ProgramData\Micro Application
O43 - CFD: 14/04/2015 - 22:11:06 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 18/04/2009 - 12:42:46 - [] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 18/04/2009 - 12:36:38 - [] ----D C:\ProgramData\Norton
O43 - CFD: 22/11/2008 - 19:26:06 - [] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 30/04/2009 - 7:43:35 - [] ----D C:\ProgramData\Office Genuine Advantage
O43 - CFD: 6/02/2014 - 12:48:55 - [0] ----D C:\ProgramData\Oracle
O43 - CFD: 6/04/2010 - 19:19:45 - [] ----D C:\ProgramData\PlayFirst
O43 - CFD: 12/06/2012 - 14:10:00 - [] ----D C:\ProgramData\Promethean
O43 - CFD: 29/04/2009 - 0:08:26 - [] ----D C:\ProgramData\Reallusion
O43 - CFD: 9/01/2011 - 1:18:25 - [] ----D C:\ProgramData\Samsung
O43 - CFD: 17/04/2009 - 14:53:02 - [] -SH-D C:\ProgramData\Sjablonen
O43 - CFD: 15/04/2015 - 3:15:11 - [] ----D C:\ProgramData\Skype
O43 - CFD: 2/11/2006 - 15:02:03 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 18/07/2010 - 22:46:34 - [] ----D C:\ProgramData\Sun
O43 - CFD: 22/11/2008 - 19:26:49 - [0] ----D C:\ProgramData\Symantec
O43 - CFD: 6/04/2010 - 13:43:59 - [] ----D C:\ProgramData\SYSTRAN
O43 - CFD: 5/04/2010 - 15:43:32 - [] ---AD C:\ProgramData\Temp
O43 - CFD: 2/11/2006 - 15:02:04 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 5/01/2014 - 18:48:09 - [] ----D C:\ProgramData\Ulead Systems
O43 - CFD: 7/08/2010 - 19:30:51 - [] ----D C:\ProgramData\WildTangent
O43 - CFD: 26/12/2010 - 13:01:19 - [] ----D C:\ProgramData\WindowsSearch
O43 - CFD: 9/11/2009 - 20:42:09 - [] ----D C:\ProgramData\Xerox
O43 - CFD: 17/04/2009 - 15:00:48 - [] ----D C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
O43 - CFD: 20/09/2012 - 16:46:06 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ABBYY FineReader 10
O43 - CFD: 8/03/2010 - 20:57:52 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ABBYY FineReader 9.0
O43 - CFD: 20/08/2011 - 17:32:21 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2/02/2011 - 17:31:01 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activ Software
O43 - CFD: 31/03/2011 - 22:13:08 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 5/04/2010 - 14:46:56 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU
O43 - CFD: 22/04/2009 - 18:30:42 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belgique Loisirs Service Photo
O43 - CFD: 17/03/2015 - 21:31:00 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitDefender 2011
O43 - CFD: 21/11/2009 - 14:44:14 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bordas
O43 - CFD: 6/12/2009 - 12:27:11 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CamStudio
O43 - CFD: 17/08/2010 - 17:13:25 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDRWIN 8
O43 - CFD: 12/06/2012 - 14:18:54 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Convert Image To PDF
O43 - CFD: 22/10/2009 - 9:48:59 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CutePDF
O43 - CFD: 6/12/2009
0
Réponse 9 / 15
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 19 juillet 2024 3 807
15 avril 2015 à 21:36
Tu as 3 antivirus
Norton Internet Security
Micorsoft security essential
Et bitdefender qui n'est absolument pas à jour

0
Réponse 10 / 15
christi1984
16 avril 2015 à 07:21
J'imagine que les 3 antivirus sont en conflit ?

Je viens de désinstaller Micorsoft Security Essentials.

Par contre, je ne retrouve pas Norton Internet Security dans mes programmes ?

Comment dois-je procéder pour le retrouver et le désinstaller ?

J'ose croire que Bitdefender est le meilleur antivirus des 3 ?

Comment faire pour mettre Bitdefender à jour ?

1000 mercis pour votre précieuse aide.
0
Réponse 11 / 15
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 19 juillet 2024 3 807
16 avril 2015 à 07:44
Il y est

O42 - Logiciel: Norton Internet Security - (.Symantec Corporation.) [HKLM] -- {7B15D70E-9449-4CFB-B9BC-798465B2BD5C}


0
Réponse 12 / 15
christi1984
16 avril 2015 à 09:49
Je ne le trouve pas ?
0
Réponse 13 / 15
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 19 juillet 2024 3 807
16 avril 2015 à 10:26
https://support.norton.com/sp/fr/fr/home/current/solutions/v60392881
0
Réponse 14 / 15
christi1984
16 avril 2015 à 11:12
Comment dois-je procéder pour mettre à jour Bitdefender ?

Merci.
0
Réponse 15 / 15
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 19 juillet 2024 3 807
16 avril 2015 à 11:28
Sur le site de bitdefender ;)
0