Aller au contenu

Delf

Membres
  • Compteur de contenus

    69
  • Inscription

  • Dernière visite

À propos de Delf

  • Date de naissance 02/02/1981

Profile Information

  • Sexe
    Female
  • Localisation
    5000

Autres informations

  • Mes langues
    français

Visiteurs récents du profil

4 967 visualisations du profil

Delf's Achievements

Member

Member (4/12)

1

Réputation sur la communauté

  1. Bonsoir, Je rencontre un problème d'imprimante, ça m'indique que le spooler d'impression ne fonctionne pas. J'ai essayé de le passer en manuel, rien... L'imprimante fonctionnait jusqu'à peu, il a fallu que je reprogramme le wi fi et elle s'est mise à beuguer... Quelqu'un pour m'aider? Merci d'avance -------- EDIT ---------- Transféré de Sécurisation/Prévention vers Software. Tonton.
  2. Merci beaucoup pour ton aide précieuse !!! J'ai pris note pour les téléchargements, je serai vigilante à l'avenir. @ ++
  3. Comment te dire?!!!!!! C'est le jour et la nuit !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! Faut-il faire d'autres manipulations? Pourquoi ai-je été infectée? Je suis protégée pourtant non?
  4. ~ ZHPCleaner v2015.3.10.116 by Nicolas Coolman (09/03/2015) ~ Run by Delphine (Administrator) (12/03/2015 10:26:00) ~ Forum : http://forum.nicolascoolman.fr ~ Facebook : https://www.facebook.com/nicolascoolman1 ~ State version : Version OK ~ Type : Réparer ~ Report : C:\Users\Delphine.DELPHINE-PCPORT\Desktop\ZHPCleaner.txt ~ Quarantine : C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt ~ UAC : Deactivate ~ Boot Mode : Normal (Normal boot) ~ Windows 7, 64-bit (Build 7600) ---\\ Service. (0) ~ Aucun élément malicieux trouvé. ---\\ Navigateur internet. (3) REMPLACÉ Proxy: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyHttp1.1 ( 1 ) SUPPRIMÉ donnée: HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings [bad : Port=50135 <-Loopback>] (Hijacker.Proxy) SUPPRIMÉ donnée: HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings [bad : Port=50135 <-Loopback>] (Hijacker.Proxy) ---\\ Fichier hôte. (1) ~ Le fichier hôte est légitime. (21) ---\\ Tâche planifiée. (0) ~ Aucun élément malicieux trouvé. ---\\ Explorateur ( Dossiers, Fichiers ). (6) DEPLACÉ fichier*: C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.re-markit00.re-markit.co_0.localstorage [ - ] (PUP.ReMarkIt) DEPLACÉ fichier*: C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.re-markit00.re-markit.co_0.localstorage-journal [ - ] (PUP.ReMarkIt) DEPLACÉ fichier*: C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.re-markit00.re-markit.co_0.localstorage [ - ] (PUP.ReMarkIt) DEPLACÉ fichier*: C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.re-markit00.re-markit.co_0.localstorage-journal [ - ] (PUP.ReMarkIt) DEPLACÉ fichier: C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\appdataFr3.bin [ - ] (PUP.Optional) DEPLACÉ fichier*: C:\Users\Delphine.DELPHINE-PCPORT\AppData\LocalLow\HPAppData [ - ] (Toolbar.Conduit) ---\\ Base de Registres ( Clés, Valeurs, Données ). (4) SUPPRIMÉ valeur: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_3DEEAAE84B45083A628DF6E4E45A383F ["C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window] (PUP.Vosteran) SUPPRIMÉ valeur: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\EeeStorageBackup [C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe MySyncFolder] () SUPPRIMÉ clé*: [X64] HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Update Framed Display [] (PUP.FramedDisplay) SUPPRIMÉ clé*: [X64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\DuuquUpdate.exe [] (PUP.FrameFox) ---\\ Bilan de la réparation ~ Réparation réalisée avec succès. ~ Ce navigateur est absent (Mozilla Firefox) ~ Ce navigateur est absent (Opera Software) ---\\ Statistiques ~ Items scannés : 78467 ~ Items trouvés : 0 ~ Items réparés : 11 End of clean at 11:11:46 =================== ZHPCleaner-[R]-12032015-11_11_46.txt ZHPCleaner--12032015-09_54_19.txt
  5. ~ ZHPCleaner v2015.3.10.116 by Nicolas Coolman (09/03/2015) ~ Run by Delphine (Administrator) (12/03/2015 09:27:33) ~ Forum : http://forum.nicolascoolman.fr ~ Facebook : https://www.facebook.com/nicolascoolman1 ~ State version : Version OK ~ Type : Scanner ~ Report : C:\Users\Delphine.DELPHINE-PCPORT\Desktop\ZHPCleaner.txt ~ Quarantine : C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt ~ UAC : Deactivate ~ Boot Mode : Normal (Normal boot) ~ Windows 7, 64-bit (Build 7600) ---\\ Service. (0) ~ Aucun élément malicieux trouvé. ---\\ Navigateur internet. (3) TROUVÉ Proxy: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyHttp1.1 ( 1 ) TROUVÉ donnée: HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings [bad : Port=50135 <-Loopback>] (Hijacker.Proxy) TROUVÉ donnée: HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings [bad : Port=50135 <-Loopback>] (Hijacker.Proxy) ---\\ Fichier hôte. (1) ~ Le fichier hôte est légitime. (21) ---\\ Tâche planifiée. (0) ~ Aucun élément malicieux trouvé. ---\\ Explorateur ( Dossiers, Fichiers ). (6) TROUVÉ fichier: C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.re-markit00.re-markit.co_0.localstorage [ - ](PUP.ReMarkIt) TROUVÉ fichier: C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.re-markit00.re-markit.co_0.localstorage-journal [ - ](PUP.ReMarkIt) TROUVÉ fichier: C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.re-markit00.re-markit.co_0.localstorage [ - ](PUP.ReMarkIt) TROUVÉ fichier: C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.re-markit00.re-markit.co_0.localstorage-journal [ - ](PUP.ReMarkIt) TROUVÉ fichier: C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\appdataFr3.bin [ - ](PUP.Optional) TROUVÉ fichier: C:\Users\Delphine.DELPHINE-PCPORT\AppData\LocalLow\HPAppData [ - ](Toolbar.Conduit) ---\\ Base de Registres ( Clés, Valeurs, Données ). (4) TROUVÉ valeur: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_3DEEAAE84B45083A628DF6E4E45A383F ["C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window] (PUP.Vosteran) TROUVÉ valeur: [X64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\EeeStorageBackup [C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe MySyncFolder] () TROUVÉ clé: [X64] HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Update Framed Display [] (PUP.FramedDisplay) TROUVÉ clé: [X64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\DuuquUpdate.exe [] (PUP.FrameFox) ---\\ Bilan de la réparation ~ Aucune réparation effectuée. ~ Ce navigateur est absent (Mozilla Firefox) ~ Ce navigateur est absent (Opera Software) ---\\ Statistiques ~ Items scannés : 78457 ~ Items trouvés : 13 ~ Items réparés : 0 End of clean at 09:54:19 =================== ZHPCleaner--12032015-09_54_19.txt
  6. Rapport de ZHPFix 2015.2.17.3 par Nicolas Coolman, Update du 17/02/2015 Fichier d'export Registre : Run by Delphine at 12/03/2015 09:22:08 High Elevated Privileges : OK Windows Vista Home Premium Edition, 64-bit (Build 6000) Corbeille vidée (00mn 11s) Dossier Prefetcher vidé Réparation des raccourcis navigateur ========== Clés du Registre ========== SUPPRIMÉ: HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b SUPPRIMÉ: HKLM\Software\Wow6432Node\DownloaderAssistant Branche de Base de Registres IFEO non infectée ! ========== Valeurs du Registre ========== ProxyFix : Configuration proxy supprimée avec succès SUPPRIMÉ ProxyServer Value SUPPRIMÉ ProxyEnable Value SUPPRIMÉ EnableHttp1_1 Value SUPPRIMÉ ProxyHttp1.1 Value SUPPRIMÉ ProxyOverride Value Aucune Valeur Standard Profile: FirewallRaz : Aucune Valeur Domain Profile: FirewallRaz : SUPPRIMÉ: FirewallRaz (Public) : NetPres-Out-TCP SUPPRIMÉ: FirewallRaz (Public) : NetPres-In-TCP SUPPRIMÉ: FirewallRaz (None) : NetPres-WSD-Out-UDP SUPPRIMÉ: FirewallRaz (None) : NetPres-WSD-In-UDP SUPPRIMÉ: FirewallRaz (Domain) : NetPres-Out-TCP-NoScope SUPPRIMÉ: FirewallRaz (Domain) : NetPres-In-TCP-NoScope ========== Dossiers ========== Aucun dossiers CLSID Local utilisateur vide SUPPRIMÉS Temporaires Windows (4) SUPPRIMÉS Flash Cookies (0) ========== Fichiers ========== SUPPRIMÉ: c:\users\public\desktop\google chrome.lnk (http://www.luckysearches.com>) SUPPRIMÉ Redémarrage: c:\windows\system32\drivers\jmutil64.sys SUPPRIMÉ: c:\users\delphine.delphine-pcport\appdata\roaming\appdatafr3.bin SUPPRIMÉ: c:\users\delphine.delphine-pcport\appdata\roaming\microsoft\windows\start menu\programs\accessories\system tools\internet explorer (no add-ons).lnk ((http://www.luckysearches.com/?type=sc&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14)) CRÉÉ: C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk SUPPRIMÉ: c:\users\delphine.delphine-pcport\appdata\roaming\microsoft\internet explorer\quick launch\launch internet explorer browser.lnk ((http://www.luckysearches.com/?type=sc&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14)) CRÉÉ: C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk SUPPRIMÉ: c:\users\delphine.delphine-pcport\appdata\roaming\microsoft\internet explorer\quick launch\google chrome.lnk ((http://www.luckysearches.com/?type=sc&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14)) CRÉÉ: C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk SUPPRIMÉ: c:\users\delphine.delphine-pcport\appdata\roaming\microsoft\internet explorer\quick launch\user pinned\taskbar\google chrome.lnk ((http://www.luckysearches.com/?type=sc&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14)) CRÉÉ: C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk SUPPRIMÉS Temporaires Windows (7) (7 376 octets) SUPPRIMÉS Flash Cookies (0) (0 octets) ========== Tache planifiée ========== SUPPRIMÉ: YDZPN SUPPRIMÉ: YDZPN SUPPRIMÉ: ZNTVWKC SUPPRIMÉ: ZNTVWKC SUPPRIMÉ: ZNTVWKC SUPPRIMÉ: ZNTVWKC SUPPRIMÉ: {E4D07FF1-8D32-432D-871A-DEDFFF08E05E} ========== Autre ========== NON TRAITÉ <http://www.nicolascoolman.fr/blog/> ========== Récapitulatif ========== 3 : Clés du Registre 14 : Valeurs du Registre 3 : Dossiers 13 : Fichiers 7 : Tache planifiée 1 : Autre End of clean in 00mn 47s ========== Chemin de fichier rapport ========== C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\ZHP\ZHPFix[R1].txt - 12/03/2015 09:22:20 [3715]
  7. ~ Rapport de ZHPDiag v2015.3.8.28 - Nicolas Coolman (08/03/2015) ~ Lancé par Delphine (12/03/2015 08:54:18) ~ Facebook : https://www.facebook.com/nicolascoolman1 ~ Adresse du Forum http://forum.nicolascoolman.fr ~ Traduit par Nicolas Coolman ~ Etat de la version : Version à jour. ~ Liste blanche : Désactivée par l'utilisateur ~ Elévation des Privilèges : OK ~ User Account Control (UAC): Deactivate by user ---\\ Navigateurs Internet MSIE: Internet Explorer v9.0.8112.16421 GCIE: Google Chrome v41.0.2272.89 (Defaut) ---\\ Informations sur les produits Windows ~ Langage: Français Windows Server License Manager Script : OK ~ Windows Operating System - Windows® 7, OEM_SLP channel System Locked Preinstallation (OEM_SLP) : OK Windows ID Activation : OK ~ Windows Partial Key : 9YQTR Windows License : OK ~ Windows Remaining Initializations Number : 2 Software Protection Service (Protection logicielle) : OK Windows Automatic Updates : OK Windows Vista Ultimate, 64-bit (Build 6000) ---\\ Logiciels de protection du système Malwarebytes Anti-Malware version 2.0.4.1028 Microsoft Security Client v4.7.0205.0 Secunia PSI ---\\ Logiciels d'optimisation du système ---\\ Logiciels de partage PeerToPeer ---\\ Surveillance de Logiciels Adobe Flash Player 15 ActiveX Adobe Reader XI ---\\ Informations sur le système ~ Processor: AMD64 Family 16 Model 6 Stepping 2, AuthenticAMD ~ Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 4095 MB (39% free) System Restore: Activé (Enable) System drive C: has 52 GB (44%) free of 116 GB ---\\ Mode de connexion au système ~ Computer Name: DELPHINE-PCPORT ~ User Name: Delphine ~ All Users Names: HomeGroupUser$, Delphine, Administrateur, ~ Unselected Option: None Logged in as Administrator ---\\ Variables d'environnement ~ System Unit : C:\ ~ %AppZHP% : C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\ZHP\ ~ %AppData% : C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\ ~ %Desktop% : C:\Users\Delphine.DELPHINE-PCPORT\Desktop\ ~ %Favorites% : C:\Users\Delphine.DELPHINE-PCPORT\Favorites\ ~ %LocalAppData% : C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\ ~ %StartMenu% : C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\System32\ ---\\ Enumération des unités disques C: Hard drive, Flash drive, Thumb drive (Free 52 Go of 116 Go) D: Hard drive, Flash drive, Thumb drive (Free 176 Go of 335 Go) E: CD-ROM drive (Not Inserted) ---\\ Etat du Centre de Sécurité Windows [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyDocs: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date ~ Security Center: 49 Scanned in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.0862495E0C825893DB75EF44FAEA8E93] - (.Microsoft Corporation - Explorateur Windows.) (.26/02/2011 - 07:23:14.) -- C:\Windows\Explorer.exe [2870272] [MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024] [MD5.A4F6142CABA82FB7293ECE5FF864B440] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.22/02/2013 - 07:20:51.) -- C:\Windows\System32\wininet.dll [1392128] [MD5.DA3E2A6FA9660CC75B471530CE88453A] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.28/10/2009 - 07:24:40.) -- C:\Windows\System32\Winlogon.exe [389632] [MD5.75341574F21E766748732BDF530C74BD] - (.Microsoft Corporation - Bibliothèque de licences.) (.14/07/2009 - 02:41:54.) -- C:\Windows\System32\sppcomapi.dll [231936] [MD5.DB9D6C6B2CD95A9CA414D045B627422E] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:11.) -- C:\Windows\system32\Drivers\AFD.sys [499200] [MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128] [MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160] [MD5.83D2D75E1EFB81B3450C18131443F7DB] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.14/07/2009 - 00:19:54.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456] [MD5.9C253CE7311CA60FC11C774692A13208] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.27/04/2011 - 03:57:40.) -- C:\Windows\system32\Drivers\DfsC.sys [102400] [MD5.0A49913402747A0B67DE940FB42CBDBB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.14/07/2009 - 01:06:13.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368] [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472] [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224] [MD5.040D62A9D8AD28922632137ACDD984F2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.04/05/2011 - 03:51:08.) -- C:\Windows\system32\Drivers\MRxSmb.sys [157696] [MD5.9162B273A44AB9DCE5B44362731D062A] - (.Microsoft Corporation - MBT Transport driver.) (.14/07/2009 - 00:21:29.) -- C:\Windows\system32\Drivers\netBT.sys [259072] [MD5.9A6089B056EA1B83B36424FC9D0A300E] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.12/04/2013 - 15:36:37.) -- C:\Windows\system32\Drivers\ntfs.sys [1653096] [MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280] [MD5.87A6E852A22991580D6D39ADC4790463] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 01:10:12.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [130048] [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184] [MD5.079125C4B17B01FCAEEBCE0BCB290C0F] - (.Microsoft Corporation - TDI Translation Driver.) (.14/07/2009 - 00:21:15.) -- C:\Windows\system32\Drivers\tdx.sys [99840] [MD5.9E425AC5C9A5A973273D169F43B4F5E1] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.06/09/2012 - 18:38:18.) -- C:\Windows\system32\Drivers\volsnap.sys [295792] ~ Generic Processes: Scanned in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 1/211 ~ Mes musiques (My Musics) : 1/2 ~ Mes Favoris (My Favorites) : 1/8 ~ Mes Documents (My Documents) : 1/6832 ~ Mon Bureau (My Desktop) : 1/211 ~ Menu demarrer (Programs) : 1/32 ~ Hidden Files: Scanned in 00mn 14s ---\\ Processus lancés [MD5.F4DCD4912B185C3AAEB92A7040832AD1] - (.Pas de propriétaire - ALU.) -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [51768] [PID.3044] [MD5.852EE4F61139A1B3F44EDAA0D5B3FC14] - (...) -- C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe [53888] [PID.3056] [MD5.868E3486E7EC522330344152A5535783] - (.ASUS - SmartLogon Application.) -- C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [305720] [PID.1704] [MD5.BDD790326FABC31FB635130810245062] - (.Pas de propriétaire - Wireless Console 3.) -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1597440] [PID.2452] [MD5.C72FB9CC856ECFF3B6459B27CB674638] - (.PixArt Imaging Incorporation - Registry Monitor.) -- C:\Windows\Philips\SPC220NC\Monitor.exe [323584] [PID.3244] [MD5.F5A0554F655C566EB946841E6E7AE061] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [30877280] [PID.3252] [MD5.5AEBF6FA9805C9101220AA4FB4FA17E7] - (.ASUS - HControlUser.) -- C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe [105016] [PID.3384] [MD5.4D141320B1713EB329E1603190D4B182] - (.ASUS - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe [7109248] [PID.3392] [MD5.6FCA49B4085C32D1CC738C16142C0CDD] - (.ASUS - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe [170624] [PID.3412] [MD5.B54921381A950C8215FB363B485C432B] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [270336] [PID.3612] [MD5.3B9DFE92CAEF65BBA864470065F8FFEE] - (...) -- C:\Program Files (x86)\VLC Player GPU+\UsageLog.exe [1330400] [PID.3712] [MD5.CE5C9977DA751DDC30952AC4DCBCA788] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe [49208] [PID.3728] [MD5.37DEB76A2CF005841C4E45DE2B94D84F] - (.ASUS - AsScrPro.) -- C:\Windows\AsScrPro.exe [3058304] [PID.3840] [MD5.57B4D34232852BFE4453BE571DF90D21] - (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720] [PID.3876] [MD5.F16EEA6CCA9D8A7D1193AE80E43FBBC7] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe [168960] [PID.256] [MD5.8A9FACCB684500829F7D0BCC67B386CC] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe [559104] [PID.3112] [MD5.883008A9B5BFF94A153D99DBA54CB5C1] - (.Hewlett-Packard - GPCore COM object.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe [362496] [PID.2000] [MD5.9201E92771F3D536DA4A53FDCC4B976B] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [809288] [PID.4744] [MD5.3B07CFCAAEEC36A435652F305DA2AEFB] - (.Secunia - Secunia PSI Tray.) -- C:\Program Files (x86)\Secunia\PSI\PSI_TRAY.exe [591576] [PID.4404] [MD5.2653B31C40A0B825ED316A74283611F9] - (.Secunia - Secunia PSI.) -- C:\Program Files (x86)\Secunia\PSI\psi.exe [1983192] [PID.2716] [MD5.6B7BE218304D5DCCCBFFAE29F31F5AE7] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8184832] [PID.4544] [MD5.18E5C2F937F9DEB8C282DF66A3761925] - (.ASUS - ASLDR Service.) -- C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe [84536] [PID.1336] [MD5.FC5B75CA6A1DA31EDD4F8D53F5540B98] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [81088] [PID.1652] [MD5.9E897C2438BF9A48EE8F01076C403DA8] - (.ASUS - HControl.) -- C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe [182912] [PID.2852] [MD5.149126216A694E6BA84E92ECA77AAE3B] - (.ASUS - ATKOSD.) -- C:\Program Files (x86)\ASUS\ATK Hotkey\ATKOSD.exe [2488888] [PID.2424] [MD5.AA11E1368EEB237DD100BAC6AFFE1C57] - (.ASUS - KBFiltr.) -- C:\Program Files (x86)\ASUS\ATK Hotkey\KBFiltr.exe [113208] [PID.1520] [MD5.4A7C441D99D86704D194E7678873B95D] - (.ASUS - WDC.) -- C:\Program Files (x86)\ASUS\ATK Hotkey\WDC.exe [174648] [PID.3024] [MD5.5E0E975998BF1612E18B898E5D17838B] - (.Secunia - Secunia PSI Agent.) -- C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1363160] [PID.3620] ~ Processes Running: Scanned in 00mn 03s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.30514.0.) -- C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ~ Firefox Browser: 1 Scanned in 00mn 00s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\SysWOW64\ieframe.dll R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1 ~ IE Browser: 18 Scanned in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Proxy management: Scanned in 00mn 00s ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\Windows\explorer.exe F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe ~ Keys: Scanned in 00mn 00s ---\\ Hosts file redirection (O1) ~ Le fichier hôte est sain (The hosts file is clean) (21) ~ Hosts File: Scanned in 00mn 00s ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: HP Print Enhancer [64Bits] - {0347C33E-8762-4905-BF09-768834316C61} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: HP Smart BHO Class [64Bits] - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll ~ BHO: 4 Scanned in 00mn 01s ---\\ Autres liens utilisateurs (O4) O4 - GS\Desktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.luckysearches.com =>Hijacker.Browsers ~ Global Startup: 1 Scanned in 00mn 03s ---\\ Applications lancées au démarrage du système (O4) O4 - HKLM\..\Run: [ETDWare] . (.ELAN Microelectronic Corp. - ETD Control Center.) -- C:\Program Files\Elantech\ETDCtrl.exe O4 - HKLM\..\Run: [EeeStorageBackup] . (...) -- C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe O4 - HKLM\..\Run: [AmIcoSinglun64] . (.AlcorMicro Co., Ltd. - Single LUN Icon Utility for VID 058F PID 63.) -- C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- C:\Program Files\Microsoft Security Client\msseces.exe O4 - HKLM\..\Run: [Monitor] . (.PixArt Imaging Incorporation - Registry Monitor.) -- C:\Windows\Philips\SPC220NC\Monitor.exe O4 - HKCU\..\Run: [skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A. O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_3DEEAAE84B45083A628DF6E4E45A383F] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O4 - HKLM\..\Wow6432Node\Run: [updateLBPShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe O4 - HKLM\..\Wow6432Node\Run: [updateP2GoShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe O4 - HKLM\..\Wow6432Node\Run: [startCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe =>.Advanced Micro Devices, Inc O4 - HKLM\..\Wow6432Node\Run: [HDAudDeck] . (.VIA - VIA HD Audio CPL.) -- C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe O4 - HKLM\..\Wow6432Node\Run: [HControlUser] . (.ASUS - HControlUser.) -- C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe O4 - HKLM\..\Wow6432Node\Run: [ATKOSD2] . (.ASUS - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe O4 - HKLM\..\Wow6432Node\Run: [ATKMEDIA] . (.ASUS - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe O4 - HKLM\..\Wow6432Node\Run: [hpqSRMon] . (.Hewlett-Packard - HpqSRmon.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe O4 - HKLM\..\Wow6432Node\Run: [usageLoader] . (...) -- C:\Program Files (x86)\VLC Player GPU+\UsageLog.exe O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Co O4 - HKLM\..\Wow6432Node\Run: [Malwarebytes Anti-Exploit] C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe (.not file.) O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-21-1370862371-3178170699-3873136173-1003\..\Run: [skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A. O4 - HKUS\S-1-5-21-1370862371-3178170699-3873136173-1003\..\Run: [GoogleChromeAutoLaunch_3DEEAAE84B45083A628DF6E4E45A383F] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ~ Application: Scanned in 00mn 00s ---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5) O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no ~ IE Control Panel: 1 Scanned in 00mn 00s ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation ~ Winsock: 8 Scanned in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{2FD063E2-6FAA-44EF-8693-3D6B2B87D230}: DhcpNameServer = 212.27.40.241 212.27.40.240 O17 - HKLM\System\CS1\Services\Tcpip\..\{2FD063E2-6FAA-44EF-8693-3D6B2B87D230}: DhcpNameServer = 212.27.40.241 212.27.40.240 O17 - HKLM\System\CS2\Services\Tcpip\..\{2FD063E2-6FAA-44EF-8693-3D6B2B87D230}: DhcpNameServer = 212.27.40.241 212.27.40.240 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.241 212.27.40.240 ~ Domain: Scanned in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) -- O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation ~ Protocole Additionnel: Scanned in 00mn 00s ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. ~ SSODL: 1 Scanned in 00mn 00s ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: AFBAgent (AFBAgent) . (.ASUSTeK Computer Inc. - ASUS FastBoot.) - C:\Windows\system32\FBAgent.exe O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe O23 - Service: ASLDR Service (ASLDRService) . (.ASUS - ASLDR Service.) - C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc O23 - Service: Secunia PSI Agent (Secunia PSI Agent) . (.Secunia - Secunia PSI Agent.) - C:\Program Files (x86)\Secunia\PSI\PSIA.exe O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe ~ Services: 7 Scanned in 00mn 42s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ~ Desktop Component: 4 Scanned in 00mn 00s ---\\ Enumère les données de BootExecute (BEX) (O34) O34 - HKLM BootExecute: (autocheck autochk *) - File not found O34 - HKLM BootExecute: (sdnclean64.exe) - File not found ~ BEX: 2 Scanned in 00mn 00s ---\\ Tâches planifiées en automatique (O39) [MD5.A6C20CBD1B10FEF25DAA4F1CF9FBC4FF] [APT] [ACMON] (.ATK.) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [684544] [MD5.3E04F1E482357B1FC8B088197C3D9FF8] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152] [MD5.F4DCD4912B185C3AAEB92A7040832AD1] [APT] [ASUS Live Update] (...) -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [51768] [MD5.3DA69F11F6EF4F41C60C9BB56615046F] [APT] [ASUS P4G] (.ATK.) -- C:\Program Files\P4G\BatteryLife.exe [317568] [MD5.868E3486E7EC522330344152A5535783] [APT] [ASUS SmartLogon Console Sensor] (.ASUS.) -- C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [305720] [MD5.852EE4F61139A1B3F44EDAA0D5B3FC14] [APT] [ASUSControlDeck] (...) -- C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe [53888] [MD5.F172AD4E906D97ED8F071896FC6789DC] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912] [MD5.F172AD4E906D97ED8F071896FC6789DC] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912] [MD5.BDD790326FABC31FB635130810245062] [APT] [WC3] (...) -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1597440] [MD5.00000000000000000000000000000000] [APT] [YDZPN] (...) -- C:\Users\Delphine\AppData\Roaming\YDZPN.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [ZNTVWKC] (...) -- C:\Users\Delphine\AppData\Roaming\ZNTVWKC.exe (.not file.) [0] [MD5.F5A0554F655C566EB946841E6E7AE061] [APT] [{0B3CD011-896F-4D3B-86DF-4AFDD6FA0B3B}] (.Skype Technologies S.A..) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [30877280] [MD5.00000000000000000000000000000000] [APT] [{1CF16AE3-E8DF-416D-AC4A-8226F15DEE22}] (...) -- E:\SETUP.exe (.not file.) [0] [MD5.F5A0554F655C566EB946841E6E7AE061] [APT] [{4FDEA282-FD2C-4076-B455-1323815A2AA8}] (.Skype Technologies S.A..) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [30877280] [MD5.00000000000000000000000000000000] [APT] [{600526E0-0B92-46D5-8007-9799AA306408}] (...) -- C:\Users\Delphine\Downloads\WindowsPhone.exe (.not file.) [0] [MD5.C155A13687144076286989EF078112C2] [APT] [{A32EB6C1-FC77-41ED-8B0E-D9DA93FA5860}] (.Nicolas Coolman.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe [1917440] [MD5.C155A13687144076286989EF078112C2] [APT] [{C045F665-4A4A-491D-AE99-BD7AF70AEF0E}] (.Nicolas Coolman.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe [1917440] [MD5.00000000000000000000000000000000] [APT] [{E4D07FF1-8D32-432D-871A-DEDFFF08E05E}] (...) -- C:\Users\Delphine\AppData\Roaming\omiga-plus\UninstallManager.exe (.not file.) [0] =>Hijacker.OmigaPlus O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1066] O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1066] O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1070] O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1070] O39 - APT: YDZPN - (...) -- C:\Windows\Tasks\YDZPN.job [1380] O39 - APT: YDZPN - (...) -- C:\Windows\System32\Tasks\YDZPN [1380] O39 - APT: ZNTVWKC - (...) -- C:\Windows\Tasks\ZNTVWKC.job [1384] O39 - APT: ZNTVWKC - (...) -- C:\Windows\System32\Tasks\ZNTVWKC [1384] ~ Scheduled Task: 25 Scanned in 00mn 46s ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\System32\iedkcs32.dll O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll ~ Active Setup: 11 Scanned in 00mn 00s ---\\ Pilotes lancés au démarrage du système (O41) O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys O41 - Driver: C:\Windows\System32\ipnathlp.dll (SharedAccess) . (.Microsoft Corporation - Processus hôte pour les services Windows.) - C:\Windows\System32\svchost.exe =>.Microsoft Corporation O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys ~ Drivers: 63 Scanned in 00mn 01s ---\\ Logiciels installés (O42) O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {FF21C3E6-97FD-474F-9518-8DCBE94C2854} O42 - Logiciel: AMD USB Filter Driver - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {82809116-D1EE-443C-AE31-F19E709DDF7A} O42 - Logiciel: ASUS AI Recovery - (.ASUS.) [HKLM][64Bits] -- {06585B02-F20D-4AB2-9A64-86EF2AE0F8F0} O42 - Logiciel: ASUS AP Bank - (.ASUSTEK.) [HKLM][64Bits] -- ASUS AP Bank_is1 O42 - Logiciel: ASUS FancyStart - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {2B81872B-A054-48DA-BE3B-FA5C164C303A} O42 - Logiciel: ASUS LifeFrame3 - (.ASUS.) [HKLM][64Bits] -- {1DBD1F12-ED93-49C0-A7CC-56CBDE488158} O42 - Logiciel: ASUS Live Update - (.ASUS.) [HKLM][64Bits] -- {E657B243-9AD4-4ECC-BE81-4CCF8D667FD0} O42 - Logiciel: ASUS MultiFrame - (.ASUS.) [HKLM][64Bits] -- {9D48531D-2135-49FC-BC29-ACCDA5396A76} O42 - Logiciel: ASUS Power4Gear Hybrid - (.ASUS.) [HKLM][64Bits] -- {91EFE3A1-585E-4F66-B5F6-F118F56C4C47} O42 - Logiciel: ASUS SmartLogon - (.ASUS.) [HKLM][64Bits] -- {64452561-169F-4A36-A2FF-B5E118EC65F5} O42 - Logiciel: ASUS Splendid Video Enhancement Technology - (.ASUS.) [HKLM][64Bits] -- {0969AF05-4FF6-4C00-9406-43599238DE0D} O42 - Logiciel: ASUS USB2.0 UVC VGA WebCam - (.Sonix.) [HKLM][64Bits] -- ASUS USB2.0 UVC VGA WebCam O42 - Logiciel: ASUS Virtual Camera - (.asus.) [HKLM][64Bits] -- {EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1} O42 - Logiciel: ASUS WebStorage - (.eCareme Technologies, Inc..) [HKLM][64Bits] -- ASUS WebStorage O42 - Logiciel: ASUS_Screensaver - (...) [HKLM][64Bits] -- ASUS_Screensaver O42 - Logiciel: ATK Generic Function Service - (.ATK.) [HKLM][64Bits] -- {D3D54F3E-C5C3-443D-978F-87A72E5616E8} O42 - Logiciel: ATK Hotkey - (.ASUS.) [HKLM][64Bits] -- {7C05592D-424B-46CB-B505-E0013E8E75C9} O42 - Logiciel: ATK Media - (.ASUS.) [HKLM][64Bits] -- {D1E5870E-E3E5-4475-98A6-ADD614524ADF} O42 - Logiciel: ATKOSD2 - (.ASUS.) [HKLM][64Bits] -- {3B05F2FB-745B-4012-ADF2-439F36B2E70B} O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40} O42 - Logiciel: Adobe Flash Player 15 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Reader XI (11.0.10) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001} O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001802114130} O42 - Logiciel: Alcor Micro USB Card Reader - (.Alcor Micro Corp..) [HKLM][64Bits] -- InstallShield_{5A22D889-FBDD-4AE8-86EC-089D45FC133E} O42 - Logiciel: ControlDeck - (.ASUS.) [HKLM][64Bits] -- {5B65EF64-1DFA-414A-8C94-7BB726158E21} O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243} O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243} O42 - Logiciel: CyberLink Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658} O42 - Logiciel: CyberLink Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- {40BF1E83-20EB-11D8-97C5-0009C5020658} O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} O42 - Logiciel: ETDWare PS/2-x64 7.0.5.9_WHQL - (...) [HKLM][64Bits] -- Elantech O42 - Logiciel: Fast Boot - (.ASUS.) [HKLM][64Bits] -- {13F4A7F3-EABC-4261-AF6B-1317777F0755} O42 - Logiciel: Free PDF Scanner - (.Documalis.) [HKLM][64Bits] -- Free PDF Scanner O42 - Logiciel: GPU Monitor - (.GPU Usage.) [HKLM][64Bits] -- VLC Player GPU+11.041.44 O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: HP Customer Participation Program 13.0 - (.HP.) [HKLM][64Bits] -- HPExtendedCapabilities O42 - Logiciel: HP Imaging Device Functions 13.0 - (.HP.) [HKLM][64Bits] -- HP Imaging Device Functions O42 - Logiciel: HP Photosmart All-In-One Driver Software 13.0 Rel. A - (.HP.) [HKLM][64Bits] -- {17016DA1-F040-4032-BD36-34DD317BC9D5} =>.Hewlett-Packard Co O42 - Logiciel: HP Photosmart Essential 3.5 - (.HP.) [HKLM][64Bits] -- HP Photosmart Essential =>.Hewlett-Packard Co O42 - Logiciel: HP Smart Web Printing 4.51 - (.HP.) [HKLM][64Bits] -- HP Smart Web Printing O42 - Logiciel: HP Solution Center 13.0 - (.HP.) [HKLM][64Bits] -- HP Solution Center & Imaging Support Tools O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {912D30CF-F39E-4B31-AD9A-123C6B794EE2} O42 - Logiciel: HPDiagnosticAlert - (.Microsoft.) [HKLM][64Bits] -- {B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D} O42 - Logiciel: Java 8 Update 31 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218031F0} O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2721691) - (.Microsoft Corporation.) [HKLM][64Bits] -- {355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36} O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E} O42 - Logiciel: MSXML 4.0 SP3 Parser (KB973685) - (.Microsoft Corporation.) [HKLM][64Bits] -- {859DFA95-E4A6-48CD-B88E-A3E483E89B44} O42 - Logiciel: MSXML4 Parser - (.Microsoft Game Studios.) [HKLM][64Bits] -- {01501EBA-EC35-4F9F-8889-3BE346E5DA13} O42 - Logiciel: Malwarebytes Anti-Malware version 2.0.4.1028 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM][64Bits] -- {996D32B6-F629-4764-894B-CB24D9C19051} O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Security Client O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Windows Debugging Symbols - (.Microsoft.) [HKLM][64Bits] -- {5CBDF0C2-6FD1-4A32-9A0A-143D9AB91CCE} O42 - Logiciel: Microsoft Windows Debugging Symbols - (.Microsoft.) [HKLM][64Bits] -- {68ADAEAA-DABD-45C1-9CC2-F995407549CD} O42 - Logiciel: Microsoft Windows Debugging Symbols - (.Microsoft.) [HKLM][64Bits] -- {C6DB958A-50CC-481B-9ED8-3BAD236F7B49} O42 - Logiciel: OCR Software by I.R.I.S. 13.0 - (.HP.) [HKLM][64Bits] -- HPOCR O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.) [HKLM][64Bits] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D} O42 - Logiciel: SRS Premium Sound Control Panel - (.SRS Labs, Inc..) [HKLM][64Bits] -- {E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049} O42 - Logiciel: Secunia PSI (3.0.0.10004) - (.Secunia.) [HKLM][64Bits] -- Secunia PSI O42 - Logiciel: Shop for HP Supplies - (.HP.) [HKLM][64Bits] -- Shop for HP Supplies O42 - Logiciel: Skype™ 7.0 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7} O42 - Logiciel: VIA Platform Device Manager - (.VIA Technologies, Inc..) [HKLM][64Bits] -- InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169} O42 - Logiciel: VLC media player 2.1.2 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN O42 - Logiciel: WinFlash - (.ASUS.) [HKLM][64Bits] -- {8F21291E-0444-4B1D-B9F9-4370A73E346D} O42 - Logiciel: Windows Phone app for desktop - (.Microsoft Corporation.) [HKLM][64Bits] -- {639E54EE-95CA-4CAE-9779-6BA32D5EAF48} O42 - Logiciel: Wireless Console 3 - (.ASUS.) [HKLM][64Bits] -- {20FDF948-C8ED-4543-A539-F7F4AEF5AFA2} O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>P2P.BitTorrent ~ Logic: 54 Scanned in 00mn 01s ---\\ HKCU & HKLM Software Keys [HKCU\Software\ASUS] [HKCU\Software\ATI] [HKCU\Software\ATK0100] [HKCU\Software\Acon Digital Media] [HKCU\Software\Adobe] [HKCU\Software\AppDataLow\Software\JavaSoft] [HKCU\Software\AppDataLow] [HKCU\Software\BVRP Software] [HKCU\Software\BitTorrent] =>P2P.BitTorrent [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\CyberLink] [HKCU\Software\DirectShow] [HKCU\Software\DocumentScanner] [HKCU\Software\ECAREME] [HKCU\Software\Elantech] [HKCU\Software\Google] [HKCU\Software\HP] [HKCU\Software\Hewlett-Packard] [HKCU\Software\IM Providers] [HKCU\Software\Intel\Indeo\4.1] [HKCU\Software\JavaSoft] [HKCU\Software\Licenses] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\Macromedia] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\Netscape] [HKCU\Software\Nico Mak Computing] [HKCU\Software\OB] [HKCU\Software\ODBC] [HKCU\Software\PDFCreator] [HKCU\Software\Policies] [HKCU\Software\Safer Networking Limited] [HKCU\Software\Secunia] [HKCU\Software\Skype] [HKCU\Software\Trolltech] [HKCU\Software\WebApp] [HKCU\Software\Wow6432Node] [HKCU\Software\YDZPN] [HKCU\Software\ZNTVWKC] [HKLM\Software\AMD] [HKLM\Software\ASUS] [HKLM\Software\ATI Technologies] [HKLM\Software\ATI] [HKLM\Software\ATK0100] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\BrowserChoice] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\CoreSecurity] [HKLM\Software\ECAREME] [HKLM\Software\GEAR Software] [HKLM\Software\Hewlett-Packard] [HKLM\Software\IM Providers] [HKLM\Software\Intel] [HKLM\Software\Macromedia] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\ODBC] [HKLM\Software\Policies] [HKLM\Software\QSound Labs, Inc.] [HKLM\Software\RegisteredApplications] [HKLM\Software\SONIX] [HKLM\Software\SRS Labs] [HKLM\Software\Safer Networking Limited] [HKLM\Software\Software] [HKLM\Software\Sonic] [HKLM\Software\Sony Mobile] [HKLM\Software\Volatile] [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b] =>PUP.CrossRider [HKLM\Software\Wow6432Node\ASUS] [HKLM\Software\Wow6432Node\ATI Technologies] [HKLM\Software\Wow6432Node\ATI] [HKLM\Software\Wow6432Node\ATK] [HKLM\Software\Wow6432Node\Acon Digital Media] [HKLM\Software\Wow6432Node\Adobe] [HKLM\Software\Wow6432Node\AdwCleaner] [HKLM\Software\Wow6432Node\Alawar] [HKLM\Software\Wow6432Node\AsLdr] [HKLM\Software\Wow6432Node\Battle.net] [HKLM\Software\Wow6432Node\Classes] [HKLM\Software\Wow6432Node\Clients] [HKLM\Software\Wow6432Node\CyberLink] [HKLM\Software\Wow6432Node\DownloaderAssistant] =>PUP.Salus [HKLM\Software\Wow6432Node\EA GAMES] [HKLM\Software\Wow6432Node\Electronic Arts] [HKLM\Software\Wow6432Node\Google] [HKLM\Software\Wow6432Node\HP] [HKLM\Software\Wow6432Node\Hewlett-Packard] [HKLM\Software\Wow6432Node\IM Providers] [HKLM\Software\Wow6432Node\InstallShield] [HKLM\Software\Wow6432Node\Intel] [HKLM\Software\Wow6432Node\JavaSoft] [HKLM\Software\Wow6432Node\JreMetrics] [HKLM\Software\Wow6432Node\Licenses] [HKLM\Software\Wow6432Node\LogMeIn Rescue] [HKLM\Software\Wow6432Node\Macromedia] [HKLM\Software\Wow6432Node\Malwarebytes Anti-Exploit] [HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware] [HKLM\Software\Wow6432Node\MimarSinan] [HKLM\Software\Wow6432Node\MozillaPlugins] [HKLM\Software\Wow6432Node\Mozilla] [HKLM\Software\Wow6432Node\NCH Software] [HKLM\Software\Wow6432Node\NCH Swift Sound] [HKLM\Software\Wow6432Node\ODBC] [HKLM\Software\Wow6432Node\Oracle] [HKLM\Software\Wow6432Node\PDFCreator] [HKLM\Software\Wow6432Node\PegasusImaging] [HKLM\Software\Wow6432Node\Philips] [HKLM\Software\Wow6432Node\Pinnacle Systems] [HKLM\Software\Wow6432Node\Policies] [HKLM\Software\Wow6432Node\RegisteredApplications] [HKLM\Software\Wow6432Node\Safer Networking Limited] [HKLM\Software\Wow6432Node\Secunia] [HKLM\Software\Wow6432Node\Skype] [HKLM\Software\Wow6432Node\Sony Mobile] [HKLM\Software\Wow6432Node\Spamihilator] [HKLM\Software\Wow6432Node\Universal] [HKLM\Software\Wow6432Node\VIA Technologies, Inc] [HKLM\Software\Wow6432Node\VideoLAN] [HKLM\Software\Wow6432Node\Volatile] [HKLM\Software\Wow6432Node\Wondershare] [HKLM\Software\Wow6432Node\Wow6432Node] [HKLM\Software\Wow6432Node\Yahoo] [HKLM\Software\Wow6432Node\asio] [HKLM\Software\Wow6432Node\luckysearchesSoftware] [HKLM\Software\Wow6432Node] ~ Key Software: 256 Scanned in 00mn 02s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 03/02/2010 - 00:00:14 - [] ----D C:\Program Files (x86)\Activation Assistant for the 2007 Microsoft Office suites O43 - CFD: 08/11/2014 - 12:03:46 - [] ----D C:\Program Files (x86)\Adobe O43 - CFD: 03/02/2010 - 00:31:35 - [] ----D C:\Program Files (x86)\AMD O43 - CFD: 03/02/2010 - 00:35:34 - [] ----D C:\Program Files (x86)\AmIcoSingLun O43 - CFD: 10/07/2013 - 12:01:07 - [] ----D C:\Program Files (x86)\ASUS O43 - CFD: 03/02/2010 - 00:25:49 - [] ----D C:\Program Files (x86)\ATI Technologies O43 - CFD: 06/06/2014 - 15:56:48 - [] ----D C:\Program Files (x86)\CDex O43 - CFD: 30/09/2014 - 16:01:59 - [] ----D C:\Program Files (x86)\Common Files O43 - CFD: 03/02/2010 - 00:07:48 - [] ----D C:\Program Files (x86)\CyberLink O43 - CFD: 23/10/2014 - 16:58:41 - [] ----D C:\Program Files (x86)\Documalis O43 - CFD: 19/12/2014 - 12:09:02 - [] ----D C:\Program Files (x86)\Google O43 - CFD: 01/04/2014 - 19:28:59 - [] ----D C:\Program Files (x86)\HP O43 - CFD: 17/11/2014 - 18:28:53 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 12/04/2013 - 06:41:25 - [] ----D C:\Program Files (x86)\Internet Explorer O43 - CFD: 22/01/2015 - 18:14:30 - [] ----D C:\Program Files (x86)\Java O43 - CFD: 11/03/2015 - 20:48:57 - [] ----D C:\Program Files (x86)\Malwarebytes Anti-Malware O43 - CFD: 03/06/2014 - 19:59:31 - [] ----D C:\Program Files (x86)\Microsoft O43 - CFD: 14/03/2011 - 13:29:43 - [] ----D C:\Program Files (x86)\Microsoft Games O43 - CFD: 22/07/2011 - 06:21:34 - [] ----D C:\Program Files (x86)\Microsoft Office O43 - CFD: 14/02/2015 - 01:00:11 - [] ----D C:\Program Files (x86)\Microsoft Security Client O43 - CFD: 28/10/2014 - 20:20:34 - [] ----D C:\Program Files (x86)\Microsoft Silverlight O43 - CFD: 10/03/2010 - 20:51:47 - [] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 02/02/2010 - 23:57:36 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio O43 - CFD: 20/03/2010 - 13:53:02 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio 8 O43 - CFD: 19/03/2010 - 20:03:26 - [] ----D C:\Program Files (x86)\Microsoft Works O43 - CFD: 06/01/2011 - 09:26:37 - [] ----D C:\Program Files (x86)\Microsoft.NET O43 - CFD: 24/04/2010 - 23:06:58 - [] ----D C:\Program Files (x86)\Movie Maker 2.6 O43 - CFD: 06/06/2014 - 15:52:31 - [] ----D C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 20/03/2010 - 13:57:37 - [] ----D C:\Program Files (x86)\MSBuild O43 - CFD: 03/02/2010 - 00:10:02 - [] ----D C:\Program Files (x86)\MSXML 4.0 O43 - CFD: 03/02/2010 - 00:17:42 - [] ----D C:\Program Files (x86)\Oberon Media O43 - CFD: 12/09/2014 - 11:42:15 - [] ----D C:\Program Files (x86)\PDFCreator O43 - CFD: 14/07/2009 - 06:32:38 - [] ----D C:\Program Files (x86)\Reference Assemblies O43 - CFD: 01/04/2014 - 18:09:11 - [] ----D C:\Program Files (x86)\Secunia O43 - CFD: 23/09/2014 - 18:45:56 - [] R---D C:\Program Files (x86)\Skype O43 - CFD: 15/02/2015 - 18:34:36 - [0] ----D C:\Program Files (x86)\Sony Mobile O43 - CFD: 11/03/2015 - 13:44:54 - [] ----D C:\Program Files (x86)\Spybot - Search & Destroy 2 O43 - CFD: 21/11/2013 - 22:54:09 - [] ----D C:\Program Files (x86)\Temp O43 - CFD: 14/07/2009 - 05:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information O43 - CFD: 03/02/2010 - 00:33:43 - [] ----D C:\Program Files (x86)\VIA O43 - CFD: 11/10/2012 - 16:02:00 - [] ----D C:\Program Files (x86)\VideoLAN O43 - CFD: 04/06/2014 - 18:40:48 - [] ----D C:\Program Files (x86)\VLC Player GPU+ O43 - CFD: 20/05/2011 - 23:12:52 - [] ----D C:\Program Files (x86)\Windows Defender O43 - CFD: 25/02/2013 - 19:56:37 - [] ----D C:\Program Files (x86)\Windows Live O43 - CFD: 20/05/2011 - 23:13:00 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation O43 - CFD: 20/05/2011 - 23:12:58 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation O43 - CFD: 14/07/2009 - 06:32:38 - [] ----D C:\Program Files (x86)\Windows NT O43 - CFD: 28/01/2015 - 20:15:18 - [] ----D C:\Program Files (x86)\Windows Phone O43 - CFD: 20/05/2011 - 23:12:55 - [] ----D C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 14/07/2009 - 06:32:40 - [] ----D C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 20/05/2011 - 23:13:04 - [] ----D C:\Program Files (x86)\Windows Sidebar O43 - CFD: 21/11/2013 - 22:54:00 - [0] ----D C:\Program Files (x86)\Wondershare O43 - CFD: 19/12/2013 - 16:21:11 - [] ----D C:\Program Files (x86)\Yahoo! O43 - CFD: 11/03/2015 - 13:50:03 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman O43 - CFD: 01/04/2014 - 17:37:54 - [] ----D C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 28/12/2013 - 10:54:25 - [0] ----D C:\Program Files (x86)\Common Files\Apple O43 - CFD: 03/02/2010 - 00:38:09 - [] ----D C:\Program Files (x86)\Common Files\ControlDeck O43 - CFD: 14/05/2014 - 19:59:56 - [] ----D C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 19/12/2013 - 13:49:46 - [] ----D C:\Program Files (x86)\Common Files\Hewlett-Packard O43 - CFD: 19/12/2013 - 13:49:06 - [] ----D C:\Program Files (x86)\Common Files\HP O43 - CFD: 05/10/2012 - 07:17:36 - [] ----D C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 30/09/2014 - 16:01:59 - [] ----D C:\Program Files (x86)\Common Files\Java O43 - CFD: 08/03/2012 - 23:52:54 - [] ----D C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD: 03/02/2010 - 00:16:30 - [] ----D C:\Program Files (x86)\Common Files\Oberon Media O43 - CFD: 04/10/2011 - 22:47:08 - [] ----D C:\Program Files (x86)\Common Files\Pinnacle O43 - CFD: 14/07/2009 - 04:20:08 - [] ----D C:\Program Files (x86)\Common Files\Services O43 - CFD: 23/09/2014 - 18:45:56 - [] ----D C:\Program Files (x86)\Common Files\Skype O43 - CFD: 14/07/2009 - 04:20:08 - [] ----D C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 04/12/2011 - 18:45:20 - [] ----D C:\Program Files (x86)\Common Files\System O43 - CFD: 10/03/2010 - 20:48:03 - [] ----D C:\Program Files (x86)\Common Files\Windows Live O43 - CFD: 21/11/2013 - 22:40:30 - [] ----D C:\Program Files (x86)\Common Files\Wondershare O43 - CFD: 28/12/2013 - 10:54:25 - [] ----D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 O43 - CFD: 01/04/2014 - 17:42:50 - [] ----D C:\ProgramData\Adobe O43 - CFD: 03/02/2010 - 00:35:34 - [] ----D C:\ProgramData\AmUStor O43 - CFD: 21/12/2013 - 16:09:31 - [] ----D C:\ProgramData\Apple O43 - CFD: 21/12/2013 - 16:11:46 - [] ----D C:\ProgramData\Apple Computer O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Application Data O43 - CFD: 28/01/2015 - 19:40:37 - [] ----D C:\ProgramData\Applications O43 - CFD: 31/05/2014 - 09:16:08 - [] ----D C:\ProgramData\ASUS O43 - CFD: 03/02/2010 - 00:26:06 - [] ----D C:\ProgramData\ATI O43 - CFD: 01/04/2014 - 19:47:26 - [] ----D C:\ProgramData\Avira O43 - CFD: 04/06/2014 - 22:38:03 - [] ----D C:\ProgramData\CyberLink O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Desktop O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Documents O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Favorites O43 - CFD: 16/03/2011 - 17:59:52 - [] ----D C:\ProgramData\Hewlett-Packard O43 - CFD: 04/02/2014 - 12:05:19 - [] ----D C:\ProgramData\HP O43 - CFD: 19/12/2013 - 13:53:40 - [] ----D C:\ProgramData\HP Product Assistant O43 - CFD: 01/04/2014 - 13:25:27 - [] ----D C:\ProgramData\Malwarebytes O43 - CFD: 09/03/2015 - 15:21:35 - [] ----D C:\ProgramData\Malwarebytes Anti-Exploit O43 - CFD: 11/03/2015 - 13:43:26 - [] -S--D C:\ProgramData\Microsoft O43 - CFD: 12/03/2015 - 08:42:37 - [] ----D C:\ProgramData\Microsoft Help O43 - CFD: 22/01/2015 - 18:10:19 - [] ----D C:\ProgramData\Oracle O43 - CFD: 03/08/2014 - 20:10:51 - [] ----D C:\ProgramData\P4G O43 - CFD: 08/12/2011 - 21:18:49 - [] ----D C:\ProgramData\Pinnacle O43 - CFD: 04/10/2011 - 22:45:36 - [] ----D C:\ProgramData\Pinnacle Studio Ultimate O43 - CFD: 02/02/2015 - 18:29:26 - [] ----D C:\ProgramData\Skype O43 - CFD: 27/01/2013 - 08:56:56 - [0] ----D C:\ProgramData\Sony Ericsson O43 - CFD: 15/02/2015 - 18:34:42 - [0] ----D C:\ProgramData\Sony Mobile O43 - CFD: 11/03/2015 - 13:43:27 - [] ----D C:\ProgramData\Spybot - Search & Destroy O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Start Menu O43 - CFD: 22/09/2012 - 15:06:59 - [] ----D C:\ProgramData\Sun O43 - CFD: 21/11/2013 - 22:19:00 - [] ---AD C:\ProgramData\Temp O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Templates O43 - CFD: 19/12/2013 - 14:02:37 - [] ----D C:\ProgramData\WEBREG O43 - CFD: 02/02/2015 - 18:16:19 - [0] ----D C:\ProgramData\WinZip O43 - CFD: 03/02/2010 - 00:00:14 - [] ----D C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3} O43 - CFD: 09/03/2015 - 12:50:11 - [] ----D C:\ProgramData\{cdbf00fd-6525-57d4-cdbf-f00fd65203f5} O43 - CFD: 29/07/2009 - 06:08:13 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 14/07/2009 - 05:57:13 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 03/02/2010 - 00:16:18 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS O43 - CFD: 03/02/2010 - 00:38:53 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Utility O43 - CFD: 03/02/2010 - 00:25:52 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center O43 - CFD: 23/04/2014 - 17:42:40 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDex O43 - CFD: 29/12/2013 - 21:27:29 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 19/12/2014 - 12:09:42 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome O43 - CFD: 21/08/2014 - 15:55:36 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP O43 - CFD: 22/01/2015 - 18:11:34 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java O43 - CFD: 14/07/2009 - 05:57:09 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 11/03/2015 - 20:48:57 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware O43 - CFD: 16/09/2013 - 09:15:22 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office O43 - CFD: 15/08/2010 - 17:14:02 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in O43 - CFD: 28/10/2014 - 20:24:50 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight O43 - CFD: 12/09/2014 - 11:41:55 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator O43 - CFD: 23/09/2014 - 18:45:57 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype O43 - CFD: 03/02/2010 - 00:33:56 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SRS Labs O43 - CFD: 12/03/2015 - 08:51:44 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 14/07/2009 - 08:44:38 - [0] R-H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC O43 - CFD: 01/04/2014 - 18:16:05 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN O43 - CFD: 03/09/2011 - 14:25:32 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live O43 - CFD: 28/01/2015 - 20:15:19 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Phone O43 - CFD: 11/03/2015 - 13:50:03 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP =>.Nicolas Coolman O43 - CFD: 06/01/2015 - 13:30:57 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\Adobe O43 - CFD: 03/05/2014 - 10:33:07 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\Asus WebStorage O43 - CFD: 02/05/2014 - 18:42:19 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\ATI O43 - CFD: 04/06/2014 - 22:38:09 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\CyberLink O43 - CFD: 05/05/2014 - 12:41:23 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\HP O43 - CFD: 17/10/2014 - 22:38:48 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\HpUpdate O43 - CFD: 02/05/2014 - 18:39:22 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\Identities O43 - CFD: 02/05/2014 - 18:43:10 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\Macromedia O43 - CFD: 14/07/2009 - 08:44:38 - [0] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\Media Center Programs O43 - CFD: 05/02/2015 - 11:33:22 - [] -S--D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\Microsoft O43 - CFD: 12/03/2015 - 03:31:46 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\Skype O43 - CFD: 27/10/2014 - 19:27:27 - [0] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\Solvusoft O43 - CFD: 16/02/2015 - 15:33:25 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\uTorrent =>P2P.µTorrent O43 - CFD: 28/02/2015 - 17:24:36 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\vlc O43 - CFD: 30/01/2015 - 11:59:24 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\WinZip O43 - CFD: 12/03/2015 - 08:56:43 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\ZHP =>.Nicolas Coolman O43 - CFD: 10/07/2014 - 18:46:10 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Adobe O43 - CFD: 02/05/2014 - 18:39:00 - [] -SH-D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Application Data O43 - CFD: 31/10/2014 - 18:14:52 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Apps O43 - CFD: 31/05/2014 - 09:16:05 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\ASUS O43 - CFD: 02/05/2014 - 18:42:19 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\ATI O43 - CFD: 19/12/2014 - 12:07:31 - [0] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Deployment O43 - CFD: 23/10/2014 - 18:15:01 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\DocumentScanner O43 - CFD: 28/10/2014 - 20:15:49 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\ElevatedDiagnostics O43 - CFD: 27/09/2014 - 17:53:16 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\fontconfig O43 - CFD: 27/09/2014 - 17:53:11 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\gegl-0.2 O43 - CFD: 19/12/2014 - 12:09:48 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Google O43 - CFD: 27/09/2014 - 18:26:21 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\gtk-2.0 O43 - CFD: 02/05/2014 - 18:39:00 - [] -SH-D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Historique O43 - CFD: 05/05/2014 - 12:41:21 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\HP O43 - CFD: 29/10/2014 - 18:12:16 - [0] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\LogMeIn Rescue Applet O43 - CFD: 28/01/2015 - 20:15:34 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Microsoft O43 - CFD: 05/05/2014 - 20:31:02 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Microsoft Games O43 - CFD: 16/03/2010 - 18:40:40 - [0] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Microsoft Help O43 - CFD: 03/05/2014 - 07:48:40 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Power2Go O43 - CFD: 04/06/2014 - 13:45:22 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Programs O43 - CFD: 14/05/2014 - 16:50:07 - [0] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Secunia PSI O43 - CFD: 03/05/2014 - 11:00:11 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Skype O43 - CFD: 02/05/2014 - 18:41:34 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\SRS Labs O43 - CFD: 12/03/2015 - 08:56:34 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Temp O43 - CFD: 02/05/2014 - 18:39:00 - [] -SH-D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Temporary Internet Files O43 - CFD: 14/07/2009 - 05:54:32 - [] R---D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 02/05/2014 - 18:40:27 - [] R---D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 03/02/2010 - 00:07:58 - [] ----D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink Blu-ray Disc Suite O43 - CFD: 14/07/2009 - 05:49:38 - [] R---D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 15/02/2015 - 17:39:12 - [] R---D C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup ~ Program Folder: 178 Scanned in 00mn 00s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.90DBDF46B3EF638102A50ED18D752175] - 02/03/2015 - 09:16:25 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1683330] O44 - LFC:[MD5.3F176B49063D6148E74CCA20D1DAC94B] - 02/03/2015 - 09:16:25 ---A- . (...) -- C:\Windows\System32\perfc009.dat [124134] O44 - LFC:[MD5.936206DDFC5EEE0997CDF1CB5830E26A] - 02/03/2015 - 09:16:25 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [152016] O44 - LFC:[MD5.BAEE2E408FE336DE0EC76386B1FD1B3B] - 02/03/2015 - 09:16:25 ---A- . (...) -- C:\Windows\System32\perfh009.dat [659460] O44 - LFC:[MD5.2F6A52A2459A8C67BB62951519DA0D0A] - 02/03/2015 - 09:16:25 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [752700] O44 - LFC:[MD5.8752CC895B972F48D82F9ADB3D96E351] - 03/03/2015 - 14:17:35 ----- . (.Microsoft Corporation - Microsoft Malware Protection Signature Upda.) -- C:\Windows\System32\MpSigStub.exe [295552] O44 - LFC:[MD5.CA43F8904E24BBE49982E4C0B29E6579] - 09/03/2015 - 10:55:22 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [25816] O44 - LFC:[MD5.478CC94C937D235CB0A96AB8F2359D81] - 09/03/2015 - 10:55:22 ---A- . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\Drivers\mbamchameleon.sys [93400] O44 - LFC:[MD5.A646C2DDB8C46E9B20A326FAF566646C] - 09/03/2015 - 10:55:22 ---A- . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\Drivers\mwac.sys [63704] O44 - LFC:[MD5.4AA7A59908C80805544A9EE0B309E55E] - 11/03/2015 - 13:47:33 ---A- . (...) -- C:\Windows\System32\ServiceFilter.ini [1667] O44 - LFC:[MD5.0CD6AD52F5165F1AEE84DAD147DDF121] - 11/03/2015 - 13:59:30 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512] O44 - LFC:[MD5.DDF197122401F90544489CAC32178A1D] - 11/03/2015 - 22:09:06 ---A- . (...) -- C:\Windows\PFRO.log [467152] O44 - LFC:[MD5.B65DEC693C83A143DA4A1C5E3F2FDEF0] - 11/03/2015 - 22:09:10 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.26C43960C99EE861A5D0EDC4DCF3B1C3] - 11/03/2015 - 22:11:53 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [129752] O44 - LFC:[MD5.26C43960C99EE861A5D0EDC4DCF3B1C3] - 11/03/2015 - 22:11:54 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\3E1F3E94.sys [129752] O44 - LFC:[MD5.E86C5CBF135D1BBAA18879194EE15E12] - 12/03/2015 - 08:31:57 ---A- . (...) -- C:\Windows\setupact.log [125774] O44 - LFC:[MD5.000A77BDB94C42A90137E8368D3A47AA] - 12/03/2015 - 08:43:04 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe [122905848] O44 - LFC:[MD5.13B58F377604463B719798613AC6B644] - 12/03/2015 - 08:43:52 ---A- . (...) -- C:\Windows\WindowsUpdate.log [2070615] O44 - LFC:[MD5.47665B1987CE4E9286EA489EB86CD38C] - 28/02/2015 - 23:54:07 ---A- . (...) -- C:\Windows\System32\AutoRunFilter.ini [2644] ~ Files: 19 Scanned in 00mn 28s ---\\ Déni du service (Local Security Authority) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll ~ LSA: 9 Scanned in 00mn 00s ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys ~ CSB: 13 Scanned in 00mn 00s ---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ~ TDSD: 2 Scanned in 00mn 00s ---\\ Enumération des clés de registre StartupReg (SMSR) (O53) O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (...) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\ASUS Screen Saver Protector [Key] . (.ASUS - AsScrPro.) -- C:\Windows\AsScrPro.exe O53 - SMSR:HKLM\...\startupreg\CLMLServer [Key] . (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe ~ SMSR Keys: 3 Scanned in 00mn 00s ---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll ~ MSCP: 2 Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0 O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 O55 - MWPS:[HKCU\...\Policies\System] - "DisableRegistryTools"=0 O55 - MWPS:[HKCU\...\Policies\System] - "DisableTaskMgr"=0 ~ MWPS: 18 Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0 ~ MWPE Keys: 4 Scanned in 00mn 00s ---\\ Liste des pilotes du système (SDL) (O58) O58 - SDL:11/03/2015 - 22:11:54 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\3E1F3E94.sys [129752] O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088] O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\Drivers\adpahci.sys [339536] O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\Drivers\adpu320.sys [182864] O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\Drivers\aliide.sys [15440] O58 - SDL:17/07/2009 - 07:00:11 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [68664] O58 - SDL:14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys [194128] O58 - SDL:17/07/2009 - 07:00:11 ---A- . (.Advanced Micro Devices - Stor Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [29240] O58 - SDL:26/05/2009 - 14:32:37 ---A- . (.Alcor Micro, Corp. - Alocr Micro USB Mass Storage Driver.) -- C:\Windows\System32\Drivers\AmUStor.sys [40448] O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\Drivers\arc.sys [87632] O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [97856] O58 - SDL:27/06/2011 - 00:37:00 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\Drivers\athrx.sys [2753536] O58 - SDL:23/07/2009 - 16:48:59 ---A- . (.ATI Technologies, Inc. - ATI High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\AtiHdmi.sys [119312] O58 - SDL:11/12/2009 - 09:04:45 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\Drivers\atikmdag.sys [6228480] O58 - SDL:11/12/2009 - 07:51:09 ---A- . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\System32\Drivers\atikmpag.sys [160256] O58 - SDL:05/05/2009 - 03:00:27 ---A- . (.Advanced Micro Devices Inc. - AMD PCIE Filter Driver for ATI PCIE chipset.) -- C:\Windows\System32\Drivers\AtiPcie.sys [16440] O58 - SDL:11/12/2009 - 09:04:45 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\Drivers\atipmdag.sys [6228480] O58 - SDL:13/05/2009 - 02:07:19 ---A- . (.ASUS - ATK0100 ACPI Utility.) -- C:\Windows\System32\Drivers\ATK64AMD.sys [15928] O58 - SDL:10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\System32\Drivers\b57nd60a.sys [270848] O58 - SDL:10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltLo.sys [18432] O58 - SDL:10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltUp.sys [8704] O58 - SDL:14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\BrSerId.sys [286720] O58 - SDL:10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\Drivers\BrSerWdm.sys [47104] O58 - SDL:10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\Drivers\BrUsbMdm.sys [14976] O58 - SDL:10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\Drivers\BrUsbSer.sys [14720] O58 - SDL:10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys [468480] O58 - SDL:14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\cmdide.sys [17488] O58 - SDL:14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [530496] O58 - SDL:15/10/2009 - 10:23:19 ---A- . (.ELAN Microelectronic Corp. - ETD Control Center.) -- C:\Windows\System32\Drivers\ETD.sys [117760] O58 - SDL:10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbda.sys [3286016] O58 - SDL:31/08/2014 - 20:02:29 ---A- . (.Sony Mobile Communications - SOMC USB Flash Driver Filter.) -- C:\Windows\System32\Drivers\ggflt.sys [16088] O58 - SDL:22/09/2012 - 15:08:29 ---A- . (.Sony Ericsson Mobile Communications - SEMC USB Flash Driver.) -- C:\Windows\System32\Drivers\ggsemc.sys [27760] O58 - SDL:31/08/2014 - 20:02:29 ---A- . (.Sony Mobile Communications - SOMC USB Flash Driver.) -- C:\Windows\System32\Drivers\ggsomc.sys [30424] O58 - SDL:10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [31232] O58 - SDL:14/07/2009 - 02:47:48 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [77888] O58 - SDL:11/03/2011 - 07:23:00 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStorV.sys [410496] O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\Drivers\iirsp.sys [44112] O58 - SDL:22/06/2010 - 09:39:10 ---A- . (.Mueller Elektronik - jmusblc64.sys.) -- C:\Windows\System32\Drivers\jmusblc64.sys [20080] O58 - SDL:22/06/2010 - 09:39:10 ---A- . (.Mueller Elektronik - WDM Driver Support Routines.) -- C:\Windows\System32\Drivers\jmutil64.sys [31472] =>PUP.DriverSupport O58 - SDL:20/07/2009 - 10:29:39 ---A- . (.Pas de propriétaire - Keyboard Filter Driver.) -- C:\Windows\System32\Drivers\kbfiltr.sys [15416] O58 - SDL:23/08/2009 - 06:08:07 ---A- . (.Atheros Communications, Inc. - Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20.) -- C:\Windows\System32\Drivers\L1E62x64.sys [56320] O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_fc.sys [114752] O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [106560] O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys [65600] O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_scsi.sys [115776] O58 - SDL:23/09/2005 - 21:18:34 ---A- . (.Pinnacle Systems GmbH - Pinnacle Marvin Discrete Bus Enumerator.) -- C:\Windows\System32\Drivers\MarvinBus64.sys [261120] O58 - SDL:21/11/2014 - 06:14:08 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [25816] O58 - SDL:21/11/2014 - 06:14:12 ---A- . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\Drivers\mbamchameleon.sys [93400] O58 - SDL:11/03/2015 - 22:11:53 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [129752] O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\System32\Drivers\megasas.sys [35392] O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\MegaSR.sys [284736] O58 - SDL:21/11/2014 - 06:14:22 ---A- . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\Drivers\mwac.sys [63704] O58 - SDL:14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\Drivers\nfrd960.sys [51264] O58 - SDL:11/03/2011 - 07:23:06 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [148352] O58 - SDL:11/03/2011 - 07:23:06 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [166272] O58 - SDL:28/11/2014 - 13:02:18 ---A- . (.Secunia - Secunia PSI Driver.) -- C:\Windows\System32\Drivers\psi_mf_amd64.sys [18456] O58 - SDL:14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\Drivers\ql2300.sys [1524816] O58 - SDL:14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\ql40xx.sys [128592] O58 - SDL:21/10/2008 - 08:22:40 ---A- . (.MCCI Corporation - Sony Ericsson Device 0017 Driver.) -- C:\Windows\System32\Drivers\s0017bus.sys [113704] O58 - SDL:21/10/2008 - 08:22:40 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\Drivers\s0017cm.sys [14888] O58 - SDL:21/10/2008 - 08:22:40 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\Drivers\s0017cmnt.sys [14888] O58 - SDL:21/10/2008 - 08:22:40 ---A- . (.MCCI Corporation - Sony Ericsson Device 0017 USB Ethernet Emulation (WDM class reg.) -- C:\Windows\System32\Drivers\s0017cr.sys [13864] O58 - SDL:21/10/2008 - 08:22:42 ---A- . (.MCCI Corporation - Sony Ericsson Device 0017 USB WMC Modem Filter Driver.) -- C:\Windows\System32\Drivers\s0017mdfl.sys [19496] O58 - SDL:21/10/2008 - 08:22:42 ---A- . (.MCCI Corporation - Sony Ericsson Device 0017 USB WMC Modem WDM Driver.) -- C:\Windows\System32\Drivers\s0017mdm.sys [152616] O58 - SDL:21/10/2008 - 08:22:42 ---A- . (.MCCI Corporation - Sony Ericsson Device 0017 USB WMC Device Management Driver.) -- C:\Windows\System32\Drivers\s0017mgmt.sys [133160] O58 - SDL:21/10/2008 - 08:22:44 ---A- . (.MCCI Corporation - Sony Ericsson Device 0017 USB Ethernet Emulation (NDIS 5 Minipo.) -- C:\Windows\System32\Drivers\s0017nd5.sys [34856] O58 - SDL:21/10/2008 - 08:22:44 ---A- . (.MCCI Corporation - Sony Ericsson Device 0017 USB WMC OBEX Interface Device Driver.) -- C:\Windows\System32\Drivers\s0017obex.sys [128552] O58 - SDL:21/10/2008 - 08:22:44 ---A- . (.MCCI Corporation - Sony Ericsson Device 0017 USB Ethernet Emulation.) -- C:\Windows\System32\Drivers\s0017unic.sys [145960] O58 - SDL:21/10/2008 - 08:22:46 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\Drivers\s0017wh.sys [15912] O58 - SDL:21/10/2008 - 08:22:46 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\Drivers\s0017whnt.sys [15912] O58 - SDL:10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [23040] O58 - SDL:10/06/2009 - 21:35:57 ---A- . (.Silicon Integrated Systems Corp. - NDIS 6.0 Miniport Driver for SiS191/SiS190 Ethernet Device.) -- C:\Windows\System32\Drivers\SiSG664.sys [56832] O58 - SDL:14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [43584] O58 - SDL:14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [80464] O58 - SDL:29/12/2008 - 10:14:27 ---A- . (.Pas de propriétaire - USBCAMD for Sonix UVC.) -- C:\Windows\System32\Drivers\sncduvc.sys [35456] O58 - SDL:12/08/2009 - 04:38:01 ---A- . (.Pas de propriétaire - UVC Camera Streaming Driver.) -- C:\Windows\System32\Drivers\snp2uvc.sys [1799680] O58 - SDL:16/05/2007 - 09:05:10 ---A- . (.PixArt Imaging Inc. - SPC220NC.) -- C:\Windows\System32\Drivers\SPC220NC.SYS [572928] O58 - SDL:14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [24656] O58 - SDL:13/12/2012 - 14:50:36 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\Drivers\usbaapl64.sys [54784] O58 - SDL:03/04/2009 - 15:39:58 ---A- . (.Advanced Micro Devices - AMD USB Filter Driver.) -- C:\Windows\System32\Drivers\usbfilter.sys [34872] O58 - SDL:09/07/2009 - 09:11:31 ---A- . (.VIA Technologies, Inc. - VIA High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\viahduaa.sys [1222144] O58 - SDL:14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [17488] O58 - SDL:14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [161872] ~ Drivers: 83 Scanned in 00mn 02s ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC: 07/03/2015 - 08:57:46 ---A- . (.Google Inc..) -- C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.7.771\_platform_specific\win_x86\widevinecdmadapter.dll [189768] O61 - LFC: 11/03/2015 - 08:57:46 ---A- . (...) -- C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Google\Chrome\User Data\nacl_validation_cache.bin [200] O61 - LFC: 11/03/2015 - 08:57:46 ---A- . (.Google Inc..) -- C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.7.771\_platform_specific\win_x86\widevinecdm.dll [7959880] O61 - LFC: 11/03/2015 - 08:58:28 ---A- . (...) -- C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\appdataFr3.bin [20] O61 - LFC: 11/03/2015 - 08:58:29 ---A- . (...) -- C:\Users\Delphine.DELPHINE-PCPORT\Desktop\adwcleaner_4.112.exe [2171392] O61 - LFC: 11/03/2015 - 08:59:21 ---A- . (.Thisisu.) -- C:\Users\Delphine.DELPHINE-PCPORT\Desktop\raccourcis bureau\JRT.exe [1388333] O61 - LFC: 11/03/2015 - 08:59:27 ---A- . (.Malwarebytes Corporation.) -- C:\Users\Delphine.DELPHINE-PCPORT\Desktop\raccourcis bureau\mbam-setup-2.0.4.1028 (1).exe [20447072] O61 - LFC: 11/03/2015 - 09:00:12 ---A- . (.Nicolas Coolman.) -- C:\Users\Delphine.DELPHINE-PCPORT\Desktop\raccourcis bureau\ZHPDiag2.exe [6877328] =>.Nicolas Coolman O61 - LFC: 12/03/2015 - 08:57:46 ---A- . (...) -- C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849] O61 - LFC: 12/03/2015 - 08:59:20 ---A- . (.Secunia.) -- C:\Users\Delphine.DELPHINE-PCPORT\Desktop\PSISetup (1).exe [5490752] ~ 417 Fichiers temporaires (Temporary files) ~ 1181 Fichiers cookies (Cookies files) ~ Files: 10 Scanned in 02mn 51s ---\\ Liste des outils de désinfection (LATC) (O63) O63 - Logiciel: ZHPDiag 2015 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman ~ ADS: Scanned in 00mn 00s ---\\ Liste les services legacy du registre (LALS) (O64) O64 - Services: CurCS - 11/12/2009 - C:\Windows\System32\DRIVERS\atipmdag.sys (amdkmdag) .(.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) - LEGACY_AMDKMDAG O64 - Services: CurCS - 17/07/2009 - C:\Windows\System32\DRIVERS\amdsata.sys (amdsata) .(.Advanced Micro Devices - AHCI 1.2 Device Driver.) - LEGACY_AMDSATA O64 - Services: CurCS - 24/07/2007 - C:\Program Files\ATKGFNEX\ASMMAP64.sys (ASMMAP64) .(...) - LEGACY_ASMMAP64 ~ Legacy: 76 Scanned in 00mn 00s ---\\ Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.scr> <scrfile>[HKLM\..\open\Command] (...) -- "%1" /S O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.) ~ FASS Keys: 11 Scanned in 00mn 00s ---\\ Menu de démarrage Internet (SMI) (O68) O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (...) -- Chrome.exe (.not file.) O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe ~ Keys: Scanned in 00mn 00s ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com ~ Keys: Scanned in 00mn 00s ---\\ Enumère les service demarrés par Svchost (SSS) (O83) O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192] O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [776192] O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [845824] O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [676864] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [99328] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [343552] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [64512] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [359424] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows.) -- C:\Windows\System32\tapisrv.dll [316416] O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll [706560] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\system32\wuaueng.dll [2428952] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [848384] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [369664] O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [565760] O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720] O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70144] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672] O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [67584] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [104960] O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136704] O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1114624] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [90624] O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480] O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [208896] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544] O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864] ~ Services: 32 Scanned in 00mn 01s ---\\ Recherche particulière à la racine du système (SPRF) (O84) [MD5.A5CEE0ADE9679D0FFCF63AA317F44F82] [sPRF][01/02/2011] (...) -- C:\ProgramData\ezsidmv.dat [56] [MD5.1FE339E72FE03A27DD9D5A9A357CFE7D] [sPRF][10/09/2009] (...) -- C:\ProgramData\FullRemove.exe [131368] [MD5.803EAA88516E0E21CCDEF9DA97DC40EF] [sPRF][11/03/2015] (...) -- C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\appdataFr3.bin [20] [MD5.95300BA672A14E3AE6740CB3CB41DB7B] [sPRF][11/03/2015] (.Pas de propriétaire - Aut2Exe.) -- C:\Users\Delphine.DELPHINE-PCPORT\Desktop\adwcleaner_4.112.exe [2171392] [MD5.E7A5CEB98F3FD6DE9BFB72972F8EFC37] [sPRF][12/03/2015] (.Secunia - Secunia PSI Installer.) -- C:\Users\Delphine.DELPHINE-PCPORT\Desktop\PSISetup (1).exe [5490752] [MD5.D8B9844FDFD05CD495F110FFF11C1EE5] [sPRF][01/04/2014] (.Secunia - Secunia PSI Installer.) -- C:\Users\Delphine.DELPHINE-PCPORT\Desktop\PSISetup.exe [5329480] [MD5.9A37F0CA06F087F289B2A6BDC2AAE1C1] [sPRF][30/09/2014] (.Pas de propriétaire - Nettoyage des fichiers temporaires.) -- C:\Users\Delphine.DELPHINE-PCPORT\Desktop\SFTGC.exe [1348096] ~ Files: 7 Scanned in 00mn 00s ---\\ Liste des exceptions du parefeu (FirewallRules) (O87) O87 - FAEL: "{A47D97A7-6D72-4926-A548-243BF7388A37}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent O87 - FAEL: "{F0449621-F0C4-4B7E-9980-84C0F91EA2CB}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent ~ Firewall: 2 Scanned in 00mn 07s ---\\ Export de clés de registre aléatoires (O91) [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:060df2cd="c/Au/XV/H/Ap/X2/GP/j/Xt/axAv/X6////%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:0c230bcb="///%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:0dc3ee96="/P////%%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:0e93c3f3="///%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:1520c6f1="V/////%%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:1c311243="GlAk/X6/G/Ap/YV/UxAk/YZ/Gl////%%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:27ddcf6f="///%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:2d71d5ab="V/////%%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:2e22d94e="///%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:340d3099="/P////%%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:37b7a6d8="UlAr/XJ/c//k////" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:38583bc3="Ml/2/CF/M//g/CZ////%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:3c09c42b="///%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:414bc593="///%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:48bd1aff="V/////%%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:51d2f2ea="JlA3/YV/c/Au/Xh/J/Af/X6/aPAk/YP/GP////%%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:587b5709="V/////%%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:6185d035="Vx/2/Cx/V//l////" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:65114b36="VP/l////" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:72758a5d="///%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:7367429f="///%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:7f69fa1f="///%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:8b9e4cbc="V/////%%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:a0743acc="N/////%%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:a1dcff5b="V/////%%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:a2e3b941="///%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:bbf88800="///%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:c24899a6="VP/g/CV/Vl/2/Cx////%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:c5705860="Vx////%%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:c6c5dd44="V/////%%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:c99a5f5c="///%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:d1abcdb6="///%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:d94388d2="GlAk/X6/G/Ap/YV/UxAk/YZ/Gl////%%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:e46c271e="///%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:e8f9dcc7="UlAr/XJ/c//k////" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:f0bf0bde="///%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:f1f24e29="Vl/l/C/////%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:f2c53c49="UlAr/XJ/c//k////" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:f6ad6fa6="V/////%%" [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b\19423678134003045\eae10f9d]:fe94ce1e="V/////%%" ~ Export Key Software: Scanned in 00mn 00s ---\\ Enumère les données de la clé NameSpace (MNS) (O92) O92 - MNS: ASUS WebStorage - {d6044399-0b9e-4084-a9ac-c4b7c7800fcf} ~ MNS: 1 Scanned in 00mn 00s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Disabled 08/08/2007 94208 | (ATKGFNEXSrv) . (...) - C:\Program Files\ATKGFNEX\GFNEXSrv.exe SS - | Auto 19/12/2014 107912 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 19/12/2014 107912 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe SS - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe SS - | Auto 11/12/2014 315496 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe SS - | Demand 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe SR - | Auto 19/12/2014 81088 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe SR - | Auto 08/12/2009 379520 | (AFBAgent) . (.ASUSTeK Computer Inc..) - C:\Windows\system32\FBAgent.exe SR - | Auto 11/12/2009 202752 | (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe SR - | Auto 16/06/2009 84536 | (ASLDRService) . (.ASUS.) - C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe SR - | Demand 14/07/2009 27136 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll (hpqcxs08) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll (hpqddsvc) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.dll (HPSLPSVC) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe SR - | Auto 30/01/2015 23784 | (MsMpSvc) . (.Microsoft Corporation.) - C:\Program Files\Microsoft Security Client\MsMpEng.exe SR - | Auto 28/11/2014 1363160 | (Secunia PSI Agent) . (.Secunia.) - C:\Program Files (x86)\Secunia\PSI\PSIA.exe SR - | Auto 22/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation SR - | Auto 14/07/2009 27136 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe ~ Services: Scanned in 00mn 45s ---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80) Run by Delphine at 12/03/2015 09:03:11 ~ OS 64 not supported by MBR tool ~ MBR: 0 Scanned in 00mn 00s ---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Delphine at 12/03/2015 09:03:13 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ MBR: Scanned in 00mn 02s ---\\ Scan Additionnel (O88) Database Version : 13008 - (08/03/2015) Clés trouvées (Keys found) : 1 Valeurs trouvées (Values found) : 1 Dossiers trouvés (Folders found) : 1 Fichiers trouvés (Files found) : 3 [HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\uTorrent] =>P2P.BitTorrent^ C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\uTorrent =>P2P.µTorrent^ [HKCU\Software\BitTorrent] =>P2P.BitTorrent^ [HKLM\Software\Wow6432Node\25cee507-b715-5a9a-5511-caedd65a6e7b] =>PUP.CrossRider^ [HKLM\Software\Wow6432Node\DownloaderAssistant] =>PUP.Salus^ ~ Additionnel Scan: 412464 Items scanned in 03mn 36s ---\\ Informations complémentaires sur les modules ~ http://nicolascoolman.fr/r5-internet-explorer-proxy-management-iepm/ =>.Internet Explorer, Proxy Management (R5) ~ http://nicolascoolman.fr/o2-browser-helper-objects-de-navigateur/ =>.Browser Helper Objects de navigateur (O2) ~ http://nicolascoolman.fr/o4-applications-demarrees-par-le-registre/ =>.Applications lancées au démarrage du système (O4) ~ AMI: 3 Scanned in 00mn 00s ---\\ Récapitulatif des détections trouvées sur votre station http://nicolascoolman.fr/hijacker-browsers =>Hijacker.Browsers http://nicolascoolman.fr/hijacker-omigaplus =>Hijacker.OmigaPlus http://nicolascoolman.fr/pup-crossrider =>PUP.CrossRider http://www.nicolascoolman.fr/blog/ =>PUP.Salus http://www.nicolascoolman.fr/blog/ =>PUP.DriverSupport ~ MSI: 5 link(s) detected in 00mn 00s End of the scan (1230 lines in 12mn 53s)(0.10)
  8. J'ai des pubs qui apparaissent tout autour de l'écran et dessous il est écrit "Ad by Block It Ad remover / Close" et les pages sont quasi sans cesse en train de charger et de s'actualiser... Quand je veux cliquer à un endroit, il faut bien que j'attende sinon ça m'ouvre des nouvelles fenêtres remplies de pub, ou alors des "soit disant" enquêtes...
  9. Malwarebytes Anti-Malware www.malwarebytes.org Date de l'examen: 11/03/2015 Heure de l'examen: 20:52:18 Fichier journal: mbam rapport.txt Administrateur: Oui Version: 2.00.4.1028 Base de données Malveillants: v2015.03.11.05 Base de données Rootkits: v2015.02.25.01 Licence: Gratuit Protection contre les malveillants: Désactivé(e) Protection contre les sites Web malveillants: Désactivé(e) Auto-protection: Désactivé(e) Système d'exploitation: Windows 7 Processeur: x64 Système de fichiers: NTFS Utilisateur: Delphine Type d'examen: Examen "Menaces" Résultat: Terminé Objets analysés: 406627 Temps écoulé: 44 min, 9 sec Mémoire: Activé(e) Démarrage: Activé(e) Système de fichiers: Activé(e) Archives: Activé(e) Rootkits: Activé(e) Heuristique: Activé(e) PUP: Activé(e) PUM: Activé(e) Processus: 0 (Aucun élément malicieux detecté) Modules: 0 (Aucun élément malicieux detecté) Clés du Registre: 1 PUP.Optional.LuckySearches.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\luckysearches uninstall, Mis en quarantaine, [24852cf6abdf1521684554534db615eb], Valeurs du Registre: 0 (Aucun élément malicieux detecté) Données du Registre: 8 PUP.Optional.LuckySearches.A, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\GOOGLE CHROME\SHELL\OPEN\COMMAND, "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" http://www.luckysearches.com/?type=sc&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14, Bon: (Chrome.exe), Mauvais: ("C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" http://www.luckysearches.com/?type=sc&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14'>http://www.luckysearches.com/?type=sc&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14),Remplacé,[14953ee4b4d68fa72910528656af9967] PUP.Optional.LuckySearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://www.luckysearches.com/web/?type=ds&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14&q={searchTerms}, Bon: (www.google.com), Mauvais: (http://www.luckysearches.com/web/?type=ds&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14&q={searchTerms}'>http://www.luckysearches.com/web/?type=ds&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14&q={searchTerms}'>http://www.luckysearches.com/web/?type=ds&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14&q={searchTerms}'>http://www.luckysearches.com/web/?type=ds&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14&q={searchTerms}),Remplacé,[36734ad82f5b989e042db7216d98827e] PUP.Optional.LuckySearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.luckysearches.com/?type=hp&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14, Bon: (www.google.com), Mauvais: (http://www.luckysearches.com/?type=hp&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14'>http://www.luckysearches.com/?type=hp&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14),Remplacé,[f9b07ba7a5e5181e54dd92467392b14f] PUP.Optional.LuckySearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://www.luckysearches.com/?type=hp&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14, Bon: (www.google.com), Mauvais: (http://www.luckysearches.com/?type=hp&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14),Remplacé,[04a5b86a602a7fb747ea6474f1149868] PUP.Optional.LuckySearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://www.luckysearches.com/web/?type=ds&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14&q={searchTerms}, Bon: (www.google.com), Mauvais: (http://www.luckysearches.com/web/?type=ds&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14&q={searchTerms}),Remplacé,[baef3fe372181c1a2a07538508fd629e] PUP.Optional.LuckySearches.A, HKLM\SOFTWARE\WOW6432NODE\CLIENTS\STARTMENUINTERNET\GOOGLE CHROME\SHELL\OPEN\COMMAND, "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" http://www.luckysearches.com/?type=sc&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14, Bon: (Chrome.exe), Mauvais: ("C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" http://www.luckysearches.com/?type=sc&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14),Remplacé,[9c0d1d05800a8caa17223d9bba4b29d7] PUP.Optional.LuckySearches.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://www.luckysearches.com/web/?type=ds&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14&q={searchTerms}, Bon: (www.google.com), Mauvais: (http://www.luckysearches.com/web/?type=ds&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14&q={searchTerms}),Remplacé,[3c6d968ca6e48da9ea47e9ef50b5c739] PUP.Optional.LuckySearches.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://www.luckysearches.com/web/?type=ds&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14&q={searchTerms}, Bon: (www.google.com), Mauvais: (http://www.luckysearches.com/web/?type=ds&ts=1426070072&from=2sq&uid=ST9500325AS_6VE5AA14XXXX6VE5AA14&q={searchTerms}),Remplacé,[87229a887317e650ca67ecec53b29f61] Dossiers: 3 PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images\code, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], Fichiers: 28 PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.luckysearches.com_0.localstorage, Mis en quarantaine, [8029b46e5634be7808a65a4df80b05fb], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.luckysearches.com_0.localstorage-journal, Mis en quarantaine, [7732ba685139cb6b604eced923e041bf], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\511.json, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\MessageBox.xml, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\uninstallDlg2.xml, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\UninstallManager.exe, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images\bg.png, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images\bg1.png, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images\bk_shadow.png, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images\button.png, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images\button1.png, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images\checkbox.png, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images\checkbox_select.png, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images\checked.png, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images\close.png, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images\loading_bg.png, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images\loading_light.png, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images\min.png, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images\scrollbar.bmp, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images\Thumbs.db, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images\unchecked.png, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images\code\code1.jpg, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images\code\code2.jpg, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images\code\code3.jpg, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images\code\code4.jpg, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images\code\code5.jpg, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images\code\code6.jpg, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], PUP.Optional.LuckySearches.A, C:\Users\Delphine.DELPHINE-PCPORT\AppData\Roaming\luckysearches\images\code\Thumbs.db, Mis en quarantaine, [783137eb1575dd59551d782dfc0727d9], Secteurs physiques: 0 (Aucun élément malicieux detecté) (end)
  10. Rapport de SFTGC (Pierre13) du Mercredi 11 Mars 2015 à 20:41:19 version : 2.2.0.0 Mis à jour le 30/05/2014 Outil lancé en Mode normal et En tant qu'administrateur Windows 7 Home Premium 64 bits Tool start in C:\Users\Delphine.DELPHINE-PCPORT\Desktop 267 éléments supprimés => 16.61 Mo libérés. (32 s) C:\Users\DELPHI~1.DEL\AppData\Local\Temp\1976_20778 C:\Users\DELPHI~1.DEL\AppData\Local\Temp\1976_94 C:\Users\DELPHI~1.DEL\AppData\Local\Temp\81426070019 C:\Users\DELPHI~1.DEL\AppData\Local\Temp\814260700190 C:\Users\DELPHI~1.DEL\AppData\Local\Temp\AdobeARM.log C:\Users\DELPHI~1.DEL\AppData\Local\Temp\adwcleaner.db C:\Users\DELPHI~1.DEL\AppData\Local\Temp\AdwCleaner.jpg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\cid.inf C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Cleaning.ico C:\Users\DELPHI~1.DEL\AppData\Local\Temp\EULA.txt C:\Users\DELPHI~1.DEL\AppData\Local\Temp\hpqddusr.log C:\Users\DELPHI~1.DEL\AppData\Local\Temp\hsperfdata_Delphine C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt C:\Users\DELPHI~1.DEL\AppData\Local\Temp\JRT.txt C:\Users\DELPHI~1.DEL\AppData\Local\Temp\MAR3F50.tmp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\MAR406A.tmp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\MAR50DD.tmp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\MAR5486.tmp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\MAR6684.tmp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\MAR6D68.tmp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Quarantine.exe C:\Users\DELPHI~1.DEL\AppData\Local\Temp\RedboxLog.txt C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Report.ico C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Scan.ico C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Skype C:\Users\DELPHI~1.DEL\AppData\Local\Temp\sqlite3.dll C:\Users\DELPHI~1.DEL\AppData\Local\Temp\tmp00002dad C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Uninstall.ico C:\Users\DELPHI~1.DEL\AppData\Local\Temp\WPDNSE C:\Users\DELPHI~1.DEL\AppData\Local\Temp\tmp00002dad\tmp00000000 C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Skype\DbTemp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\appinit64_null.reg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\appinit_null.reg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\ask.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\askCLSID.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\askregkey_x64.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\askregkey_x86.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\askregvalue_x64.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\askregvalue_x86.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\askservices.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\badAPPINIT.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\badFOLDERS.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\badFOLDERScom.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\badFOLDERSstart.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\badLNK.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\badvalues.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\BHO_clsid.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\BHO_name.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\browsermngr_keys.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\browsermngr_values.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\CHOICE.DAT C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\chrome.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\CHRregkey_x64.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\CHRregkey_x86.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\CHR_extensions.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\CHR_open_x64.reg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\CHR_open_x86.reg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\clean_shortcut.vbs C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\currentmd5.txt C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\CUT.DAT C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\datamngr_del.reg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\defaultscope.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\delfolders.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\ev_clear.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FFbrowsermngr.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FFextensions.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FFpluginREG.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FFplugins.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FFprefs.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FFregkey_x64.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FFregkey_x86.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FFwhtlist.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FFXML.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FFXPI.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FF_open_x64.reg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FF_open_x86.reg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\firefox.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\get.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\GREP.DAT C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\IEwhtlst.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\iexplore.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\IE_open_x64.reg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\IE_open_x86.reg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\IFEO.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\libiconv2.dll C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\libintl3.dll C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\medfos.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\misc.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\mws.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\newmd5.txt C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\NIRCMD.DAT C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\pcre3.dll C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\prelim.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\regex2.dll C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\runvalues.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\runvalues_x64.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\runvalues_x86.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\searchlnk.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\SED.DAT C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\sednewline.txt C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\services.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\serviceseventlog.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\SHORTCUT.DAT C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\surfvox.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\TDL4.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\temp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\WGET.DAT C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\winlogon.reg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\temp\null.txt C:\Users\DELPHI~1.DEL\AppData\Local\Temp\1976_94\_metadata C:\Users\DELPHI~1.DEL\AppData\Local\Temp\1976_94\_platform_specific C:\Users\DELPHI~1.DEL\AppData\Local\Temp\1976_94\_platform_specific\x86_64 C:\Windows\TEMP\hpqddsvc.log C:\Windows\TEMP\HPSLPSVC0000.log C:\Windows\TEMP\HPSLPSVC0001.log C:\Windows\TEMP\HPSLPSVC0002.log C:\Windows\TEMP\lpksetup-20150311-134514-0.log C:\Windows\TEMP\lpksetup-20150311-152734-0.log C:\Windows\TEMP\lpksetup-20150311-202251-0.log C:\Windows\TEMP\MpCmdRun.log C:\Windows\TEMP\MPInstrumentation C:\Windows\TEMP\TMP0000005AD8BB28DE64E451E9 C:\Windows\TEMP\TMP0000005BA87DA0815AEADB40 C:\Windows\Prefetch\0AB34RN1.EXE-7AA28CB2.pf C:\Windows\Prefetch\ACENGSVR.EXE-591E7F61.pf C:\Windows\Prefetch\ADWCLEANER_4.112.EXE-31A4248D.pf C:\Windows\Prefetch\ADWCLEANER_4.112.EXE-3F5A52A7.pf C:\Windows\Prefetch\AgAppLaunch.db C:\Windows\Prefetch\AgCx_SC1.db C:\Windows\Prefetch\AgCx_SC1.db.trx C:\Windows\Prefetch\AgCx_SC4.db C:\Windows\Prefetch\AgGlFaultHistory.db C:\Windows\Prefetch\AgGlFgAppHistory.db C:\Windows\Prefetch\AgGlGlobalHistory.db C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-1370862371-3178170699-3873136173-1003.db C:\Windows\Prefetch\AgGlUAD_S-1-5-21-1370862371-3178170699-3873136173-1003.db C:\Windows\Prefetch\AgRobust.db C:\Windows\Prefetch\ASSCRPRO.EXE-2426B5AB.pf C:\Windows\Prefetch\ASUSWSSERVICE.EXE-BD6817B0.pf C:\Windows\Prefetch\ATKOSD.EXE-4A21CFCB.pf C:\Windows\Prefetch\ATKOSD2.EXE-A5472679.pf C:\Windows\Prefetch\AUDIODG.EXE-BDFD3029.pf C:\Windows\Prefetch\CCC.EXE-B637C9BF.pf C:\Windows\Prefetch\CHROME.EXE-D999B1BA.pf C:\Windows\Prefetch\CLMLSVC.EXE-2A642111.pf C:\Windows\Prefetch\CMD.EXE-4A81B364.pf C:\Windows\Prefetch\CMD.EXE-AC113AA8.pf C:\Windows\Prefetch\CMDSHELL.EXE-278CBB28.pf C:\Windows\Prefetch\CONHOST.EXE-1F3E9D7E.pf C:\Windows\Prefetch\CSCRIPT.EXE-D1EF4768.pf C:\Windows\Prefetch\CUT.DAT-722657F4.pf C:\Windows\Prefetch\DBBCABFECBHE.EXE-2C48A338.pf C:\Windows\Prefetch\DLLHOST.EXE-40DD444D.pf C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf C:\Windows\Prefetch\DLLHOST.EXE-76936ED5.pf C:\Windows\Prefetch\DLLHOST.EXE-E7777CC4.pf C:\Windows\Prefetch\DMEDIA.EXE-FDD636B5.pf C:\Windows\Prefetch\DWM.EXE-6FFD3DA8.pf C:\Windows\Prefetch\ELANTPCFG64.EXE-C8459A63.pf C:\Windows\Prefetch\ETDCTRL.EXE-EC9938C4.pf C:\Windows\Prefetch\EXPLORER.EXE-A80E4F97.pf C:\Windows\Prefetch\FANCYSTART.EXE-91A615E7.pf C:\Windows\Prefetch\FC.EXE-F6221E79.pf C:\Windows\Prefetch\FIND.EXE-9AADDA11.pf C:\Windows\Prefetch\FINDSTR.EXE-6C611AA6.pf C:\Windows\Prefetch\GOOGLEUPDATE.EXE-B95715F5.pf C:\Windows\Prefetch\GREP.DAT-AE46051E.pf C:\Windows\Prefetch\HCONTROLUSER.EXE-5EF8712D.pf C:\Windows\Prefetch\HPNOTIFY.EXE-4B267AB9.pf C:\Windows\Prefetch\HPQBAM08.EXE-AB267C75.pf C:\Windows\Prefetch\HPQGPC01.EXE-E2898B9C.pf C:\Windows\Prefetch\HPQSRMON.EXE-2C500AB8.pf C:\Windows\Prefetch\HPQSTE08.EXE-DF637819.pf C:\Windows\Prefetch\HPQTRA08.EXE-9DA8F9E8.pf C:\Windows\Prefetch\HPWUSCHD2.EXE-DE9C9D03.pf C:\Windows\Prefetch\INTLDPST.EXE-DAEFEB6F.pf C:\Windows\Prefetch\JAVAWS.EXE-BF0148A1.pf C:\Windows\Prefetch\JP2LAUNCHER.EXE-A8A357F3.pf C:\Windows\Prefetch\JRT.EXE-708DD5C6.pf C:\Windows\Prefetch\KBFILTR.EXE-C8D6FDCB.pf C:\Windows\Prefetch\LADS.EXE-046BC4A8.pf C:\Windows\Prefetch\LIVEUPDT.EXE-DAF7AD9D.pf C:\Windows\Prefetch\MAHJONG.EXE-363636B9.pf C:\Windows\Prefetch\MBAM.EXE-2FB6D924.pf C:\Windows\Prefetch\MBRCHECK.EXE-2CA9EB2F.pf C:\Windows\Prefetch\MOM.EXE-42E9F9DF.pf C:\Windows\Prefetch\MONITOR.EXE-204EB72E.pf C:\Windows\Prefetch\MPCMDRUN.EXE-6AA90EA5.pf C:\Windows\Prefetch\MSCORSVW.EXE-57D17DAF.pf C:\Windows\Prefetch\MSCORSVW.EXE-C3C515BD.pf C:\Windows\Prefetch\MUISTARTMENU.EXE-0C8E9917.pf C:\Windows\Prefetch\NACL64.EXE-C61F6F79.pf C:\Windows\Prefetch\NIRCMD.DAT-A8CD39B1.pf C:\Windows\Prefetch\NOTEPAD.EXE-1605FA5B.pf C:\Windows\Prefetch\NOTEPAD.EXE-D8414F97.pf C:\Windows\Prefetch\NSLOOKUP.EXE-8DBC12C3.pf C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf C:\Windows\Prefetch\PfSvPerfStats.bin C:\Windows\Prefetch\PING.EXE-371F41E2.pf C:\Windows\Prefetch\PROTECTSERVICE.EXE-5BCA2DAE.pf C:\Windows\Prefetch\PROTECTWINDOWSMANAGER.EXE-638B1B9A.pf C:\Windows\Prefetch\PSI_TRAY.EXE-7176C03D.pf C:\Windows\Prefetch\PSI_TRAY.EXE-D0CA5CE8.pf C:\Windows\Prefetch\PV.EXE-34B75B82.pf C:\Windows\Prefetch\QQBROWSER.EXE-66B11B09.pf C:\Windows\Prefetch\ReadyBoot C:\Windows\Prefetch\REG.EXE-4978446A.pf C:\Windows\Prefetch\REGEDIT.EXE-2023FAA8.pf C:\Windows\Prefetch\REGSVR32.EXE-D5170E12.pf C:\Windows\Prefetch\RUNDLL32.EXE-02CC9EFF.pf C:\Windows\Prefetch\RUNDLL32.EXE-87432CEE.pf C:\Windows\Prefetch\RUNDLL32.EXE-A3E35360.pf C:\Windows\Prefetch\RUNDLL32.EXE-C835004E.pf C:\Windows\Prefetch\RUNDLL32.EXE-DE9673F9.pf C:\Windows\Prefetch\RUNONCE.EXE-0E293DD6.pf C:\Windows\Prefetch\SC.EXE-1CF1DE92.pf C:\Windows\Prefetch\SCHTASKS.EXE-AD598958.pf C:\Windows\Prefetch\SDCLT.EXE-E10B972A.pf C:\Windows\Prefetch\SDFSSVC.EXE-D6B29DDB.pf C:\Windows\Prefetch\SDTRAY.EXE-C6373C72.pf C:\Windows\Prefetch\SDUPDATE.EXE-6CCB3951.pf C:\Windows\Prefetch\SDUPDSVC.EXE-22FCB87B.pf C:\Windows\Prefetch\SDWSCSVC.EXE-B6A161F7.pf C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf C:\Windows\Prefetch\SEARCHINDEXER.EXE-4A6353B9.pf C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf C:\Windows\Prefetch\SETUP.EXE-C6BD7347.pf C:\Windows\Prefetch\SHORTCUT.DAT-F0D91CFC.pf C:\Windows\Prefetch\SKYPE.EXE-E71BF59F.pf C:\Windows\Prefetch\SMARTLOGON.EXE-8F794AF5.pf C:\Windows\Prefetch\SPPSVC.EXE-B0F8131B.pf C:\Windows\Prefetch\SPYBOT-2.2.EXE-E80409E3.pf C:\Windows\Prefetch\SPYBOT-2.2.TMP-427E57A4.pf C:\Windows\Prefetch\SPYBOT.EXE-7326B7F3.pf C:\Windows\Prefetch\SRSPREMIUMPANEL_64.EXE-69917D19.pf C:\Windows\Prefetch\SUBINACL.EXE-AB0CE9D9.pf C:\Windows\Prefetch\SVCHOST.EXE-61AE5AB6.pf C:\Windows\Prefetch\SVCHOST.EXE-C871F054.pf C:\Windows\Prefetch\SVCHOST.EXE-DD9DE812.pf C:\Windows\Prefetch\SVCHOST.EXE-E2C2633A.pf C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf C:\Windows\Prefetch\TASKHOST.EXE-7238F31D.pf C:\Windows\Prefetch\TASKKILL.EXE-E0105477.pf C:\Windows\Prefetch\UPDATER.EXE-EA1310CB.pf C:\Windows\Prefetch\USAGELOG.EXE-CA698D21.pf C:\Windows\Prefetch\USERINIT.EXE-2257A3E7.pf C:\Windows\Prefetch\VDECK.EXE-08FA2055.pf C:\Windows\Prefetch\WDC.EXE-D160FD43.pf C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf C:\Windows\Prefetch\WEVTUTIL.EXE-400D93E8.pf C:\Windows\Prefetch\WGET.DAT-DAEEEEBB.pf C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf C:\Windows\Prefetch\WMIC.EXE-40C98607.pf C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf C:\Windows\Prefetch\WMPNETWK.EXE-D9F2A96F.pf C:\Windows\Prefetch\WMPNSCFG.EXE-FC0D39BF.pf C:\Windows\Prefetch\WPM_V20.0.0.1953_0302.EXE-D9256F9B.pf C:\Windows\Prefetch\XTAB_SETUP1998.EXE-CF7E6F3E.pf C:\Windows\Prefetch\ZHPDIAG.EXE-0D117CAF.pf C:\Windows\Prefetch\ZHPDIAG2.EXE-FCB26763.pf C:\Windows\Prefetch\ZHPDIAG2.TMP-FD25BAEC.pf C:\Windows\Prefetch\ZHPHEP.EXE-EBD3B8D7.pf C:\Windows\Prefetch\_SETUP64.TMP-F6C495EA.pf C:\Windows\Prefetch\ReadyBoot\Trace1.fx C:\Windows\Prefetch\ReadyBoot\Trace2.fx C:\Windows\Prefetch\ReadyBoot\Trace3.fx Java Cache empty Fin du rapport.
  11. # AdwCleaner v4.112 - Rapport créé le 11/03/2015 à 15:26:18 # Mis à jour le 09/03/2015 par Xplode # Base de données : 2015-03-05.1 [serveur] # Système d'exploitation : Windows 7 Home Premium (x64) # Nom d'utilisateur : Delphine - DELPHINE-PCPORT # Exécuté depuis : C:\Users\Delphine.DELPHINE-PCPORT\Desktop\raccourcis bureau\adwcleaner_4.112.exe # Option : Nettoyer ***** [ Services ] ***** Service Supprimé : IHProtect Service ***** [ Fichiers / Dossiers ] ***** Dossier Supprimé : C:\ProgramData\IHProtectUpDate Dossier Supprimé : C:\Program Files (x86)\XTab ***** [ Tâches planifiées ] ***** ***** [ Raccourcis ] ***** ***** [ Registre ] ***** Clé Supprimée : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8} Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8} Clé Supprimée : HKLM\SOFTWARE\SupDp Clé Supprimée : HKLM\SOFTWARE\SupTab Clé Supprimée : HKLM\SOFTWARE\IHProtect ***** [ Navigateurs ] ***** -\\ Internet Explorer v9.0.8112.16476 -\\ Google Chrome v41.0.2272.89 ************************* AdwCleaner[R0].txt - [1547 octets] - [29/10/2014 17:32:55] AdwCleaner[R1].txt - [1630 octets] - [15/11/2014 10:14:08] AdwCleaner[R2].txt - [1004 octets] - [21/11/2014 19:44:54] AdwCleaner[R3].txt - [1735 octets] - [04/12/2014 11:22:18] AdwCleaner[R4].txt - [1282 octets] - [28/12/2014 20:46:48] AdwCleaner[R5].txt - [1402 octets] - [13/01/2015 10:27:12] AdwCleaner[R6].txt - [1525 octets] - [19/01/2015 20:32:06] AdwCleaner[R7].txt - [1969 octets] - [09/03/2015 16:38:57] AdwCleaner[R8].txt - [2599 octets] - [11/03/2015 15:21:21] AdwCleaner[s0].txt - [1601 octets] - [29/10/2014 17:38:48] AdwCleaner[s1].txt - [1604 octets] - [15/11/2014 10:28:06] AdwCleaner[s2].txt - [1065 octets] - [21/11/2014 20:34:55] AdwCleaner[s3].txt - [1800 octets] - [04/12/2014 11:41:27] AdwCleaner[s4].txt - [1344 octets] - [28/12/2014 21:02:15] AdwCleaner[s5].txt - [1464 octets] - [13/01/2015 10:30:47] AdwCleaner[s6].txt - [1586 octets] - [19/01/2015 21:46:45] AdwCleaner[s7].txt - [2043 octets] - [09/03/2015 16:44:07] AdwCleaner[s8].txt - [2542 octets] - [11/03/2015 15:26:18] ########## EOF - C:\AdwCleaner\AdwCleaner[s8].txt - [2602 octets] ##########
  12. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.4.3 (03.01.2015:1) OS: Windows 7 Home Premium x64 Ran by Delphine on 11/03/2015 at 15:04:00,01 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services Successfully stopped: [service] windowsmangerprotect Successfully deleted: [service] windowsmangerprotect ~~~ Registry Values Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page Successfully repaired: [Registry Value] HKEY_USERS\\Software\Microsoft\Internet Explorer\Main\\Start Page Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL ~~~ Registry Keys Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C} ~~~ Files Successfully deleted: [File] "C:\Windows\wininit.ini" ~~~ Folders Successfully deleted: [Folder] "C:\ProgramData\windowsmangerprotect" Successfully deleted: [Folder] "C:\Users\Delphine.DELPHINE-PCPORT\appdata\local\globalupdate" ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 11/03/2015 at 15:13:40,90 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  13. Bonjour, j'ai des pubs intempestives sur Internet, je n'en peux plus c'est infernal... voilà le rapport zhpdiag http://cjoint.com/?3CloP5WGgrj Merci d'avance pour votre aide
  14. Merci beaucoup pour votre aide, j'ai suivi vos instructions à la lettre, bien expliquées ça se fait très bien. Je passe le sujet en résolu
  15. Rapport de SFTGC (Pierre13) du Mardi 30 Septembre 2014 à 17:06:05 version : 2.2.0.0 Mis à jour le 30/05/2014 Outil lancé en Mode normal et En tant qu'administrateur Windows 7 Home Premium 64 bits Tool start in C:\Users\Delphine.DELPHINE-PCPORT\Desktop 347 éléments supprimés => 356.83 Mo libérés. (37 s) C:\Users\DELPHI~1.DEL\AppData\Local\Temp\914116620100 C:\Users\DELPHI~1.DEL\AppData\Local\Temp\ac.inf C:\Users\DELPHI~1.DEL\AppData\Local\Temp\acrord32_sbx C:\Users\DELPHI~1.DEL\AppData\Local\Temp\AdobeARM.log C:\Users\DELPHI~1.DEL\AppData\Local\Temp\AdwCleaner.jpg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\AUCHECK_PARSER.txt C:\Users\DELPHI~1.DEL\AppData\Local\Temp\cid.inf C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Cleaning.ico C:\Users\DELPHI~1.DEL\AppData\Local\Temp\datFB4.tmp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\datFE3.tmp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\DIO33B3.tmp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\DIO4BE6.tmp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\DIO66CF.tmp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\DIO8A30.tmp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\DIOCAE1.tmp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Donate.ico C:\Users\DELPHI~1.DEL\AppData\Local\Temp\DownloadMngWeb C:\Users\DELPHI~1.DEL\AppData\Local\Temp\EULA.txt C:\Users\DELPHI~1.DEL\AppData\Local\Temp\hpqddusr.log C:\Users\DELPHI~1.DEL\AppData\Local\Temp\hsperfdata_Delphine C:\Users\DELPHI~1.DEL\AppData\Local\Temp\JAUReg.log C:\Users\DELPHI~1.DEL\AppData\Local\Temp\java_install.log C:\Users\DELPHI~1.DEL\AppData\Local\Temp\java_install_reg.log C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jawshtml.html C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jinstall.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt C:\Users\DELPHI~1.DEL\AppData\Local\Temp\JRT.txt C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jusched.log C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Low C:\Users\DELPHI~1.DEL\AppData\Local\Temp\MAR189E.tmp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\MAR1B2E.tmp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\MAR1E87.tmp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\MAR2201.tmp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\MAR8B9B.tmp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\MAR8E7A.tmp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\MARE704.tmp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\MARE86B.tmp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\msdtadmin C:\Users\DELPHI~1.DEL\AppData\Local\Temp\MSI312d.LOG C:\Users\DELPHI~1.DEL\AppData\Local\Temp\MSIb3265.LOG C:\Users\DELPHI~1.DEL\AppData\Local\Temp\MSIf7e53.LOG C:\Users\DELPHI~1.DEL\AppData\Local\Temp\msohtmlclip C:\Users\DELPHI~1.DEL\AppData\Local\Temp\msohtmlclip1 C:\Users\DELPHI~1.DEL\AppData\Local\Temp\OIS C:\Users\DELPHI~1.DEL\AppData\Local\Temp\PDFCreator C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Quarantine.exe C:\Users\DELPHI~1.DEL\AppData\Local\Temp\RD5C52.tmp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\RDF517.tmp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\RedboxLog.txt C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Report.ico C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Scan.ico C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Skype C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Sony C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Uninstall.ico C:\Users\DELPHI~1.DEL\AppData\Local\Temp\VBE C:\Users\DELPHI~1.DEL\AppData\Local\Temp\wmplog00.sqm C:\Users\DELPHI~1.DEL\AppData\Local\Temp\wmsetup.log C:\Users\DELPHI~1.DEL\AppData\Local\Temp\WPDNSE C:\Users\DELPHI~1.DEL\AppData\Local\Temp\~DF633919F899A1745D.TMP C:\Users\DELPHI~1.DEL\AppData\Local\Temp\~DF6C83A05CEB3C050C.TMP C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Sony\Sony PC Companion C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Sony\Sony PC Companion\AutoUpdate C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Sony\Sony PC Companion\Plugins C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Sony\Sony PC Companion\Plugins\{37AA65A5-2530-4218-B3A4-2308F6ED34FC} C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Sony\Sony PC Companion\Plugins\{6CFB6439-7DDC-4785-9BEC-861F027E201E} C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Sony\Sony PC Companion\Plugins\{C8C6DF5B-5825-47CD-B985-40A46C71CDE3} C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Sony\Sony PC Companion\Plugins\{C8C6DF5B-5825-47CD-B985-40A46C71CDE3}\Graphics C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Sony\Sony PC Companion\Plugins\{C8C6DF5B-5825-47CD-B985-40A46C71CDE3}\Graphics\Expand.png C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Sony\Sony PC Companion\Plugins\{C8C6DF5B-5825-47CD-B985-40A46C71CDE3}\Graphics\Normal.png C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Sony\Sony PC Companion\Plugins\{C8C6DF5B-5825-47CD-B985-40A46C71CDE3}\Graphics\Small.png C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Sony\Sony PC Companion\Plugins\{6CFB6439-7DDC-4785-9BEC-861F027E201E}\Graphics C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Sony\Sony PC Companion\Plugins\{6CFB6439-7DDC-4785-9BEC-861F027E201E}\Graphics\Expand.png C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Sony\Sony PC Companion\Plugins\{6CFB6439-7DDC-4785-9BEC-861F027E201E}\Graphics\Normal.png C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Sony\Sony PC Companion\Plugins\{6CFB6439-7DDC-4785-9BEC-861F027E201E}\Graphics\Small.png C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Sony\Sony PC Companion\Plugins\{37AA65A5-2530-4218-B3A4-2308F6ED34FC}\Graphics C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Sony\Sony PC Companion\Plugins\{37AA65A5-2530-4218-B3A4-2308F6ED34FC}\Graphics\Expand.png C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Sony\Sony PC Companion\Plugins\{37AA65A5-2530-4218-B3A4-2308F6ED34FC}\Graphics\Normal.png C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Sony\Sony PC Companion\Plugins\{37AA65A5-2530-4218-B3A4-2308F6ED34FC}\Graphics\Small.png C:\Users\DELPHI~1.DEL\AppData\Local\Temp\Skype\DbTemp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\PDFCreator\PDFCreatorSpool C:\Users\DELPHI~1.DEL\AppData\Local\Temp\PDFCreator\PDFCreatorSpool\~PSC187.inf C:\Users\DELPHI~1.DEL\AppData\Local\Temp\PDFCreator\PDFCreatorSpool\~PSCDD0.inf C:\Users\DELPHI~1.DEL\AppData\Local\Temp\OIS\cacheFiles C:\Users\DELPHI~1.DEL\AppData\Local\Temp\OIS\temp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\msohtmlclip1\01 C:\Users\DELPHI~1.DEL\AppData\Local\Temp\msohtmlclip1\01\clip_colorschememapping.xml C:\Users\DELPHI~1.DEL\AppData\Local\Temp\msohtmlclip1\01\clip_themedata.thmx C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\appinit64_null.reg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\appinit_null.reg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\ask.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\askCLSID.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\askregkey_x64.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\askregkey_x86.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\askregvalue_x64.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\askregvalue_x86.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\askservices.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\badAPPINIT.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\badFOLDERS.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\badFOLDERScom.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\badFOLDERSstart.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\badLNK.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\badvalues.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\BHO_clsid.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\BHO_name.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\browsermngr_keys.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\browsermngr_values.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\CHOICE.DAT C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\chrome.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\CHRregkey_x64.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\CHRregkey_x86.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\CHR_extensions.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\CHR_open_x64.reg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\CHR_open_x86.reg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\clean_shortcut.vbs C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\currentmd5.txt C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\CUT.DAT C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\datamngr_del.reg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\defaultscope.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\delfolders.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\delorphans.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\erunt C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\ev_clear.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FFbrowsermngr.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FFextensions.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FFpluginREG.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FFplugins.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FFprefs.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FFregkey_x64.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FFregkey_x86.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FFwhtlist.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FFXML.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FFXPI.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FF_open_x64.reg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\FF_open_x86.reg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\firefox.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\GREP.DAT C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\IEwhtlst.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\iexplore.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\IE_open_x64.reg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\IE_open_x86.reg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\IFEO.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\medfos.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\newmd5.txt C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\NIRCMD.DAT C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\prelim.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\runvalues_x64.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\runvalues_x86.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\searchlnk.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\SED.DAT C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\sednewline.txt C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\services.dat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\serviceseventlog.cfg C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\SHORTCUT.DAT C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\TDL4.bat C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\temp C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\WGET.DAT C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\temp\null.txt C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\erunt\ERDNT.E_E C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\erunt\ERDNTDOS.LOC C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\erunt\ERDNTWIN.LOC C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\erunt\ERUNT.EXE C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\erunt\ERUNT.EXE.manifest C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\erunt\ERUNT.LOC C:\Users\DELPHI~1.DEL\AppData\Local\Temp\jrt\erunt\README.TXT C:\Users\DELPHI~1.DEL\AppData\Local\Temp\acrord32_sbx\Fichiers Internet temporaires C:\Users\DELPHI~1.DEL\AppData\Local\Temp\acrord32_sbx\Fichiers Internet temporaires\Content.IE5 C:\Windows\TEMP\995E87DE90CFFF0448B622363F3CEF63-Sigs C:\Windows\TEMP\CompatTelemetryLogs C:\Windows\TEMP\fwtsqmfile00.sqm C:\Windows\TEMP\fwtsqmfile01.sqm C:\Windows\TEMP\fwtsqmfile02.sqm C:\Windows\TEMP\fwtsqmfile03.sqm C:\Windows\TEMP\hpqddsvc.log C:\Windows\TEMP\HPSLPSVC0000.log C:\Windows\TEMP\HPSLPSVC0001.log C:\Windows\TEMP\HPSLPSVC0002.log C:\Windows\TEMP\HPSLPSVC0003.log C:\Windows\TEMP\lpksetup-20140924-094418-0.log C:\Windows\TEMP\lpksetup-20140929-201900-0.log C:\Windows\TEMP\lpksetup-20140930-042951-0.log C:\Windows\TEMP\lpksetup-20140930-164444-0.log C:\Windows\TEMP\MpCmdRun.log C:\Windows\TEMP\MpSigStub.log C:\Windows\TEMP\MPTelemetrySubmit C:\Windows\TEMP\TMP0000000140F629556F2B9D7E C:\Windows\TEMP\TMP000000066A6F01CF1A7AA497 C:\Windows\TEMP\CompatTelemetryLogs\CompatData_2014_09_30_04_48_16_1_008001ff.xml C:\Windows\TEMP\CompatTelemetryLogs\compatscancache.dat C:\Windows\TEMP\CompatTelemetryLogs\DeviceGroupingRules.xml C:\Windows\TEMP\CompatTelemetryLogs\diagerr.xml C:\Windows\TEMP\CompatTelemetryLogs\diagwrn.xml C:\Windows\TEMP\CompatTelemetryLogs\Img C:\Windows\TEMP\CompatTelemetryLogs\PreliminaryReport.xml C:\Windows\TEMP\CompatTelemetryLogs\Resources C:\Windows\TEMP\CompatTelemetryLogs\setupact.log C:\Windows\TEMP\CompatTelemetryLogs\setuperr.log C:\Windows\TEMP\CompatTelemetryLogs\TelemetryTransform.xsl C:\Windows\TEMP\CompatTelemetryLogs\WicaDeviceFilters.xml C:\Windows\TEMP\CompatTelemetryLogs\WICA_Devices_DELPHINE-PCPORT.xml C:\Windows\TEMP\CompatTelemetryLogs\WICA_MigXml_DELPHINE-PCPORT.xml C:\Windows\TEMP\CompatTelemetryLogs\WICA_Programs_DELPHINE-PCPORT.xml C:\Windows\TEMP\CompatTelemetryLogs\WICA_QueryAppBlock_DELPHINE-PCPORT.xml C:\Windows\TEMP\CompatTelemetryLogs\WICA_QueryBiosBlock_DELPHINE-PCPORT.xml C:\Windows\TEMP\CompatTelemetryLogs\WICA_QueryDeviceBlock_DELPHINE-PCPORT.xml C:\Windows\TEMP\CompatTelemetryLogs\WICA_SystemReport_DELPHINE-PCPORT.xml C:\Windows\TEMP\CompatTelemetryLogs\WICA_System_DELPHINE-PCPORT.xml C:\Windows\TEMP\CompatTelemetryLogs\WICA_TelemetryReport_DELPHINE-PCPORT.xml C:\Windows\TEMP\CompatTelemetryLogs\Windows_TelemetryData.xml C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_000000c4196b0fc6a8839c924889df76577111f0d0d2.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00000aa29841cff4b13459b629410caa24c92611ff22.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00000c2a1c12295e646a38f0f1bcebfa51649ae7965b.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000130c991bd97ab71b213e13820c42091285d4618d.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000176e04397cc8bbcb71993888a5e6c9a0d660acfc.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_000025a227806509dc3d9a46735f44184ce5c4982705.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000284a216c0d9d059ed10f8ad0816b48a41fca1378.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00002892456fe2ef6b633c593aabd0197122b1c138d4.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_000038132595727fcbbde18d998d39f7bd71e832b7b8.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00003a62b5c38d5700c6a52c1a4854bebf1b26bda608.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00003b79c754b7b4df95e1e1d0d640c453e7e3e71c64.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00004012e0dc9ce31a9e6f7f7a81773493aec48548ca.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00004946e149f051d9c3b0aea0a35856a8d86be08d30.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00004af2b3662d15939dbf044252d00dce6f67d14cef.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_000051cbad146e1a21eb65eeffff8455395333c51d7f.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000595897c14c71ec6911041afc27323bb2416e436e.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00006110ec1a5e88b91db03843cec8f32c241888430c.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_000064db3900f6acb9062f8d8fd2f0a64bf70b90e027.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00006ab30889c6e0415558e7e7b127695288d7addfb5.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000720a0fd1f557b42e2396eebb684f54225a167723.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_000074bc751be4a6688f21e23c36f3fa94e560b46b87.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_000076df69a5b41b2d1622765d50312cc1dc9b7806d4.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00007cb779c55823bed50d2485fbdd4e6c26d59fb382.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00007e7093f30c3e851132ddd514b558c93af267ab9d.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_000082e23fe9e6a9555bba6fbef1ab526176c809e960.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00008415e7c5920db23148fcff83663516bea1a84798.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_000086675266c2c1212172e6f7672fa8e43bacb0d326.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00009117d7086489d0ea9c8153ca5937ff94db73e457.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00009480e038a26a8849853d6059013d33518ed7e955.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_000097cf2a62f6275e3e41cb76e3e2c5a20d860681cd.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00009f1fa7950c13e5e4541a1b7d787e1ca63474ca16.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000a48202bffcf085e35dac61de0a0e9c6a45256b59.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000ab91a0c63199afe770af4dd3454652c6fd21c41b.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000b359b6486e738062391907e9dd90c87c0154ccd0.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000b640cb50528a893cb7cf8012c58a537d8868c5bf.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000b64844b14da20a94a2906e42e7f2876215e53263.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000c458c41f3afa31423f68767b6ddf83be7281f521.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000c549f4509ce270ca90a684557946140d1b6015ca.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000c927ac465ed2c5e411a85564181e4109c639a6a9.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000cb0601c9620178fbae103a63ebc09240b0ab3f20.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000d1fb49de2d6a5eac28aa76713da94fb4c421b962.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000d2d95173eceefebf299b846de96979153e260916.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000dc68741acd42ae3299073738c8fe64e66d402993.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000dce70e3fe105379bcb9142405ae313bddb5b9c7e.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000df409ca2fe3e6b37ea55e5eb509ca842e82daf70.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000e4697448dbe2ee012521918f1f71f1057ff2769b.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000e97c7a178f2d5610540ad9fd3b979e783f6c0cd7.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000f2b091ca12123e93f21853eb77807acc94273ff1.png C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000f562abc6dd466327e069209effd235712df9381b.png C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{36fc9e60-c465-11cf-8056-444553540000}.png C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e965-e325-11ce-bfc1-08002be10318}.png C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e966-e325-11ce-bfc1-08002be10318}.png C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e967-e325-11ce-bfc1-08002be10318}.png C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e968-e325-11ce-bfc1-08002be10318}.png C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e96a-e325-11ce-bfc1-08002be10318}.png C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e96b-e325-11ce-bfc1-08002be10318}.png C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e96c-e325-11ce-bfc1-08002be10318}.png C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e96e-e325-11ce-bfc1-08002be10318}.png C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e96f-e325-11ce-bfc1-08002be10318}.png C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e972-e325-11ce-bfc1-08002be10318}.png C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e97d-e325-11ce-bfc1-08002be10318}.png C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{50127dc3-0f36-415e-a6cc-4cb3be910b65}.png C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{6bdd1fc6-810f-11d0-bec7-08002be2092f}.png C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{72631e54-78a4-11d0-bcf7-00aa00b7b32a}.png C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{745a17a0-74d3-11d0-b6fe-00a0c90f57da}.png C:\Windows\TEMP\CompatTelemetryLogs\Img\ID_DVD_PLAYBACK_COMPAT.png C:\Windows\TEMP\CompatTelemetryLogs\Img\ID_SECUREBOOT_INCAPABLE.png C:\Windows\Prefetch\ADOBEARM.EXE-7105D3A2.pf C:\Windows\Prefetch\AgAppLaunch.db C:\Windows\Prefetch\AgGlFaultHistory.db C:\Windows\Prefetch\AgGlFgAppHistory.db C:\Windows\Prefetch\AgGlGlobalHistory.db C:\Windows\Prefetch\AgRobust.db C:\Windows\Prefetch\AM_DELTA_PATCH_1.185.1558.0.E-897F8005.pf C:\Windows\Prefetch\AUDIODG.EXE-BDFD3029.pf C:\Windows\Prefetch\CCC.EXE-B637C9BF.pf C:\Windows\Prefetch\CLMLSVC.EXE-2A642111.pf C:\Windows\Prefetch\CONHOST.EXE-1F3E9D7E.pf C:\Windows\Prefetch\DLLHOST.EXE-072DB435.pf C:\Windows\Prefetch\DLLHOST.EXE-40DD444D.pf C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf C:\Windows\Prefetch\DLLHOST.EXE-76936ED5.pf C:\Windows\Prefetch\DLLHOST.EXE-E7777CC4.pf C:\Windows\Prefetch\FLASHPLAYERUPDATE.EXE-634A3106.pf C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-216D9C35.pf C:\Windows\Prefetch\FLASHUTIL32_15_0_0_167_ACTIVE-AC5D2636.pf C:\Windows\Prefetch\FLASHUTIL64_15_0_0_167_ACTIVE-65412B3B.pf C:\Windows\Prefetch\HPQBAM08.EXE-AB267C75.pf C:\Windows\Prefetch\HPQGPC01.EXE-E2898B9C.pf C:\Windows\Prefetch\HPQSTE08.EXE-DF637819.pf C:\Windows\Prefetch\HPWUSCHD2.EXE-DE9C9D03.pf C:\Windows\Prefetch\IEXPLORE.EXE-4B6C9213.pf C:\Windows\Prefetch\INSTALLFLASHPLAYER.EXE-31A6B6FA.pf C:\Windows\Prefetch\INSTALLFLASHPLAYER.EXE-CA93BDFA.pf C:\Windows\Prefetch\INSTALL_FLASH_PLAYER_AX.EXE-F8C1E160.pf C:\Windows\Prefetch\INTLDPST.EXE-DAEFEB6F.pf C:\Windows\Prefetch\JAUREG.EXE-2358F266.pf C:\Windows\Prefetch\JAVA.EXE-A31952FB.pf C:\Windows\Prefetch\JAVAUPDATE.EXE-067B7101.pf C:\Windows\Prefetch\JAVAW.EXE-2AB1E03D.pf C:\Windows\Prefetch\JQS.EXE-828D469E.pf C:\Windows\Prefetch\LIVEUPDT.EXE-DAF7AD9D.pf C:\Windows\Prefetch\LPKSETUP.EXE-90F505D8.pf C:\Windows\Prefetch\LZMA.EXE-9D216F8F.pf C:\Windows\Prefetch\MOM.EXE-42E9F9DF.pf C:\Windows\Prefetch\MPCMDRUN.EXE-6AA90EA5.pf C:\Windows\Prefetch\MPSIGSTUB.EXE-6CB27A06.pf C:\Windows\Prefetch\MSCORSVW.EXE-57D17DAF.pf C:\Windows\Prefetch\MSCORSVW.EXE-C3C515BD.pf C:\Windows\Prefetch\MSIEXEC.EXE-A2D55CB6.pf C:\Windows\Prefetch\MSIEXEC.EXE-E09A077A.pf C:\Windows\Prefetch\NOTEPAD.EXE-D8414F97.pf C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf C:\Windows\Prefetch\PfSvPerfStats.bin C:\Windows\Prefetch\READER_SL.EXE-38C1D083.pf C:\Windows\Prefetch\ReadyBoot C:\Windows\Prefetch\RUNDLL32.EXE-02CC9EFF.pf C:\Windows\Prefetch\RUNDLL32.EXE-373854A4.pf C:\Windows\Prefetch\RUNDLL32.EXE-87432CEE.pf C:\Windows\Prefetch\RUNDLL32.EXE-DE9673F9.pf C:\Windows\Prefetch\RUNDLL32.EXE-E6832280.pf C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf C:\Windows\Prefetch\SEARCHINDEXER.EXE-4A6353B9.pf C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf C:\Windows\Prefetch\SFTGC.EXE-5E7148DB.pf C:\Windows\Prefetch\SPPSVC.EXE-B0F8131B.pf C:\Windows\Prefetch\SVCHOST.EXE-80F4A784.pf C:\Windows\Prefetch\SVCHOST.EXE-C871F054.pf C:\Windows\Prefetch\SVCHOST.EXE-E2C2633A.pf C:\Windows\Prefetch\TASKHOST.EXE-7238F31D.pf C:\Windows\Prefetch\UNINSTALL_FLASH_PLAYER.EXE-AC782267.pf C:\Windows\Prefetch\UNPACK200.EXE-61EADE44.pf C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf C:\Windows\Prefetch\WMPNETWK.EXE-D9F2A96F.pf C:\Windows\Prefetch\WMPNSCFG.EXE-FC0D39BF.pf C:\Windows\Prefetch\WUAUCLT.EXE-70318591.pf C:\Windows\Prefetch\ReadyBoot\Trace1.fx Java Cache empty Fin du rapport.
×
×
  • Créer...