[Résolu] Thunderman > PC ultra lent

[Thunderman]

Bonjour,

mon PC familliale est devenu ultra lent et j'ai aussi un probleme avec le controle parental Windows qui me m'affiche une erreur a chaque démarrage ...

 

pouvez vous m'aider ?

 

Merci d'avance

 

voici le raport ZHP Diag

 

~ Rapport de ZHPDiag v2014.2.17.15 - Nicolas Coolman (17/02/2014)
~ Lancé par Manu (22/02/2014 12:37:07)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Activée par le programme
~ Elévation des Privilèges : OK
~ User Account Control (UAC):


---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.16476
MFIE: Mozilla Firefox 26.0 (Defaut)
GCIE: Google Chrome v31.0.1650.63
OBIE: Safari v5.34.57.2

---\\ Informations sur les produits Windows
~ Langage: Français
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows® 7, RETAIL channel
Windows ID Activation : OK
~ Windows Partial Key : RKJT6
Windows License : OK
~ Windows Remaining Initializations Number : 4
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection du système
Avira Free Antivirus v14.0.2.286
Windows Defender W7

---\\ Logiciels d'optimisation du système
CCleaner v4.05 =>Piriform Ltd

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 11 Plugin
Adobe Reader 9.5.4 - Français
Java 7 Update 21

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 15 Stepping 6, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2047 MB (33% free)
System Restore: Activé (Enable)
System drive C: has 200 GB (67%) free of 298 GB

---\\ Mode de connexion au système
~ Computer Name: MANU-PC
~ User Name: Manu
~ All Users Names: Stéphanie, Manu, Maelle, kodak, HomeGroupUser$, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\Manu\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Manu\AppData\Roaming\
~ %Desktop% : C:\Users\Manu\Desktop\
~ %Favorites% : C:\Users\Manu\Favorites\
~ %LocalAppData% : C:\Users\Manu\AppData\Local\
~ %StartMenu% : C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
A: Floppy drive, Flash card reader, USB Key (Not Inserted)
C: Hard drive, Flash drive, Thumb drive (Free 200 Go of 298 Go)
D: CD-ROM drive (Free 0 Go of 0 Go)
E: Hard drive, Flash drive, Thumb drive (Free 55 Go of 466 Go)
F: Hard drive, Flash drive, Thumb drive (Free 550 Go of 699 Go)
G: Floppy drive, Flash card reader, USB Key (Not Inserted)
J: Floppy drive, Flash card reader, USB Key (Not Inserted)
K: Floppy drive, Flash card reader, USB Key (Not Inserted)
L: Floppy drive, Flash card reader, USB Key (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date
~ Security Center: 49 Legitimates Filtered in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.9B6678DB9C6A232C5A84D2FDFFF8B0E1] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.26/11/2013 - 08:07:57.) -- C:\Windows\System32\wininet.dll [2334208]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.20/11/2010 - 14:25:30.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.79059559E89D06E8B80CE2944BE20228] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/09/2013 - 02:09:10.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.12/04/2013 - 15:45:08.) -- C:\Windows\system32\Drivers\ntfs.sys [1656680]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 06s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/113
~ Mes musiques (My Musics) : 1/74
~ Mes Videos (My Videos) : 1/23
~ Mes Favoris (My Favorites) : 1/133
~ Mes Documents (My Documents) : 2/2261
~ Mon Bureau (My Desktop) : 1/214
~ Menu demarrer (Programs) : 1/40
~ Hidden Files: Scanned in 00mn 18s



---\\ Processus lancés
[MD5.8DFBDE35A58E51B68B2B0AC3E482CA51] - (.Conduit - Search Protect by Conduit.) -- C:\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe [4529440] [PID.2600] =>Toolbar.Conduit
[MD5.B5F5CD5F42FE580F5D925BBD0DB4AED7] - (.Conduit - Search Protect by Conduit.) -- C:\Program Files (x86)\SearchProtect\UI\bin\cltmngui.exe [2981152] [PID.2616] =>Toolbar.Conduit
[MD5.FB0C8699B87F7140BB6201BE7B4B6778] - (.Pas de propriétaire - CameraMonitor Application.) -- C:\Windows\vsnpstd3.exe [827392] [PID.3328]
[MD5.AFA1F8CC076AB0462512A78473D86D53] - (.BitTorrent, Inc. - DNA.) -- C:\Users\Manu\Program Files (x86)\DNA\btdna.exe [323392] [PID.3616] =>P2P.BitTorrent
[MD5.02C64A253F1EE84663510A7FC93F5B93] - (.Updater - Updater service.) -- C:\ProgramData\Updater\updater.exe [486264] [PID.3684] =>PUP.CrossRider
[MD5.A35DE712623EAF74D53E8CB6187DF913] - (.CANON INC. - Canon IJ Network Scan Utility.) -- C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe [130208] [PID.3236]
[MD5.1ACBA585D47FB69C12F26074517EFE5A] - (.Ask - Ask Updater.) -- C:\Program Files (x86)\Ask.com\Updater\Updater.exe [1644680] [PID.3684]
[MD5.DD231039B13EC2ABDE315D76E658EF0E] - (.Avira Operations GmbH & Co. KG - Antivirus System Tray Tool (Desktop).) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600] [PID.2952]
[MD5.FB85F333D10B1475650C4304F99A1ECE] - (.MindSpark - MindSpark Toolbar Platform SearchScope Moni.) -- C:\Program Files (x86)\MyScrapNook_12\bar\1.bin\12SrchMn.exe [44784] [PID.2984]
[MD5.35D6CAAA9E4D82974A74DBDB53801F98] - (.VER_COMPANY_NAME - VER_DESCRIPTION.) -- C:\Program Files (x86)\MyScrapNook_12\bar\1.bin\12brmon.exe [30096] [PID.384]
[MD5.D63797E8E7781EE1500A810CB6194FA6] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816] [PID.276]
[MD5.35D6CAAA9E4D82974A74DBDB53801F98] - (.VER_COMPANY_NAME - VER_DESCRIPTION.) -- C:\Program Files (x86)\Motitags_94\bar\1.bin\94brmon.exe [30096] [PID.872]
[MD5.29EF3E76E183DA688C3737C21FCF2F3B] - (...) -- C:\Program Files (x86)\No-IP\DUC30.exe [1423520] [PID.3644]
[MD5.C32E458C8DDB46220C2D9C7807EC1A3F] - (.Schneider Electric - PowerChute System Tray Power Icon.) -- C:\Program Files (x86)\APC\PowerChute Personal Edition\apcsystray.exe [673144] [PID.3276]
[MD5.83170B8E03213093B065A9638E146499] - (.OpenOffice.org - OpenOffice.org 3.1.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe [7424000] [PID.3712]
[MD5.873867A02F0E83F18CF871E776B651DC] - (.OpenOffice.org - OpenOffice.org 3.1.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin [7418368] [PID.4016]
[MD5.25605EC5F30D29AC217236B0CA88C28A] - (.WatchDog - Pas de description.) -- C:\ProgramData\RHelpers\ChromeHelper\ChromeHelper.exe [429944] [PID.1764] =>PUP.SearchDonkey
[MD5.25605EC5F30D29AC217236B0CA88C28A] - (.WatchDog - Pas de description.) -- C:\ProgramData\RHelpers\FireFoxHelper\FireFoxHelper.exe [429944] [PID.4200] =>PUP.SearchDonkey
[MD5.25605EC5F30D29AC217236B0CA88C28A] - (.WatchDog - Pas de description.) -- C:\ProgramData\RHelpers\IEHelper\IeHelper.exe [429944] [PID.5156] =>PUP.SearchDonkey
[MD5.AB44884BC129FC04D75A4649E0710203] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8338432] [PID.6364]
[MD5.0E4D145F0B0612957D0E4959B1CC88AD] - (...) -- C:\Program Files (x86)\Ask.com\UpdateTask.exe [137864] [PID.4652]
[MD5.1EEA6C1B35191DC177EA83672B9C3FC0] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [275568] [PID.4272]
[MD5.FE79366FECD444A16CCA9979134DBEA8] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376] [PID.1320]
[MD5.FDE9C7030FB1E9E2715E113EE6A10F90] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376] [PID.1448]
[MD5.C7F8C8080B055B3DE9A8141DFD8E308A] - (.Schneider Electric - Battery Backup Management Service.) -- C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe [705912] [PID.1484]
[MD5.30E3850F303EAE5C364782EA78579CC9] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [55624] [PID.1520]
[MD5.28DDEEEC44E988657B732CF404D504CB] - (.Microsoft Corporation - Windows Live Family Safety Service.) -- C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [1492840] [PID.1648]
[MD5.E3EFA45E92B7F0B3DD9DDBB0B11CB24A] - (...) -- C:\ProgramData\InternetUpdater\InternetUpdaterService.exe [40448] [PID.1684]
[MD5.626A24ED1228580B9518C01930936DF9] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [133104] [PID.1372]
[MD5.9646A100ACF21516DB1052BC419332BA] - (.Orb Networks, Inc. - KodakDigitalDisplayService.) -- C:\Program Files (x86)\Kodak\Digital Display\OrbKodakLauncher\DllStartupService.exe [98304] [PID.1064]
[MD5.7CF1B716372B89568AE4C0FE769F5869] - (.Microsoft Corporation - Machine Debug Manager.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872] [PID.2036]
[MD5.7E06D26FE4B8E771594D22AE7B8EE94E] - (.COMPANYVERS_NAME - PRODUCTVERS_TITLE.) -- C:\Program Files (x86)\Motitags_94\bar\1.bin\94barsvc.exe [44752] [PID.2068]
[MD5.465680BDE344CE4FF6646626AA3A9125] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe [223112] [PID.2128]
[MD5.622FCF264119F7DF127BE353F796B319] - (.COMPANYVERS_NAME - PRODUCTVERS_TITLE.) -- C:\Program Files (x86)\MyScrapNook_12\bar\1.bin\12barsvc.exe [42504] [PID.2196]
[MD5.6AF12011C88C80920D0543616E107CFF] - (...) -- C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [245760] [PID.2448]
[MD5.107AB19CC1D40B9D04537F6EEAAC34C9] - (.Schneider Electric - PowerChute Data Service.) -- C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe [21880] [PID.2476]
[MD5.0EA5D27C1E0C0D6A1367F95216434152] - (.Conduit - Search Protect by Conduit.) -- C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe [2360608] [PID.2512] =>Toolbar.Conduit
~ Processes Running: Scanned in 00mn 06s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Manu\AppData\Local\Google\Chrome\User Data\Default\Preferences
~ Google Browser: 1 Legitimates Filtered in 00mn 02s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\kl6zj6nv.default\prefs.js
M3 - MFPP: Plugins - [Manu] -- C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\kl6zj6nv.default\searchplugins\askcom.xml
M3 - MFPP: Plugins - [Manu] -- C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\kl6zj6nv.default\searchplugins\askcomsearch.xml
M3 - MFPP: Plugins - [Manu] -- C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\kl6zj6nv.default\searchplugins\conduit-search.xml =>Toolbar.Conduit
M0 - MFSP: prefs.js [Manu - kl6zj6nv.default] http://search.conduit.com
M2 - MFEP: prefs.js [Manu - kl6zj6nv.default\12ffxtbr@MyScrapNook_12.com] [] My Scrap Nook v2.73.1.36359 (..)
M2 - MFEP: prefs.js [Manu - kl6zj6nv.default\94ffxtbr@Motitags_94.com] [] Motitags v5.79.3.20321 (..)
M2 - MFEP: prefs.js [Manu - kl6zj6nv.default\support@websteroidsapp.com] [] Websteroids v2.6.53 (..) =>PUP.TubeDimmer
M2 - MFEP: prefs.js [Manu - kl6zj6nv.default\toolbar@ask.com] [] v (..)
M2 - MFEP: prefs.js [Manu - kl6zj6nv.default\{94cd2cc3-083f-49ba-a218-4cda4b4829fd}] [] Value Apps v1.7.0.0 (..) =>Toolbar.Conduit
P2 - FPN: [HKCU] [@bittorrent.com/BitTorrentDNA] - (.BitTorrent, Inc. - Delivery Network Acceleration by BitTorrent™.) -- C:\Users\Manu\Program Files (x86)\DNA\plugins\npbtdna.dll =>P2P.BitTorrent
~ Firefox Browser: 24 Legitimates Filtered in 00mn 01s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R3 - URLSearchHook: UrlSearchHook Class [64Bits] - {00000000-6E41-4FD3-8538-502F5495E5FC} . (.Ask - Ask Toolbar.) (5.15.15.36191) -- C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll =>Toolbar.Ask
~ IE Browser: 18 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 05s
~ Nombre de lignes (Lines number): 12918



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Toolbar BHO [64Bits] - {0214754e-4e7d-4589-829d-e2523e6a3085} . (.MindSpark - MindSpark Toolbar Platform.) -- C:\Program Files (x86)\MyScrapNook_12\bar\1.bin\12bar.dll
O2 - BHO: Toolbar BHO [64Bits] - {598f4e85-2ee6-43a8-bf43-c75c82b925fe} . (.MindSpark - MindSpark Toolbar Platform.) -- C:\Program Files (x86)\Motitags_94\bar\1.bin\94bar.dll
O2 - BHO: Search Assistant BHO [64Bits] - {65f159fb-5f5e-46f4-b45d-ccfa236d2073} . (.MindSpark - MindSpark Search Assistant.) -- C:\Program Files (x86)\MyScrapNook_12\bar\1.bin\12SrcAs.dll
O2 - BHO: Search Assistant BHO [64Bits] - {6df8a038-1b03-41eb-a92b-0e82de08ee4a} . (.MindSpark - MindSpark Search Assistant.) -- C:\Program Files (x86)\Motitags_94\bar\1.bin\94SrcAs.dll
O2 - BHO: ValueApps Loader [64Bits] - {93DBF2BB-A2B3-4683-A92E-57E60751F346} . (.Conduit Ltd. - ValueApps Loader.) -- C:\Program Files (x86)\Conduit\ValueApps\IE\ValueAppsLoader.dll =>Toolbar.Conduit
O2 - BHO: Ask Toolbar BHO [64Bits] - {D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask - Ask Toolbar.) -- C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll =>Toolbar.Ask
~ BHO: 17 Legitimates Filtered in 00mn 01s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll =>Toolbar.Google
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{D4027C7F-154A-4066-A1AD-4243D8127440} Clé orpheline
~ Toolbar: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: Canon IJ Network Tool.lnk . (.CANON INC. - Canon IJ Network Tool.) -- C:\Program Files (x86)\Canon\Canon IJ Network Tool\CNMNPUT.exe
O4 - GS\Desktop [Public]: Comptes Bancaires.lnk . (.Ymsoft - Gestion de Comptes Bancaires..) -- C:\Program Files (x86)\Comptes\Comptes\Comptes.exe
O4 - GS\Desktop [Public]: Digital Photo Professional.lnk . (.CANON INC. - DPP Viewer Module.) -- C:\Program Files (x86)\Canon\Digital Photo Professional\DPPViewer.exe
O4 - GS\Desktop [Public]: Easy-PhotoPrint EX.lnk . (.CANON INC. - Easy-PhotoPrint EX.) -- C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZMAIN.exe
O4 - GS\Desktop [Public]: EOS Utility.lnk . (.CANON INC. - EOS Utility.) -- C:\Program Files (x86)\Canon\EOS Utility\EOS Utility.exe
O4 - GS\Desktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\Desktop [Public]: Google SketchUp 8.lnk . (.Google, Inc. - SketchUp Application.) -- C:\Program Files (x86)\Google\Google SketchUp 8\SketchUp.exe
O4 - GS\Desktop [Public]: IrfanView Thumbnails.lnk . (.Irfan Skiljan - IrfanView.) -- C:\Program Files (x86)\IrfanView\i_view32.exe
O4 - GS\Desktop [Public]: IrfanView.lnk . (.Irfan Skiljan - IrfanView.) -- C:\Program Files (x86)\IrfanView\i_view32.exe
O4 - GS\Desktop [Public]: Moovida.lnk . (...) -- C:\Program Files (x86)\Fluendo\Moovida\Moovida.exe (.not file.) =>Adware.SPointer
O4 - GS\Desktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\Desktop [Public]: MP Navigator EX 2.0.lnk . (.CANON INC. - MP Navigator EX.) -- C:\Program Files (x86)\Canon\MP Navigator EX 2.0\mpnex20.exe
O4 - GS\Desktop [Public]: MP980 series Manuel en ligne.lnk . (.CANON INC. - Easy Guide Viewer.) -- C:\Program Files (x86)\Canon\IJ Manual\Easy Guide Viewer\cmview.exe
O4 - GS\Desktop [Public]: My Printer.lnk . (.CANON INC. - Canon My Printer.) -- C:\Program Files\Canon\MyPrinter\BJMYPRT.exe
O4 - GS\Desktop [Public]: Picture Style Editor.lnk . (.CANON INC. - Picture Style Editor.) -- C:\Program Files (x86)\Canon\Picture Style Editor\PSEditor.exe
O4 - GS\Desktop [Public]: Shape Collage.lnk . (.Shape Collage Inc. - Shape Collage - Automatic Photo Collage Mak.) -- C:\Program Files (x86)\Shape Collage\ShapeCollage.exe
O4 - GS\Program [Public]: Moovida.lnk . (...) -- C:\Program Files (x86)\Fluendo\Moovida\Moovida.exe (.not file.) =>Adware.SPointer
O4 - GS\Program [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\Program [Public]: Safari.lnk . (...) -- C:\Windows\Installer\{C779648B-410E-4BBA-B75B-5815BCEFE71D}\SafariIco.exe
O4 - GS\QuickLaunch [stéphanie]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [stéphanie]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [stéphanie]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\TaskBar [stéphanie]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Program [stéphanie]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SystemTools [stéphanie]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch [Manu]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [Manu]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch [Manu]: MoneyManagerEx.lnk . (.CodeLathe LLC - Money Management Software.) -- C:\Program Files\MoneyManagerEx\bin\mmex.exe
O4 - GS\QuickLaunch [Manu]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\QuickLaunch [Manu]: VNC Viewer 4.lnk . (.RealVNC Ltd. - VNC Viewer Free Edition for Win32.) -- C:\Program Files (x86)\RealVNC\VNC4\vncviewer.exe
O4 - GS\TaskBar [Manu]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\Program [Manu]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SystemTools [Manu]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SendTo [Manu]: Documents sur HTC_HD2_Manu.LNK . (...) -- C:\Users\Manu\Documents\Documents sur HTC_HD2_Manu
O4 - GS\Desktop [Manu]: All Media Fixer.lnk . (...) -- C:\Program Files (x86)\All Media Fixer\MediaFixer.exe
O4 - GS\Desktop [Manu]: Documents sur HTC_HD2_Manu.LNK . (...) -- C:\Users\Manu\Documents\Documents sur HTC_HD2_Manu
O4 - GS\Desktop [Manu]: Duplicate Cleaner.lnk . (.DigitalVolcano - Duplicate Cleaner Free.) -- C:\Program Files (x86)\Duplicate Cleaner\DuplicateCleaner.exe
O4 - GS\Desktop [Manu]: Duplicate Commander.lnk . (.Rayburn Davis - Duplicate Commander.) -- C:\Program Files (x86)\Duplicate Commander\Duplicate Commander.exe
O4 - GS\Desktop [Manu]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Desktop [Manu]: La cave du sommelier 2.lnk . (...) -- C:\Program Files (x86)\La cave du sommelier 2\cave.exe
O4 - GS\Desktop [Manu]: Manuel - La cave du sommelier 2.lnk . (...) -- C:\Program Files (x86)\La cave du sommelier 2\cavesom.chm
O4 - GS\Desktop [Manu]: MoneyManagerEx.lnk . (.CodeLathe LLC - Money Management Software.) -- C:\Program Files\MoneyManagerEx\bin\mmex.exe
O4 - GS\Desktop [Manu]: Sweet Home 3D.lnk . (.eTeks - Sweet Home 3D.) -- C:\Program Files (x86)\Sweet Home 3D\SweetHome3D.exe
O4 - GS\Desktop [Manu]: WBFS Manager 3.0.lnk . (...) -- C:\Program Files\WBFS\WBFS Manager 3.0\WBFSManager.exe
O4 - GS\QuickLaunch [Maelle]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [Maelle]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Maelle]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\TaskBar [Maelle]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Program [Maelle]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SystemTools [Maelle]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch [kodak]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
~ Global Startup: 153 Legitimates Filtered in 00mn 13s



---\\ Applications lancées au démarrage du sytème (O4)
O4 - GS\Startup [Public]: APC UPS Status.lnk . (.Schneider Electric - Startup Notification Module.) -- C:\Program Files (x86)\APC\PowerChute Personal Edition\Display.exe
O4 - GS\Startup [Public]: Password.lnk . (...) -- C:\Users\Manu\AppData\Local\Temp\Password.exe (.not file.)
O4 - GS\Startup [stéphanie]: OpenOffice.org 3.1.lnk . (...) -- C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O4 - GS\Startup [Manu]: CloudStation.lnk . (...) -- C:\Users\Manu\AppData\Local\CloudStation\bin\cloud.exe (.not file.)
O4 - GS\Startup [Manu]: No-IP DUC.lnk . (...) -- C:\Program Files (x86)\No-IP\DUC30.exe
O4 - GS\Startup [Manu]: OpenOffice.org 3.1.lnk . (...) -- C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [Windows Mobile Device Center] . (.Microsoft Corporation - Gestionnaire pour appareils Windows Mobile.) -- C:\Windows\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [CanonSolutionMenu] . (.CANON INC. - CNSLMAIN.) -- C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe
O4 - HKLM\..\Run: [CanonMyPrinter] . (.CANON INC. - Canon My Printer.) -- C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
O4 - HKLM\..\Run: [snpstd3] . (.Pas de propriétaire - CameraMonitor Application.) -- C:\Windows\vsnpstd3.exe
O4 - HKLM\..\Run: [My Scrap Nook Home Page Guard 64 bit] . (...) -- C:\Program Files (x86)\MyScrapNook_12\bar\1.bin\AppIntegrator64.exe
O4 - HKLM\..\Run: [fssui] . (.Microsoft Corporation - Windows Live Family Safety Filter.) -- C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe
O4 - HKLM\..\Run: [Motitags Home Page Guard 64 bit] . (...) -- C:\Program Files (x86)\Motitags_94\bar\1.bin\AppIntegrator64.exe
O4 - HKCU\..\Run: [bitTorrent DNA] . (.BitTorrent, Inc. - DNA.) -- C:\Users\Manu\Program Files (x86)\DNA\btdna.exe =>P2P.BitTorrent
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google
O4 - HKCU\..\Run: [updater] . (.Updater - Updater service.) -- C:\ProgramData\Updater\updater.exe =>PUP.CrossRider
O4 - HKLM\..\Wow6432Node\Run: [iJNetworkScanUtility] . (.CANON INC. - Canon IJ Network Scan Utility.) -- C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
O4 - HKLM\..\Wow6432Node\Run: [Display] . (.Schneider Electric - Startup Notification Module.) -- C:\Program Files (x86)\APC\PowerChute Personal Edition\DataCollectionLauncher.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [ApnUpdater] . (.Ask - Ask Updater.) -- C:\Program Files (x86)\Ask.com\Updater\Updater.exe
O4 - HKLM\..\Wow6432Node\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Antivirus System Tray Tool (Desktop).) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Wow6432Node\Run: [My Scrap Nook Search Scope Monitor] . (.MindSpark - MindSpark Toolbar Platform SearchScope Moni.) -- C:\Program Files (x86)\MyScrapNook_12\bar\1.bin\12SrchMn.exe
O4 - HKLM\..\Wow6432Node\Run: [MyScrapNook_12 Browser Plugin Loader] . (.VER_COMPANY_NAME - VER_DESCRIPTION.) -- C:\Program Files (x86)\MyScrapNook_12\bar\1.bin\12brmon.exe
O4 - HKLM\..\Wow6432Node\Run: [sunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O4 - HKLM\..\Wow6432Node\Run: [Motitags Search Scope Monitor] . (.MindSpark - MindSpark Toolbar Platform SearchScope Moni.) -- C:\Program Files (x86)\Motitags_94\bar\1.bin\94SrchMn.exe
O4 - HKLM\..\Wow6432Node\Run: [Motitags_94 Browser Plugin Loader] . (.VER_COMPANY_NAME - VER_DESCRIPTION.) -- C:\Program Files (x86)\Motitags_94\bar\1.bin\94brmon.exe
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [updater] . (.Updater - Updater service.) -- C:\ProgramData\Updater\Updater.exe =>PUP.CrossRider
O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-2507555995-2536625555-930860847-1000\..\Run: [bitTorrent DNA] . (.BitTorrent, Inc. - DNA.) -- C:\Users\Manu\Program Files (x86)\DNA\btdna.exe =>P2P.BitTorrent
O4 - HKUS\S-1-5-21-2507555995-2536625555-930860847-1000\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>Toolbar.Google
O4 - HKUS\S-1-5-21-2507555995-2536625555-930860847-1000\..\Run: [updater] . (.Updater - Updater service.) -- C:\ProgramData\Updater\updater.exe =>PUP.CrossRider
~ Application: Scanned in 00mn 01s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{38DA206E-DB63-4AAD-BEFE-6BEA2554F700}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{38DA206E-DB63-4AAD-BEFE-6BEA2554F700}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{38DA206E-DB63-4AAD-BEFE-6BEA2554F700}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.Conduit - Search Protect by Conduit.) - C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll =>Toolbar.Conduit
~ AppInit DLL: Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: APC Data Service (APC Data Service) . (.Schneider Electric - PowerChute Data Service.) - C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe
O23 - Service: APC UPS Service (APC UPS Service) . (.Schneider Electric - Battery Backup Management Service.) - C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe
O23 - Service: Search Protect by Conduit Service (CltMngSvc) . (.Conduit - Search Protect by Conduit.) - C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe =>Toolbar.Conduit
O23 - Service: Internet Updater (InternetUpdater) . (...) - C:\ProgramData\InternetUpdater\InternetUpdaterService.exe
O23 - Service: Kodak Digital Display Service (KodakDigitalDisplayService) . (.Orb Networks, Inc. - KodakDigitalDisplayService.) - C:\Program Files (x86)\Kodak\Digital Display\OrbKodakLauncher\DllStartupService.exe
O23 - Service: MotitagsService (Motitags_94Service) . (.COMPANYVERS_NAME - PRODUCTVERS_TITLE.) - C:\Program Files (x86)\Motitags_94\bar\1.bin\94barsvc.exe
O23 - Service: My Scrap NookService (MyScrapNook_12Service) . (.COMPANYVERS_NAME - PRODUCTVERS_TITLE.) - C:\Program Files (x86)\MyScrapNook_12\bar\1.bin\12barsvc.exe
O23 - Service: UsbClientService (UsbClientService) . (...) - C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
~ Services: 15 Legitimates Filtered in 00mn 12s



---\\ Tâches planifiées en automatique (O39)
[MD5.0E4D145F0B0612957D0E4959B1CC88AD] [APT] [scheduled Update for Ask Toolbar] (...) -- C:\Program Files (x86)\Ask.com\UpdateTask.exe [137864] =>Toolbar.Ask
[MD5.23410125A99A151D3CA0C022F22DF92D] [APT] [{2408CB4D-8E9F-4756-BE25-2F06869C2F25}] (...) -- C:\Users\Manu\Downloads\mp980swin64xps523ea7.exe [10650960]
~ Scheduled Task: 9 Legitimates Filtered in 00mn 17s



---\\ Logiciels installés (O42)
O42 - Logiciel: Ask Toolbar - (.Ask.com.) [HKLM][64Bits] -- {86D4B82A-ABED-442A-BE86-96357B70F4FE} =>Toolbar.Ask
O42 - Logiciel: DNA - (.BitTorrent Inc..) [HKCU][64Bits] -- BitTorrent DNA =>P2P.BitTorrent
O42 - Logiciel: Duplicate Commander 3.0 - (.RayburnSoft.) [HKLM][64Bits] -- Duplicate Commander
O42 - Logiciel: FileParade Bundle - (.FileParade Bundle.) [HKLM][64Bits] -- FileParade Bundle
O42 - Logiciel: Internet Updater - (.Parallel Lines Development, LLC.) [HKLM][64Bits] -- InternetUpdater
O42 - Logiciel: La cave du sommelier 2 - (.DP Software.) [HKLM][64Bits] -- {8A37B952-0B30-477D-923D-15C19411F924}_is1
O42 - Logiciel: My Scrap Nook Toolbar - (.Mindspark Interactive Network.) [HKLM][64Bits] -- MyScrapNook_12bar Uninstall
O42 - Logiciel: Search Protect - (.Conduit.) [HKLM][64Bits] -- SearchProtect =>Toolbar.Conduit
O42 - Logiciel: ValueApps - (.Conduit.) [HKCU][64Bits] -- ValueApps =>Toolbar.Conduit
~ Logic: 38 Legitimates Filtered in 00mn 01s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\APN]
[HKCU\Software\Ask.com]
[HKCU\Software\Conduit] =>Toolbar.Conduit
[HKCU\Software\IM]
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Motitags_94]
[HKCU\Software\MyScrapNook_12]
[HKCU\Software\SweetIM] =>PUP.SweetIM
[HKCU\Software\YahooPartnerToolbar]
[HKLM\Software\Wow6432Node\APN]
[HKLM\Software\Wow6432Node\AskToolbar]
[HKLM\Software\Wow6432Node\Motitags_94]
[HKLM\Software\Wow6432Node\MyScrapNook_12]
[HKLM\Software\Wow6432Node\SweetIM] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Toolbar Cleaner] =>Adware.ToolbarCleaner
[HKLM\Software\Wow6432Node\mamverifier]
~ Key Software: 367 Legitimates Filtered in 00mn 01s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 10/03/2013 - 22:27:08 - [3,514] ----D C:\Program Files (x86)\Ask.com
O43 - CFD: 17/03/2010 - 22:42:25 - [36,768] ----D C:\Program Files (x86)\Comptes
O43 - CFD: 30/12/2013 - 12:11:27 - [0,193] ----D C:\Program Files (x86)\Conduit
O43 - CFD: 16/08/2012 - 02:25:52 - [0,390] ----D C:\Program Files (x86)\DNA
O43 - CFD: 06/10/2012 - 18:43:04 - [1,834] ----D C:\Program Files (x86)\Duplicate Commander
O43 - CFD: 22/02/2014 - 11:51:26 - [48,394] ----D C:\Program Files (x86)\GUM271F.tmp
O43 - CFD: 07/12/2013 - 19:06:54 - [359,467] ----D C:\Program Files (x86)\La cave du sommelier 2
O43 - CFD: 25/10/2013 - 09:07:39 - [9,079] ----D C:\Program Files (x86)\Motitags_94
O43 - CFD: 12/06/2013 - 22:12:05 - [8,116] ----D C:\Program Files (x86)\MyScrapNook_12
O43 - CFD: 30/12/2013 - 12:08:38 - [0,367] ----D C:\Program Files (x86)\sweetpacks bundle uninstaller =>PUP.SweetIM
O43 - CFD: 17/03/2010 - 22:43:07 - [1,495] ----D C:\Program Files (x86)\The Adventure Company
O43 - CFD: 13/11/2011 - 20:50:10 - [0,651] ----D C:\Program Files (x86)\Toolbar Cleaner =>Adware.ToolbarCleaner
O43 - CFD: 21/07/2012 - 05:19:07 - [0] ----D C:\ProgramData\Ask
O43 - CFD: 30/12/2013 - 12:22:06 - [1,424] ----D C:\ProgramData\InternetUpdater
O43 - CFD: 26/09/2010 - 16:56:13 - [0,063] ----D C:\ProgramData\KEDDS
O43 - CFD: 30/12/2013 - 12:11:01 - [1,230] ----D C:\ProgramData\RHelpers =>PUP.SearchDonkey
O43 - CFD: 30/12/2013 - 12:11:01 - [1,689] ----D C:\ProgramData\Updater =>PUP.CrossRider
O43 - CFD: 29/08/2011 - 22:40:50 - [3,394] --H-D C:\ProgramData\{E961CE1B-C3EA-4882-9F67-F859B555D097}
O43 - CFD: 06/01/2014 - 21:56:30 - [27,641] -SH-D C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
O43 - CFD: 22/02/2014 - 12:39:22 - [0,011] ----D C:\Users\Manu\AppData\Roaming\DNA
O43 - CFD: 18/03/2013 - 12:09:22 - [0,004] ----D C:\Users\Manu\AppData\Roaming\KEDDS
O43 - CFD: 06/01/2014 - 21:53:53 - [31,497] ----D C:\Users\Manu\AppData\Roaming\OpenCandy =>Adware.OpenCandy
O43 - CFD: 30/12/2013 - 12:10:55 - [0,269] ----D C:\Users\Manu\AppData\Roaming\ValueApps =>Toolbar.Conduit
O43 - CFD: 10/03/2013 - 22:26:53 - [0] ----D C:\Users\Manu\AppData\Local\APN
O43 - CFD: 30/12/2013 - 12:11:27 - [2,618] ----D C:\Users\Manu\AppData\Local\Conduit
O43 - CFD: 17/03/2010 - 22:47:55 - [0] ----D C:\Users\Manu\AppData\Local\DNA
O43 - CFD: 22/03/2010 - 06:11:16 - [0,001] ----D C:\Users\Manu\AppData\Local\KEDDS
~ 69 Dossiers CLSID vides (CLSID Empty Folders)
~ Program Folder: 300 Legitimates Filtered in 04mn 18s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.E9929B2E05D8A305F7AE63244AB79AA6] - 22/02/2014 - 12:42:23 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [30176]
O44 - LFC:[MD5.E9929B2E05D8A305F7AE63244AB79AA6] - 22/02/2014 - 12:42:23 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [30176]
~ Files: 7 Legitimates Filtered in 03mn 24s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 17 Legitimates Filtered in 00mn 00s



---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
~ MWPE Keys: 4 Legitimates Filtered in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:[MD5.2219A3D695405E7BA2186BA6B9EDE14A] - 14/05/2009 - 09:26:24 ---A- . (.Pas de propriétaire - ATK0110 ACPI Utility.) -- C:\Windows\System32\Drivers\ASACPI.sys [15416]
O58 - SDL:[MD5.FC278504BFA3AC7E9ED92359D0EE7282] - 18/02/2011 - 07:20:34 ---A- . (.Windows ® Win 7 DDK provider - Synology Virtual USB Hub.) -- C:\Windows\System32\Drivers\busenum.sys [56160]
O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [530496]
O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [31232]
O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [24656]
O58 - SDL:[MD5.C9E9D59C0099A9FF51697E9306A44240] - 13/12/2012 - 12:50:36 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\Drivers\usbaapl64.sys [54784]
O58 - SDL:[MD5.5AC2DCBBCEB5534BFCD88C2670993F3C] - 06/09/2003 - 13:25:52 ---A- . (.Protection Technology - StarForce Protection Environment Driver.) -- C:\Windows\SysWOW64\drivers\prodrv06.sys [51744]
O58 - SDL:[MD5.7A78181CC947CDAA0902E113CFD01E93] - 06/09/2003 - 14:37:22 ---A- . (.Protection Technology - StarForce Protection Helper Driver.) -- C:\Windows\SysWOW64\drivers\prohlp02.sys [62656]
O58 - SDL:[MD5.F3471E7971EE62420451D958DA635064] - 06/09/2003 - 13:22:08 ---A- . (.Protection Technology - StarForce Protection Synchronization Driver.) -- C:\Windows\SysWOW64\drivers\prosync1.sys [6944]
O58 - SDL:[MD5.91F99F3E331E24C438819A38A1AD049C] - 06/09/2003 - 13:27:06 ---A- . (.Protection Technology - StarForce Protection Helper Driver.) -- C:\Windows\SysWOW64\drivers\sfhlp01.sys [4832]
~ Drivers: 17 Legitimates Filtered in 01mn 16s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
O63 - Logiciel: HiJackThis - (.Trend Micro.) [HKLM] -- {45A66726-69BC-466B-A7A4-12FCBA4883D7}
~ ADS: Scanned in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: <Safari.exe> <Safari>[HKLM\..\Shell\open\Command] (.Apple Inc. - Safari.) -- C:\Program Files (x86)\Safari\Safari.exe
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\kl6zj6nv.default\searchplugins\askcom.xml
O69 - SBI: prefs.js [Manu - kl6zj6nv.default] user_pref("browser.newtab.url", "http://search.conduit.com/?ctid=CT3317209&octid=EB_ORIGINAL_CTID&SearchSource=69&CUI=&SSPV=&Lay=1[...]
O69 - SBI: prefs.js [Manu - kl6zj6nv.default] user_pref("browser.search.defaultenginename", "Conduit Search");
O69 - SBI: prefs.js [Manu - kl6zj6nv.default] user_pref("browser.search.selectedEngine", "Conduit Search");
O69 - SBI: prefs.js [Manu - kl6zj6nv.default] user_pref("browser.startup.homepage", "http://search.conduit.com/?ctid=CT3317209&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&[...]
O69 - SBI: prefs.js [Manu - kl6zj6nv.default] user_pref("extensions.asktb.ff-original-keyword-url", "");
O69 - SBI: prefs.js [Manu - kl6zj6nv.default] user_pref("extensions.dynconff.cache.search.conduit.com.content", "<package expire=\"3600\" message=\"Empty\"></package>");
O69 - SBI: prefs.js [Manu - kl6zj6nv.default] user_pref("extensions.dynconff.cache.search.conduit.com.expires", "1393072654217");
O69 - SBI: SearchScopes [HKCU] {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} [DefaultScope] - (Conduit Search) - http://search.conduit.com
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {64A8B81A-9B63-4E41-BA23-BD485AD64F63} - (Ask Search) - http://websearch.ask.com =>Toolbar.Ask
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {FDD21A4C-9D53-4983-A6CE-AB276C274C59} - (Google) - http://www.google.fr
~ Keys: Scanned in 00mn 00s



---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "TCP Query User{4B866703-7C86-4B72-A36C-F53C0D4B225B}C:\users\manu\documents\manuel\temp\dsassistant_1920\win\dsassistant.exe" | In - Private - P6 - TRUE | .(...) -- C:\users\manu\documents\manuel\temp\dsassistant_1920\win\dsassistant.exe
O87 - FAEL: "UDP Query User{5C3B15BB-239B-4585-B23D-C94C40E34173}C:\users\manu\documents\manuel\temp\dsassistant_1920\win\dsassistant.exe" | In - Private - P17 - TRUE | .(...) -- C:\users\manu\documents\manuel\temp\dsassistant_1920\win\dsassistant.exe
O87 - FAEL: "TCP Query User{B573DE36-4CFA-4818-8804-9F11A2FE6A09}C:\program files (x86)\netgear genie\bin\netgeargenie.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\netgear genie\bin\netgeargenie.exe (.not file.)
O87 - FAEL: "UDP Query User{0B03BB1D-1AE2-4ACF-BA7C-27F8295152DE}C:\program files (x86)\netgear genie\bin\netgeargenie.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\netgear genie\bin\netgeargenie.exe (.not file.)
O87 - FAEL: "TCP Query User{3AC60BA9-7944-40AA-83A1-9132469144C6}C:\program files (x86)\netgear genie\bin\netgeargenie.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\netgear genie\bin\netgeargenie.exe (.not file.)
O87 - FAEL: "UDP Query User{43E08162-6B58-436A-8136-AFDC430F7FC8}C:\program files (x86)\netgear genie\bin\netgeargenie.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\netgear genie\bin\netgeargenie.exe (.not file.)
O87 - FAEL: "TCP Query User{1CB43788-B96A-4A6D-8415-E3D895AE1C73}C:\program files (x86)\kodak\digital display\kodakdigitaldisplaysoftware.exe" | In - Private - P6 - TRUE | .(.Orb Networks, Inc. - Kodak Digital Display Software.) -- C:\program files (x86)\kodak\digital display\kodakdigitaldisplaysoftware.exe
O87 - FAEL: "UDP Query User{EAF34F1E-380D-457A-AE37-3BFD3D167FCE}C:\program files (x86)\kodak\digital display\kodakdigitaldisplaysoftware.exe" | In - Private - P17 - TRUE | .(.Orb Networks, Inc. - Kodak Digital Display Software.) -- C:\program files (x86)\kodak\digital display\kodakdigitaldisplaysoftware.exe
~ Firewall: 257 Legitimates Filtered in 00mn 01s



---\\ Enumère les codes produits des logiciels (PUC) (O90)
O90 - PUC: "43399B7CCC14A544FAB72A0196A127DA" . (.KEDDS.) -- C:\Windows\Installer\{C7B99334-41CC-445A-AF7B-A210691A72AD}\ARPPRODUCTICON.exe
O90 - PUC: "A28B4D68DEBAA244EB686953B7074FEF" . (.Ask Toolbar.) -- C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\ARPPRODUCTICON.exe =>Toolbar.Ask
O90 - PUC: "BA172DB42E6685D4FA8808EFB370074C" . (.Fissa.) -- C:\Windows\Installer\{4BD271AB-66E2-4D58-AF88-80FE3B0770C4}\ARPPRODUCTICON.exe =>PUP.OfferBox
~ Update Products: 86 Legitimates Filtered in 00mn 00s



---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.79F0DA115060B83C5BA6A0053CB1BE2F] [WIS][28/02/2012] (.Schneider Electric - PCPE v3.0.2 Installer.) -- C:\Windows\Installer\104f70.msi [13338112]
~ WIS: 86 Legitimates Filtered in 00mn 17s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Auto 06/04/2010 133104 | (gupdate1cad58b6eba7822) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 06/04/2010 133104 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 21/08/2012 194032 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SS - | Demand 03/04/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
SS - | Demand 02/11/2013 641352 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SS - | Demand 30/12/2013 119408 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Auto 13/07/2012 160944 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SS - | Disabled 15/08/2007 1239272 | (WinVNC4) . (.RealVNC Ltd..) - C:\Program Files\RealVNC\VNC4\WinVNC4.exe

SR - | Auto 19/12/2013 440376 | (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
SR - | Auto 12/12/2013 440376 | (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
SR - | Auto 24/01/2012 21880 | (APC Data Service) . (.Schneider Electric.) - C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe
SR - | Auto 24/01/2012 705912 | (APC UPS Service) . (.Schneider Electric.) - C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe
SR - | Auto 07/09/2013 55624 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Auto 06/02/2014 2360608 | (CltMngSvc) . (.Conduit.) - C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe =>Toolbar.Conduit
SR - | Auto 06/12/2013 40448 | (InternetUpdater) . (...) - C:\ProgramData\InternetUpdater\InternetUpdaterService.exe
SR - | Auto 14/05/2009 98304 | (KodakDigitalDisplayService) . (.Orb Networks, Inc..) - C:\Program Files (x86)\Kodak\Digital Display\OrbKodakLauncher\DllStartupService.exe
SR - | Auto 25/10/2013 44752 | (Motitags_94Service) . (.COMPANYVERS_NAME.) - C:\Program Files (x86)\Motitags_94\bar\1.bin\94barsvc.exe
SR - | Auto 12/06/2013 42504 | (MyScrapNook_12Service) . (.COMPANYVERS_NAME.) - C:\Program Files (x86)\MyScrapNook_12\bar\1.bin\12barsvc.exe
SR - | Auto 18/12/2013 2103096 | (TuneUp.UtilitiesSvc) . (.TuneUp Software.) - C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
SR - | Auto 18/02/2011 245760 | (UsbClientService) . (...) - C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\uxtuneup.dll (UxTuneUp) . (.TuneUp Software.) - C:\Windows\System32\svchost.exe
SR - | Auto 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe

~ Services: Scanned in 00mn 20s



---\\ Scan Additionnel (O88)
Database Version : 13031 - (17/02/2014)
Clés trouvées (Keys found) : 95
Valeurs trouvées (Values found) : 7
Dossiers trouvés (Folders found) : 15
Fichiers trouvés (Files found) : 29

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{93DBF2BB-A2B3-4683-A92E-57E60751F346}] =>Toolbar.Conduit^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Toolbar.Ask^
[HKLM\SYSTEM\CurrentControlSet\Services\CltMngSvc] =>Toolbar.Conduit^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}] =>Toolbar.Ask^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\BitTorrent DNA] =>P2P.BitTorrent^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect] =>Toolbar.Conduit^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\ValueApps] =>Toolbar.Conduit^
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21111111-1111-1111-1111-110011441179}] =>Adware.GamePlayLabs
[HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}] =>Toolbar.Ask
[HKLM\Software\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}] =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}] =>Toolbar.Ask
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6c97a91e-4524-4019-86af-2aa2d567bf5c}] =>Toolbar.AdAware
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6c97a91e-4524-4019-86af-2aa2d567bf5c}] =>Toolbar.AdAware
[HKLM\Software\Classes\Interface\{7935436E-8F14-4C84-9ECF-BEB791296619}] =>Adware.ShopperReports
[HKLM\Software\Classes\Interface\{81B32B9F-AFDC-4F7E-8F13-E39BB8ECF638}] =>Adware.BHO
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}] =>Toolbar.Ask
[HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}] =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}] =>Toolbar.Ask
[HKLM\Software\Classes\Interface\{925C24DC-0C0B-4AE7-98F5-18252822C89C}] =>Adware.BHO
[HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}] =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}] =>Toolbar.Ask
[HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}] =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}] =>Toolbar.Ask
[HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}] =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}] =>Toolbar.Ask
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Toolbar.Avira
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Toolbar.Avira
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Toolbar.Avira
[HKLM\Software\Classes\Interface\{D5AB027D-C91A-4324-8C78-12CF1A588C48}] =>PUP.OfferBox
[HKLM\Software\Classes\Interface\{E5DB89B8-5BE1-461C-A7EF-89B68211889D}] =>PUP.OfferBox
[HKLM\Software\Classes\AppID\GenericAskToolbar.DLL] =>Toolbar.Ask
[HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd] =>Toolbar.Ask
[HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd.1] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED] =>Toolbar.Ask
[HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF] =>Toolbar.AVGSearch
[HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF] =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF] =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888] =>Toolbar.Ask
[HKLM\Software\Classes\Installer\Features\BA172DB42E6685D4FA8808EFB370074C] =>PUP.OfferBox
[HKLM\Software\Classes\Installer\Products\BA172DB42E6685D4FA8808EFB370074C] =>PUP.OfferBox
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\BA172DB42E6685D4FA8808EFB370074C] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Classes\Installer\Features\BA172DB42E6685D4FA8808EFB370074C] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Classes\Installer\Products\BA172DB42E6685D4FA8808EFB370074C] =>PUP.OfferBox
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9] =>Adware.MyWebSearch
[HKCU\Software\APN] =>Toolbar.Ask
[HKLM\Software\Wow6432Node\APN] =>Toolbar.Ask
[HKCU\Software\Ask.com] =>Toolbar.AskBar
[HKCU\Software\AppDataLow\Software\AskToolbar] =>Toolbar.AskTBar
[HKLM\Software\Wow6432Node\AskToolbar] =>Toolbar.AskTBar
[HKCU\Software\SweetIM] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\SweetIM] =>PUP.SweetIM
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}] =>Adware.SimilarSites
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect] =>Toolbar.Conduit
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\kngejcchcedjdemdaeneneeahmjnpaec] =>Adware.SPointer
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2] =>Toolbar.Ask
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Tracing\apnstub_RASAPI32] =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Microsoft\Tracing\apnstub_RASMANCS] =>Toolbar.Ask
[HKLM\Software\Classes\SpeedUpMyPC] =>Rogue.SpeedUpMyPC
[HKLM\Software\Classes\protector_dll.protectorbho] =>PUP.BProtector
[HKLM\Software\Classes\protector_dll.protectorbho.1] =>PUP.BProtector
[HKLM\Software\Classes\Moovida.Spointer] =>Adware.SPointer
[HKLM\Software\Classes\Moovida.Spointer.1] =>Adware.SPointer
[HKLM\Software\Classes\Moovida.SpointerCtrl] =>Adware.SPointer
[HKLM\Software\Classes\Moovida.SpointerCtrl.1] =>Adware.SPointer
[HKLM\Software\Classes\Moovida.SpointerWebDisp] =>Adware.SPointer
[HKLM\Software\Classes\Moovida.SpointerWebDisp.1] =>Adware.SPointer
[HKLM\Software\Wow6432Node\Classes\Moovida.Spointer] =>Adware.SPointer
[HKLM\Software\Wow6432Node\Classes\Moovida.Spointer.1] =>Adware.SPointer
[HKLM\Software\Wow6432Node\Classes\Moovida.SpointerCtrl] =>Adware.SPointer
[HKLM\Software\Wow6432Node\Classes\Moovida.SpointerCtrl.1] =>Adware.SPointer
[HKLM\Software\Wow6432Node\Classes\Moovida.SpointerWebDisp] =>Adware.SPointer
[HKLM\Software\Wow6432Node\Classes\Moovida.SpointerWebDisp.1] =>Adware.SPointer
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011441179}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110011441179}] =>PUP.CrossRider
[HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks]:{00000000-6E41-4FD3-8538-502F5495E5FC} =>Toolbar.Ask^
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{2318C2B1-4965-11d4-9B18-009027A5CD4F} =>Toolbar.Google^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:BitTorrent DNA =>P2P.BitTorrent^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:Updater =>PUP.CrossRider^
[HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks]:{00000000-6E41-4FD3-8538-502F5495E5FC} =>Adware.ShopperReports
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{D4027C7F-154A-4066-A1AD-4243D8127440} =>Toolbar.Avira
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar]:{D4027C7F-154A-4066-A1AD-4243D8127440} =>Toolbar.Avira
C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\kl6zj6nv.default\extensions\support@websteroidsapp.com =>PUP.TubeDimmer^
C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\kl6zj6nv.default\extensions\{94cd2cc3-083f-49ba-a218-4cda4b4829fd} =>Toolbar.Conduit^
C:\Program Files (x86)\sweetpacks bundle uninstaller =>PUP.SweetIM^
C:\Program Files (x86)\Toolbar Cleaner =>Adware.ToolbarCleaner^
C:\ProgramData\RHelpers =>PUP.SearchDonkey^
C:\ProgramData\Updater =>PUP.CrossRider^
C:\Users\Manu\AppData\Roaming\OpenCandy =>Adware.OpenCandy^
C:\Users\Manu\AppData\Roaming\ValueApps =>Toolbar.Conduit^
C:\Program Files (x86)\Ask.com =>Toolbar.AskBar
C:\Program Files (x86)\Conduit =>Toolbar.Conduit
C:\Program Files (x86)\SearchProtect =>Toolbar.Conduit
C:\Users\Manu\AppData\Local\Conduit =>Toolbar.Conduit
C:\Users\Manu\AppData\Local\SearchProtect =>Toolbar.Conduit
C:\Users\Manu\AppData\LocalLow\AskToolbar =>Toolbar.AskTBar
C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\kl6zj6nv.default\Extensions\toolbar@ask.com =>Toolbar.AskTBar
C:\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe =>Toolbar.Conduit^
C:\Program Files (x86)\SearchProtect\UI\bin\cltmngui.exe =>Toolbar.Conduit^
C:\Users\Manu\Program Files (x86)\DNA\btdna.exe =>P2P.BitTorrent^
C:\ProgramData\Updater\updater.exe =>PUP.CrossRider^
C:\ProgramData\RHelpers\ChromeHelper\ChromeHelper.exe =>PUP.SearchDonkey^
C:\ProgramData\RHelpers\FireFoxHelper\FireFoxHelper.exe =>PUP.SearchDonkey^
C:\ProgramData\RHelpers\IEHelper\IeHelper.exe =>PUP.SearchDonkey^
C:\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe =>Toolbar.Conduit^
C:\Program Files (x86)\Ask.com\UpdateTask.exe =>Toolbar.Ask^
[HKCU\Software\Conduit] =>Toolbar.Conduit^
[HKLM\Software\Wow6432Node\Toolbar Cleaner] =>Adware.ToolbarCleaner^
C:\Users\Manu\AppData\Local\Temp\dlLogic.exe =>Toolbar.Conduit
C:\Users\Manu\AppData\Local\Temp\nsj2CBD.exe =>Toolbar.Conduit
C:\Users\Manu\AppData\Local\Temp\nsj2FCA.exe =>Toolbar.Conduit
C:\Users\Manu\AppData\Local\Temp\nsoE713.exe =>Toolbar.Conduit
C:\Users\Manu\AppData\Local\Temp\nsuE4C2.exe =>Toolbar.Conduit
C:\Users\Manu\AppData\Local\Temp\nsz2972.exe =>Toolbar.Conduit
C:\Users\Manu\AppData\Local\Temp\nszEA11.exe =>Toolbar.Conduit
C:\Users\Manu\AppData\Local\Temp\SPSetup.exe =>Toolbar.Conduit
C:\Users\Manu\AppData\Local\Temp\Valueapps_new.exe =>Toolbar.Conduit
~ Additionnel Scan: 316267 Items scanned in 00mn 55s



---\\ Récapitulatif des détections trouvées sur votre station
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~
~ MSI: 16 link(s) detected in 00mn 55s



~ 1304 Legitimates filtered by white list
End of the scan (751 lines in 12mn 22s)(0)

Modifié le 25 février 2014 par Thunderman

[Apollo]

Bonjour,

 

Tu dois héberger les longs rapports sur cjoint.com.

 

--------------------

Suis cette procédure entièrement et dans l'ordre indiqué.

Ne passer qu'un seul outil à la fois et poster ici tous les rapports svp.

 

http://theknitter-apollo.xooit.com/t3459-Supprimer-toolbars-et-Adwares.htm

 

@++

 

NB: attention à ceci concernant AdwCleaner: http://theknitter-apollo.xooit.com/p21788.htm

 

@++

[Thunderman]

 

Message supprimer : rapport postés via cjoint.com

Modifié le 24 février 2014 par Thunderman

[Thunderman]

Bonjour,

voici l'ensemble des résultats de la prcocédure indiquée :

 

1-Rapport JRT : http://cjoint.com/?0ByhRwnjkq8

2-Rapport ADW Cleaner : http://cjoint.com/?DByhWM6krVi

3- Rapport SFTGC : http://cjoint.com/?DByhXTOsOSV

4- Rapport MBAM : http://cjoint.com/?DByhYAvbNR6

5- Rapport Shortcut cleaner : http://cjoint.com/?DByhZ0wayfr

6- Réinit de IE, et Firefow faite

7- Rapport ZHPDaig : http://cjoint.com/?DByh0Ey7FUr

 

A noter que dans la nuit de samedi à dimanche mon à rebooter suite à une installation de MaJ Winwows.

[Apollo]

Bonjour,

 

Comment se comporte le pc?

 

1) ZHPFix :

• Ferme toutes les applications ouvertes
• Double-clique sur ZHPFix, raccourci installé par ZHPDiag sur le Bureau

  Important:

  Sous Vista et Windows 7/8 : il faut lancer le fichier par clic-droit -> Exécuter en tant qu'administrateur.

• Copie les lignes ci-dessous dans la fenêtre

sauf citation.

 

Script ZhpFix

O4 - GS\Desktop [Public]: Moovida.lnk . (...) -- C:\Program Files (x86)\Fluendo\Moovida\Moovida.exe (.not file.) =>Adware.SPointer

O4 - GS\Program [Public]: Moovida.lnk . (...) -- C:\Program Files (x86)\Fluendo\Moovida\Moovida.exe (.not file.) =>Adware.SPointer

O43 - CFD: 30/12/2013 - 12:11:01 - [1,689] ----D C:\ProgramData\Updater =>PUP.CrossRider

O90 - PUC: "BA172DB42E6685D4FA8808EFB370074C" . (.Fissa.) -- C:\Windows\Installer\{4BD271AB-66E2-4D58-AF88-80FE3B0770C4}\ARPPRODUCTICON.exe =>PUP.OfferBox

[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21111111-1111-1111-1111-110011441179}] =>Adware.GamePlayLabs

[HKLM\Software\Classes\Installer\Features\BA172DB42E6685D4FA8808EFB370074C] =>PUP.OfferBox

[HKLM\Software\Classes\Installer\Products\BA172DB42E6685D4FA8808EFB370074C] =>PUP.OfferBox

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\BA172DB42E6685D4FA8808EFB370074C] =>PUP.OfferBox

[HKLM\Software\Wow6432Node\Classes\Installer\Features\BA172DB42E6685D4FA8808EFB370074C] =>PUP.OfferBox

[HKLM\Software\Wow6432Node\Classes\Installer\Products\BA172DB42E6685D4FA8808EFB370074C] =>PUP.OfferBox

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9] =>Adware.MyWebSearch

C:\ProgramData\Updater =>PUP.CrossRider^

O42 - Logiciel: ValueApps - (.Conduit.) [HKCU][64Bits] -- ValueApps =>Toolbar.Conduit

[HKCU\Software\APN] => Toolbar.Ask

[HKLM\Software\Wow6432Node\APN] => Toolbar.Ask

[HKLM\Software\Wow6432Node\mamverifier] => Toolbar.Mamverifier

[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\ValueApps] =>Toolbar.Conduit^

[HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}] =>Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E] =>Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6] =>Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7] =>Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852] =>Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0] =>Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA] =>Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96] =>Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8] =>Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01] =>Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59] =>Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED] =>Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF] =>Toolbar.AVGSearch

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472] =>Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296] =>Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888] =>Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC] =>Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA] =>Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E] =>Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF] =>Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E] =>Toolbar.Ask

[HKCU\Software\APN] =>Toolbar.Ask

[HKLM\Software\Wow6432Node\APN] =>Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2] =>Toolbar.Ask

EmptyClsid

Ifeofix

Proxyfix

FirewallRaz

ShortcutFix

SysRestore

emptytemp

emptyflash

Cliquer sur IMPORTER., cela devrait coller le contenu du presse papier dans la fenêtre ZHPFix.

• Le script doit automatiquement apparaitre dans ZHPFix.

   

  Clique sur le bouton GO pour lancer le nettoyage

• Valide par Oui la désinstallation des programmes si demandé.
• Laisse l'outil travailler. Si un redémarrage est demandé, accepte et redémarre le PC
• Le rapport ZHPFixReport.txt s'affiche. Copie-colle le contenu de ce rapport dans ta réponse.

  Le rapport ZHPFixReport.txt est enregistré sous C:\ZHP\ZHPFix.txt

Si le Bureau ne réapparaît pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide.

 

----------------------------------

2) Fais ces vérifications de sécurité stp:

 

http://theknitter-apollo.xooit.com/p17644.htm

 

Ou ici: http://www.vista-xp.fr/forum/topic13109.html#p108827

 

Pour Java, utiliser l'outil de Pierre13. (à partir de XP SP3!)

Poster son rapport.

 

 

Idem pour Adobe Reader (outil dédié de Pierre13 + rapport)

 

@++

[Thunderman]

bonjour

les performance semble s'etre amélioré sensiblement

 

voici les 2 rapports demandés :

1-ZHPFixReport : http://cjoint.com/?DBywRFsD70O

2- Rapport Java update Pierre13 : http://cjoint.com/?DBywWLwcnjs

3-Rapport Rapport_ADRUpdate: http://cjoint.com/?DByw3CB81YG

 

Merci encore

Modifié le 24 février 2014 par Thunderman

[Apollo]

Ok,

 

Désinstaller les outils spéciaux.

 

Télécharge DelFix sur ton bureau. http://general-changelog-team.fr/telechargements/logiciels/viewdownload/75-outils-de-xplode/3-delfix

Lance-le et appuie sur le bouton "Supprimer les outils de désinfection". >> Exécuter.

 

NB, tu peux également cocher la case "Purger la restauration système", un nouveau point sera automatiquement créé. Conseillé quand le pc est désinfecté.

 

 

Delfix s'autodétruira ensuite.

• Pense à éditer ton premier post pour ajouter "Résolu" devant le titre. Pour cela clique sur "Modifier" dans ton premier post. Tu pourras alors changer le titre.

Utilise pour ça, l'éditeur complet

 

 

@++