Desinstallation impossible de Web Shield

Résolu

charlin3 Messages postés 47 Date d'inscription Statut Membre Dernière intervention -
caro - 20 sept. 2015 à 23:26

Bonjour,
j'ai vu arriver sur ma machine ,(comment ?) un truc dont je n'arrive à me défaire : Web Shield ...toutes les tentatives de désinstallation sont sans effet ... et cela me donne droit à des enquêtes s'ouvrant intempestivement chaque fois que je visite un site Web] ...quelqu'un peut-il m'aider à me défaire de cet intrus ???
merci d'avance
Charlin 3

Afficher la suite

A voir également:

Total webshield uninstall
Web shield is off - Meilleures réponses
Total webshield - Meilleures réponses
Web office - Guide
Navigateur web - Guide
Creation de site web - Guide
K9 web protection - Télécharger - Contrôle parental
Adresse web exemple - Guide

3 réponses

Réponse 1 / 3

charlin3 Messages postés 47 Date d'inscription Statut Membre Dernière intervention

bonsoir artaban et merci pour ton aide :
j'ai lancé le scan et eu un rapport complet dont tu peux
prendre connaissance ici :

https://pjjoint.malekal.com/files.php?id=ZHPDiag_20150515_6x15x13f13y9
en fait sur le site de Web Shield , en anglais only , ils te disent que la désinstallation est facile , avec installation désinstallation de programmes de Windows , sauf que le clic sur Web Shield qui figure dans la liste des programmes figurant sur mon ordi n'a aucun effet ...

artaban7 Messages postés 2204 Date d'inscription Statut Membre Dernière intervention 90

ok, on va voir, ne cliques pas sur leur machin , des fois que ça soit piégé :)

artaban7 Messages postés 2204 Date d'inscription Statut Membre Dernière intervention 90

j'ai un soucis de mon côté, il semblerait que le rapport soit invalide, tu peux en faire un autre mais avec la fonction "recherche" ? :)

artaban7 Messages postés 2204 Date d'inscription Statut Membre Dernière intervention 90

sachant que tu as pas mal de malwares, tu peux passer ceci :

1)ZHP cleaner sur ce lien : https://nicolascoolman.eu

Faits un scan et un nettoyage ....

2) ADWcleaner , ici : https://nicolascoolman.eu

Là aussi scan et nettoyage et bien sur redémarrage.

il me faudra ensuite un nouvau rapport ZHPdiag , mais il doit être fait après redémarrage ....

c'est chiant de faire des ZHPdiag, mais ils me permettent de voir évoluer les réactions de ton système au fur et à mesure de la désinfection...

NB : il est possible qu'il faille suspendre AVAST pendant le passage de ZHPcleaner.

charlin3 Messages postés 47 Date d'inscription Statut Membre Dernière intervention > artaban7 Messages postés 2204 Date d'inscription Statut Membre Dernière intervention

bonjour Artaban , tu travailles tard ;))

voici le rapport généré par la fonction recherche:
~ Rapport de ZHPDiag v2015.5.13.48 - Nicolas Coolman (13/05/2015)
~ Lancé par charlie (16/05/2015 07:46:18)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Adresse du Forum https://nicolascoolman.eu
~ Traduit par Nicolas Coolman
~ Etat de la version : Version à jour.
~ Liste blanche : Activée par le programme
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user

---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17801
MFIE: Mozilla Firefox 37.0.2 (Defaut)
GCIE: Google Chrome v42.0.2311.152

---\\ Informations sur les produits Windows
~ Langage: Français
Windows Server License Manager Script : OK
~ Windows Operating System - Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 7TP9F
Windows License : OK
~ Windows Remaining Initializations Number : 4
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
Windows 7 Professional, 64-bit Service Pack 1 (Build 7601)

---\\ Logiciels de protection du système
Avast Internet Security v10.2.2218
Malwarebytes Anti-Malware version 2.0.4.1028
Windows Defender W7 (Deactivate)

---\\ Logiciels d'optimisation du système

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 17 NPAPI
Adobe Reader XI

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4063 MB (61% free)
System Restore: Activé (Enable)
System drive C: has 18 GB (24%) free of 74 GB

---\\ Mode de connexion au système
~ Computer Name: CHARLIE-PC
~ User Name: charlie
~ All Users Names: HomeGroupUser$, charlie, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\charlie\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\charlie\AppData\Roaming\
~ %Desktop% : C:\Users\charlie\Desktop\
~ %Favorites% : C:\Users\charlie\Favorites\
~ %LocalAppData% : C:\Users\charlie\AppData\Local\
~ %StartMenu% : C:\Users\charlie\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 18 Go of 74 Go)
D: CD-ROM drive (Not Inserted)
E: Hard drive, Flash drive, Thumb drive (Free 643 Go of 932 Go)
F: Floppy drive, Flash card reader, USB Key (Not Inserted)
G: Floppy drive, Flash card reader, USB Key (Not Inserted)
H: Floppy drive, Flash card reader, USB Key (Not Inserted)
I: Floppy drive, Flash card reader, USB Key (Not Inserted)

---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowHelp: Modified =>PUA.StartShow
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyGames: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: Modified =>PUA.StartShow
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSetProgramAccessAndDefaults: Modified =>PUA.StartShow
~ Security Center: 46 Legitimates Filtered in 00mn 00s

---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.F0289B3A341429117696F0279DA977B6] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.21/04/2015 - 16:27:25.) -- C:\Windows\System32\wininet.dll [2352128]
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.17/07/2014 - 03:07:24.) -- C:\Windows\System32\Winlogon.exe [455168]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 05:27:28.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 07:45:52.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 01:19:22.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 01:26:34.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 02:43:44.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 01:23:22.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.24/01/2014 - 03:37:55.) -- C:\Windows\system32\Drivers\ntfs.sys [1684928]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 02:52:36.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.1B6163C503398B23FF8B939C67747683] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.20/11/2010 - 03:06:42.) -- C:\Windows\system32\Drivers\rdpdr.sys [165888]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) (.11/11/2014 - 02:46:26.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.DF8126BD41180351A093A3AD2FC8903B] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.25/02/2011 - 07:25:38.) -- C:\Windows\system32\Drivers\volsnap.sys [296320]
~ Generic Processes: Scanned in 00mn 00s

---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/3
Mes musiques (My Musics) : 2/2 (Modified)
~ Mes Videos (My Videos) : 1/685
~ Mes Favoris (My Favorites) : 1/26
~ Mes Documents (My Documents) : 8/118
~ Mon Bureau (My Desktop) : 1/5
~ Menu demarrer (Programs) : 1/29
~ Hidden Files: Scanned in 00mn 00s

---\\ Processus lancés
[MD5.638644168D9B5B5093AD84C9C162B550] - (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296] [PID.1976]
[MD5.65C6AA484AD2287D20541C7735989437] - (.Avast Software s.r.o. - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [5515496] [PID.2088]
[MD5.0C7CF368F3C810C4982DDE08D3C50C45] - (.Pas de propriétaire - NetEngine.) -- C:\ProgramData\NetEngine\bin\D10\netengine.exe [75776] [PID.1888] =>PUP.NetEngine
[MD5.345B45BE09381D2011EB7F9AC11D8AC4] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [376944] [PID.5868]
[MD5.4B88BF95F7C40E2EDD2B924E0111C456] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [267888] [PID.6048]
[MD5.66F6B3894132CC3D347CB85FBAE48D57] - (.Adobe Systems, Inc. - Adobe Flash Player 17.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_169.exe [1892528] [PID.6064]
[MD5.46769F961E4AB53D76A9E734867E0E54] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8208896] [PID.1416]
[MD5.49B1E5AF3AA400752A20BE169CB73DFA] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [410952] [PID.904]
[MD5.54236E79A44F909612391C8A2D70D512] - (.Avast Software s.r.o. - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336] [PID.1312]
[MD5.C569E7F268C43D6C9C4D74EE2F06CCD8] - (.Avast Software s.r.o. - avast! firewall service.) -- C:\Program Files\AVAST Software\Avast\afwServ.exe [107448] [PID.1908]
[MD5.FC5B75CA6A1DA31EDD4F8D53F5540B98] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [81088] [PID.1644]
[MD5.6E3F4538B33BC19259E99BE1826286A3] - (...) -- C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe [922240] [PID.1944]
[MD5.A63173897EA1A73A75D0E65036DE5B15] - (...) -- C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe [915584] [PID.2376]
[MD5.5C31DFB196CB3A488A041881634D86D2] - (...) -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [586880] [PID.2424]
[MD5.805DAC448BEBDA900BF5520AB27D9616] - (.Garmin Ltd. or its subsidiaries - Garmin Service.) -- C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [708616] [PID.2552]
[MD5.B6639BF8236BDD3427B10C581332BE71] - (.Hewlett-Packard Company - SolutionsFrameworkService.) -- C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89864] [PID.2464]
[MD5.F758A5752CA282925CE3324FDBBADBED] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878672] [PID.3184]
[MD5.7DA1335C5CA60ADC0C877ACE32733E12] - (.Irrational Number Applications - WebShield Service.) -- C:\ProgramData\uKbwgjQcwVy\BGCggAc.exe [2731512] [PID.3432]
[MD5.9AD4BEE2FE76D4CA39AC969B617E94FB] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [326168] [PID.3992]
[MD5.CD114CE02A10FA79C229770788106842] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2656280] [PID.5752]
~ Processes Running: Scanned in 00mn 00s

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\charlie\AppData\Roaming\Mozilla\Firefox\Profiles\2haxtywo.default\prefs.js
C:\Users\charlie\AppData\Roaming\Mozilla\Firefox\Profiles\2haxtywo.default\user.js
M3 - MFPP: Plugins - [charlie] -- C:\Users\charlie\AppData\Roaming\Mozilla\Firefox\Profiles\2haxtywo.default\searchplugins\google-avast.xml
M2 - MFEP: Extension [charlie - 2haxtywo.default] jid1-F9UJ2thwoAm5gQ@jetpack.xpi
M2 - MFEP: Extension [charlie - 2haxtywo.default] {158d7cb3-7039-4a75-8e0b-3bd0a464edd2}.xpi
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml
~ Firefox Browser: 39 Legitimates Filtered in 00mn 00s

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = https://www.msn.com/fr-fr/
~ IE Browser: 19 Legitimates Filtered in 00mn 00s

---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
~ Proxy management: Scanned in 00mn 00s

---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s

---\\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (35)
~ Hosts File: Scanned in 00mn 00s

---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Clé orpheline
O3 - Toolbar: (no name) - [HKLM]{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{4982D40A-C53B-4615-B15B-B5B5E98D167C} Clé orpheline
~ Toolbar: Scanned in 00mn 00s

---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.Avast Software s.r.o. - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] . (.Garmin Ltd. or its subsidiaries - Garmin Express Tray.) -- C:\Program Files (x86)\Garmin\Express Tray\tray.exe =>.Garmin Corporation
O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] . (.Garmin Ltd. or its subsidiaries - Garmin Express Tray.) -- C:\Program Files (x86)\Garmin\Express Tray\tray.exe =>.Garmin Corporation
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
~ Application: Scanned in 00mn 00s

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Send by Bluetooth to [64Bits] - {7815BE26-237D-41A8-A98F-F7BD75F71086} -- Clé orpheline
~ IE Extra Buttons: Scanned in 00mn 00s

---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{EA06AB01-DD67-407F-BA58-FDD0FDC19471}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{EA06AB01-DD67-407F-BA58-FDD0FDC19471}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{EA06AB01-DD67-407F-BA58-FDD0FDC19471}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s

---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s

---\\ Tâches planifiées en automatique (O39)
[MD5.00000000000000000000000000000000] [APT] [DriverToolkit Autorun] (...) -- C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe (.not file.) [0] =>PUP.DriverToolkit
[MD5.00000000000000000000000000000000] [APT] [GarminUpdaterTask] (...) -- C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe (.not file.) [0]
[MD5.0C7CF368F3C810C4982DDE08D3C50C45] [APT] [NetEngine] (...) -- C:\ProgramData\NetEngine\bin\D10\netengine.exe [75776] =>PUP.NetEngine
[MD5.352EA0C6338056E2B2880559B22B8F65] [APT] [{029E8032-F606-46E4-A8C2-8ED7CE70DBE7}] (...) -- C:\ProgramData\WebShield\uninstall.exe [537080]
[MD5.00000000000000000000000000000000] [APT] [{034793B3-AC17-4B55-8176-92712028F45C}] (...) -- E:\AOL 9.0e\aol.exe (.not file.) [0]
[MD5.973567B98CDFC147DF4E60471D9DF072] [APT] [{042EB318-626E-46CB-A4E0-9E1ADA86C0FB}] (...) -- C:\Program Files (x86)\AOL Toolbar\UNWISE.exe [153088]
[MD5.00000000000000000000000000000000] [APT] [{0E69207F-7C32-4C15-802C-3F790DAD1A7B}] (...) -- D:\AOL9\Setup.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{120EC328-7EE8-4E8F-A538-F4BA8FEDCCA4}] (...) -- E:\AOL 9.0e\aol.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{3768694A-4BF1-4CBD-BCD4-7B8D6F76E2E9}] (...) -- E:\AOL 9.0e\aol.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{55EF85F7-0654-4189-8D71-C3F3DF8F9D58}] (...) -- D:\AOL9\setup9.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{B2027828-AEB1-413C-AC81-F2FDAE99DB7E}] (...) -- E:\AOL 9.0e\aol.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{CCB80B0F-B5E6-407E-A73B-5B33647015A9}] (...) -- E:\AOL 9.0e\aol.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{CF49AB86-ED77-45CB-91EB-1D0E3DD93B14}] (...) -- E:\AOL 9.0e\aol.exe (.not file.) [0]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]
O39 - APT: DriverToolkit Autorun - (...) -- C:\Windows\Tasks\DriverToolkit Autorun.job [362] =>PUP.DriverToolkit
O39 - APT: DriverToolkit Autorun - (...) -- C:\Windows\System32\Tasks\DriverToolkit Autorun [362] =>PUP.DriverToolkit
O39 - APT: - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1066]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1070]
O39 - APT: - (..) -- C:\Windows\Tasks\PC-Mechanic Maintenance.job [282]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\PC-Mechanic Maintenance [282]
O39 - APT: - (..) -- C:\Windows\Tasks\PC-Mechanic Startup.job [276]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\PC-Mechanic Startup [276]
O39 - APT: - (..) -- C:\Windows\Tasks\PC-Mechanic Subscription.job [282]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\PC-Mechanic Subscription [282]
~ Scheduled Task: 33 Legitimates Filtered in 00mn 01s

---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: ({55639f4f-70f3-47b6-9c22-0c740448eb41}Gw64) . (.StdLib - StdLib.) - C:\Windows\System32\drivers\{55639f4f-70f3-47b6-9c22-0c740448eb41}Gw64.sys =>PUP.LinkiDoo
~ Drivers: 82 Legitimates Filtered in 00mn 00s

---\\ Logiciels installés (O42)
O42 - Logiciel: Widget Vidal.fr - (.None provided.) [HKLM][64Bits] -- {B9F00F93-4345-4E73-A8CE-D3E163972663}
~ Logic: 28 Legitimates Filtered in 00mn 00s

---\\ HKCU & HKLM Software Keys
[HKCU\Software\AOLToolbar]
[HKCU\Software\Boxore] =>Adware.Boxore
[HKCU\Software\Crossbrowse] =>PUP.CrossBrowser
[HKCU\Software\SafeGuardApp] =>PUP.SafeGuard
[HKCU\Software\SystClean]
[HKLM\Software\Wow6432Node\Boxore] =>Adware.Boxore
[HKLM\Software\Wow6432Node\Crossbrowse] =>PUP.CrossBrowser
[HKLM\Software\Wow6432Node\MaxPower]
[HKLM\Software\Wow6432Node\MetaStream] =>Adware.MetaStream
[HKLM\Software\Wow6432Node\SafeGuardApp] =>PUP.SafeGuard
~ Key Software: 254 Legitimates Filtered in 00mn 00s

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 06/04/2015 - 11:27:01 - [] ----D C:\Program Files (x86)\Widget Vidal.fr
O43 - CFD: 15/05/2015 - 19:54:25 - [] ----D C:\ProgramData\NetEngine =>PUP.NetEngine
O43 - CFD: 15/05/2015 - 19:49:28 - [] ----D C:\ProgramData\uKbwgjQcwVy
O43 - CFD: 15/05/2015 - 19:49:19 - [] ----D C:\ProgramData\WebShield
O43 - CFD: 02/01/2009 - 06:32:35 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BT Program
O43 - CFD: 14/07/2009 - 17:35:18 - [0] R-H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 06/04/2015 - 11:27:01 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Widget Vidal.fr
O43 - CFD: 20/02/2014 - 23:43:35 - [] ----D C:\Users\charlie\AppData\Roaming\main
O43 - CFD: 15/05/2015 - 19:48:36 - [] ----D C:\Users\charlie\AppData\Roaming\SystClean
O43 - CFD: 15/05/2015 - 19:53:59 - [] ----D C:\Users\charlie\AppData\Local\Boxore =>Adware.Boxore
O43 - CFD: 29/07/2014 - 11:26:28 - [] ----D C:\Users\charlie\AppData\Local\Canal.MyCanal
O43 - CFD: 02/03/2015 - 22:49:37 - [] -SH-D C:\Users\charlie\AppData\Local\EmieBrowserModeList
O43 - CFD: 15/05/2015 - 23:13:16 - [] ----D C:\Users\charlie\AppData\Local\WebShield
~ Program Folder: 193 Legitimates Filtered in 00mn 00s

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.01AA853DDB8C694862FC56C5FE89424F] - 14/05/2015 - 20:38:50 ---A- . (.StdLib - StdLib.) -- C:\Windows\System32\Drivers\{55639f4f-70f3-47b6-9c22-0c740448eb41}Gw64.sys [48784] =>PUP.LinkiDoo
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 15/05/2015 - 18:53:16 ---A- . (...) -- C:\Windows\dwa.exe [0]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 15/05/2015 - 18:58:22 ---A- . (...) -- C:\Windows\mdwa.exe [0]
O44 - LFC:[MD5.828AE71F67ACDB05C94F76FE37E55099] - 15/05/2015 - 18:58:56 ---A- . (...) -- C:\Windows\dwa.dat [631296]
O44 - LFC:[MD5.20EEC9AF17AF62FF21D455CA7A64B73D] - 15/05/2015 - 19:14:58 ---A- . (...) -- C:\Windows\win.ini [505]
~ Files: 136 Legitimates Filtered in 00mn 02s

---\\ Clé de registre Shell MountPoints2 (MPSK) (O51)
O51 - MPSK:{526186e8-9a05-11e3-88fe-c8600032fc78}\AutoRun\command. (...) -- E:\LaunchU3.exe (.not file.)
O51 - MPSK:{af9de319-9a3f-11e3-971d-c8600032fc78}\AutoRun\command. (...) -- J:\CHECKINS.exe (.not file.)
~ Keys: Scanned in 00mn 00s

---\\ Enumération des clés de registre StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\Boxore Client [Key] . (...) -- C:\Program Files (x86)\Boxore\Boxore Client\boxore.exe (.not file.) =>Adware.Boxore
O53 - SMSR:HKLM\...\startupreg\SafeGuard [Key] . (...) -- C:\Program Files (x86)\SafeGuard\SafeGuardApp.exe (.not file.) =>PUP.SafeGuard
~ SMSR Keys: 13 Legitimates Filtered in 00mn 00s

---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "disablecad"=1
~ MWPS: 20 Legitimates Filtered in 00mn 00s

---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoResolveTrack"=1
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLowDiskSpaceChecks"=1
O56 - MWPE:[HKCU\...\policies\Explorer] - "LinkResolveIgnoreLinkInfo"=1
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoResolveSearch"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
~ MWPE Keys: 9 Legitimates Filtered in 00mn 00s

---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:26/04/2015 - 17:09:49 ---A- . (...) -- C:\Windows\System32\Drivers\aswHwid.sys [29168] =>.ALWIL Software
O58 - SDL:26/04/2015 - 17:09:49 ---A- . (...) -- C:\Windows\System32\Drivers\aswRvrt.sys [65736] =>.ALWIL Software
O58 - SDL:26/04/2015 - 17:09:49 ---A- . (...) -- C:\Windows\System32\Drivers\aswVmm.sys [272248] =>.ALWIL Software
O58 - SDL:13/03/2011 - 10:58:42 ---A- . (.Windows (R) Win 7 DDK provider - BulkUsb Driver.) -- C:\Windows\System32\Drivers\AthDfu.sys [51872]
O58 - SDL:14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [530496]
O58 - SDL:10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [31232]
O58 - SDL:14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [24656]
O58 - SDL:14/05/2015 - 20:38:50 ---A- . (.StdLib - StdLib.) -- C:\Windows\System32\Drivers\{55639f4f-70f3-47b6-9c22-0c740448eb41}Gw64.sys [48784] =>PUP.LinkiDoo
O58 - SDL:22/02/2014 - 11:15:35 ---A- . (.Windows (R) 2000 DDK provider - TR Manager.) -- C:\Windows\SysWOW64\drivers\asctrm.sys [8552]
O58 - SDL:25/11/2010 - 08:12:56 ----- . (...) -- C:\Windows\SysWOW64\drivers\AsInsHelp32.sys [10216]
O58 - SDL:25/11/2010 - 08:12:56 ----- . (...) -- C:\Windows\SysWOW64\drivers\AsInsHelp64.sys [11832]
O58 - SDL:24/08/2010 - 08:16:40 R--A- . (...) -- C:\Windows\SysWOW64\drivers\AsIO.sys [13440]
O58 - SDL:03/08/2010 - 06:21:24 R--A- . (...) -- C:\Windows\SysWOW64\drivers\AsUpIO.sys [14464]
O58 - SDL:02/04/2009 - 13:30:14 ---A- . (...) -- C:\Windows\SysWOW64\drivers\ASUSHWIO.SYS [10296]
~ Drivers: 89 Legitimates Filtered in 00mn 00s

---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2015 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s

---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - 26/04/2015 - C:\Windows\system32\drivers\aswHwid.sys (aswHwid) .(...) - LEGACY_ASWHWID
O64 - Services: CurCS - 14/05/2015 - C:\Windows\System32\drivers\{55639f4f-70f3-47b6-9c22-0c740448eb41}Gw64.sys ({55639f4f-70f3-47b6-9c22-0c740448eb41}Gw64) .(.StdLib - StdLib.) - LEGACY_{55639F4F-70F3-47B6-9C22-0C740448EB41}GW64 =>PUP.LinkiDoo
~ Legacy: 104 Legitimates Filtered in 00mn 00s

---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s

---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - https://www.bing.com/?toHttps=1&redig=69DA0EF8272048D9864AF4DB37211DE8
O69 - SBI: SearchScopes [HKCU] {DD3E9F5C-A76A-40FE-8E8C-3EC8EB96812F} [DefaultScope] - (Google) - https://www.google.com/?gws_rd=ssl
~ Keys: Scanned in 00mn 00s

---\\ Recherche de clés de registre Tracing (O100)
HKLM\SOFTWARE\Microsoft\Tracing\MixVideoPlayer_RASAPI32 =>PUP.MixVideoPlayer
HKLM\SOFTWARE\Microsoft\Tracing\MixVideoPlayer_RASMANCS =>PUP.MixVideoPlayer
HKLM\SOFTWARE\Microsoft\Tracing\SafeGuard_RASAPI32 =>PUP.SafeGuard
HKLM\SOFTWARE\Microsoft\Tracing\SafeGuard_RASMANCS =>PUP.SafeGuard
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32 =>Toolbar.Bing
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BingBar_RASMANCS =>Toolbar.Bing
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\netengine_RASAPI32 =>PUP.NetEngine
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\netengine_RASMANCS =>PUP.NetEngine
~ BTK: 331 Legitimates Filtered in 00mn 00s

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 19/04/2015 268464 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Auto 31/03/2014 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 31/03/2014 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 21/04/2015 148080 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Demand 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 19/12/2014 81088 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SR - | Auto 13/06/2011 922240 | (asComSvc) . (...) - C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe
SR - | Auto 02/12/2010 915584 | (asHmComSvc) . (...) - C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
SR - | Auto 21/10/2010 586880 | (AsSysCtrlService) . (...) - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
SR - | Auto 13/03/2011 74912 | (AtherosSvc) . (.Atheros Commnucations.) - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
SR - | Auto 26/04/2015 343336 | (avast! Antivirus) . (.Avast Software s.r.o..) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Auto 26/04/2015 107448 | (avast! Firewall) . (.Avast Software s.r.o..) - C:\Program Files\AVAST Software\Avast\afwServ.exe
SR - | Auto 15/05/2015 2731512 | (BGCggAc) . (.Irrational Number Applications.) - C:\ProgramData\uKbwgjQcwVy\BGCggAc.exe
SR - | Auto 08/04/2015 708616 | (Garmin Device Interaction Service) . (.Garmin Ltd. or its subsidiaries.) - C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe
SR - | Auto 28/03/2015 1152144 | (GfExperienceService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
SR - | Auto 11/12/2014 89864 | (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
SR - | Auto 12/08/2010 133800 | (Intel® PROSet Monitoring Service) . (.Intel Corporation.) - C:\Windows\system32\IProsetMonitor.exe
SR - | Auto 22/02/2011 326168 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 15/10/2014 2820424 | (MaConfigAgent) . (.CybelSoft.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
SR - | Auto 28/03/2015 1878672 | (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
SR - | Auto 28/03/2015 22995600 | (NvStreamSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
SR - | Auto 05/02/2015 935056 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - | Auto 05/02/2015 410952 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SR - | Auto 22/02/2011 2656280 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 22/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 05s

---\\ Scan Additionnel (O88)
Database Version : 13008 - (13/05/2015)
Clés trouvées (Keys found) : 15
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 6
Fichiers trouvés (Files found) : 8

[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Boxore Client] =>Adware.Boxore^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\SafeGuard] =>PUP.SafeGuard^
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASMANCS] =>Toolbar.Bing
[HKLM\Software\Classes\axmetastream.metastreamctl] =>Adware.MetaStream
[HKLM\Software\Classes\axmetastream.metastreamctl.1] =>Adware.MetaStream
[HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary] =>Adware.MetaStream
[HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary.1] =>Adware.MetaStream
[HKCU\Software\Boxore] =>Adware.Boxore
[HKLM\Software\Wow6432Node\Boxore] =>Adware.Boxore
[HKLM\Software\Wow6432Node\MetaStream] =>Adware.MetaStream
[HKLM\Software\Wow6432Node\Viewpoint] =>Adware.MetaStream
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer] =>Adware.MetaStream
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32] =>Toolbar.Bing
[HKCU\Software\AOLToolbar] =>Toolbar.AOL
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
C:\ProgramData\NetEngine =>PUP.NetEngine^
C:\Users\charlie\AppData\Local\Boxore =>Adware.Boxore^
C:\Program Files (x86)\Software =>Adware.Boxore
C:\Program Files (x86)\Viewpoint =>Adware.MetaStream
C:\ProgramData\Viewpoint =>Adware.MetaStream
C:\Users\charlie\AppData\Local\Software =>Adware.Boxore
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowHelp: Modified =>PUA.StartShow^
C:\ProgramData\NetEngine\bin\D10\netengine.exe =>PUP.NetEngine^
C:\Windows\Tasks\DriverToolkit Autorun.job =>PUP.DriverToolkit^
C:\Windows\System32\Tasks\DriverToolkit Autorun =>PUP.DriverToolkit^
[HKCU\Software\Crossbrowse] =>PUP.CrossBrowser^
[HKCU\Software\SafeGuardApp] =>PUP.SafeGuard^
[HKLM\Software\Wow6432Node\Crossbrowse] =>PUP.CrossBrowser^
[HKLM\Software\Wow6432Node\SafeGuardApp] =>PUP.SafeGuard^
~ Additionnel Scan: 230002 Items scanned in 00mn 14s

---\\ Informations complémentaires sur les modules
~ https://nicolascoolman.eu =>.Internet Explorer, Proxy Management (R5)
~ https://nicolascoolman.eu =>.Internet Explorer Toolbars (O3)
~ https://nicolascoolman.eu =>.Applications lancées au démarrage du système (O4)
~ https://nicolascoolman.eu =>.Clé de registre Shell MountPoints2 (MPSK) (O51)
~ AMI: 4 Legitimates Filtered in 00mn 00s

---\\ Récapitulatif des détections trouvées sur votre station
https://nicolascoolman.eu =>PUA.StartShow
https://nicolascoolman.eu =>PUP.NetEngine
https://nicolascoolman.eu =>PUP.DriverToolkit
https://nicolascoolman.eu =>PUP.LinkiDoo
https://nicolascoolman.eu =>Adware.Boxore
https://nicolascoolman.eu =>PUP.CrossBrowser
https://nicolascoolman.eu =>PUP.SafeGuard
https://nicolascoolman.eu =>Adware.MetaStream
https://nicolascoolman.eu =>PUP.MixVideoPlayer
https://nicolascoolman.eu =>Toolbar.AOL
~ MSI: 10 link(s) detected in 00mn 00s

~ 1003 Legitimates filtered by white list
End of the scan (515 lines in 00mn 39s)(0.11)

charlin3 Messages postés 47 Date d'inscription Statut Membre Dernière intervention > artaban7 Messages postés 2204 Date d'inscription Statut Membre Dernière intervention

re bonjour ,
j'ai fait tourner ZHP cleaner et ADWcleaner .
redemarrage et rapport ZHPdiag] que tu trouveras ici :

https://pjjoint.malekal.com/files.php?id=ZHPDiag_20150516_o15p13s12p11p13

Je m'excuse de t'avoir envoyer ici même un rapport sans passer par
http://pjjoint.malekal.com/ .
Peut-on l'effacer ?

Réponse 2 / 3

fannyptitbou

j'ai le même problème j'ai suivi vos indications artaban7
je ne sais pas si vous pouvez m'aider ....
voici le lien
http://pjjoint.malekal.com/files.php?id=20150820_m13s7k5s13e15

caro

Svp je n'y connais rien :-(((
voici le rapport
~ ZHPDiag v2015.9.17.143 Par Nicolas Coolman (2015/09/19)
~ Démarré par CAROLE (Administrator) (2015/09/20 20:22:48)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\CAROLE\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\CAROLE\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)

---\\ Navigateurs Internet (2) - 0s
GCIE: Google Chrome v45.0.2454.93
MSIE: Internet Explorer v11.0.9600.18015

---\\ Informations sur les produits Windows (4) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection (2) - 13s
Avast Free Antivirus v10.3.2225
Windows Defender W7 (Activate)

---\\ Surveillance de Logiciels (1) - 14s
Adobe Reader 9.5.5 MUI

---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 37 Stepping 2, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4119.416 MB (33% free)
~ System Restore: Activé (Enable)
~ System drive C: has 59 GB free of 287 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: CAROLE-PC
~ User Name: CAROLE
~ Logged in as Administrator

---\\ Enumération des unités disques (3) - 0s
~ Drive C: has 59 GB free of 287 GB (System)
~ Drive D: has 2 GB free of 17 GB
~ Drive E: has 0 GB free of 0 GB

---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (25) - 2s
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2871808] ©
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568] ©
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [129024] ©
[MD5.A55305B1CACD38EAC176CC532B2053AC] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [2427392] ©
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Application d'ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [455168] ©
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [232448] ©
[MD5.492D07D79E7024CA310867B526D9636D] - (.Microsoft Corporation - DNS DLL de l'API Client.) () -- C:\Windows\System32\dnsapi.dll [357888] ©
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - (.Microsoft Corporation - DNS DLL de l'API Client.) () -- C:\Windows\Syswow64\dnsapi.dll [270336] ©
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (.Microsoft Corporation - DLL client de l'API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] ©
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [497152] ©
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128] ©
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160] ©
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456] ©
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400] ©
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368] ©
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472] ©
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224] ©
[MD5.43E1F4B0EFDC244D2A83995CCD7846F7] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [159232] ©
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [261632] ©
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1684928] ©
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [97280] ©
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] ©
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184] ©
[MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [119296] ©
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [295808] ©

---\\ Processus lancés (45) - 6s
[MD5.8F9C2A5F96810467D50687AE00465424] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 188.1.) -- C:\Windows\system32\nvvsvc.exe [392296] [PID.860] ©
[MD5.57BEB4500716DD30B65DFA85A35CC3D7] - (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_d15ed671de43d681\stacsv64.exe [240640] [PID.520] ©
[MD5.AA036CC5F5221D9B915F4D4DCE74BA9A] - (.Hewlett-Packard - HpService.) -- C:\Windows\system32\Hpservice.exe [30520] [PID.1352] ©
[MD5.8F9C2A5F96810467D50687AE00465424] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 188.1.) -- C:\Windows\system32\nvvsvc.exe [392296] [PID.1444] ©
[MD5.4956380A54B1C9E6BFDF3D80DACB9698] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600] [PID.1592] ©
[MD5.A6FB9DB8F1A86861D955FD6975977AE0] - (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) -- C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_d15ed671de43d681\AESTSr64.exe [89600] [PID.1088] ©
[MD5.6EB87FDB59AABF6D19C927492DEA0D36] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128] [PID.1212] ©
[MD5.EBBCD5DFBB1DE70E8F4AF8FA59E401FD] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462184] [PID.1624] ©
[MD5.2238B91AC1A12CC6CC4C4FED41258B2A] - (.Hewlett-Packard Company - LightScribe Service.) -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728] [PID.1016] ©
[MD5.C6331D11F80B3AFFD91A9B3858E00F23] - (.CyberLink - CyberLink MediaLibray Service.) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [210216] [PID.3032] ©
[MD5.A6A7AD767BF5141665F5C675F671B3E1] - (.Protexis Inc. - PsiService PsiService.) -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [185632] [PID.2880] ©
[MD5.498EB62A160674E793FA40FD65390625] - (.Copyright 2004 - RichVideo Module.) -- C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152] [PID.2616]
[MD5.2BACD71123F42CEA603F4E205E1AE337] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292096] [PID.3008] ©
[MD5.61D90FFD00C8B2B60E56B625D7CA9C60] - (.Irrational Number Applications - WebShield Service.) -- C:\ProgramData\YsIwCRHE\mumTaKG.exe [2732024] [PID.3148] =>PUP.Optional.WebShield
[MD5.2A46FFE841EC43001D5A293A54DB34DE] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [223104] [PID.3252] ©
[MD5.5F45D87B172CFCA862B7F1BED641F263] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1814312] [PID.3952] ©
[MD5.0F22DA454AE3249AF6236098EDBA0AD9] - (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe [487424] [PID.3240] ©
[MD5.59E58A7A5388E00BB4347AEBBDCC84FE] - (.Copyright (C) 2009 Hewlett-Packard Development Compan - SmartMenu.) -- C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [610872] [PID.2208] ©
[MD5.02A27FC0972181EF743160BE9F62F2B4] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [170280] [PID.4728] ©
[MD5.E02E715FA2BC8D88FF9362374E309D76] - (.Hewlett-Packard Company - .) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392] [PID.4748] ©
[MD5.B15DFB916F0D7AFEA5802A014E0A3715] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe [120616] [PID.4880] ©
[MD5.2208D673C5D4B22EB0235EA1EC6269CC] - (.Apple Inc. - iPodService Module (64-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [644904] [PID.4916] ©
[MD5.338EA8481D3494E2E1DD7EA1731A0ECD] - (.Hewlett-Packard Co. - ScanToPCActivationApp.) -- C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe [3487240] [PID.4852] ©
[MD5.F5A0554F655C566EB946841E6E7AE061] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [30877280] [PID.5016] ©
[MD5.F341DD6145F779CE5B732BC6BC6A3370] - (.Apple Inc. - iCloud.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816] [PID.1380] ©
[MD5.944E77A49DBAF8F6BB473118C116E59E] - (.Apple Inc. - iCloud Photos.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816] [PID.4176] ©
[MD5.5109047321310206FB8EE1A789FD89FC] - (.Orange - MailNotifier.) -- C:\Program Files (x86)\Orange\MailNotifier\MailNotifier.exe [904704] [PID.4708] ©
[MD5.E5F05EDD33B8B2A8CBCDD697AB830A70] - (...) -- C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe [15544] [PID.4784]
[MD5.8F89E6CB82E6DB45BC993D423CD0FDBD] - (.Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe [323640] [PID.4592] ©
[MD5.A171B56DA31CEA530BFC03734841BD79] - (.Hewlett-Packard Company - HP Wireless Assistant Main Program.) -- C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [500792] [PID.4604] ©
[MD5.5FA55704521881553E5574059EAA1106] - (.GoPro - GoPro/CineForm Status Viewer.) -- C:\Program Files (x86)\CineForm\Tools\GoProCineFormStatusViewer.exe [144384] [PID.4788] ©
[MD5.7D7FC035B6A606020C83086BC379DE70] - (.Copyright © 2015 - BrowserWeb.) -- C:\Program Files (x86)\MixVideoPlayer\BrowserWeb.exe [122536] [PID.2832] =>PUP.Optional.MixVideoPlayer
[MD5.34D296AFC913E302953C70463EF09A48] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe [96056] [PID.4068] ©
[MD5.FDF273A845F1FFCCEADF363AAF47582F] - (.Hewlett-Packard Development Company, L.P. - hpqwmiex Module.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [229944] [PID.4492] ©
[MD5.F66203AF9C159E2CBD54DF981654F499] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [6111824] [PID.3728] ©
[MD5.0080EB1CDD83F14C01534B1DC754234D] - (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712] [PID.3724] ©
[MD5.C7A0E61D5714AC20DE52D4F66EC773B8] - (.Hewlett-Packard Development Company, L.P. - Com for QLB application.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [227896] [PID.3264] ©
[MD5.0DE3C7622EC33126579B1742260F08C2] - (.Copyright (c) 2005 - 2009 Hewlett-Packard Development - HpqToaster Module.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe [632888] [PID.6512]
[MD5.F9AF5292174EC3D8D6A4EAA33C2321B4] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\CAROLE\ZHPDiag3.exe [1934848] [PID.3224] ©
[MD5.83946783D86BEB7A898BC6B562F1F189] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.5544] ©
[MD5.83946783D86BEB7A898BC6B562F1F189] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.6096] ©
[MD5.53DF66A634EBFBA10399D33FFF5B22A5] - (.Irrational Number Applications - WebShield.) -- C:\ProgramData\YsIwCRHE\dat\IdCjCK.exe [48120] [PID.5252] =>PUP.Optional.WebShield
[MD5.83946783D86BEB7A898BC6B562F1F189] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.720] ©
[MD5.83946783D86BEB7A898BC6B562F1F189] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944] [PID.4384] ©
[MD5.1E5B7473D66C92289E41F3DEA51865F3] - (.Hewlett-Packard Co. - HPNetworkCommunicatorCom.) -- C:\Program Files\HP\HP ENVY 4500 series\Bin\HPNetworkCommunicatorCom.exe [1150472] [PID.1764] ©

---\\ Google Chrome, Démarrage,Recherche,Extensions (10) - 1s
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] Avast Online Security
G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (1) - 0s
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ©

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (14) - 0s
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = about:newtab
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = about:newtab
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {AEEC3B59-CA98-4EBA-A140-57B94E283583} Orphean
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer,Proxy Management (5) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Browser Helper Object de navigateur (BHO) (2) - 0s
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll ©
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll ©

---\\ Internet Explorer, Barre d'outil (3) - 0s
O3 - Toolbar: 0xEF44FA216D37534D9B0F8A89D3229068 - [HKCU]{21FA44EF-376D-4D53-9B0F-8A89D3229068} . (...) -- (.not file.)
O3 - Toolbar: 0x438102D34561184399D33EDCE54A95A9 - [HKCU]{D3028143-6145-4318-99D3-3EDCE54A95A9} . (...) -- (.not file.)
O3 - Toolbar: 0x00 - [HKLM]{D3028143-6145-4318-99D3-3EDCE54A95A9} . (...) -- (.not file.)

---\\ Applications lancées au démarrage du système (43) - 1s
O4 - HKLM\..\Run: [NvCplDaemon] . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\RUNDLL32.EXE ©
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe ©
O4 - HKLM\..\Run: [SmartMenu] . (.Copyright (C) 2009 Hewlett-Packard Development Compan - SmartMenu.) -- C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe ©
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.8.0_31\bin\jusched.exe (.not file.)
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe ©
O4 - HKCU\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - .) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe ©
O4 - HKCU\..\Run: [HPADVISOR] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe (.not file.)
O4 - HKCU\..\Run: [orangeinside] . (...) -- C:\Users\CAROLE\AppData\Roaming\Orange\OrangeInside\two\OrangeInside.exe
O4 - HKCU\..\Run: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe (.not file.)
O4 - HKCU\..\Run: [HP ENVY 4500 series (NET)] . (.Hewlett-Packard Co. - ScanToPCActivationApp.) -- C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe ©
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe ©
O4 - HKCU\..\Run: [iCloudServices] . (.Apple Inc. - iCloud.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe ©
O4 - HKCU\..\Run: [ApplePhotoStreams] . (.Apple Inc. - iCloud Photos.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe ©
O4 - HKCU\..\Run: [MailNotifier] . (.Orange - MailNotifier.) -- C:\Program Files (x86)\Orange\MailNotifier\MailNotifier.exe ©
O4 - HKCU\..\Run: [WindApp] C:\Users\CAROLE\AppData\Roaming\Store\WindApp\WindApp.exe (.not file.) =>PUP.Optional.Nosibay
O4 - HKCU\..\Run: [Selection Tools] C:\Users\CAROLE\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe (.not file.) =>PUP.Optional.Nosibay
O4 - HKLM\..\Wow6432Node\Run: [Corel File Shell Monitor] . (...) -- C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe
O4 - HKLM\..\Wow6432Node\Run: [HPCam_Menu] . (.CyberLink Corp. - MUI StartMenu Application.) -- c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe ©
O4 - HKLM\..\Wow6432Node\Run: [QlbCtrl.exe] . (.Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe ©
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe ©
O4 - HKLM\..\Wow6432Node\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [AppleSyncNotifier] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe ©
O4 - HKLM\..\Wow6432Node\Run: [WirelessAssistant] . (.Hewlett-Packard Company - HP Wireless Assistant Main Program.) -- C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe ©
O4 - HKLM\..\Wow6432Node\Run: [NPSStartup] (Orphean)
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe ©
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe ©
O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe ©
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-21-214551639-1058236295-3883544487-1001\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - .) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe ©
O4 - HKUS\S-1-5-21-214551639-1058236295-3883544487-1001\..\Run: [HPADVISOR] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe (.not file.)
O4 - HKUS\S-1-5-21-214551639-1058236295-3883544487-1001\..\Run: [orangeinside] . (...) -- C:\Users\CAROLE\AppData\Roaming\Orange\OrangeInside\two\OrangeInside.exe
O4 - HKUS\S-1-5-21-214551639-1058236295-3883544487-1001\..\Run: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe (.not file.)
O4 - HKUS\S-1-5-21-214551639-1058236295-3883544487-1001\..\Run: [HP ENVY 4500 series (NET)] . (.Hewlett-Packard Co. - ScanToPCActivationApp.) -- C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe ©
O4 - HKUS\S-1-5-21-214551639-1058236295-3883544487-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe ©
O4 - HKUS\S-1-5-21-214551639-1058236295-3883544487-1001\..\Run: [iCloudServices] . (.Apple Inc. - iCloud.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe ©
O4 - HKUS\S-1-5-21-214551639-1058236295-3883544487-1001\..\Run: [ApplePhotoStreams] . (.Apple Inc. - iCloud Photos.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe ©
O4 - HKUS\S-1-5-21-214551639-1058236295-3883544487-1001\..\Run: [MailNotifier] . (.Orange - MailNotifier.) -- C:\Program Files (x86)\Orange\MailNotifier\MailNotifier.exe ©
O4 - HKUS\S-1-5-21-214551639-1058236295-3883544487-1001\..\Run: [WindApp] C:\Users\CAROLE\AppData\Roaming\Store\WindApp\WindApp.exe (.not file.) =>PUP.Optional.Nosibay
O4 - HKUS\S-1-5-21-214551639-1058236295-3883544487-1001\..\Run: [Selection Tools] C:\Users\CAROLE\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe (.not file.) =>PUP.Optional.Nosibay

---\\ Raccourcis Global Startup (1) - 3s
O4 - GS\Startup [Public]: WebBrowserMixVideoPlayer.lnk . (.Copyright © 2015 - BrowserWeb.) C:\Program Files (x86)\MixVideoPlayer\BrowserWeb.exe =>PUP.Optional.MixVideoPlayer

---\\ Modification Domaine/Adresses DNS (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1

---\\ Protocole additionnel (21) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL ©

---\\ Liste des services NT non Microsoft et non désactivés (14) - 1s
O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_d15ed671de43d681\AESTSr64.exe ©
O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe ©
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe ©
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe ©
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
O23 - Service: HP Service (hpsrv) . (.Hewlett-Packard - HpService.) - C:\Windows\system32\Hpservice.exe ©
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe ©
O23 - Service: mumTaKG (mumTaKG) . (.Irrational Number Applications - WebShield Service.) - C:\ProgramData\YsIwCRHE\mumTaKG.exe =>PUP.Optional.WebShield
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 188.1.) - C:\Windows\system32\nvvsvc.exe ©
O23 - Service: Orange update Core Service (Orange update Core Service) . (.Orange SA - Orange Upd@te.) - C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe ©
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) . (.Protexis Inc. - PsiService PsiService.) - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe ©
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Copyright 2004 - RichVideo Module.) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe ©
O23 - Service: Audio Service (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_d15ed671de43d681\stacsv64.exe ©

---\\ Tâches planifiées en automatique (24) - 5s
[MD5.4510E7A22B82BB99FFEE43953292BAD0] [APT] [CapSchedInst] (.CL.) -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSchedInst.exe [66856]
[MD5.60747E27A2767B96E4A70DEAF73A30D7] [APT] [CapSvcInst] (.CL.) -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSvcInst.exe [66856]
[MD5.86BA18FC1681C3274DA50BC6B07FAECD] [APT] [CapUninst] (.CL.) -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapUninst.exe [54568]
[MD5.C6331D11F80B3AFFD91A9B3858E00F23] [APT] [CLMLSvc] (.CyberLink.) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [210216] ©
[MD5.00000000000000000000000000000000] [APT] [DVDAgent] (...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe (.not file.) [0]
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore1d0f3cab4d2f705] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA1d0f3cab549d673] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.99C95C044F780209B1FDA39EC8E76DA6] [APT] [MixVideoPlayer Update] (.Copyright © 2014.) -- C:\Program Files (x86)\MixVideoPlayer\mixUpdater.exe [381440] =>PUP.Optional.MixVideoPlayer
[MD5.00000000000000000000000000000000] [APT] [PhraseProfessor Auto Updater 1.10.0.24 Core] (...) -- C:\Program Files (x86)\PhraseProfessor_1.10.0.24\Update\PhraseProfessorAutoUpdateClient.exe (.not file.) [0] =>PUP.Optional.Generic
[MD5.00000000000000000000000000000000] [APT] [PhraseProfessor Auto Updater 1.10.0.24 Pending Update] (...) -- C:\Program Files (x86)\PhraseProfessor_1.10.0.24\Update\PhraseProfessorAutoUpdateClient.exe (.not file.) [0] =>PUP.Optional.Generic
[MD5.1CE55AE7E57826457FD56EB3C50E4E54] [APT] [TVAgent] (.CyberLink Corp..) -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe [415016] ©
O39 - APT: GoogleUpdateTaskMachineCore1d0f3cab4d2f705 - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0f3cab4d2f705.job [1066] ©
O39 - APT: GoogleUpdateTaskMachineUA1d0f3cab549d673 - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0f3cab549d673.job [1070] ©
O39 - APT: CapSchedInst - (.CL.) -- C:\Windows\System32\Tasks\CapSchedInst [2824]
O39 - APT: CapSvcInst - (.CL.) -- C:\Windows\System32\Tasks\CapSvcInst [2820]
O39 - APT: CapUninst - (.CL.) -- C:\Windows\System32\Tasks\CapUninst [2818]
O39 - APT: CLMLSvc - (.CyberLink.) -- C:\Windows\System32\Tasks\CLMLSvc [3200] ©
O39 - APT: DVDAgent - (...) -- C:\Windows\System32\Tasks\DVDAgent [3164]
O39 - APT: GoogleUpdateTaskMachineCore1d0f3cab4d2f705 - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d0f3cab4d2f705 [3814] ©
O39 - APT: GoogleUpdateTaskMachineUA1d0f3cab549d673 - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d0f3cab549d673 [4066] ©
O39 - APT: MixVideoPlayer Update - (.Copyright © 2014.) -- C:\Windows\System32\Tasks\MixVideoPlayer Update [3072] =>PUP.Optional.MixVideoPlayer
O39 - APT: PhraseProfessor Auto Updater 1.10.0.24 Core - (...) -- C:\Windows\System32\Tasks\PhraseProfessor Auto Updater 1.10.0.24 Core [4198] =>PUP.Optional.Generic
O39 - APT: PhraseProfessor Auto Updater 1.10.0.24 Pending Update - (...) -- C:\Windows\System32\Tasks\PhraseProfessor Auto Updater 1.10.0.24 Pending Update [4212] =>PUP.Optional.Generic
O39 - APT: TVAgent - (.CyberLink Corp..) -- C:\Windows\System32\Tasks\TVAgent [3170] ©

---\\ Logiciels installés (111) - 10s
O42 - Logiciel: ENE CIR Receiver Driver - (.ENE.) [HKLM][64Bits] -- FFE7D41DF3C645075BB149E21988B63996C34187 ©
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Drivers ©
O42 - Logiciel: SAMSUNG Android USB Modem Software - (...) [HKLM][64Bits] -- SAMSUNG Android USB Modem
O42 - Logiciel: SAMSUNG Mobile Composite Device Software - (...) [HKLM][64Bits] -- SAMSUNG Mobile Composite Device
O42 - Logiciel: SAMSUNG Mobile Modem Driver Set - (...) [HKLM][64Bits] -- SAMSUNG Mobile Modem
O42 - Logiciel: Samsung Mobile Modem Device Software - (...) [HKLM][64Bits] -- Samsung Mobile Modem Device
O42 - Logiciel: SAMSUNG Mobile Modem V2 Software - (...) [HKLM][64Bits] -- SAMSUNG Mobile Modem V2
O42 - Logiciel: Samsung Mobile phone USB driver Drive Software - (...) [HKLM][64Bits] -- Samsung Mobile phone USB driver Drive
O42 - Logiciel: SAMSUNG Mobile USB Modem Software - (...) [HKLM][64Bits] -- SAMSUNG Mobile USB Modem
O42 - Logiciel: SAMSUNG Mobile USB Modem 1.0 Software - (...) [HKLM][64Bits] -- SAMSUNG Mobile USB Modem 1.0
O42 - Logiciel: Samsung Mobile USB Modem Device Software - (...) [HKLM][64Bits] -- Samsung Mobile USB Modem Device
O42 - Logiciel: SAMSUNG USB Mobile Device Software - (...) [HKLM][64Bits] -- SAMSUNG USB Mobile Device
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey ©
O42 - Logiciel: VirtualCom driver - (.ait.) [HKLM][64Bits] -- {19639A51-FCC5-40BA-9F07-D8292A07249B}
O42 - Logiciel: Logiciel de base du périphérique HP ENVY 4500 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {210AEDB6-FC49-4F63-8924-99C6758EF9D4} ©
O42 - Logiciel: Java 8 Update 31 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86418031F0} ©
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {5D61F006-168C-4B8B-B7FD-F113C10AE0E4} ©
O42 - Logiciel: Java(TM) SE Development Kit 6 Update 15 (64-bit) - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {64A3A4F4-B792-11D6-A78A-00B0D0160150} ©
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {6CF1A7E2-8001-4870-9F18-3C6CDD6FE9E3} ©
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D} ©
O42 - Logiciel: iCloud - (.Apple Inc..) [HKLM][64Bits] -- {709A2D23-C25E-47B5-9268-CB6FEE648504} ©
O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM][64Bits] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1 ©
O42 - Logiciel: HP MediaSmart SmartMenu - (.Hewlett-Packard.) [HKLM][64Bits] -- {88E60521-1E4E-4785-B9F1-1798A4BD0C30} ©
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
O42 - Logiciel: HP 3D DriveGuard - (.Hewlett-Packard.) [HKLM][64Bits] -- {8FCDACA0-E090-4A9A-AC71-A96E7371DC6E} ©
O42 - Logiciel: Intel® Matrix Storage Manager - (.Intel Corporation.) [HKLM][64Bits] -- {9068B2BE-D93A-4C0A-861C-5E35E2C0E09E} ©
O42 - Logiciel: Apple Application Support (64 bits) - (.Apple Inc..) [HKLM][64Bits] -- {B255D495-4734-4E9B-B4F5-96702FD4A7B9} ©
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR ©
O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- avast ©
O42 - Logiciel: Contextual Tool Lightspeedincome - (...) [HKLM][64Bits] -- b55ee033
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome ©
O42 - Logiciel: GoPro Studio 2.0.1 - (.WoodmanLabs Inc. d.b.a. GoPro.) [HKLM][64Bits] -- GoPro Studio
O42 - Logiciel: HP Photo Creations - (.HP.) [HKLM][64Bits] -- HP Photo Creations ©
O42 - Logiciel: HP MediaSmart Webcam - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D} ©
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79} ©
O42 - Logiciel: Movie Theme Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E} ©
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658} ©
O42 - Logiciel: HP MediaSmart Live TV - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{67626E09-5366-4480-8F1E-93FADF50CA15} ©
O42 - Logiciel: HP MediaSmart Music/Photo/Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E} ©
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243} ©
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1} ©
O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A} ©
O42 - Logiciel: HP MediaSmart Internet TV - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5} ©
O42 - Logiciel: Corel VideoStudio 12 - (.Corel Corporation.) [HKLM][64Bits] -- InstallShield_{F0FDF9C9-1DDC-401F-B638-36F1CAE8A875} ©
O42 - Logiciel: DVD Menu Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF} ©
O42 - Logiciel: Notification Mail - (.Orange.) [HKLM][64Bits] -- MailNotifier ©
O42 - Logiciel: Vittalia Installer - (.www.TELECHARGERSTOP.com.) [HKLM][64Bits] -- Vittalia =>PUP.Optional.Vittalia
O42 - Logiciel: VLC media player 2.0.5 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player ©
O42 - Logiciel: Web Shield - (.Irrational Number Applications.) [HKLM][64Bits] -- WebShield =>PUP.Optional.WebShield
O42 - Logiciel: Windows Media Encoder 9 Series - (...) [HKLM][64Bits] -- Windows Media Encoder 9
O42 - Logiciel: Logiciel d'archivage WinRAR - (...) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: HP MediaSmart Webcam - (.Hewlett-Packard.) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D} ©
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544} ©
O42 - Logiciel: HP Setup - (.Hewlett-Packard.) [HKLM][64Bits] -- {17B4760F-334B-475D-829F-1A3E94A6A4E6} ©
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} ©
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79} ©
O42 - Logiciel: Skype(TM) 7.0 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7} ©
O42 - Logiciel: ActiveCheck component for HP Active Support Library - (.Hewlett-Packard.) [HKLM][64Bits] -- {254C37AA-6B72-4300-84F6-98A82419187E} ©
O42 - Logiciel: JMicron Flash Media Controller Driver - (.JMicron Technology Corp..) [HKLM][64Bits] -- {26604C7E-A313-4D12-867F-7C6E7820BE4C} ©
O42 - Logiciel: Java 8 Update 31 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218031F0} ©
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40} ©
O42 - Logiciel: Movie Theme Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {3023EBDA-BF1B-4831-B347-E5018555F26E} ©
O42 - Logiciel: HP Quick Launch Buttons - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {34D2AB40-150D-475D-AE32-BD23FB5EE355} ©
O42 - Logiciel: ESU for Microsoft Windows 7 - (.Hewlett-Packard.) [HKLM][64Bits] -- {3877C901-7B90-4727-A639-B6ED2DD59D43} ©
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B160861-7250-451E-B5EE-8B92BF30A710} ©
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- {40BF1E83-20EB-11D8-97C5-0009C5020658} ©
O42 - Logiciel: Recovery Manager - (.CyberLink Corp..) [HKLM][64Bits] -- {44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5} ©
O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM][64Bits] -- {4E432692-A736-4F77-AF77-F9078CF88D31} ©
O42 - Logiciel: msvcrt_installer - (.SAH.) [HKLM][64Bits] -- {6068A42A-C1CF-45F2-9859-5DB16287FE5D} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM][64Bits] -- {627FFC10-CE0A-497F-BA2B-208CAC638010} ©
O42 - Logiciel: Corel Paint Shop Pro Photo X2 - (.Corel Corporation.) [HKLM][64Bits] -- {64E72FB1-2343-4977-B4A8-262CD53D0BD3} ©
O42 - Logiciel: HPAsset component for HP Active Support Library - (.Hewlett-Packard.) [HKLM][64Bits] -- {669D4A35-146B-4314-89F1-1AC3D7B88367} ©
O42 - Logiciel: HP MediaSmart Live TV - (.Hewlett-Packard.) [HKLM][64Bits] -- {67626E09-5366-4480-8F1E-93FADF50CA15} ©
O42 - Logiciel: LibreOffice 4.2.4.2 - (.The Document Foundation.) [HKLM][64Bits] -- {6B4977CB-5B9F-4B24-8310-3BA527A8AF22} ©
O42 - Logiciel: Complément Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6E5324C1-84FC-4F76-9A3A-C65E07F80EE6} ©
O42 - Logiciel: Hewlett-Packard ACLM.NET v1.1.0.0 - (.Hewlett-Packard.) [HKLM][64Bits] -- {6F340107-F9AA-47C6-B54C-C3A19F11553F} ©
O42 - Logiciel: Apple Application Support (32 bits) - (.Apple Inc..) [HKLM][64Bits] -- {7FE25256-B7C1-480D-B736-10A67A833AEA} ©
O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {817750FA-EC6A-485D-9901-0683AE6FFDF1} ©
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} ©
O42 - Logiciel: Realtek Ethernet Controller Driver For Windows Vista and Later - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} ©
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E} ©
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} ©
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {912D30CF-F39E-4B31-AD9A-123C6B794EE2} ©
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A0087DDE-69D0-11E2-AD57-43CA6188709B} ©
O42 - Logiciel: ToolbarFR - (.Orange.) [HKLM][64Bits] -- {A047FE02-C91C-41CB-898C-4ED21B86025A} ©
O42 - Logiciel: HP Product Detection - (.HP.) [HKLM][64Bits] -- {A436F67F-687E-4736-BD2B-537121A804CF} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} ©
O42 - Logiciel: Adobe Reader 9.5.5 MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001} ©
O42 - Logiciel: HP MediaSmart Music/Photo/Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {B2EE25B9-5B00-4ACF-94F0-92433C28C39E} ©
O42 - Logiciel: HP User Guides 0154 - (.Hewlett-Packard.) [HKLM][64Bits] -- {B51605BF-6326-4553-AE96-6D7F1813D5F5} ©
O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard.) [HKLM][64Bits] -- {B60DCA15-56A3-4D2D-8747-22CF7D7B588B} ©
O42 - Logiciel: HP ENVY 4500 series Aide - (.Hewlett Packard.) [HKLM][64Bits] -- {BAF28CCD-121D-4C6C-B29D-4F7B51B2D1B4} ©
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243} ©
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {C6579A65-9CAE-4B31-8B6B-3306E0630A66} ©
O42 - Logiciel: Safari - (.Apple Inc..) [HKLM][64Bits] -- {C779648B-410E-4BBA-B75B-5815BCEFE71D} ©
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1} ©
O42 - Logiciel: LightScribe System Software - (.LightScribe.) [HKLM][64Bits] -- {CC8E94A2-55C7-4460-953C-2A790180578C} ©
O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {CFF8B8E8-E086-4DE0-935F-FE22CAB54F80} ©
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} ©
O42 - Logiciel: Orange Installeur version 1.2.3.1 - (.Orange.) [HKLM][64Bits] -- {D13FE823-C575-4451-AC37-E645A67AA581}_1.2.3.1 ©
O42 - Logiciel: Adobe Shockwave Player - (.Adobe Systems, Inc..) [HKLM][64Bits] -- {D8DFA46A-39F7-4368-810D-18AFCFDDAEAF} ©
O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM][64Bits] -- {DCCAD079-F92C-44DA-B258-624FC6517A5A} ©
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} ©
O42 - Logiciel: Windows Media Encoder 9 Series - (.Microsoft Corporation.) [HKLM][64Bits] -- {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E} ©
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001} ©
O42 - Logiciel: HP MediaSmart Internet TV - (.Hewlett-Packard.) [HKLM][64Bits] -- {E553760D-D7F7-48BF-BD8B-C7E23BA04CB5} ©
O42 - Logiciel: QLBCASL - (.Hewlett-Packard.) [HKLM][64Bits] -- {F1D7AC58-554A-4A58-B784-B61558B1449A} ©
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} ©
O42 - Logiciel: DVD Menu Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {FB4BB287-37F9-4E27-9C4D-2D3882E08EFF} ©
O42 - Logiciel: Orange Inside - (.Orange.) [HKCU][64Bits] -- Orange Inside ©

---\\ HKCU & HKLM Software Keys (127) - 10s
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\ALWIL Software
HKLM\SOFTWARE\Wow6432Node\AppDataLow
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\Apple Inc.
HKLM\SOFTWARE\Wow6432Node\ArenaHD =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\AVAST Software
HKLM\SOFTWARE\Wow6432Node\Caphyon
HKLM\SOFTWARE\Wow6432Node\CinemaPlus-4.2vV25.08 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Corel
HKLM\SOFTWARE\Wow6432Node\Cyberlink
HKLM\SOFTWARE\Wow6432Node\Digital River
HKLM\SOFTWARE\Wow6432Node\EasyBits
HKLM\SOFTWARE\Wow6432Node\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\GoPro
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard
HKLM\SOFTWARE\Wow6432Node\HighDefAction =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\HP
HKLM\SOFTWARE\Wow6432Node\HPQ
HKLM\SOFTWARE\Wow6432Node\HPQLOG
HKLM\SOFTWARE\Wow6432Node\IDT
HKLM\SOFTWARE\Wow6432Node\ihpmserver
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\InterVideo
HKLM\SOFTWARE\Wow6432Node\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\LibreOffice
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\LightScribe
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\MarkAny
HKLM\SOFTWARE\Wow6432Node\MaxPower
HKLM\SOFTWARE\Wow6432Node\McAfee.com
HKLM\SOFTWARE\Wow6432Node\mcafeeupdater
HKLM\SOFTWARE\Wow6432Node\MixVideoPlayer =>PUP.Optional.MixVideoPlayer
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Orange
HKLM\SOFTWARE\Wow6432Node\P2G_Upgrade
HKLM\SOFTWARE\Wow6432Node\PDR_Upgrade
HKLM\SOFTWARE\Wow6432Node\PhraseProfessor_1.10.0.24 =>PUP.Optional.Generic
HKLM\SOFTWARE\Wow6432Node\RayDld
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\RocketLife
HKLM\SOFTWARE\Wow6432Node\Samsung
HKLM\SOFTWARE\Wow6432Node\SECURITOO
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\SmartSound Software
HKLM\SOFTWARE\Wow6432Node\Stellar Information Systems Ltd.
HKLM\SOFTWARE\Wow6432Node\Symantec
HKLM\SOFTWARE\Wow6432Node\The Document Foundation
HKLM\SOFTWARE\Wow6432Node\Tutorials =>PUP.Optional.AgenceExclusive
HKLM\SOFTWARE\Wow6432Node\Ulead Systems
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\Visan
HKLM\SOFTWARE\Wow6432Node\Vittalia =>PUP.Optional.Vittalia
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\webtogo
HKLM\SOFTWARE\Wow6432Node\WildTangent
HKLM\SOFTWARE\Wow6432Node\Windows
HKLM\SOFTWARE\Wow6432Node\WinRAR
HKLM\SOFTWARE\Wow6432Node\YorkNewCin =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\ACE Compression Software
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\ALWIL Software
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\AVAST Software
HKCU\SOFTWARE\Canneverbe Limited
HKCU\SOFTWARE\CineForm
HKCU\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\Corel
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\DailyPcClean =>PUP.Optional.DailyPCClean
HKCU\SOFTWARE\EasyBits
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\GoPro
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\HP
HKCU\SOFTWARE\IDT
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\kde.org
HKCU\SOFTWARE\LightScribe
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\maxdriverupdater =>PUP.Optional.MaxDriverUpdater
HKCU\SOFTWARE\MCAFEE
HKCU\SOFTWARE\mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Norton
HKCU\SOFTWARE\Nosibay =>PUP.Optional.SPointer
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Orange
HKCU\SOFTWARE\OrangeInside
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\RPCD
HKCU\SOFTWARE\Samsung
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Stellar
HKCU\SOFTWARE\Store =>PUP.Optional.Generic
HKCU\SOFTWARE\Synaptics
HKCU\SOFTWARE\The Document Foundation
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\tstamptoken =>PUP.Optional.MaxComputerCleaner
HKCU\SOFTWARE\tutoriales =>PUP.Optional.AgenceExclusive
HKCU\SOFTWARE\Visan
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\WTools
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\c8a357ba
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\DynConIE =>PUP.Optional.DynConIE
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Orange

---\\ Contenu des dossiers Programmes (270) - 16s
O43 - CFD: 2015/09/20 18:22:06 - [0] D -- C:\Program Files (x86)\4c59f806-4d04-4c29-a5b0-35d7f506a559 =>PUP.Optional.CrossRider
O43 - CFD: 2013/04/18 12:40:43 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2011/07/05 20:17:29 - [] D -- C:\Program Files (x86)\Apple Software Update
O43 - CFD: 2011/11/15 22:00:43 - [] D -- C:\Program Files (x86)\Bonjour
O43 - CFD: 2013/12/22 19:58:11 - [] D -- C:\Program Files (x86)\CineForm
O43 - CFD: 2015/09/20 18:22:06 - [] D -- C:\Program Files (x86)\CinemaPlus-4.2vV25.08 =>PUP.Optional.CrossRider
O43 - CFD: 2015/09/13 15:25:58 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2010/02/24 02:41:25 - [] D -- C:\Program Files (x86)\Corel
O43 - CFD: 2010/01/09 02:17:48 - [] D -- C:\Program Files (x86)\CyberLink
O43 - CFD: 2011/02/28 18:38:57 - [] D -- C:\Program Files (x86)\EasyBits For Kids - Backup
O43 - CFD: 2015/05/30 00:07:37 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2014/07/24 20:00:22 - [] D -- C:\Program Files (x86)\GoPro
O43 - CFD: 2014/04/23 20:12:18 - [] D -- C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 2014/04/23 20:12:08 - [] D -- C:\Program Files (x86)\Hp
O43 - CFD: 2014/11/23 13:25:30 - [] D -- C:\Program Files (x86)\HP Games
O43 - CFD: 2014/04/23 20:12:17 - [] D -- C:\Program Files (x86)\HP Photo Creations
O43 - CFD: 2011/11/15 21:18:52 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2010/02/24 02:24:02 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 2015/09/13 15:25:58 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015/07/14 21:19:06 - [] D -- C:\Program Files (x86)\iTunes
O43 - CFD: 2015/02/11 22:53:19 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2010/02/24 02:20:24 - [] D -- C:\Program Files (x86)\JMicron
O43 - CFD: 2014/05/16 15:48:24 - [] D -- C:\Program Files (x86)\LibreOffice 4
O43 - CFD: 2010/01/09 00:21:28 - [] D -- C:\Program Files (x86)\Microsoft
O43 - CFD: 2015/04/06 21:50:05 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2010/01/09 01:19:50 - [] D -- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant
O43 - CFD: 2015/08/12 10:14:49 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2010/01/09 00:22:14 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 2012/10/14 12:30:41 - [] D -- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 2015/09/13 15:25:58 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/09/20 18:20:53 - [] D -- C:\Program Files (x86)\MixVideoPlayer =>PUP.Optional.MixVideoPlayer
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2010/04/17 19:01:40 - [0] D -- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 2010/04/13 20:15:35 - [] RD -- C:\Program Files (x86)\Online Services
O43 - CFD: 2011/11/15 18:59:37 - [] D -- C:\Program Files (x86)\Orange
O43 - CFD: 2015/09/20 19:45:50 - [0] D -- C:\Program Files (x86)\predm =>PUP.Optional.Downware
O43 - CFD: 2015/07/14 20:56:31 - [] D -- C:\Program Files (x86)\QuickTime
O43 - CFD: 2015/09/20 19:32:32 - [0] D -- C:\Program Files (x86)\RayDld
O43 - CFD: 2010/02/24 02:21:35 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2012/05/24 21:54:39 - [] D -- C:\Program Files (x86)\Safari
O43 - CFD: 2015/04/20 22:09:40 - [] D -- C:\Program Files (x86)\Samsung
O43 - CFD: 2015/04/16 17:05:15 - [] RD -- C:\Program Files (x86)\Skype
O43 - CFD: 2014/07/23 09:11:44 - [] D -- C:\Program Files (x86)\SoftwareUpdater
O43 - CFD: 2009/07/14 06:57:06 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 2012/11/16 19:36:53 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 2013/06/27 17:10:33 - [] D -- C:\Program Files (x86)\Vittalia =>PUP.Optional.Vittalia
O43 - CFD: 2013/07/11 10:56:59 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2012/08/17 14:28:52 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2011/11/24 14:43:01 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2010/02/24 02:43:38 - [] D -- C:\Program Files (x86)\Windows Media Components
O43 - CFD: 2015/06/11 19:24:46 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2011/11/24 14:43:01 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2011/11/24 14:43:01 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2011/11/24 14:43:01 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2010/04/20 17:57:01 - [] D -- C:\Program Files (x86)\WinRAR
O43 - CFD: 2015/09/13 15:26:00 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2009/07/14 06:57:13 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel Paint Shop Pro Photo X2
O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel VideoStudio 12
O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
O43 - CFD: 2015/09/13 15:26:00 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2014/07/24 20:00:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GoPro
O43 - CFD: 2015/09/13 15:26:00 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.2
O43 - CFD: 2015/09/13 15:26:00 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LightScribe Direct Disc Labeling
O43 - CFD: 2009/07/14 06:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/09/13 15:26:00 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
O43 - CFD: 2015/09/20 18:20:47 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MixVideoPlayer =>PUP.Optional.MixVideoPlayer
O43 - CFD: 2015/09/13 15:26:00 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Online Services
O43 - CFD: 2015/03/15 15:55:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Orange
O43 - CFD: 2015/09/13 15:26:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
O43 - CFD: 2015/09/13 15:26:01 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recovery Manager
O43 - CFD: 2015/09/13 15:26:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2015/09/20 18:20:47 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/09/13 15:26:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2015/09/13 15:26:01 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 2015/09/13 15:26:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media
O43 - CFD: 2015/09/13 15:26:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/01/02 10:25:11 - [] D -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 2013/03/02 20:09:02 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2010/08/25 23:01:09 - [] D -- C:\ProgramData\Alwil Software
O43 - CFD: 2014/02/20 21:14:57 - [] D -- C:\ProgramData\Apple
O43 - CFD: 2010/04/27 23:40:35 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2014/10/03 22:44:20 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 2010/04/13 20:13:55 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2011/06/23 22:33:47 - [] D -- C:\ProgramData\Canneverbe Limited
O43 - CFD: 2010/02/24 02:29:51 - [] D -- C:\ProgramData\Corel
O43 - CFD: 2014/01/11 21:52:37 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/07/14 21:18:37 - [] D -- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
O43 - CFD: 2015/09/20 18:24:35 - [] D -- C:\ProgramData\Earlluviubuw
O43 - CFD: 2014/01/15 18:43:36 - [] D -- C:\ProgramData\Easybits
O43 - CFD: 2013/10/27 12:32:15 - [0] D -- C:\ProgramData\eMule
O43 - CFD: 2010/04/13 20:13:55 - [0] SHD -- C:\ProgramData\Favoris
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2010/04/18 14:11:45 - [] D -- C:\ProgramData\Google
O43 - CFD: 2011/04/05 14:06:28 - [] D -- C:\ProgramData\Hewlett-Packard
O43 - CFD: 2014/04/23 20:11:18 - [] D -- C:\ProgramData\HP
O43 - CFD: 2014/04/23 20:12:17 - [] D -- C:\ProgramData\HP Photo Creations
O43 - CFD: 2010/02/24 02:45:28 - [] D -- C:\ProgramData\InterVideo
O43 - CFD: 2013/03/02 20:08:52 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2010/04/13 20:13:55 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2015/09/13 15:26:01 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/09/11 23:44:49 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2010/04/13 20:13:55 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2011/09/14 19:16:52 - [] D -- C:\ProgramData\Norton
O43 - CFD: 2010/02/24 02:48:44 - [] D -- C:\ProgramData\NortonInstaller
O43 - CFD: 2015/09/13 15:26:01 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 2015/02/11 22:53:48 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 2011/11/23 20:49:26 - [] D -- C:\ProgramData\Orange
O43 - CFD: 2011/01/08 19:34:16 - [] D -- C:\ProgramData\PC Suite
O43 - CFD: 2010/05/03 11:03:08 - [] D -- C:\ProgramData\Recovery
O43 - CFD: 2015/04/16 17:05:22 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2010/05/19 22:02:09 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2014/09/16 20:45:56 - [] AD -- C:\ProgramData\Temp
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2010/02/24 02:41:30 - [] D -- C:\ProgramData\Ulead Systems
O43 - CFD: 2014/04/23 20:12:17 - [] D -- C:\ProgramData\Visan
O43 - CFD: 2015/09/20 18:19:42 - [] D -- C:\ProgramData\WebShield =>PUP.Optional.WebShield
O43 - CFD: 2010/01/09 00:54:57 - [] D -- C:\ProgramData\WildTangent
O43 - CFD: 2015/09/20 18:21:08 - [] D -- C:\ProgramData\YsIwCRHE
O43 - CFD: 2011/04/05 14:16:05 - [] D -- C:\ProgramData\{23D58E70-3B83-4B83-A227-68770F84F5EC}
O43 - CFD: 2010/04/27 23:40:49 - [] D -- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
O43 - CFD: 2010/06/13 02:39:17 - [] D -- C:\ProgramData\{DA06AA03-DF24-4ECE-939E-1B0939235C66}
O43 - CFD: 2010/02/24 02:51:02 - [] D -- C:\ProgramData\{F2E8831F-467B-4311-B6BA-1BC1D244539A}
O43 - CFD: 2012/07/06 09:45:58 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2013/04/18 12:40:40 - [] D -- C:\Program Files (x86)\Common Files\Adobe A

caro

artaban 7 je crois que tu as la solution stp

Malekal_morte- Messages postés 180304 Date d'inscription Statut Modérateur, Contributeur sécurité Dernière intervention 24 685

Un nettoyage AdwCleaner et ZHPCleaner devrait suffir.

caro

Bonsoir, ok, comment je dois faire ?

Réponse 3 / 3

artaban7 Messages postés 2204 Date d'inscription Statut Membre Dernière intervention 90

bonsoir,

on va voir ensemble :

Pour le diagnostique il s'agit de ce logiciel : https://nicolascoolman.eu

il suffit de le lancer, de choisir "complet", il va ensuite créer un rapport du système sur le bureau au format .txt qu'il faudra transmettre ici à l'aide de : http://pjjoint.malekal.com/

Si tu as besoins d'explication sur des points précis comme l'utilisation du générateur de fichier, n'hésites pas..

Discussions similaires

Privacy shield ???

Comment s’inscrire sur célibataire du web

Votre réponse

Discussions similaires