Desinstallation impossible de Web Shield

Résolu
charlin3 Messages postés 50 Statut Membre -  
 caro -
Bonjour,
j'ai vu arriver sur ma machine ,(comment ?) un truc dont je n'arrive à me défaire : Web Shield ...toutes les tentatives de désinstallation sont sans effet ... et cela me donne droit à des enquêtes s'ouvrant intempestivement chaque fois que je visite un site Web] ...quelqu'un peut-il m'aider à me défaire de cet intrus ???
merci d'avance
Charlin 3

3 réponses

  1. charlin3 Messages postés 50 Statut Membre
     
    bonsoir artaban et merci pour ton aide :
    j'ai lancé le scan et eu un rapport complet dont tu peux
    prendre connaissance ici :

    https://pjjoint.malekal.com/files.php?id=ZHPDiag_20150515_6x15x13f13y9
    en fait sur le site de Web Shield , en anglais only , ils te disent que la désinstallation est facile , avec installation désinstallation de programmes de Windows , sauf que le clic sur Web Shield qui figure dans la liste des programmes figurant sur mon ordi n'a aucun effet ...
    0
    1. artaban7 Messages postés 2282 Statut Membre 90
       
      ok, on va voir, ne cliques pas sur leur machin , des fois que ça soit piégé :)
      0
    2. artaban7 Messages postés 2282 Statut Membre 90
       
      j'ai un soucis de mon côté, il semblerait que le rapport soit invalide, tu peux en faire un autre mais avec la fonction "recherche" ? :)
      0
    3. artaban7 Messages postés 2282 Statut Membre 90
       
      sachant que tu as pas mal de malwares, tu peux passer ceci :

      1)ZHP cleaner sur ce lien : https://nicolascoolman.eu

      Faits un scan et un nettoyage ....

      2) ADWcleaner , ici : https://nicolascoolman.eu

      Là aussi scan et nettoyage et bien sur redémarrage.

      il me faudra ensuite un nouvau rapport ZHPdiag , mais il doit être fait après redémarrage ....

      c'est chiant de faire des ZHPdiag, mais ils me permettent de voir évoluer les réactions de ton système au fur et à mesure de la désinfection...

      NB : il est possible qu'il faille suspendre AVAST pendant le passage de ZHPcleaner.
      0
    4. charlin3 Messages postés 50 Statut Membre > artaban7 Messages postés 2282 Statut Membre
       
      bonjour Artaban , tu travailles tard ;))

      voici le rapport généré par la fonction recherche:
      ~ Rapport de ZHPDiag v2015.5.13.48 - Nicolas Coolman (13/05/2015)
      ~ Lancé par charlie (16/05/2015 07:46:18)
      ~ Facebook : https://www.facebook.com/nicolascoolman1
      ~ Adresse du Forum https://nicolascoolman.eu
      ~ Traduit par Nicolas Coolman
      ~ Etat de la version : Version à jour.
      ~ Liste blanche : Activée par le programme
      ~ Elévation des Privilèges : OK
      ~ User Account Control (UAC): Activate by user


      ---\\ Navigateurs Internet
      MSIE: Internet Explorer v11.0.9600.17801
      MFIE: Mozilla Firefox 37.0.2 (Defaut)
      GCIE: Google Chrome v42.0.2311.152

      ---\\ Informations sur les produits Windows
      ~ Langage: Français
      Windows Server License Manager Script : OK
      ~ Windows Operating System - Windows(R) 7, OEM_SLP channel
      System Locked Preinstallation (OEM_SLP) : OK
      Windows ID Activation : OK
      ~ Windows Partial Key : 7TP9F
      Windows License : OK
      ~ Windows Remaining Initializations Number : 4
      Software Protection Service (Protection logicielle) : OK
      Windows Automatic Updates : OK
      Windows Activation Technologies : OK
      Windows 7 Professional, 64-bit Service Pack 1 (Build 7601)

      ---\\ Logiciels de protection du système
      Avast Internet Security v10.2.2218
      Malwarebytes Anti-Malware version 2.0.4.1028
      Windows Defender W7 (Deactivate)

      ---\\ Logiciels d'optimisation du système

      ---\\ Logiciels de partage PeerToPeer

      ---\\ Surveillance de Logiciels
      Adobe Flash Player 17 NPAPI
      Adobe Reader XI

      ---\\ Informations sur le système
      ~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
      ~ Operating System: 64 Bits
      Boot mode: Normal (Normal boot)
      Total RAM: 4063 MB (61% free)
      System Restore: Activé (Enable)
      System drive C: has 18 GB (24%) free of 74 GB

      ---\\ Mode de connexion au système
      ~ Computer Name: CHARLIE-PC
      ~ User Name: charlie
      ~ All Users Names: HomeGroupUser$, charlie, Administrateur,
      ~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
      Logged in as Administrator

      ---\\ Variables d'environnement
      ~ System Unit : C:\
      ~ %AppZHP% : C:\Users\charlie\AppData\Roaming\ZHP\
      ~ %AppData% : C:\Users\charlie\AppData\Roaming\
      ~ %Desktop% : C:\Users\charlie\Desktop\
      ~ %Favorites% : C:\Users\charlie\Favorites\
      ~ %LocalAppData% : C:\Users\charlie\AppData\Local\
      ~ %StartMenu% : C:\Users\charlie\AppData\Roaming\Microsoft\Windows\Start Menu\
      ~ %Windir% : C:\Windows\
      ~ %System% : C:\Windows\System32\

      ---\\ Enumération des unités disques
      C: Hard drive, Flash drive, Thumb drive (Free 18 Go of 74 Go)
      D: CD-ROM drive (Not Inserted)
      E: Hard drive, Flash drive, Thumb drive (Free 643 Go of 932 Go)
      F: Floppy drive, Flash card reader, USB Key (Not Inserted)
      G: Floppy drive, Flash card reader, USB Key (Not Inserted)
      H: Floppy drive, Flash card reader, USB Key (Not Inserted)
      I: Floppy drive, Flash card reader, USB Key (Not Inserted)



      ---\\ Etat du Centre de Sécurité Windows
      [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
      [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: Modified
      [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowHelp: Modified =>PUA.StartShow
      [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyGames: Modified
      [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: Modified =>PUA.StartShow
      [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSetProgramAccessAndDefaults: Modified =>PUA.StartShow
      ~ Security Center: 46 Legitimates Filtered in 00mn 00s



      ---\\ Recherche particulière de fichiers génériques
      [MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
      [MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
      [MD5.F0289B3A341429117696F0279DA977B6] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.21/04/2015 - 16:27:25.) -- C:\Windows\System32\wininet.dll [2352128]
      [MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.17/07/2014 - 03:07:24.) -- C:\Windows\System32\Winlogon.exe [455168]
      [MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 05:27:28.) -- C:\Windows\System32\sppcomapi.dll [232448]
      [MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 07:45:52.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
      [MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
      [MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
      [MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 01:19:22.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
      [MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 01:26:34.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
      [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 02:43:44.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
      [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
      [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
      [MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
      [MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 01:23:22.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
      [MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.24/01/2014 - 03:37:55.) -- C:\Windows\system32\Drivers\ntfs.sys [1684928]
      [MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
      [MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 02:52:36.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
      [MD5.1B6163C503398B23FF8B939C67747683] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.20/11/2010 - 03:06:42.) -- C:\Windows\system32\Drivers\rdpdr.sys [165888]
      [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
      [MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) (.11/11/2014 - 02:46:26.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
      [MD5.DF8126BD41180351A093A3AD2FC8903B] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.25/02/2011 - 07:25:38.) -- C:\Windows\system32\Drivers\volsnap.sys [296320]
      ~ Generic Processes: Scanned in 00mn 00s



      ---\\ Etat des fichiers cachés (Caché/Total)
      ~ Mes images (My Pictures) : 2/3
      Mes musiques (My Musics) : 2/2 (Modified)
      ~ Mes Videos (My Videos) : 1/685
      ~ Mes Favoris (My Favorites) : 1/26
      ~ Mes Documents (My Documents) : 8/118
      ~ Mon Bureau (My Desktop) : 1/5
      ~ Menu demarrer (Programs) : 1/29
      ~ Hidden Files: Scanned in 00mn 00s



      ---\\ Processus lancés
      [MD5.638644168D9B5B5093AD84C9C162B550] - (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296] [PID.1976]
      [MD5.65C6AA484AD2287D20541C7735989437] - (.Avast Software s.r.o. - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [5515496] [PID.2088]
      [MD5.0C7CF368F3C810C4982DDE08D3C50C45] - (.Pas de propriétaire - NetEngine.) -- C:\ProgramData\NetEngine\bin\D10\netengine.exe [75776] [PID.1888] =>PUP.NetEngine
      [MD5.345B45BE09381D2011EB7F9AC11D8AC4] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [376944] [PID.5868]
      [MD5.4B88BF95F7C40E2EDD2B924E0111C456] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [267888] [PID.6048]
      [MD5.66F6B3894132CC3D347CB85FBAE48D57] - (.Adobe Systems, Inc. - Adobe Flash Player 17.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_169.exe [1892528] [PID.6064]
      [MD5.46769F961E4AB53D76A9E734867E0E54] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8208896] [PID.1416]
      [MD5.49B1E5AF3AA400752A20BE169CB73DFA] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [410952] [PID.904]
      [MD5.54236E79A44F909612391C8A2D70D512] - (.Avast Software s.r.o. - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336] [PID.1312]
      [MD5.C569E7F268C43D6C9C4D74EE2F06CCD8] - (.Avast Software s.r.o. - avast! firewall service.) -- C:\Program Files\AVAST Software\Avast\afwServ.exe [107448] [PID.1908]
      [MD5.FC5B75CA6A1DA31EDD4F8D53F5540B98] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [81088] [PID.1644]
      [MD5.6E3F4538B33BC19259E99BE1826286A3] - (...) -- C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe [922240] [PID.1944]
      [MD5.A63173897EA1A73A75D0E65036DE5B15] - (...) -- C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe [915584] [PID.2376]
      [MD5.5C31DFB196CB3A488A041881634D86D2] - (...) -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880] [PID.2424]
      [MD5.805DAC448BEBDA900BF5520AB27D9616] - (.Garmin Ltd. or its subsidiaries - Garmin Service.) -- C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [708616] [PID.2552]
      [MD5.B6639BF8236BDD3427B10C581332BE71] - (.Hewlett-Packard Company - SolutionsFrameworkService.) -- C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89864] [PID.2464]
      [MD5.F758A5752CA282925CE3324FDBBADBED] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878672] [PID.3184]
      [MD5.7DA1335C5CA60ADC0C877ACE32733E12] - (.Irrational Number Applications - WebShield Service.) -- C:\ProgramData\uKbwgjQcwVy\BGCggAc.exe [2731512] [PID.3432]
      [MD5.9AD4BEE2FE76D4CA39AC969B617E94FB] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [326168] [PID.3992]
      [MD5.CD114CE02A10FA79C229770788106842] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2656280] [PID.5752]
      ~ Processes Running: Scanned in 00mn 00s



      ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
      C:\Users\charlie\AppData\Roaming\Mozilla\Firefox\Profiles\2haxtywo.default\prefs.js
      C:\Users\charlie\AppData\Roaming\Mozilla\Firefox\Profiles\2haxtywo.default\user.js
      M3 - MFPP: Plugins - [charlie] -- C:\Users\charlie\AppData\Roaming\Mozilla\Firefox\Profiles\2haxtywo.default\searchplugins\google-avast.xml
      M2 - MFEP: Extension [charlie - 2haxtywo.default] jid1-F9UJ2thwoAm5gQ@jetpack.xpi
      M2 - MFEP: Extension [charlie - 2haxtywo.default] {158d7cb3-7039-4a75-8e0b-3bd0a464edd2}.xpi
      P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml
      ~ Firefox Browser: 39 Legitimates Filtered in 00mn 00s



      ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
      R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = https://www.msn.com/fr-fr/
      ~ IE Browser: 19 Legitimates Filtered in 00mn 00s



      ---\\ Internet Explorer, Proxy Management (R5)
      R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
      R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
      R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
      R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
      R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
      R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
      R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
      R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
      ~ Proxy management: Scanned in 00mn 00s



      ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
      F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
      F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
      F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
      ~ Keys: Scanned in 00mn 00s



      ---\\ Hosts file redirection (O1)
      ~ Le fichier hôte est sain (The hosts file is clean) (35)
      ~ Hosts File: Scanned in 00mn 00s



      ---\\ Internet Explorer Toolbars (O3)
      O3 - Toolbar: (no name) - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Clé orpheline
      O3 - Toolbar: (no name) - [HKLM]{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} Clé orpheline
      O3 - Toolbar\WebBrowser: (no name) - [HKCU]{4982D40A-C53B-4615-B15B-B5B5E98D167C} Clé orpheline
      ~ Toolbar: Scanned in 00mn 00s



      ---\\ Applications lancées au démarrage du système (O4)
      O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
      O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.Avast Software s.r.o. - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
      O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
      O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] . (.Garmin Ltd. or its subsidiaries - Garmin Express Tray.) -- C:\Program Files (x86)\Garmin\Express Tray\tray.exe =>.Garmin Corporation
      O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] . (.Garmin Ltd. or its subsidiaries - Garmin Express Tray.) -- C:\Program Files (x86)\Garmin\Express Tray\tray.exe =>.Garmin Corporation
      O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
      O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
      O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
      O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
      ~ Application: Scanned in 00mn 00s



      ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
      O9 - Extra button: Send by Bluetooth to [64Bits] - {7815BE26-237D-41A8-A98F-F7BD75F71086} -- Clé orpheline
      ~ IE Extra Buttons: Scanned in 00mn 00s



      ---\\ Modification Domaine/Adresses DNS (O17)
      O17 - HKLM\System\CCS\Services\Tcpip\..\{EA06AB01-DD67-407F-BA58-FDD0FDC19471}: DhcpNameServer = 192.168.1.1
      O17 - HKLM\System\CS1\Services\Tcpip\..\{EA06AB01-DD67-407F-BA58-FDD0FDC19471}: DhcpNameServer = 192.168.1.1
      O17 - HKLM\System\CS2\Services\Tcpip\..\{EA06AB01-DD67-407F-BA58-FDD0FDC19471}: DhcpNameServer = 192.168.1.1
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
      ~ Domain: Scanned in 00mn 00s



      ---\\ Protocole additionnel (O18)
      O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
      O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
      ~ Protocole Additionnel: Scanned in 00mn 00s



      ---\\ Tâches planifiées en automatique (O39)
      [MD5.00000000000000000000000000000000] [APT] [DriverToolkit Autorun] (...) -- C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe (.not file.) [0] =>PUP.DriverToolkit
      [MD5.00000000000000000000000000000000] [APT] [GarminUpdaterTask] (...) -- C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe (.not file.) [0]
      [MD5.0C7CF368F3C810C4982DDE08D3C50C45] [APT] [NetEngine] (...) -- C:\ProgramData\NetEngine\bin\D10\netengine.exe [75776] =>PUP.NetEngine
      [MD5.352EA0C6338056E2B2880559B22B8F65] [APT] [{029E8032-F606-46E4-A8C2-8ED7CE70DBE7}] (...) -- C:\ProgramData\WebShield\uninstall.exe [537080]
      [MD5.00000000000000000000000000000000] [APT] [{034793B3-AC17-4B55-8176-92712028F45C}] (...) -- E:\AOL 9.0e\aol.exe (.not file.) [0]
      [MD5.973567B98CDFC147DF4E60471D9DF072] [APT] [{042EB318-626E-46CB-A4E0-9E1ADA86C0FB}] (...) -- C:\Program Files (x86)\AOL Toolbar\UNWISE.exe [153088]
      [MD5.00000000000000000000000000000000] [APT] [{0E69207F-7C32-4C15-802C-3F790DAD1A7B}] (...) -- D:\AOL9\Setup.exe (.not file.) [0]
      [MD5.00000000000000000000000000000000] [APT] [{120EC328-7EE8-4E8F-A538-F4BA8FEDCCA4}] (...) -- E:\AOL 9.0e\aol.exe (.not file.) [0]
      [MD5.00000000000000000000000000000000] [APT] [{3768694A-4BF1-4CBD-BCD4-7B8D6F76E2E9}] (...) -- E:\AOL 9.0e\aol.exe (.not file.) [0]
      [MD5.00000000000000000000000000000000] [APT] [{55EF85F7-0654-4189-8D71-C3F3DF8F9D58}] (...) -- D:\AOL9\setup9.exe (.not file.) [0]
      [MD5.00000000000000000000000000000000] [APT] [{B2027828-AEB1-413C-AC81-F2FDAE99DB7E}] (...) -- E:\AOL 9.0e\aol.exe (.not file.) [0]
      [MD5.00000000000000000000000000000000] [APT] [{CCB80B0F-B5E6-407E-A73B-5B33647015A9}] (...) -- E:\AOL 9.0e\aol.exe (.not file.) [0]
      [MD5.00000000000000000000000000000000] [APT] [{CF49AB86-ED77-45CB-91EB-1D0E3DD93B14}] (...) -- E:\AOL 9.0e\aol.exe (.not file.) [0]
      O39 - APT: - (..) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]
      O39 - APT: DriverToolkit Autorun - (...) -- C:\Windows\Tasks\DriverToolkit Autorun.job [362] =>PUP.DriverToolkit
      O39 - APT: DriverToolkit Autorun - (...) -- C:\Windows\System32\Tasks\DriverToolkit Autorun [362] =>PUP.DriverToolkit
      O39 - APT: - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1066]
      O39 - APT: - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1070]
      O39 - APT: - (..) -- C:\Windows\Tasks\PC-Mechanic Maintenance.job [282]
      O39 - APT: - (..) -- C:\Windows\System32\Tasks\PC-Mechanic Maintenance [282]
      O39 - APT: - (..) -- C:\Windows\Tasks\PC-Mechanic Startup.job [276]
      O39 - APT: - (..) -- C:\Windows\System32\Tasks\PC-Mechanic Startup [276]
      O39 - APT: - (..) -- C:\Windows\Tasks\PC-Mechanic Subscription.job [282]
      O39 - APT: - (..) -- C:\Windows\System32\Tasks\PC-Mechanic Subscription [282]
      ~ Scheduled Task: 33 Legitimates Filtered in 00mn 01s



      ---\\ Pilotes lancés au démarrage du système (O41)
      O41 - Driver: ({55639f4f-70f3-47b6-9c22-0c740448eb41}Gw64) . (.StdLib - StdLib.) - C:\Windows\System32\drivers\{55639f4f-70f3-47b6-9c22-0c740448eb41}Gw64.sys =>PUP.LinkiDoo
      ~ Drivers: 82 Legitimates Filtered in 00mn 00s



      ---\\ Logiciels installés (O42)
      O42 - Logiciel: Widget Vidal.fr - (.None provided.) [HKLM][64Bits] -- {B9F00F93-4345-4E73-A8CE-D3E163972663}
      ~ Logic: 28 Legitimates Filtered in 00mn 00s



      ---\\ HKCU & HKLM Software Keys
      [HKCU\Software\AOLToolbar]
      [HKCU\Software\Boxore] =>Adware.Boxore
      [HKCU\Software\Crossbrowse] =>PUP.CrossBrowser
      [HKCU\Software\SafeGuardApp] =>PUP.SafeGuard
      [HKCU\Software\SystClean]
      [HKLM\Software\Wow6432Node\Boxore] =>Adware.Boxore
      [HKLM\Software\Wow6432Node\Crossbrowse] =>PUP.CrossBrowser
      [HKLM\Software\Wow6432Node\MaxPower]
      [HKLM\Software\Wow6432Node\MetaStream] =>Adware.MetaStream
      [HKLM\Software\Wow6432Node\SafeGuardApp] =>PUP.SafeGuard
      ~ Key Software: 254 Legitimates Filtered in 00mn 00s



      ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
      O43 - CFD: 06/04/2015 - 11:27:01 - [] ----D C:\Program Files (x86)\Widget Vidal.fr
      O43 - CFD: 15/05/2015 - 19:54:25 - [] ----D C:\ProgramData\NetEngine =>PUP.NetEngine
      O43 - CFD: 15/05/2015 - 19:49:28 - [] ----D C:\ProgramData\uKbwgjQcwVy
      O43 - CFD: 15/05/2015 - 19:49:19 - [] ----D C:\ProgramData\WebShield
      O43 - CFD: 02/01/2009 - 06:32:35 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BT Program
      O43 - CFD: 14/07/2009 - 17:35:18 - [0] R-H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
      O43 - CFD: 06/04/2015 - 11:27:01 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Widget Vidal.fr
      O43 - CFD: 20/02/2014 - 23:43:35 - [] ----D C:\Users\charlie\AppData\Roaming\main
      O43 - CFD: 15/05/2015 - 19:48:36 - [] ----D C:\Users\charlie\AppData\Roaming\SystClean
      O43 - CFD: 15/05/2015 - 19:53:59 - [] ----D C:\Users\charlie\AppData\Local\Boxore =>Adware.Boxore
      O43 - CFD: 29/07/2014 - 11:26:28 - [] ----D C:\Users\charlie\AppData\Local\Canal.MyCanal
      O43 - CFD: 02/03/2015 - 22:49:37 - [] -SH-D C:\Users\charlie\AppData\Local\EmieBrowserModeList
      O43 - CFD: 15/05/2015 - 23:13:16 - [] ----D C:\Users\charlie\AppData\Local\WebShield
      ~ Program Folder: 193 Legitimates Filtered in 00mn 00s



      ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
      O44 - LFC:[MD5.01AA853DDB8C694862FC56C5FE89424F] - 14/05/2015 - 20:38:50 ---A- . (.StdLib - StdLib.) -- C:\Windows\System32\Drivers\{55639f4f-70f3-47b6-9c22-0c740448eb41}Gw64.sys [48784] =>PUP.LinkiDoo
      O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 15/05/2015 - 18:53:16 ---A- . (...) -- C:\Windows\dwa.exe [0]
      O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 15/05/2015 - 18:58:22 ---A- . (...) -- C:\Windows\mdwa.exe [0]
      O44 - LFC:[MD5.828AE71F67ACDB05C94F76FE37E55099] - 15/05/2015 - 18:58:56 ---A- . (...) -- C:\Windows\dwa.dat [631296]
      O44 - LFC:[MD5.20EEC9AF17AF62FF21D455CA7A64B73D] - 15/05/2015 - 19:14:58 ---A- . (...) -- C:\Windows\win.ini [505]
      ~ Files: 136 Legitimates Filtered in 00mn 02s



      ---\\ Clé de registre Shell MountPoints2 (MPSK) (O51)
      O51 - MPSK:{526186e8-9a05-11e3-88fe-c8600032fc78}\AutoRun\command. (...) -- E:\LaunchU3.exe (.not file.)
      O51 - MPSK:{af9de319-9a3f-11e3-971d-c8600032fc78}\AutoRun\command. (...) -- J:\CHECKINS.exe (.not file.)
      ~ Keys: Scanned in 00mn 00s



      ---\\ Enumération des clés de registre StartupReg (SMSR) (O53)
      O53 - SMSR:HKLM\...\startupreg\Boxore Client [Key] . (...) -- C:\Program Files (x86)\Boxore\Boxore Client\boxore.exe (.not file.) =>Adware.Boxore
      O53 - SMSR:HKLM\...\startupreg\SafeGuard [Key] . (...) -- C:\Program Files (x86)\SafeGuard\SafeGuardApp.exe (.not file.) =>PUP.SafeGuard
      ~ SMSR Keys: 13 Legitimates Filtered in 00mn 00s



      ---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
      O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
      O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
      O55 - MWPS:[HKLM\...\Policies\System] - "disablecad"=1
      ~ MWPS: 20 Legitimates Filtered in 00mn 00s



      ---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
      O56 - MWPE:[HKCU\...\policies\Explorer] - "NoResolveTrack"=1
      O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLowDiskSpaceChecks"=1
      O56 - MWPE:[HKCU\...\policies\Explorer] - "LinkResolveIgnoreLinkInfo"=1
      O56 - MWPE:[HKCU\...\policies\Explorer] - "NoResolveSearch"=1
      O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
      ~ MWPE Keys: 9 Legitimates Filtered in 00mn 00s



      ---\\ Liste des pilotes du système (SDL) (O58)
      O58 - SDL:26/04/2015 - 17:09:49 ---A- . (...) -- C:\Windows\System32\Drivers\aswHwid.sys [29168] =>.ALWIL Software
      O58 - SDL:26/04/2015 - 17:09:49 ---A- . (...) -- C:\Windows\System32\Drivers\aswRvrt.sys [65736] =>.ALWIL Software
      O58 - SDL:26/04/2015 - 17:09:49 ---A- . (...) -- C:\Windows\System32\Drivers\aswVmm.sys [272248] =>.ALWIL Software
      O58 - SDL:13/03/2011 - 10:58:42 ---A- . (.Windows (R) Win 7 DDK provider - BulkUsb Driver.) -- C:\Windows\System32\Drivers\AthDfu.sys [51872]
      O58 - SDL:14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [530496]
      O58 - SDL:10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [31232]
      O58 - SDL:14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [24656]
      O58 - SDL:14/05/2015 - 20:38:50 ---A- . (.StdLib - StdLib.) -- C:\Windows\System32\Drivers\{55639f4f-70f3-47b6-9c22-0c740448eb41}Gw64.sys [48784] =>PUP.LinkiDoo
      O58 - SDL:22/02/2014 - 11:15:35 ---A- . (.Windows (R) 2000 DDK provider - TR Manager.) -- C:\Windows\SysWOW64\drivers\asctrm.sys [8552]
      O58 - SDL:25/11/2010 - 08:12:56 ----- . (...) -- C:\Windows\SysWOW64\drivers\AsInsHelp32.sys [10216]
      O58 - SDL:25/11/2010 - 08:12:56 ----- . (...) -- C:\Windows\SysWOW64\drivers\AsInsHelp64.sys [11832]
      O58 - SDL:24/08/2010 - 08:16:40 R--A- . (...) -- C:\Windows\SysWOW64\drivers\AsIO.sys [13440]
      O58 - SDL:03/08/2010 - 06:21:24 R--A- . (...) -- C:\Windows\SysWOW64\drivers\AsUpIO.sys [14464]
      O58 - SDL:02/04/2009 - 13:30:14 ---A- . (...) -- C:\Windows\SysWOW64\drivers\ASUSHWIO.SYS [10296]
      ~ Drivers: 89 Legitimates Filtered in 00mn 00s



      ---\\ Liste des outils de désinfection (LATC) (O63)
      O63 - Logiciel: ZHPDiag 2015 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
      ~ ADS: Scanned in 00mn 00s



      ---\\ Liste les services legacy du registre (LALS) (O64)
      O64 - Services: CurCS - 26/04/2015 - C:\Windows\system32\drivers\aswHwid.sys (aswHwid) .(...) - LEGACY_ASWHWID
      O64 - Services: CurCS - 14/05/2015 - C:\Windows\System32\drivers\{55639f4f-70f3-47b6-9c22-0c740448eb41}Gw64.sys ({55639f4f-70f3-47b6-9c22-0c740448eb41}Gw64) .(.StdLib - StdLib.) - LEGACY_{55639F4F-70F3-47B6-9C22-0C740448EB41}GW64 =>PUP.LinkiDoo
      ~ Legacy: 104 Legitimates Filtered in 00mn 00s



      ---\\ Menu de démarrage Internet (SMI) (O68)
      O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
      O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
      ~ Keys: Scanned in 00mn 00s



      ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
      O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - https://www.bing.com/?toHttps=1&redig=69DA0EF8272048D9864AF4DB37211DE8
      O69 - SBI: SearchScopes [HKCU] {DD3E9F5C-A76A-40FE-8E8C-3EC8EB96812F} [DefaultScope] - (Google) - https://www.google.com/?gws_rd=ssl
      ~ Keys: Scanned in 00mn 00s



      ---\\ Recherche de clés de registre Tracing (O100)
      HKLM\SOFTWARE\Microsoft\Tracing\MixVideoPlayer_RASAPI32 =>PUP.MixVideoPlayer
      HKLM\SOFTWARE\Microsoft\Tracing\MixVideoPlayer_RASMANCS =>PUP.MixVideoPlayer
      HKLM\SOFTWARE\Microsoft\Tracing\SafeGuard_RASAPI32 =>PUP.SafeGuard
      HKLM\SOFTWARE\Microsoft\Tracing\SafeGuard_RASMANCS =>PUP.SafeGuard
      HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32 =>Toolbar.Bing
      HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BingBar_RASMANCS =>Toolbar.Bing
      HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\netengine_RASAPI32 =>PUP.NetEngine
      HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\netengine_RASMANCS =>PUP.NetEngine
      ~ BTK: 331 Legitimates Filtered in 00mn 00s



      ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
      SS - | Demand 19/04/2015 268464 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
      SS - | Auto 31/03/2014 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      SS - | Demand 31/03/2014 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      SS - | Demand 21/04/2015 148080 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
      SS - | Demand 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
      SR - | Auto 19/12/2014 81088 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      SR - | Auto 13/06/2011 922240 | (asComSvc) . (...) - C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe
      SR - | Auto 02/12/2010 915584 | (asHmComSvc) . (...) - C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
      SR - | Auto 21/10/2010 586880 | (AsSysCtrlService) . (...) - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
      SR - | Auto 13/03/2011 74912 | (AtherosSvc) . (.Atheros Commnucations.) - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
      SR - | Auto 26/04/2015 343336 | (avast! Antivirus) . (.Avast Software s.r.o..) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
      SR - | Auto 26/04/2015 107448 | (avast! Firewall) . (.Avast Software s.r.o..) - C:\Program Files\AVAST Software\Avast\afwServ.exe
      SR - | Auto 15/05/2015 2731512 | (BGCggAc) . (.Irrational Number Applications.) - C:\ProgramData\uKbwgjQcwVy\BGCggAc.exe
      SR - | Auto 08/04/2015 708616 | (Garmin Device Interaction Service) . (.Garmin Ltd. or its subsidiaries.) - C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe
      SR - | Auto 28/03/2015 1152144 | (GfExperienceService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
      SR - | Auto 11/12/2014 89864 | (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
      SR - | Auto 12/08/2010 133800 | (Intel® PROSet Monitoring Service) . (.Intel Corporation.) - C:\Windows\system32\IProsetMonitor.exe
      SR - | Auto 22/02/2011 326168 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
      SR - | Auto 15/10/2014 2820424 | (MaConfigAgent) . (.CybelSoft.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
      SR - | Auto 28/03/2015 1878672 | (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
      SR - | Auto 28/03/2015 22995600 | (NvStreamSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
      SR - | Auto 05/02/2015 935056 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
      SR - | Auto 05/02/2015 410952 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
      SR - | Auto 22/02/2011 2656280 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
      SR - | Auto 22/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
      SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
      ~ Services: Scanned in 00mn 05s



      ---\\ Scan Additionnel (O88)
      Database Version : 13008 - (13/05/2015)
      Clés trouvées (Keys found) : 15
      Valeurs trouvées (Values found) : 0
      Dossiers trouvés (Folders found) : 6
      Fichiers trouvés (Files found) : 8

      [HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Boxore Client] =>Adware.Boxore^
      [HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\SafeGuard] =>PUP.SafeGuard^
      [HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASMANCS] =>Toolbar.Bing
      [HKLM\Software\Classes\axmetastream.metastreamctl] =>Adware.MetaStream
      [HKLM\Software\Classes\axmetastream.metastreamctl.1] =>Adware.MetaStream
      [HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary] =>Adware.MetaStream
      [HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary.1] =>Adware.MetaStream
      [HKCU\Software\Boxore] =>Adware.Boxore
      [HKLM\Software\Wow6432Node\Boxore] =>Adware.Boxore
      [HKLM\Software\Wow6432Node\MetaStream] =>Adware.MetaStream
      [HKLM\Software\Wow6432Node\Viewpoint] =>Adware.MetaStream
      [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer] =>Adware.MetaStream
      [HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32] =>Toolbar.Bing
      [HKCU\Software\AOLToolbar] =>Toolbar.AOL
      [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
      C:\ProgramData\NetEngine =>PUP.NetEngine^
      C:\Users\charlie\AppData\Local\Boxore =>Adware.Boxore^
      C:\Program Files (x86)\Software =>Adware.Boxore
      C:\Program Files (x86)\Viewpoint =>Adware.MetaStream
      C:\ProgramData\Viewpoint =>Adware.MetaStream
      C:\Users\charlie\AppData\Local\Software =>Adware.Boxore
      [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowHelp: Modified =>PUA.StartShow^
      C:\ProgramData\NetEngine\bin\D10\netengine.exe =>PUP.NetEngine^
      C:\Windows\Tasks\DriverToolkit Autorun.job =>PUP.DriverToolkit^
      C:\Windows\System32\Tasks\DriverToolkit Autorun =>PUP.DriverToolkit^
      [HKCU\Software\Crossbrowse] =>PUP.CrossBrowser^
      [HKCU\Software\SafeGuardApp] =>PUP.SafeGuard^
      [HKLM\Software\Wow6432Node\Crossbrowse] =>PUP.CrossBrowser^
      [HKLM\Software\Wow6432Node\SafeGuardApp] =>PUP.SafeGuard^
      ~ Additionnel Scan: 230002 Items scanned in 00mn 14s



      ---\\ Informations complémentaires sur les modules
      ~ https://nicolascoolman.eu =>.Internet Explorer, Proxy Management (R5)
      ~ https://nicolascoolman.eu =>.Internet Explorer Toolbars (O3)
      ~ https://nicolascoolman.eu =>.Applications lancées au démarrage du système (O4)
      ~ https://nicolascoolman.eu =>.Clé de registre Shell MountPoints2 (MPSK) (O51)
      ~ AMI: 4 Legitimates Filtered in 00mn 00s



      ---\\ Récapitulatif des détections trouvées sur votre station
      https://nicolascoolman.eu =>PUA.StartShow
      https://nicolascoolman.eu =>PUP.NetEngine
      https://nicolascoolman.eu =>PUP.DriverToolkit
      https://nicolascoolman.eu =>PUP.LinkiDoo
      https://nicolascoolman.eu =>Adware.Boxore
      https://nicolascoolman.eu =>PUP.CrossBrowser
      https://nicolascoolman.eu =>PUP.SafeGuard
      https://nicolascoolman.eu =>Adware.MetaStream
      https://nicolascoolman.eu =>PUP.MixVideoPlayer
      https://nicolascoolman.eu =>Toolbar.AOL
      ~ MSI: 10 link(s) detected in 00mn 00s



      ~ 1003 Legitimates filtered by white list
      End of the scan (515 lines in 00mn 39s)(0.11)
      0
    5. charlin3 Messages postés 50 Statut Membre > artaban7 Messages postés 2282 Statut Membre
       
      re bonjour ,
      j'ai fait tourner ZHP cleaner et ADWcleaner .
      redemarrage et rapport ZHPdiag] que tu trouveras ici :

      https://pjjoint.malekal.com/files.php?id=ZHPDiag_20150516_o15p13s12p11p13

      Je m'excuse de t'avoir envoyer ici même un rapport sans passer par
      http://pjjoint.malekal.com/ .
      Peut-on l'effacer ?
      0
  2. fannyptitbou
     
    j'ai le même problème j'ai suivi vos indications artaban7
    je ne sais pas si vous pouvez m'aider ....
    voici le lien
    http://pjjoint.malekal.com/files.php?id=20150820_m13s7k5s13e15
    0
    1. caro
       
      Svp je n'y connais rien :-(((
      voici le rapport
      ~ ZHPDiag v2015.9.17.143 Par Nicolas Coolman (2015/09/19)
      ~ Démarré par CAROLE (Administrator) (2015/09/20 20:22:48)
      ~ Site: http://www.nicolascoolman.fr
      ~ Facebook: https://www.facebook.com/nicolascoolman1
      ~ Etat de la version: Version OK
      ~ Mode: Scanner
      ~ Rapport: C:\Users\CAROLE\Desktop\ZHPDiag.txt
      ~ Rapport: C:\Users\CAROLE\AppData\Roaming\ZHP\ZHPDiag.txt
      ~ UAC: Activate
      ~ Démarrage du système: Normal (Normal boot)
      Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)

      ---\\ Navigateurs Internet (2) - 0s
      GCIE: Google Chrome v45.0.2454.93
      MSIE: Internet Explorer v11.0.9600.18015

      ---\\ Informations sur les produits Windows (4) - 3s
      ~ Windows Server License Manager Script : OK
      ~ Licence Script File Génération : OK
      Windows Automatic Updates : OK
      Windows Activation Technologies : OK

      ---\\ Logiciels de protection (2) - 13s
      Avast Free Antivirus v10.3.2225
      Windows Defender W7 (Activate)

      ---\\ Surveillance de Logiciels (1) - 14s
      Adobe Reader 9.5.5 MUI

      ---\\ Informations sur le système (6) - 0s
      ~ Operating System: Intel64 Family 6 Model 37 Stepping 2, GenuineIntel
      ~ Operating System: 64-bit
      ~ Boot mode: Normal (Normal boot)
      Total RAM: 4119.416 MB (33% free)
      ~ System Restore: Activé (Enable)
      ~ System drive C: has 59 GB free of 287 GB

      ---\\ Mode de connexion au système (3) - 0s
      ~ Computer Name: CAROLE-PC
      ~ User Name: CAROLE
      ~ Logged in as Administrator

      ---\\ Enumération des unités disques (3) - 0s
      ~ Drive C: has 59 GB free of 287 GB (System)
      ~ Drive D: has 2 GB free of 17 GB
      ~ Drive E: has 0 GB free of 0 GB

      ---\\ Etat du Centre de Sécurité Windows (11) - 0s
      [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
      [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
      [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
      [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
      [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
      [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
      [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
      [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
      [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
      [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
      [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

      ---\\ Recherche particulière de fichiers génériques (25) - 2s
      [MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2871808] ©
      [MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568] ©
      [MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [129024] ©
      [MD5.A55305B1CACD38EAC176CC532B2053AC] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [2427392] ©
      [MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Application d'ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [455168] ©
      [MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [232448] ©
      [MD5.492D07D79E7024CA310867B526D9636D] - (.Microsoft Corporation - DNS DLL de l'API Client.) () -- C:\Windows\System32\dnsapi.dll [357888] ©
      [MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - (.Microsoft Corporation - DNS DLL de l'API Client.) () -- C:\Windows\Syswow64\dnsapi.dll [270336] ©
      [MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (.Microsoft Corporation - DLL client de l'API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] ©
      [MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [497152] ©
      [MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128] ©
      [MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160] ©
      [MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456] ©
      [MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400] ©
      [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368] ©
      [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472] ©
      [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224] ©
      [MD5.43E1F4B0EFDC244D2A83995CCD7846F7] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [159232] ©
      [MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [261632] ©
      [MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1684928] ©
      [MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [97280] ©
      [MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] ©
      [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184] ©
      [MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [119296] ©
      [MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [295808] ©

      ---\\ Processus lancés (45) - 6s
      [MD5.8F9C2A5F96810467D50687AE00465424] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 188.1.) -- C:\Windows\system32\nvvsvc.exe [392296] [PID.860] ©
      [MD5.57BEB4500716DD30B65DFA85A35CC3D7] - (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_d15ed671de43d681\stacsv64.exe [240640] [PID.520] ©
      [MD5.AA036CC5F5221D9B915F4D4DCE74BA9A] - (.Hewlett-Packard - HpService.) -- C:\Windows\system32\Hpservice.exe [30520] [PID.1352] ©
      [MD5.8F9C2A5F96810467D50687AE00465424] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 188.1.) -- C:\Windows\system32\nvvsvc.exe [392296] [PID.1444] ©
      [MD5.4956380A54B1C9E6BFDF3D80DACB9698] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600] [PID.1592] ©
      [MD5.A6FB9DB8F1A86861D955FD6975977AE0] - (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) -- C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_d15ed671de43d681\AESTSr64.exe [89600] [PID.1088] ©
      [MD5.6EB87FDB59AABF6D19C927492DEA0D36] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128] [PID.1212] ©
      [MD5.EBBCD5DFBB1DE70E8F4AF8FA59E401FD] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462184] [PID.1624] ©
      [MD5.2238B91AC1A12CC6CC4C4FED41258B2A] - (.Hewlett-Packard Company - LightScribe Service.) -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728] [PID.1016] ©
      [MD5.C6331D11F80B3AFFD91A9B3858E00F23] - (.CyberLink - CyberLink MediaLibray Service.) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [210216] [PID.3032] ©
      [MD5.A6A7AD767BF5141665F5C675F671B3E1] - (.Protexis Inc. - PsiService PsiService.) -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [185632] [PID.2880] ©
      [MD5.498EB62A160674E793FA40FD65390625] - (.Copyright 2004 - RichVideo Module.) -- C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152] [PID.2616]
      [MD5.2BACD71123F42CEA603F4E205E1AE337] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292096] [PID.3008] ©
      [MD5.61D90FFD00C8B2B60E56B625D7CA9C60] - (.Irrational Number Applications - WebShield Service.) -- C:\ProgramData\YsIwCRHE\mumTaKG.exe [2732024] [PID.3148] =>PUP.Optional.WebShield
      [MD5.2A46FFE841EC43001D5A293A54DB34DE] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [223104] [PID.3252] ©
      [MD5.5F45D87B172CFCA862B7F1BED641F263] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1814312] [PID.3952] ©
      [MD5.0F22DA454AE3249AF6236098EDBA0AD9] - (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe [487424] [PID.3240] ©
      [MD5.59E58A7A5388E00BB4347AEBBDCC84FE] - (.Copyright (C) 2009 Hewlett-Packard Development Compan - SmartMenu.) -- C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [610872] [PID.2208] ©
      [MD5.02A27FC0972181EF743160BE9F62F2B4] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [170280] [PID.4728] ©
      [MD5.E02E715FA2BC8D88FF9362374E309D76] - (.Hewlett-Packard Company - .) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392] [PID.4748] ©
      [MD5.B15DFB916F0D7AFEA5802A014E0A3715] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe [120616] [PID.4880] ©
      [MD5.2208D673C5D4B22EB0235EA1EC6269CC] - (.Apple Inc. - iPodService Module (64-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [644904] [PID.4916] ©
      [MD5.338EA8481D3494E2E1DD7EA1731A0ECD] - (.Hewlett-Packard Co. - ScanToPCActivationApp.) -- C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe [3487240] [PID.4852] ©
      [MD5.F5A0554F655C566EB946841E6E7AE061] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [30877280] [PID.5016] ©
      [MD5.F341DD6145F779CE5B732BC6BC6A3370] - (.Apple Inc. - iCloud.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816] [PID.1380] ©
      [MD5.944E77A49DBAF8F6BB473118C116E59E] - (.Apple Inc. - iCloud Photos.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816] [PID.4176] ©
      [MD5.5109047321310206FB8EE1A789FD89FC] - (.Orange - MailNotifier.) -- C:\Program Files (x86)\Orange\MailNotifier\MailNotifier.exe [904704] [PID.4708] ©
      [MD5.E5F05EDD33B8B2A8CBCDD697AB830A70] - (...) -- C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe [15544] [PID.4784]
      [MD5.8F89E6CB82E6DB45BC993D423CD0FDBD] - (.Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe [323640] [PID.4592] ©
      [MD5.A171B56DA31CEA530BFC03734841BD79] - (.Hewlett-Packard Company - HP Wireless Assistant Main Program.) -- C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [500792] [PID.4604] ©
      [MD5.5FA55704521881553E5574059EAA1106] - (.GoPro - GoPro/CineForm Status Viewer.) -- C:\Program Files (x86)\CineForm\Tools\GoProCineFormStatusViewer.exe [144384] [PID.4788] ©
      [MD5.7D7FC035B6A606020C83086BC379DE70] - (.Copyright © 2015 - BrowserWeb.) -- C:\Program Files (x86)\MixVideoPlayer\BrowserWeb.exe [122536] [PID.2832] =>PUP.Optional.MixVideoPlayer
      [MD5.34D296AFC913E302953C70463EF09A48] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe [96056] [PID.4068] ©
      [MD5.FDF273A845F1FFCCEADF363AAF47582F] - (.Hewlett-Packard Development Company, L.P. - hpqwmiex Module.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [229944] [PID.4492] ©
      [MD5.F66203AF9C159E2CBD54DF981654F499] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [6111824] [PID.3728] ©
      [MD5.0080EB1CDD83F14C01534B1DC754234D] - (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712] [PID.3724] ©
      [MD5.C7A0E61D5714AC20DE52D4F66EC773B8] - (.Hewlett-Packard Development Company, L.P. - Com for QLB application.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [227896] [PID.3264] ©
      [MD5.0DE3C7622EC33126579B1742260F08C2] - (.Copyright (c) 2005 - 2009 Hewlett-Packard Development - HpqToaster Module.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe [632888] [PID.6512]
      [MD5.F9AF5292174EC3D8D6A4EAA33C2321B4] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\CAROLE\ZHPDiag3.exe [1934848] [PID.3224] ©
      [MD5.83946783D86BEB7A898BC6B562F1F189] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.5544] ©
      [MD5.83946783D86BEB7A898BC6B562F1F189] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.6096] ©
      [MD5.53DF66A634EBFBA10399D33FFF5B22A5] - (.Irrational Number Applications - WebShield.) -- C:\ProgramData\YsIwCRHE\dat\IdCjCK.exe [48120] [PID.5252] =>PUP.Optional.WebShield
      [MD5.83946783D86BEB7A898BC6B562F1F189] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.720] ©
      [MD5.83946783D86BEB7A898BC6B562F1F189] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.4384] ©
      [MD5.1E5B7473D66C92289E41F3DEA51865F3] - (.Hewlett-Packard Co. - HPNetworkCommunicatorCom.) -- C:\Program Files\HP\HP ENVY 4500 series\Bin\HPNetworkCommunicatorCom.exe [1150472] [PID.1764] ©

      ---\\ Google Chrome, Démarrage,Recherche,Extensions (10) - 1s
      G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
      G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
      G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
      G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
      G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
      G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
      G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] Avast Online Security
      G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
      G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
      G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.

      ---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (1) - 0s
      P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ©

      ---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (14) - 0s
      R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com/
      R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/
      R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/ =>PUP.Optional.IsStart
      R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
      R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
      R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/ =>PUP.Optional.IsStart
      R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = about:newtab
      R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = about:newtab
      R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/ =>PUP.Optional.IsStart
      R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/ =>PUP.Optional.IsStart
      R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
      R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
      R3 - URLSearchHook: (no name) - {AEEC3B59-CA98-4EBA-A140-57B94E283583} Orphean
      R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

      ---\\ Internet Explorer,Proxy Management (5) - 0s
      R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
      R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
      R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
      R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
      R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

      ---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
      F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
      F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
      F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

      ---\\ Etude du fichier hosts (1) - 0s
      ~ Le fichier hôte est sain (The hosts file is clean) (21)

      ---\\ Browser Helper Object de navigateur (BHO) (2) - 0s
      O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll ©
      O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll ©

      ---\\ Internet Explorer, Barre d'outil (3) - 0s
      O3 - Toolbar: 0xEF44FA216D37534D9B0F8A89D3229068 - [HKCU]{21FA44EF-376D-4D53-9B0F-8A89D3229068} . (...) -- (.not file.)
      O3 - Toolbar: 0x438102D34561184399D33EDCE54A95A9 - [HKCU]{D3028143-6145-4318-99D3-3EDCE54A95A9} . (...) -- (.not file.)
      O3 - Toolbar: 0x00 - [HKLM]{D3028143-6145-4318-99D3-3EDCE54A95A9} . (...) -- (.not file.)

      ---\\ Applications lancées au démarrage du système (43) - 1s
      O4 - HKLM\..\Run: [NvCplDaemon] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\RUNDLL32.EXE ©
      O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
      O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe ©
      O4 - HKLM\..\Run: [SmartMenu] . (.Copyright (C) 2009 Hewlett-Packard Development Compan - SmartMenu.) -- C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe ©
      O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.8.0_31\bin\jusched.exe (.not file.)
      O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe ©
      O4 - HKCU\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - .) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe ©
      O4 - HKCU\..\Run: [HPADVISOR] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe (.not file.)
      O4 - HKCU\..\Run: [orangeinside] . (...) -- C:\Users\CAROLE\AppData\Roaming\Orange\OrangeInside\two\OrangeInside.exe
      O4 - HKCU\..\Run: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe (.not file.)
      O4 - HKCU\..\Run: [HP ENVY 4500 series (NET)] . (.Hewlett-Packard Co. - ScanToPCActivationApp.) -- C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe ©
      O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe ©
      O4 - HKCU\..\Run: [iCloudServices] . (.Apple Inc. - iCloud.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe ©
      O4 - HKCU\..\Run: [ApplePhotoStreams] . (.Apple Inc. - iCloud Photos.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe ©
      O4 - HKCU\..\Run: [MailNotifier] . (.Orange - MailNotifier.) -- C:\Program Files (x86)\Orange\MailNotifier\MailNotifier.exe ©
      O4 - HKCU\..\Run: [WindApp] C:\Users\CAROLE\AppData\Roaming\Store\WindApp\WindApp.exe (.not file.) =>PUP.Optional.Nosibay
      O4 - HKCU\..\Run: [Selection Tools] C:\Users\CAROLE\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe (.not file.) =>PUP.Optional.Nosibay
      O4 - HKLM\..\Wow6432Node\Run: [Corel File Shell Monitor] . (...) -- C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe
      O4 - HKLM\..\Wow6432Node\Run: [HPCam_Menu] . (.CyberLink Corp. - MUI StartMenu Application.) -- c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe ©
      O4 - HKLM\..\Wow6432Node\Run: [QlbCtrl.exe] . (.Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe ©
      O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe ©
      O4 - HKLM\..\Wow6432Node\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe (.not file.)
      O4 - HKLM\..\Wow6432Node\Run: [AppleSyncNotifier] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe ©
      O4 - HKLM\..\Wow6432Node\Run: [WirelessAssistant] . (.Hewlett-Packard Company - HP Wireless Assistant Main Program.) -- C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe ©
      O4 - HKLM\..\Wow6432Node\Run: [NPSStartup] (Orphean)
      O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe ©
      O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe ©
      O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe ©
      O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
      O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
      O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
      O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
      O4 - HKUS\S-1-5-21-214551639-1058236295-3883544487-1001\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - .) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe ©
      O4 - HKUS\S-1-5-21-214551639-1058236295-3883544487-1001\..\Run: [HPADVISOR] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe (.not file.)
      O4 - HKUS\S-1-5-21-214551639-1058236295-3883544487-1001\..\Run: [orangeinside] . (...) -- C:\Users\CAROLE\AppData\Roaming\Orange\OrangeInside\two\OrangeInside.exe
      O4 - HKUS\S-1-5-21-214551639-1058236295-3883544487-1001\..\Run: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe (.not file.)
      O4 - HKUS\S-1-5-21-214551639-1058236295-3883544487-1001\..\Run: [HP ENVY 4500 series (NET)] . (.Hewlett-Packard Co. - ScanToPCActivationApp.) -- C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe ©
      O4 - HKUS\S-1-5-21-214551639-1058236295-3883544487-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe ©
      O4 - HKUS\S-1-5-21-214551639-1058236295-3883544487-1001\..\Run: [iCloudServices] . (.Apple Inc. - iCloud.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe ©
      O4 - HKUS\S-1-5-21-214551639-1058236295-3883544487-1001\..\Run: [ApplePhotoStreams] . (.Apple Inc. - iCloud Photos.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe ©
      O4 - HKUS\S-1-5-21-214551639-1058236295-3883544487-1001\..\Run: [MailNotifier] . (.Orange - MailNotifier.) -- C:\Program Files (x86)\Orange\MailNotifier\MailNotifier.exe ©
      O4 - HKUS\S-1-5-21-214551639-1058236295-3883544487-1001\..\Run: [WindApp] C:\Users\CAROLE\AppData\Roaming\Store\WindApp\WindApp.exe (.not file.) =>PUP.Optional.Nosibay
      O4 - HKUS\S-1-5-21-214551639-1058236295-3883544487-1001\..\Run: [Selection Tools] C:\Users\CAROLE\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe (.not file.) =>PUP.Optional.Nosibay

      ---\\ Raccourcis Global Startup (1) - 3s
      O4 - GS\Startup [Public]: WebBrowserMixVideoPlayer.lnk . (.Copyright © 2015 - BrowserWeb.) C:\Program Files (x86)\MixVideoPlayer\BrowserWeb.exe =>PUP.Optional.MixVideoPlayer

      ---\\ Modification Domaine/Adresses DNS (3) - 0s
      O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
      O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
      O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1

      ---\\ Protocole additionnel (21) - 1s
      O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
      O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
      O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
      O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
      O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
      O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
      O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
      O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
      O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
      O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
      O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
      O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
      O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
      O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
      O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
      O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
      O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
      O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
      O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
      O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
      O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL ©

      ---\\ Liste des services NT non Microsoft et non désactivés (14) - 1s
      O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_d15ed671de43d681\AESTSr64.exe ©
      O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe ©
      O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe ©
      O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe ©
      O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
      O23 - Service: HP Service (hpsrv) . (.Hewlett-Packard - HpService.) - C:\Windows\system32\Hpservice.exe ©
      O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe ©
      O23 - Service: mumTaKG (mumTaKG) . (.Irrational Number Applications - WebShield Service.) - C:\ProgramData\YsIwCRHE\mumTaKG.exe =>PUP.Optional.WebShield
      O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 188.1.) - C:\Windows\system32\nvvsvc.exe ©
      O23 - Service: Orange update Core Service (Orange update Core Service) . (.Orange SA - Orange Upd@te.) - C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe ©
      O23 - Service: Protexis Licensing V2 (PSI_SVC_2) . (.Protexis Inc. - PsiService PsiService.) - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe ©
      O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Copyright 2004 - RichVideo Module.) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
      O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe ©
      O23 - Service: Audio Service (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_d15ed671de43d681\stacsv64.exe ©

      ---\\ Tâches planifiées en automatique (24) - 5s
      [MD5.4510E7A22B82BB99FFEE43953292BAD0] [APT] [CapSchedInst] (.CL.) -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSchedInst.exe [66856]
      [MD5.60747E27A2767B96E4A70DEAF73A30D7] [APT] [CapSvcInst] (.CL.) -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSvcInst.exe [66856]
      [MD5.86BA18FC1681C3274DA50BC6B07FAECD] [APT] [CapUninst] (.CL.) -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapUninst.exe [54568]
      [MD5.C6331D11F80B3AFFD91A9B3858E00F23] [APT] [CLMLSvc] (.CyberLink.) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [210216] ©
      [MD5.00000000000000000000000000000000] [APT] [DVDAgent] (...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe (.not file.) [0]
      [MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore1d0f3cab4d2f705] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
      [MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA1d0f3cab549d673] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
      [MD5.99C95C044F780209B1FDA39EC8E76DA6] [APT] [MixVideoPlayer Update] (.Copyright © 2014.) -- C:\Program Files (x86)\MixVideoPlayer\mixUpdater.exe [381440] =>PUP.Optional.MixVideoPlayer
      [MD5.00000000000000000000000000000000] [APT] [PhraseProfessor Auto Updater 1.10.0.24 Core] (...) -- C:\Program Files (x86)\PhraseProfessor_1.10.0.24\Update\PhraseProfessorAutoUpdateClient.exe (.not file.) [0] =>PUP.Optional.Generic
      [MD5.00000000000000000000000000000000] [APT] [PhraseProfessor Auto Updater 1.10.0.24 Pending Update] (...) -- C:\Program Files (x86)\PhraseProfessor_1.10.0.24\Update\PhraseProfessorAutoUpdateClient.exe (.not file.) [0] =>PUP.Optional.Generic
      [MD5.1CE55AE7E57826457FD56EB3C50E4E54] [APT] [TVAgent] (.CyberLink Corp..) -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe [415016] ©
      O39 - APT: GoogleUpdateTaskMachineCore1d0f3cab4d2f705 - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0f3cab4d2f705.job [1066] ©
      O39 - APT: GoogleUpdateTaskMachineUA1d0f3cab549d673 - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0f3cab549d673.job [1070] ©
      O39 - APT: CapSchedInst - (.CL.) -- C:\Windows\System32\Tasks\CapSchedInst [2824]
      O39 - APT: CapSvcInst - (.CL.) -- C:\Windows\System32\Tasks\CapSvcInst [2820]
      O39 - APT: CapUninst - (.CL.) -- C:\Windows\System32\Tasks\CapUninst [2818]
      O39 - APT: CLMLSvc - (.CyberLink.) -- C:\Windows\System32\Tasks\CLMLSvc [3200] ©
      O39 - APT: DVDAgent - (...) -- C:\Windows\System32\Tasks\DVDAgent [3164]
      O39 - APT: GoogleUpdateTaskMachineCore1d0f3cab4d2f705 - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d0f3cab4d2f705 [3814] ©
      O39 - APT: GoogleUpdateTaskMachineUA1d0f3cab549d673 - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d0f3cab549d673 [4066] ©
      O39 - APT: MixVideoPlayer Update - (.Copyright © 2014.) -- C:\Windows\System32\Tasks\MixVideoPlayer Update [3072] =>PUP.Optional.MixVideoPlayer
      O39 - APT: PhraseProfessor Auto Updater 1.10.0.24 Core - (...) -- C:\Windows\System32\Tasks\PhraseProfessor Auto Updater 1.10.0.24 Core [4198] =>PUP.Optional.Generic
      O39 - APT: PhraseProfessor Auto Updater 1.10.0.24 Pending Update - (...) -- C:\Windows\System32\Tasks\PhraseProfessor Auto Updater 1.10.0.24 Pending Update [4212] =>PUP.Optional.Generic
      O39 - APT: TVAgent - (.CyberLink Corp..) -- C:\Windows\System32\Tasks\TVAgent [3170] ©

      ---\\ Logiciels installés (111) - 10s
      O42 - Logiciel: ENE CIR Receiver Driver - (.ENE.) [HKLM][64Bits] -- FFE7D41DF3C645075BB149E21988B63996C34187 ©
      O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Drivers ©
      O42 - Logiciel: SAMSUNG Android USB Modem Software - (...) [HKLM][64Bits] -- SAMSUNG Android USB Modem
      O42 - Logiciel: SAMSUNG Mobile Composite Device Software - (...) [HKLM][64Bits] -- SAMSUNG Mobile Composite Device
      O42 - Logiciel: SAMSUNG Mobile Modem Driver Set - (...) [HKLM][64Bits] -- SAMSUNG Mobile Modem
      O42 - Logiciel: Samsung Mobile Modem Device Software - (...) [HKLM][64Bits] -- Samsung Mobile Modem Device
      O42 - Logiciel: SAMSUNG Mobile Modem V2 Software - (...) [HKLM][64Bits] -- SAMSUNG Mobile Modem V2
      O42 - Logiciel: Samsung Mobile phone USB driver Drive Software - (...) [HKLM][64Bits] -- Samsung Mobile phone USB driver Drive
      O42 - Logiciel: SAMSUNG Mobile USB Modem Software - (...) [HKLM][64Bits] -- SAMSUNG Mobile USB Modem
      O42 - Logiciel: SAMSUNG Mobile USB Modem 1.0 Software - (...) [HKLM][64Bits] -- SAMSUNG Mobile USB Modem 1.0
      O42 - Logiciel: Samsung Mobile USB Modem Device Software - (...) [HKLM][64Bits] -- Samsung Mobile USB Modem Device
      O42 - Logiciel: SAMSUNG USB Mobile Device Software - (...) [HKLM][64Bits] -- SAMSUNG USB Mobile Device
      O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey ©
      O42 - Logiciel: VirtualCom driver - (.ait.) [HKLM][64Bits] -- {19639A51-FCC5-40BA-9F07-D8292A07249B}
      O42 - Logiciel: Logiciel de base du périphérique HP ENVY 4500 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {210AEDB6-FC49-4F63-8924-99C6758EF9D4} ©
      O42 - Logiciel: Java 8 Update 31 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86418031F0} ©
      O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {5D61F006-168C-4B8B-B7FD-F113C10AE0E4} ©
      O42 - Logiciel: Java(TM) SE Development Kit 6 Update 15 (64-bit) - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {64A3A4F4-B792-11D6-A78A-00B0D0160150} ©
      O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {6CF1A7E2-8001-4870-9F18-3C6CDD6FE9E3} ©
      O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D} ©
      O42 - Logiciel: iCloud - (.Apple Inc..) [HKLM][64Bits] -- {709A2D23-C25E-47B5-9268-CB6FEE648504} ©
      O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM][64Bits] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1 ©
      O42 - Logiciel: HP MediaSmart SmartMenu - (.Hewlett-Packard.) [HKLM][64Bits] -- {88E60521-1E4E-4785-B9F1-1798A4BD0C30} ©
      O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
      O42 - Logiciel: HP 3D DriveGuard - (.Hewlett-Packard.) [HKLM][64Bits] -- {8FCDACA0-E090-4A9A-AC71-A96E7371DC6E} ©
      O42 - Logiciel: Intel® Matrix Storage Manager - (.Intel Corporation.) [HKLM][64Bits] -- {9068B2BE-D93A-4C0A-861C-5E35E2C0E09E} ©
      O42 - Logiciel: Apple Application Support (64 bits) - (.Apple Inc..) [HKLM][64Bits] -- {B255D495-4734-4E9B-B4F5-96702FD4A7B9} ©
      O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR ©
      O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- avast ©
      O42 - Logiciel: Contextual Tool Lightspeedincome - (...) [HKLM][64Bits] -- b55ee033
      O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome ©
      O42 - Logiciel: GoPro Studio 2.0.1 - (.WoodmanLabs Inc. d.b.a. GoPro.) [HKLM][64Bits] -- GoPro Studio
      O42 - Logiciel: HP Photo Creations - (.HP.) [HKLM][64Bits] -- HP Photo Creations ©
      O42 - Logiciel: HP MediaSmart Webcam - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D} ©
      O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79} ©
      O42 - Logiciel: Movie Theme Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E} ©
      O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658} ©
      O42 - Logiciel: HP MediaSmart Live TV - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{67626E09-5366-4480-8F1E-93FADF50CA15} ©
      O42 - Logiciel: HP MediaSmart Music/Photo/Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E} ©
      O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243} ©
      O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1} ©
      O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A} ©
      O42 - Logiciel: HP MediaSmart Internet TV - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5} ©
      O42 - Logiciel: Corel VideoStudio 12 - (.Corel Corporation.) [HKLM][64Bits] -- InstallShield_{F0FDF9C9-1DDC-401F-B638-36F1CAE8A875} ©
      O42 - Logiciel: DVD Menu Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF} ©
      O42 - Logiciel: Notification Mail - (.Orange.) [HKLM][64Bits] -- MailNotifier ©
      O42 - Logiciel: Vittalia Installer - (.www.TELECHARGERSTOP.com.) [HKLM][64Bits] -- Vittalia =>PUP.Optional.Vittalia
      O42 - Logiciel: VLC media player 2.0.5 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player ©
      O42 - Logiciel: Web Shield - (.Irrational Number Applications.) [HKLM][64Bits] -- WebShield =>PUP.Optional.WebShield
      O42 - Logiciel: Windows Media Encoder 9 Series - (...) [HKLM][64Bits] -- Windows Media Encoder 9
      O42 - Logiciel: Logiciel d'archivage WinRAR - (...) [HKLM][64Bits] -- WinRAR archiver
      O42 - Logiciel: HP MediaSmart Webcam - (.Hewlett-Packard.) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D} ©
      O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544} ©
      O42 - Logiciel: HP Setup - (.Hewlett-Packard.) [HKLM][64Bits] -- {17B4760F-334B-475D-829F-1A3E94A6A4E6} ©
      O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} ©
      O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79} ©
      O42 - Logiciel: Skype(TM) 7.0 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7} ©
      O42 - Logiciel: ActiveCheck component for HP Active Support Library - (.Hewlett-Packard.) [HKLM][64Bits] -- {254C37AA-6B72-4300-84F6-98A82419187E} ©
      O42 - Logiciel: JMicron Flash Media Controller Driver - (.JMicron Technology Corp..) [HKLM][64Bits] -- {26604C7E-A313-4D12-867F-7C6E7820BE4C} ©
      O42 - Logiciel: Java 8 Update 31 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218031F0} ©
      O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40} ©
      O42 - Logiciel: Movie Theme Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {3023EBDA-BF1B-4831-B347-E5018555F26E} ©
      O42 - Logiciel: HP Quick Launch Buttons - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {34D2AB40-150D-475D-AE32-BD23FB5EE355} ©
      O42 - Logiciel: ESU for Microsoft Windows 7 - (.Hewlett-Packard.) [HKLM][64Bits] -- {3877C901-7B90-4727-A639-B6ED2DD59D43} ©
      O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B160861-7250-451E-B5EE-8B92BF30A710} ©
      O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- {40BF1E83-20EB-11D8-97C5-0009C5020658} ©
      O42 - Logiciel: Recovery Manager - (.CyberLink Corp..) [HKLM][64Bits] -- {44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5} ©
      O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM][64Bits] -- {4E432692-A736-4F77-AF77-F9078CF88D31} ©
      O42 - Logiciel: msvcrt_installer - (.SAH.) [HKLM][64Bits] -- {6068A42A-C1CF-45F2-9859-5DB16287FE5D} ©
      O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
      O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM][64Bits] -- {627FFC10-CE0A-497F-BA2B-208CAC638010} ©
      O42 - Logiciel: Corel Paint Shop Pro Photo X2 - (.Corel Corporation.) [HKLM][64Bits] -- {64E72FB1-2343-4977-B4A8-262CD53D0BD3} ©
      O42 - Logiciel: HPAsset component for HP Active Support Library - (.Hewlett-Packard.) [HKLM][64Bits] -- {669D4A35-146B-4314-89F1-1AC3D7B88367} ©
      O42 - Logiciel: HP MediaSmart Live TV - (.Hewlett-Packard.) [HKLM][64Bits] -- {67626E09-5366-4480-8F1E-93FADF50CA15} ©
      O42 - Logiciel: LibreOffice 4.2.4.2 - (.The Document Foundation.) [HKLM][64Bits] -- {6B4977CB-5B9F-4B24-8310-3BA527A8AF22} ©
      O42 - Logiciel: Complément Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6E5324C1-84FC-4F76-9A3A-C65E07F80EE6} ©
      O42 - Logiciel: Hewlett-Packard ACLM.NET v1.1.0.0 - (.Hewlett-Packard.) [HKLM][64Bits] -- {6F340107-F9AA-47C6-B54C-C3A19F11553F} ©
      O42 - Logiciel: Apple Application Support (32 bits) - (.Apple Inc..) [HKLM][64Bits] -- {7FE25256-B7C1-480D-B736-10A67A833AEA} ©
      O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {817750FA-EC6A-485D-9901-0683AE6FFDF1} ©
      O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} ©
      O42 - Logiciel: Realtek Ethernet Controller Driver For Windows Vista and Later - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} ©
      O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E} ©
      O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} ©
      O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {912D30CF-F39E-4B31-AD9A-123C6B794EE2} ©
      O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A0087DDE-69D0-11E2-AD57-43CA6188709B} ©
      O42 - Logiciel: ToolbarFR - (.Orange.) [HKLM][64Bits] -- {A047FE02-C91C-41CB-898C-4ED21B86025A} ©
      O42 - Logiciel: HP Product Detection - (.HP.) [HKLM][64Bits] -- {A436F67F-687E-4736-BD2B-537121A804CF} ©
      O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} ©
      O42 - Logiciel: Adobe Reader 9.5.5 MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001} ©
      O42 - Logiciel: HP MediaSmart Music/Photo/Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {B2EE25B9-5B00-4ACF-94F0-92433C28C39E} ©
      O42 - Logiciel: HP User Guides 0154 - (.Hewlett-Packard.) [HKLM][64Bits] -- {B51605BF-6326-4553-AE96-6D7F1813D5F5} ©
      O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard.) [HKLM][64Bits] -- {B60DCA15-56A3-4D2D-8747-22CF7D7B588B} ©
      O42 - Logiciel: HP ENVY 4500 series Aide - (.Hewlett Packard.) [HKLM][64Bits] -- {BAF28CCD-121D-4C6C-B29D-4F7B51B2D1B4} ©
      O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243} ©
      O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {C6579A65-9CAE-4B31-8B6B-3306E0630A66} ©
      O42 - Logiciel: Safari - (.Apple Inc..) [HKLM][64Bits] -- {C779648B-410E-4BBA-B75B-5815BCEFE71D} ©
      O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1} ©
      O42 - Logiciel: LightScribe System Software - (.LightScribe.) [HKLM][64Bits] -- {CC8E94A2-55C7-4460-953C-2A790180578C} ©
      O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {CFF8B8E8-E086-4DE0-935F-FE22CAB54F80} ©
      O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} ©
      O42 - Logiciel: Orange Installeur version 1.2.3.1 - (.Orange.) [HKLM][64Bits] -- {D13FE823-C575-4451-AC37-E645A67AA581}_1.2.3.1 ©
      O42 - Logiciel: Adobe Shockwave Player - (.Adobe Systems, Inc..) [HKLM][64Bits] -- {D8DFA46A-39F7-4368-810D-18AFCFDDAEAF} ©
      O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM][64Bits] -- {DCCAD079-F92C-44DA-B258-624FC6517A5A} ©
      O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} ©
      O42 - Logiciel: Windows Media Encoder 9 Series - (.Microsoft Corporation.) [HKLM][64Bits] -- {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E} ©
      O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001} ©
      O42 - Logiciel: HP MediaSmart Internet TV - (.Hewlett-Packard.) [HKLM][64Bits] -- {E553760D-D7F7-48BF-BD8B-C7E23BA04CB5} ©
      O42 - Logiciel: QLBCASL - (.Hewlett-Packard.) [HKLM][64Bits] -- {F1D7AC58-554A-4A58-B784-B61558B1449A} ©
      O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} ©
      O42 - Logiciel: DVD Menu Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {FB4BB287-37F9-4E27-9C4D-2D3882E08EFF} ©
      O42 - Logiciel: Orange Inside - (.Orange.) [HKCU][64Bits] -- Orange Inside ©

      ---\\ HKCU & HKLM Software Keys (127) - 10s
      HKLM\SOFTWARE\Wow6432Node\Adobe
      HKLM\SOFTWARE\Wow6432Node\AdwCleaner
      HKLM\SOFTWARE\Wow6432Node\ALWIL Software
      HKLM\SOFTWARE\Wow6432Node\AppDataLow
      HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
      HKLM\SOFTWARE\Wow6432Node\Apple Inc.
      HKLM\SOFTWARE\Wow6432Node\ArenaHD =>PUP.Optional.CrossRider
      HKLM\SOFTWARE\Wow6432Node\AVAST Software
      HKLM\SOFTWARE\Wow6432Node\Caphyon
      HKLM\SOFTWARE\Wow6432Node\CinemaPlus-4.2vV25.08 =>PUP.Optional.CrossRider
      HKLM\SOFTWARE\Wow6432Node\Corel
      HKLM\SOFTWARE\Wow6432Node\Cyberlink
      HKLM\SOFTWARE\Wow6432Node\Digital River
      HKLM\SOFTWARE\Wow6432Node\EasyBits
      HKLM\SOFTWARE\Wow6432Node\GlobalUpdate =>PUP.Optional.GlobalUpdate
      HKLM\SOFTWARE\Wow6432Node\Google
      HKLM\SOFTWARE\Wow6432Node\GoPro
      HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard
      HKLM\SOFTWARE\Wow6432Node\HighDefAction =>PUP.Optional.CrossRider
      HKLM\SOFTWARE\Wow6432Node\HP
      HKLM\SOFTWARE\Wow6432Node\HPQ
      HKLM\SOFTWARE\Wow6432Node\HPQLOG
      HKLM\SOFTWARE\Wow6432Node\IDT
      HKLM\SOFTWARE\Wow6432Node\ihpmserver
      HKLM\SOFTWARE\Wow6432Node\IM Providers
      HKLM\SOFTWARE\Wow6432Node\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
      HKLM\SOFTWARE\Wow6432Node\Intel
      HKLM\SOFTWARE\Wow6432Node\InterVideo
      HKLM\SOFTWARE\Wow6432Node\istartsurfSoftware =>PUP.Optional.IsStart
      HKLM\SOFTWARE\Wow6432Node\JavaSoft
      HKLM\SOFTWARE\Wow6432Node\JreMetrics
      HKLM\SOFTWARE\Wow6432Node\LibreOffice
      HKLM\SOFTWARE\Wow6432Node\Licenses
      HKLM\SOFTWARE\Wow6432Node\LightScribe
      HKLM\SOFTWARE\Wow6432Node\Macromedia
      HKLM\SOFTWARE\Wow6432Node\MarkAny
      HKLM\SOFTWARE\Wow6432Node\MaxPower
      HKLM\SOFTWARE\Wow6432Node\McAfee.com
      HKLM\SOFTWARE\Wow6432Node\mcafeeupdater
      HKLM\SOFTWARE\Wow6432Node\MixVideoPlayer =>PUP.Optional.MixVideoPlayer
      HKLM\SOFTWARE\Wow6432Node\Mozilla
      HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
      HKLM\SOFTWARE\Wow6432Node\ODBC
      HKLM\SOFTWARE\Wow6432Node\Orange
      HKLM\SOFTWARE\Wow6432Node\P2G_Upgrade
      HKLM\SOFTWARE\Wow6432Node\PDR_Upgrade
      HKLM\SOFTWARE\Wow6432Node\PhraseProfessor_1.10.0.24 =>PUP.Optional.Generic
      HKLM\SOFTWARE\Wow6432Node\RayDld
      HKLM\SOFTWARE\Wow6432Node\Realtek
      HKLM\SOFTWARE\Wow6432Node\RocketLife
      HKLM\SOFTWARE\Wow6432Node\Samsung
      HKLM\SOFTWARE\Wow6432Node\SECURITOO
      HKLM\SOFTWARE\Wow6432Node\Skype
      HKLM\SOFTWARE\Wow6432Node\SmartSound Software
      HKLM\SOFTWARE\Wow6432Node\Stellar Information Systems Ltd.
      HKLM\SOFTWARE\Wow6432Node\Symantec
      HKLM\SOFTWARE\Wow6432Node\The Document Foundation
      HKLM\SOFTWARE\Wow6432Node\Tutorials =>PUP.Optional.AgenceExclusive
      HKLM\SOFTWARE\Wow6432Node\Ulead Systems
      HKLM\SOFTWARE\Wow6432Node\VideoLAN
      HKLM\SOFTWARE\Wow6432Node\Visan
      HKLM\SOFTWARE\Wow6432Node\Vittalia =>PUP.Optional.Vittalia
      HKLM\SOFTWARE\Wow6432Node\Volatile
      HKLM\SOFTWARE\Wow6432Node\webtogo
      HKLM\SOFTWARE\Wow6432Node\WildTangent
      HKLM\SOFTWARE\Wow6432Node\Windows
      HKLM\SOFTWARE\Wow6432Node\WinRAR
      HKLM\SOFTWARE\Wow6432Node\YorkNewCin =>PUP.Optional.CrossRider
      HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
      HKCU\SOFTWARE\ACE Compression Software
      HKCU\SOFTWARE\Adobe
      HKCU\SOFTWARE\ALWIL Software
      HKCU\SOFTWARE\AppDataLow
      HKCU\SOFTWARE\Apple Computer, Inc.
      HKCU\SOFTWARE\Apple Inc.
      HKCU\SOFTWARE\AVAST Software
      HKCU\SOFTWARE\Canneverbe Limited
      HKCU\SOFTWARE\CineForm
      HKCU\SOFTWARE\Conduit =>PUP.Optional.Conduit
      HKCU\SOFTWARE\Corel
      HKCU\SOFTWARE\CyberLink
      HKCU\SOFTWARE\DailyPcClean =>PUP.Optional.DailyPCClean
      HKCU\SOFTWARE\EasyBits
      HKCU\SOFTWARE\Google
      HKCU\SOFTWARE\GoPro
      HKCU\SOFTWARE\Hewlett-Packard
      HKCU\SOFTWARE\HP
      HKCU\SOFTWARE\IDT
      HKCU\SOFTWARE\IM Providers
      HKCU\SOFTWARE\Intel
      HKCU\SOFTWARE\JavaSoft
      HKCU\SOFTWARE\kde.org
      HKCU\SOFTWARE\LightScribe
      HKCU\SOFTWARE\Macromedia
      HKCU\SOFTWARE\maxdriverupdater =>PUP.Optional.MaxDriverUpdater
      HKCU\SOFTWARE\MCAFEE
      HKCU\SOFTWARE\mozilla
      HKCU\SOFTWARE\MozillaPlugins
      HKCU\SOFTWARE\Netscape
      HKCU\SOFTWARE\Norton
      HKCU\SOFTWARE\Nosibay =>PUP.Optional.SPointer
      HKCU\SOFTWARE\NVIDIA Corporation
      HKCU\SOFTWARE\ODBC
      HKCU\SOFTWARE\Orange
      HKCU\SOFTWARE\OrangeInside
      HKCU\SOFTWARE\RegisteredApplications
      HKCU\SOFTWARE\RPCD
      HKCU\SOFTWARE\Samsung
      HKCU\SOFTWARE\Skype
      HKCU\SOFTWARE\Stellar
      HKCU\SOFTWARE\Store =>PUP.Optional.Generic
      HKCU\SOFTWARE\Synaptics
      HKCU\SOFTWARE\The Document Foundation
      HKCU\SOFTWARE\Trolltech
      HKCU\SOFTWARE\tstamptoken =>PUP.Optional.MaxComputerCleaner
      HKCU\SOFTWARE\tutoriales =>PUP.Optional.AgenceExclusive
      HKCU\SOFTWARE\Visan
      HKCU\SOFTWARE\WinRAR
      HKCU\SOFTWARE\WinRAR SFX
      HKCU\SOFTWARE\Wow6432Node
      HKCU\SOFTWARE\WTools
      HKCU\SOFTWARE\ZebHelpProcess Helper
      HKCU\SOFTWARE\AppDataLow\c8a357ba
      HKCU\SOFTWARE\AppDataLow\Software
      HKCU\SOFTWARE\AppDataLow\Software\DynConIE =>PUP.Optional.DynConIE
      HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
      HKCU\SOFTWARE\AppDataLow\Software\Orange

      ---\\ Contenu des dossiers Programmes (270) - 16s
      O43 - CFD: 2015/09/20 18:22:06 - [0] D -- C:\Program Files (x86)\4c59f806-4d04-4c29-a5b0-35d7f506a559 =>PUP.Optional.CrossRider
      O43 - CFD: 2013/04/18 12:40:43 - [] D -- C:\Program Files (x86)\Adobe
      O43 - CFD: 2011/07/05 20:17:29 - [] D -- C:\Program Files (x86)\Apple Software Update
      O43 - CFD: 2011/11/15 22:00:43 - [] D -- C:\Program Files (x86)\Bonjour
      O43 - CFD: 2013/12/22 19:58:11 - [] D -- C:\Program Files (x86)\CineForm
      O43 - CFD: 2015/09/20 18:22:06 - [] D -- C:\Program Files (x86)\CinemaPlus-4.2vV25.08 =>PUP.Optional.CrossRider
      O43 - CFD: 2015/09/13 15:25:58 - [] D -- C:\Program Files (x86)\Common Files
      O43 - CFD: 2010/02/24 02:41:25 - [] D -- C:\Program Files (x86)\Corel
      O43 - CFD: 2010/01/09 02:17:48 - [] D -- C:\Program Files (x86)\CyberLink
      O43 - CFD: 2011/02/28 18:38:57 - [] D -- C:\Program Files (x86)\EasyBits For Kids - Backup
      O43 - CFD: 2015/05/30 00:07:37 - [] D -- C:\Program Files (x86)\Google
      O43 - CFD: 2014/07/24 20:00:22 - [] D -- C:\Program Files (x86)\GoPro
      O43 - CFD: 2014/04/23 20:12:18 - [] D -- C:\Program Files (x86)\Hewlett-Packard
      O43 - CFD: 2014/04/23 20:12:08 - [] D -- C:\Program Files (x86)\Hp
      O43 - CFD: 2014/11/23 13:25:30 - [] D -- C:\Program Files (x86)\HP Games
      O43 - CFD: 2014/04/23 20:12:17 - [] D -- C:\Program Files (x86)\HP Photo Creations
      O43 - CFD: 2011/11/15 21:18:52 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
      O43 - CFD: 2010/02/24 02:24:02 - [] D -- C:\Program Files (x86)\Intel
      O43 - CFD: 2015/09/13 15:25:58 - [] D -- C:\Program Files (x86)\Internet Explorer
      O43 - CFD: 2015/07/14 21:19:06 - [] D -- C:\Program Files (x86)\iTunes
      O43 - CFD: 2015/02/11 22:53:19 - [] D -- C:\Program Files (x86)\Java
      O43 - CFD: 2010/02/24 02:20:24 - [] D -- C:\Program Files (x86)\JMicron
      O43 - CFD: 2014/05/16 15:48:24 - [] D -- C:\Program Files (x86)\LibreOffice 4
      O43 - CFD: 2010/01/09 00:21:28 - [] D -- C:\Program Files (x86)\Microsoft
      O43 - CFD: 2015/04/06 21:50:05 - [] D -- C:\Program Files (x86)\Microsoft Office
      O43 - CFD: 2010/01/09 01:19:50 - [] D -- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant
      O43 - CFD: 2015/08/12 10:14:49 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
      O43 - CFD: 2010/01/09 00:22:14 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
      O43 - CFD: 2012/10/14 12:30:41 - [] D -- C:\Program Files (x86)\Microsoft Works
      O43 - CFD: 2015/09/13 15:25:58 - [] D -- C:\Program Files (x86)\Microsoft.NET
      O43 - CFD: 2015/09/20 18:20:53 - [] D -- C:\Program Files (x86)\MixVideoPlayer =>PUP.Optional.MixVideoPlayer
      O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\MSBuild
      O43 - CFD: 2010/04/17 19:01:40 - [0] D -- C:\Program Files (x86)\MSXML 4.0
      O43 - CFD: 2010/04/13 20:15:35 - [] RD -- C:\Program Files (x86)\Online Services
      O43 - CFD: 2011/11/15 18:59:37 - [] D -- C:\Program Files (x86)\Orange
      O43 - CFD: 2015/09/20 19:45:50 - [0] D -- C:\Program Files (x86)\predm =>PUP.Optional.Downware
      O43 - CFD: 2015/07/14 20:56:31 - [] D -- C:\Program Files (x86)\QuickTime
      O43 - CFD: 2015/09/20 19:32:32 - [0] D -- C:\Program Files (x86)\RayDld
      O43 - CFD: 2010/02/24 02:21:35 - [] D -- C:\Program Files (x86)\Realtek
      O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies
      O43 - CFD: 2012/05/24 21:54:39 - [] D -- C:\Program Files (x86)\Safari
      O43 - CFD: 2015/04/20 22:09:40 - [] D -- C:\Program Files (x86)\Samsung
      O43 - CFD: 2015/04/16 17:05:15 - [] RD -- C:\Program Files (x86)\Skype
      O43 - CFD: 2014/07/23 09:11:44 - [] D -- C:\Program Files (x86)\SoftwareUpdater
      O43 - CFD: 2009/07/14 06:57:06 - [0] HD -- C:\Program Files (x86)\Uninstall Information
      O43 - CFD: 2012/11/16 19:36:53 - [] D -- C:\Program Files (x86)\VideoLAN
      O43 - CFD: 2013/06/27 17:10:33 - [] D -- C:\Program Files (x86)\Vittalia =>PUP.Optional.Vittalia
      O43 - CFD: 2013/07/11 10:56:59 - [] D -- C:\Program Files (x86)\Windows Defender
      O43 - CFD: 2012/08/17 14:28:52 - [] D -- C:\Program Files (x86)\Windows Live
      O43 - CFD: 2011/11/24 14:43:01 - [] D -- C:\Program Files (x86)\Windows Mail
      O43 - CFD: 2010/02/24 02:43:38 - [] D -- C:\Program Files (x86)\Windows Media Components
      O43 - CFD: 2015/06/11 19:24:46 - [] D -- C:\Program Files (x86)\Windows Media Player
      O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Windows NT
      O43 - CFD: 2011/11/24 14:43:01 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
      O43 - CFD: 2011/11/24 14:43:01 - [] D -- C:\Program Files (x86)\Windows Portable Devices
      O43 - CFD: 2011/11/24 14:43:01 - [] D -- C:\Program Files (x86)\Windows Sidebar
      O43 - CFD: 2010/04/20 17:57:01 - [] D -- C:\Program Files (x86)\WinRAR
      O43 - CFD: 2015/09/13 15:26:00 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
      O43 - CFD: 2009/07/14 06:57:13 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
      O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel Paint Shop Pro Photo X2
      O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel VideoStudio 12
      O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
      O43 - CFD: 2015/09/13 15:26:00 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
      O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
      O43 - CFD: 2014/07/24 20:00:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GoPro
      O43 - CFD: 2015/09/13 15:26:00 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
      O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
      O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
      O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
      O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
      O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.2
      O43 - CFD: 2015/09/13 15:26:00 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LightScribe Direct Disc Labeling
      O43 - CFD: 2009/07/14 06:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
      O43 - CFD: 2015/09/13 15:26:00 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
      O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
      O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
      O43 - CFD: 2015/09/20 18:20:47 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MixVideoPlayer =>PUP.Optional.MixVideoPlayer
      O43 - CFD: 2015/09/13 15:26:00 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Online Services
      O43 - CFD: 2015/03/15 15:55:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Orange
      O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
      O43 - CFD: 2015/09/13 15:26:01 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recovery Manager
      O43 - CFD: 2015/09/13 15:26:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
      O43 - CFD: 2015/09/20 18:20:47 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
      O43 - CFD: 2015/09/13 15:26:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
      O43 - CFD: 2015/09/13 15:26:01 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
      O43 - CFD: 2015/09/13 15:26:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media
      O43 - CFD: 2015/09/13 15:26:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
      O43 - CFD: 2015/01/02 10:25:11 - [] D -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
      O43 - CFD: 2013/03/02 20:09:02 - [] D -- C:\ProgramData\Adobe
      O43 - CFD: 2010/08/25 23:01:09 - [] D -- C:\ProgramData\Alwil Software
      O43 - CFD: 2014/02/20 21:14:57 - [] D -- C:\ProgramData\Apple
      O43 - CFD: 2010/04/27 23:40:35 - [] D -- C:\ProgramData\Apple Computer
      O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Application Data
      O43 - CFD: 2014/10/03 22:44:20 - [] D -- C:\ProgramData\AVAST Software
      O43 - CFD: 2010/04/13 20:13:55 - [0] SHD -- C:\ProgramData\Bureau
      O43 - CFD: 2011/06/23 22:33:47 - [] D -- C:\ProgramData\Canneverbe Limited
      O43 - CFD: 2010/02/24 02:29:51 - [] D -- C:\ProgramData\Corel
      O43 - CFD: 2014/01/11 21:52:37 - [] D -- C:\ProgramData\CyberLink
      O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Desktop
      O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Documents
      O43 - CFD: 2015/07/14 21:18:37 - [] D -- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
      O43 - CFD: 2015/09/20 18:24:35 - [] D -- C:\ProgramData\Earlluviubuw
      O43 - CFD: 2014/01/15 18:43:36 - [] D -- C:\ProgramData\Easybits
      O43 - CFD: 2013/10/27 12:32:15 - [0] D -- C:\ProgramData\eMule
      O43 - CFD: 2010/04/13 20:13:55 - [0] SHD -- C:\ProgramData\Favoris
      O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Favorites
      O43 - CFD: 2010/04/18 14:11:45 - [] D -- C:\ProgramData\Google
      O43 - CFD: 2011/04/05 14:06:28 - [] D -- C:\ProgramData\Hewlett-Packard
      O43 - CFD: 2014/04/23 20:11:18 - [] D -- C:\ProgramData\HP
      O43 - CFD: 2014/04/23 20:12:17 - [] D -- C:\ProgramData\HP Photo Creations
      O43 - CFD: 2010/02/24 02:45:28 - [] D -- C:\ProgramData\InterVideo
      O43 - CFD: 2013/03/02 20:08:52 - [] D -- C:\ProgramData\McAfee
      O43 - CFD: 2010/04/13 20:13:55 - [0] SHD -- C:\ProgramData\Menu Démarrer
      O43 - CFD: 2015/09/13 15:26:01 - [] SD -- C:\ProgramData\Microsoft
      O43 - CFD: 2015/09/11 23:44:49 - [] D -- C:\ProgramData\Microsoft Help
      O43 - CFD: 2010/04/13 20:13:55 - [0] SHD -- C:\ProgramData\Modèles
      O43 - CFD: 2011/09/14 19:16:52 - [] D -- C:\ProgramData\Norton
      O43 - CFD: 2010/02/24 02:48:44 - [] D -- C:\ProgramData\NortonInstaller
      O43 - CFD: 2015/09/13 15:26:01 - [] D -- C:\ProgramData\NVIDIA
      O43 - CFD: 2015/02/11 22:53:48 - [] D -- C:\ProgramData\Oracle
      O43 - CFD: 2011/11/23 20:49:26 - [] D -- C:\ProgramData\Orange
      O43 - CFD: 2011/01/08 19:34:16 - [] D -- C:\ProgramData\PC Suite
      O43 - CFD: 2010/05/03 11:03:08 - [] D -- C:\ProgramData\Recovery
      O43 - CFD: 2015/04/16 17:05:22 - [] D -- C:\ProgramData\Skype
      O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Start Menu
      O43 - CFD: 2010/05/19 22:02:09 - [] D -- C:\ProgramData\Sun
      O43 - CFD: 2014/09/16 20:45:56 - [] AD -- C:\ProgramData\Temp
      O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Templates
      O43 - CFD: 2010/02/24 02:41:30 - [] D -- C:\ProgramData\Ulead Systems
      O43 - CFD: 2014/04/23 20:12:17 - [] D -- C:\ProgramData\Visan
      O43 - CFD: 2015/09/20 18:19:42 - [] D -- C:\ProgramData\WebShield =>PUP.Optional.WebShield
      O43 - CFD: 2010/01/09 00:54:57 - [] D -- C:\ProgramData\WildTangent
      O43 - CFD: 2015/09/20 18:21:08 - [] D -- C:\ProgramData\YsIwCRHE
      O43 - CFD: 2011/04/05 14:16:05 - [] D -- C:\ProgramData\{23D58E70-3B83-4B83-A227-68770F84F5EC}
      O43 - CFD: 2010/04/27 23:40:49 - [] D -- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
      O43 - CFD: 2010/06/13 02:39:17 - [] D -- C:\ProgramData\{DA06AA03-DF24-4ECE-939E-1B0939235C66}
      O43 - CFD: 2010/02/24 02:51:02 - [] D -- C:\ProgramData\{F2E8831F-467B-4311-B6BA-1BC1D244539A}
      O43 - CFD: 2012/07/06 09:45:58 - [] D -- C:\Program Files (x86)\Common Files\Adobe
      O43 - CFD: 2013/04/18 12:40:40 - [] D -- C:\Program Files (x86)\Common Files\Adobe A
      0
    2. caro
       
      artaban 7 je crois que tu as la solution stp
      0
    3. Malekal_morte- Messages postés 178136 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   24 712
       
      Un nettoyage AdwCleaner et ZHPCleaner devrait suffir.
      0
    4. caro
       
      Bonsoir, ok, comment je dois faire ?
      0
  3. artaban7 Messages postés 2282 Statut Membre 90
     
    bonsoir,

    on va voir ensemble :

    Pour le diagnostique il s'agit de ce logiciel : https://nicolascoolman.eu

    il suffit de le lancer, de choisir "complet", il va ensuite créer un rapport du système sur le bureau au format .txt qu'il faudra transmettre ici à l'aide de : http://pjjoint.malekal.com/

    Si tu as besoins d'explication sur des points précis comme l'utilisation du générateur de fichier, n'hésites pas..
    -1