adobe total · feuille1 page 1 ~ ~ ~ ~---\\---\\ ~ ~ windows---\\---\\---\\ adobe adobe---\\ ~ ~ ~...

Feuille1

Page 1

~~~~

---\\

---\\~~Windows

---\\

---\\

---\\AdobeAdobe

---\\~~~Total~~

---\\~~~

---\\~~

---\\

MFIE:MSIE:

MalwarebytesMicrosoftMicrosoft

CCleaner

[HKLM\SOFTWARE\Microsoft\Security[HKLM\SOFTWARE\Microsoft\Security[HKLM\SOFTWARE\Microsoft\Security[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer][HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System][HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system][HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN]

Feuille1

Page 2

---\\

---\\

---\\

---\\

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL][HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations][HKLM\SOFTWARE\Microsoft\Windows[HKCU\SOFTWARE\Microsoft\Windows[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp][HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto

[MD5.D07D4C3038F3578FFCE1C0237F2A1253][MD5.4B555106290BD117334E9A08761C035A][MD5.101BA3EA053480BB5D957EF37C06B5ED][MD5.E38E89A0939A42F5EE4292DFC48772DF][MD5.898E7C06A350D4A1A64A9EA264D55452][MD5.95F5FF73B076576C41740F1A842B9B57][MD5.F5272A105F59A7B3B345D9D6D87DA7AD][MD5.1F05B78AB91C9075565A9D8A4B880BC4][MD5.7ADD03E75BEB9E6DD102C3081D29840A][MD5.6B4BFFB9BECD728097024276430DB314][MD5.622C41A07CA7E6DD91770F50D532CB6C][MD5.062452B7FFD68C8C042A6261FE8DFF4A][MD5.22D56C8184586B7A1F6FA60BE5F5A2BD][MD5.8793643A67B42CEC66490B2A0CF92D68][MD5.1E94971C4B446AB2290DEB71D01CF0C2][MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6][MD5.2C1121F2B87E9A6B12485DF53CD848C7][MD5.0FA9B5055484649D63C303FE404E5F4D][MD5.A214ADBAF4CB47DD2728859EF31F26B0][MD5.FBC0BACD9C3D7F6956853F64A66E252D][MD5.7B75299A4D201D6A6533603D6914AB04][MD5.76B06EB8A01FC8624D699E7045303E54][MD5.786DB5771F05EF300390399F626BF30A]

[MD5.C832A3622A35CA7C595EA8CA385BA813]

G2G2G2

M0P2P2P2P2P2P2P2P2P2

Feuille1

Page 3

---\\

---\\

---\\

---\\~

---\\

---\\

P2P2P2P2P2

R0R0R1R1R1R1R1R1R1R1R1R1R1R3R4

R5R5R5R5R5

F2F2F2

O2

O4O4O4O4O4O4O4O4O4

Feuille1

Page 4

---\\

---\\

---\\

---\\

O4O4

O10O10O10O10O10O10O10O10O10

O17O17O17

O23O23O23O23O23O23

[MD5.9B3355B29942AF67F014EA90CE1EA960][MD5.4999625054FFA2AFFCAFD085C1218307][MD5.00000000000000000000000000000000][MD5.00000000000000000000000000000000][MD5.506708142BC63DABA64F2D3AD1DCD5BF][MD5.506708142BC63DABA64F2D3AD1DCD5BF][MD5.00000000000000000000000000000000][MD5.00000000000000000000000000000000][MD5.00000000000000000000000000000000][MD5.00000000000000000000000000000000]O39O39O39O39O39O39O39O39O39O39O39O39O39

Feuille1

Page 5

---\\

O39O39O39O39O39O39O39O39

O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42

Feuille1

Page 6

---\\

O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42O42

HKLM\SOFTWARE\9811a383-cc11-280a-c9bd-cbfd1e7ae103HKLM\SOFTWARE\ad639881-a4af-439b-9186-0b0c9a368325HKLM\SOFTWARE\AdobeHKLM\SOFTWARE\AdwCleanerHKLM\SOFTWARE\AIMHKLM\SOFTWARE\AppDataLowHKLM\SOFTWARE\AppleHKLM\SOFTWARE\AppleHKLM\SOFTWARE\ArcSoftHKLM\SOFTWARE\AtherosHKLM\SOFTWARE\BrowserChoiceHKLM\SOFTWARE\CDexHKLM\SOFTWARE\ConduitHKLM\SOFTWARE\cybelsoftHKLM\SOFTWARE\CyberlinkHKLM\SOFTWARE\DataHKLM\SOFTWARE\DebugHKLM\SOFTWARE\DevNetHKLM\SOFTWARE\DivXHKLM\SOFTWARE\DivXNetworksHKLM\SOFTWARE\DriverHKLM\SOFTWARE\e904a4d0-ebe5-4de6-b9b1-53fab805e876

Feuille1

Page 7

HKLM\SOFTWARE\EasyBitsHKLM\SOFTWARE\ElectronicHKLM\SOFTWARE\ExtendedHKLM\SOFTWARE\f440bd9e-fafe-4909-8958-3530ea97e93bHKLM\SOFTWARE\FRANCEHKLM\SOFTWARE\GlobalUpdateHKLM\SOFTWARE\GoogleHKLM\SOFTWARE\GPLHKLM\SOFTWARE\Hewlett-PackardHKLM\SOFTWARE\HPHKLM\SOFTWARE\HPQHKLM\SOFTWARE\ICEHKLM\SOFTWARE\InstalledBrowserExtensionsHKLM\SOFTWARE\InstalledOptionsHKLM\SOFTWARE\InstallShieldHKLM\SOFTWARE\IntelHKLM\SOFTWARE\JavaSoftHKLM\SOFTWARE\JreMetricsHKLM\SOFTWARE\LicensesHKLM\SOFTWARE\LightScribeHKLM\SOFTWARE\LucasArtsHKLM\SOFTWARE\MacromediaHKLM\SOFTWARE\Malwarebytes'HKLM\SOFTWARE\Malwarebytes'HKLM\SOFTWARE\MimarSinanHKLM\SOFTWARE\Mount&BladeHKLM\SOFTWARE\MozillaHKLM\SOFTWARE\mozilla.orgHKLM\SOFTWARE\MozillaPluginsHKLM\SOFTWARE\NeufHKLM\SOFTWARE\NikonHKLM\SOFTWARE\ODBCHKLM\SOFTWARE\OldTimerHKLM\SOFTWARE\OpenOffice.orgHKLM\SOFTWARE\OracleHKLM\SOFTWARE\OrangeHKLM\SOFTWARE\OverwolfHKLM\SOFTWARE\P2G_UpgradeHKLM\SOFTWARE\Paint.NETHKLM\SOFTWARE\PanasonicHKLM\SOFTWARE\PDR_UpgradeHKLM\SOFTWARE\PiriformHKLM\SOFTWARE\pixologyHKLM\SOFTWARE\RealtekHKLM\SOFTWARE\RegisteredApplicationsHKLM\SOFTWARE\ResearchHKLM\SOFTWARE\RTLSetupHKLM\SOFTWARE\SamsungHKLM\SOFTWARE\SearchProtectHKLM\SOFTWARE\SecureDigitalServicesHKLM\SOFTWARE\Skype

Feuille1

Page 8

HKLM\SOFTWARE\SoftwareHKLM\SOFTWARE\SpeedBitHKLM\SOFTWARE\SunHKLM\SOFTWARE\SupDpHKLM\SOFTWARE\SynapticsHKLM\SOFTWARE\SynthesiaHKLM\SOFTWARE\TeamViewerHKLM\SOFTWARE\ThomsonHKLM\SOFTWARE\Trad-FRHKLM\SOFTWARE\TrolltechHKLM\SOFTWARE\TurbineHKLM\SOFTWARE\VolatileHKLM\SOFTWARE\WebBarHKLM\SOFTWARE\webtogoHKLM\SOFTWARE\WidcommHKLM\SOFTWARE\WindowsHKLM\SOFTWARE\WinRARHKLM\SOFTWARE\YahooHKCU\SOFTWARE\1CHKCU\SOFTWARE\AC3FilterHKCU\SOFTWARE\AdobeHKCU\SOFTWARE\AlterGeoHKCU\SOFTWARE\AOLHKCU\SOFTWARE\APNHKCU\SOFTWARE\AppDataLowHKCU\SOFTWARE\AppleHKCU\SOFTWARE\AppleHKCU\SOFTWARE\AvgHKCU\SOFTWARE\BadooHKCU\SOFTWARE\BinaryHKCU\SOFTWARE\BitTorrentHKCU\SOFTWARE\BlizzardHKCU\SOFTWARE\BoxoreHKCU\SOFTWARE\BugsplatHKCU\SOFTWARE\ChromiumHKCU\SOFTWARE\Classes.crxHKCU\SOFTWARE\ClassesBHKCU\SOFTWARE\CoinisRevShareHKCU\SOFTWARE\ComNotificationV13.05HKCU\SOFTWARE\CTPWHKCU\SOFTWARE\cybelsoftHKCU\SOFTWARE\CyberLinkHKCU\SOFTWARE\DevNetHKCU\SOFTWARE\DivXNetworksHKCU\SOFTWARE\EasyBitsHKCU\SOFTWARE\ElectronicHKCU\SOFTWARE\ExtendedHKCU\SOFTWARE\FRANCEHKCU\SOFTWARE\GamesHKCU\SOFTWARE\GameSpyHKCU\SOFTWARE\globalUpdate

Feuille1

Page 9

HKCU\SOFTWARE\GoldenGateHKCU\SOFTWARE\GoogleHKCU\SOFTWARE\Hewlett-PackardHKCU\SOFTWARE\HookNetworkHKCU\SOFTWARE\HPHKCU\SOFTWARE\Hs4ktZma8SbHKCU\SOFTWARE\IADirectShowHKCU\SOFTWARE\IMHKCU\SOFTWARE\ImageViewerHKCU\SOFTWARE\ImgBurnHKCU\SOFTWARE\InstalledBrowserExtensionsHKCU\SOFTWARE\IntelHKCU\SOFTWARE\InterVideoHKCU\SOFTWARE\IrisHKCU\SOFTWARE\JavaSoftHKCU\SOFTWARE\JEDI-VCLHKCU\SOFTWARE\kde.orgHKCU\SOFTWARE\keyhole.comHKCU\SOFTWARE\KromtechHKCU\SOFTWARE\LicensesHKCU\SOFTWARE\LightScribeHKCU\SOFTWARE\LinkeyHKCU\SOFTWARE\LocalHKCU\SOFTWARE\MacromediaHKCU\SOFTWARE\MainConceptHKCU\SOFTWARE\Malwarebytes'HKCU\SOFTWARE\MaxComputerCleanerLanguageHKCU\SOFTWARE\MediachanceHKCU\SOFTWARE\MimarSinanHKCU\SOFTWARE\MirageHKCU\SOFTWARE\MountAndBladeWarbandKeysHKCU\SOFTWARE\MozillaHKCU\SOFTWARE\MozillaPluginsHKCU\SOFTWARE\NetscapeHKCU\SOFTWARE\NikonHKCU\SOFTWARE\OBHKCU\SOFTWARE\ODBCHKCU\SOFTWARE\OpenOffice.orgHKCU\SOFTWARE\OperaHKCU\SOFTWARE\Paint.NETHKCU\SOFTWARE\PanasonicHKCU\SOFTWARE\PatchouHKCU\SOFTWARE\PetroglyphHKCU\SOFTWARE\PiriformHKCU\SOFTWARE\PvmHKCU\SOFTWARE\QtProjectHKCU\SOFTWARE\ResearchHKCU\SOFTWARE\ROBLOXHKCU\SOFTWARE\RRx4T3rw2UR2fgmfHKCU\SOFTWARE\SamsungHKCU\SOFTWARE\SecuROM

Feuille1

Page 10

---\\

HKCU\SOFTWARE\SimplyTechHKCU\SOFTWARE\SkypeHKCU\SOFTWARE\SmartHKCU\SOFTWARE\SOFT32HKCU\SOFTWARE\SoftthinksHKCU\SOFTWARE\SoftwareHKCU\SOFTWARE\StoreHKCU\SOFTWARE\SuperSoftwarePackageHKCU\SOFTWARE\SynapticsHKCU\SOFTWARE\SynthesiaHKCU\SOFTWARE\TeamViewerHKCU\SOFTWARE\TeleChargerHKCU\SOFTWARE\TrolltechHKCU\SOFTWARE\UnityHKCU\SOFTWARE\VSRevoGroupHKCU\SOFTWARE\Wargaming.netHKCU\SOFTWARE\WidcommHKCU\SOFTWARE\WinampHKCU\SOFTWARE\WinRARHKCU\SOFTWARE\WinRARHKCU\SOFTWARE\WToolsHKCU\SOFTWARE\YahooHKCU\SOFTWARE\ZebHelpProcessHKCU\SOFTWARE\AppDataLow\AurigmaHKCU\SOFTWARE\AppDataLow\SoftwareHKCU\SOFTWARE\AppDataLow\Software\AdobeHKCU\SOFTWARE\AppDataLow\Software\AmazonHKCU\SOFTWARE\AppDataLow\Software\GoogleHKCU\SOFTWARE\AppDataLow\Software\JavaSoftHKCU\SOFTWARE\AppDataLow\Software\MacromediaHKCU\SOFTWARE\AppDataLow\Software\MarkAnyHKCU\SOFTWARE\AppDataLow\Software\MonitoredHKCU\SOFTWARE\AppDataLow\Software\OrangeHKCU\SOFTWARE\AppDataLow\Software\settingsHKCU\SOFTWARE\AppDataLow\Software\TheBestDealsHKCU\SOFTWARE\AppDataLow\Software\UnityHKCU\SOFTWARE\AppDataLow\Software\Yahoo

O43O43O43O43O43O43O43O43O43O43O43O43

Feuille1

Page 11

O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43O43

Feuille1

Page 12


Feuille1

Page 13


Feuille1

Page 14


Feuille1

Page 15


Feuille1

Page 16


Feuille1

Page 17

---\\

---\\

O43O43O43O43O43O43

O53O53O53O53O53O53O53O53

O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58

Feuille1

Page 18

---\\

O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58O58

O61O61O61

Feuille1

Page 19

---\\

---\\

---\\

O61O61O61

O67

O68O68O68O68O68O68O68O68O68O68O68O68

O69O69O69O69O69O69

Feuille1

Page 20

Rapport:

NavigateursMozillaInternet

InformationsWindowsLicence

Logiciels

Logiciels

SurveillanceFlash

Informations

RAM:

ModeComputerUser

DriveDrive

UAC:DÃ©marrageWIN_VISTA,

Automatic

Anti-MalwareSecuritySecurity

v4.03

Reader

OperatingOperatingBoot

SystemSystem

Logged

EnumÃ©ration

EtatCenter\Svc]Center\Svc]Center\Svc]NoClose:DisableTaskMgr:EnableLUA:CheckedValue:

Feuille1

Page 21

Application:

Type:

Recherche-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Processus-0

-0-0-0

Mozilla-0-0-0-0-0-0-0-0-0-0

CheckedValue:

NT\CurrentVersion\Winlogon]NT\CurrentVersion\Windows]

Update\Results\Install]

Google

Feuille1

Page 22

-0-0-0-0-0

Internet-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Internet-0-0-0-0-0

Analyse-0-0-0

Le

-0

Applications-0-0-0-0-0-0-0-0-0

Hosts

Browser

Feuille1

Page 23

-0-0

-0-0-0-0-0-0-0-0-0

Modification-0-0-0

Liste-0-0-0-0-0-0

-0-0-0-0-0-0-0-0-0-0-0-0-0

Winsock

TÃ¢ches[APT][APT][APT][APT][APT][APT][APT][APT][APT][APT]

Feuille1

Page 24

-0-0-0-0-0-0-0-0

Logiciels-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Feuille1

Page 25

-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Computer,

Robot

HKCU

Toolbar

Inc.

fellows

Feuille1

Page 26

Arts

In

Systems

TELECOM

Ghostscript

Anti-MalwareAnti-Malware

Warband

Tools

Feuille1

Page 27

Computer,

Noise

Data

Arts

Microsystems

PIP

Inc.Secure

Entertainment

SystemsTELECOM

Feuille1

Page 28

Software

InCorporation

Providers

AppWizard-Generated

Anti-Malware

Feuille1

Page 29

Contenu-0-0-0-0-0-0-0-0-0-0-0-0

Projects

SFX

Helper

Feuille1

Page 30

-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Feuille1

Page 31

-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Feuille1

Page 32

-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Feuille1

Page 33

-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Feuille1

Page 34

-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Feuille1

Page 35

-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Feuille1

Page 36

-0-0-0-0-0-0

-0-0-0-0-0-0-0-0

Liste-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

EnumÃ©ration

Feuille1

Page 37

-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Derniers-0-0-0

Feuille1

Page 38

-0-0-0

Associations-0

Menu-0-0-0-0-0-0-0-0-0-0-0-0

Recherche-0-0-0-0-0-0

Feuille1

Page 39

du32-bit

InternetFirefoxExplorer

sur

Script

deversionClient

d'optimisation

de

X

sur

mode:3074.224

drive

de

in

desC:D:

du

OKOKOK

C:\Users\Domi\AppData\Roaming\ZHP\ZHPDiag.txtActivate

Server

Updates

Essentials

Player

System:System:

Restore:

Name:Name:

AntiSpywareOverride:AntiVirusOverride:FirewallOverride:

Modified

Feuille1

Page 40

OKOK

OK

Chrome,

Firefox,

Shell:Load:

LastSuccessTime

particuliÃ¨re(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft

lancÃ©s(.Broadcom

GCE:GCE:GCE:

MFSP:EXTEXT:EXT:EXT:EXT:EXT:EXT:EXT:EXT:

Feuille1

Page 41

Explorer,

Explorer,

des

filefichier

EXT:EXT:FPN:FPN:FPN:

HKCU\SOFTWARE\Microsoft\InternetHKLM\SOFTWARE\Microsoft\InternetHKCU\SOFTWARE\Microsoft\InternetHKCU\SOFTWARE\Microsoft\InternetHKCU\SOFTWARE\Microsoft\InternetHKLM\SOFTWARE\Microsoft\InternetHKLM\SOFTWARE\Microsoft\InternetHKLM\SOFTWARE\Microsoft\InternetHKLM\SOFTWARE\Microsoft\InternetHKLM\SOFTWARE\Microsoft\InternetHKCU\SOFTWARE\Microsoft\InternetHKCU\SOFTWARE\Microsoft\InternetHKLM\SOFTWARE\Microsoft\InternetURLSearchHook:HKCU\SOFTWARE\Microsoft\Internet

HKCU\Software\Microsoft\Windows\CurrentVersion\InternetHKCU\Software\Microsoft\Windows\CurrentVersion\InternetHKCU\Software\Microsoft\Windows\CurrentVersion\InternetHKCU\Software\Microsoft\Windows\CurrentVersion\InternetHKCU\Software\Microsoft\Windows\CurrentVersion\Internet

REG:system.ini:REG:system.ini:REG:system.ini:

HelperBHO:

lancÃ©esHKLM\..\Run:HKLM\..\Run:HKLM\..\Run:HKLM\..\Run:HKLM\..\Run:HKLM\..\Run:HKLM\..\Run:HKLM\..\Run:HKLM\..\Run:

Feuille1

Page 42

Domaine/Adresses

desService:Service:Service:Service:Service:Service:

[Adobe

[Driver

HKCU\..\Run:HKUS\S-1-5-21-1768449568-3379944238-3116535841-1000\..\Run:

hijackerWLSP:\Catalog_Entries\000000000001\WinsockWLSP:\Catalog_Entries\000000000002\WinsockWLSP:\Catalog_Entries\000000000003\WinsockWLSP:\Catalog_Entries\000000000004\WinsockWLSP:\Catalog_Entries\000000000005\WinsockWLSP:\Catalog_Entries\000000000006\WinsockWLSP:\Catalog_Entries\000000000007\WinsockWLSP:\Catalog_Entries\000000000008\WinsockWLSP:\Catalog_Entries\000000000033\Winsock

HKLM\System\CCS\Services\Tcpip\Parameters:HKLM\System\CS1\Services\Tcpip\Parameters:HKLM\System\CS3\Services\Tcpip\Parameters:

planifiÃ©es

[CCleanerSkipUAC]

[EDPLQYG1][GoogleUpdateTaskUserS-1-5-21-1768449568-3379944238-3116535841-1000Core][GoogleUpdateTaskUserS-1-5-21-1768449568-3379944238-3116535841-1000UA][Hs4ktZma8Sb][MaxComputerCleaner_Start][RAFZERK][RRx4T3rw2UR2fgmf]APT:APT:APT:APT:APT:APT:APT:APT:APT:APT:APT:APT:APT:

Feuille1

Page 43

Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:

APT:APT:APT:APT:APT:APT:APT:APT:

installÃ©s

Feuille1

Page 44

Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:Logiciel:

&Err :510Err :510

Err :510

Err :510

Inc.

Feuille1

Page 45

Err :510

Err :510

Err :510

(Trial)

Motion

Err :510

Feuille1

Page 46

Err :510

Err :510

Err :510

Err :510

Inc.

Update

Feuille1

Page 47

Err :510

Err :510Applications

Err :510

Motion

Feuille1

Page 48

Err :510

Err :510

Err :510

desCFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:

Feuille1

Page 49

CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:CFD:

Feuille1

Page 50


Feuille1

Page 51


Feuille1

Page 52


Feuille1

Page 53


Feuille1

Page 54


Feuille1

Page 55

des

des

CFD:CFD:CFD:CFD:CFD:CFD:

SMSR:HKLM\...\startupreg\APSDaemonSMSR:HKLM\...\startupreg\HPAdvisorSMSR:HKLM\...\startupreg\MalwarebytesSMSR:HKLM\...\startupreg\MsnMsgrSMSR:HKLM\...\startupreg\OrangeSMSR:HKLM\...\startupreg\QuickTimeSMSR:HKLM\...\startupreg\SunJavaUpdateSchedSMSR:HKLM\...\startupreg\uTorrent

SDL:2008/01/21SDL:2008/01/21SDL:2008/01/21SDL:2008/01/21SDL:2009/02/27SDL:2008/01/21SDL:2008/01/21SDL:2008/12/20SDL:2006/11/02SDL:2006/11/02SDL:2006/11/02SDL:2006/11/02SDL:2006/11/02SDL:2006/11/02SDL:2009/02/27SDL:2006/11/02SDL:2008/01/21SDL:2008/01/21SDL:2008/01/21SDL:2007/06/18SDL:2008/01/21SDL:2008/10/28SDL:2006/11/02SDL:2008/09/22SDL:2006/11/02SDL:2006/11/02SDL:2008/01/21SDL:2008/01/21SDL:2008/01/21SDL:2015/06/18SDL:2015/06/18SDL:2015/08/04SDL:2008/01/21

Feuille1

Page 56

fichiers

SDL:2008/01/21SDL:2006/11/02SDL:2015/06/18SDL:2008/01/21SDL:2006/11/02SDL:2006/11/02SDL:2008/01/21SDL:2008/01/21SDL:2009/02/03SDL:2009/02/03SDL:2011/11/29SDL:2008/01/21SDL:2006/11/02SDL:2008/12/23SDL:2006/11/02SDL:2008/01/21SDL:2006/11/02SDL:2006/11/02SDL:2006/11/02SDL:2008/12/05SDL:2008/01/21SDL:2006/11/02SDL:2008/01/21SDL:2009/02/27SDL:2008/01/21SDL:2006/11/02SDL:2008/08/29SDL:2008/08/29SDL:2008/08/29SDL:2008/08/29SDL:2006/11/02SDL:2006/11/02SDL:2010/09/09SDL:2006/11/02SDL:2006/11/02SDL:2006/11/02SDL:2006/11/02SDL:2006/11/02SDL:2006/11/02SDL:2006/11/02SDL:2006/11/02SDL:2006/11/02SDL:2006/11/02SDL:2006/11/02SDL:2006/11/02SDL:2006/11/02

LFC:LFC:LFC:

Feuille1

Page 57

de

d'infection

LFC:LFC:LFC:

ShellShell

StartMenuInternet:StartMenuInternet:StartMenuInternet:StartMenuInternet:StartMenuInternet:StartMenuInternet:StartMenuInternet:StartMenuInternet:StartMenuInternet:StartMenuInternet:StartMenuInternet:StartMenuInternet:

SBI:SBI:SBI:SBI:SBI:SBI:

Feuille1

Page 58

Service

(2)39.0

les

File:

protection2.1.8.1057

(1)

Logiciels18

le

Normal

C:

connexion

as

CentreOKOKOK

systÃ¨me:

v9.0.8112.16421

License

v4.8.0204.0v4.8.204.0

x86

MBActivÃ©

PC-DE-SOPHIEDomi

unitÃ©shashas

Feuille1

Page 59

OKOK

:

deCorporationCorporationCorporationCorporationCorporationCorporationCorporationCorporationCorporationCorporationCorporationCorporationCorporationCorporationCorporationCorporationCorporationCorporationCorporationCorporationCorporationCorporationCorporation

(1)Corporation.

FILE:

DÃ©marrage,Recherche,ExtensionsPreferencePreferencePreference

Plugins,Demarrage,Recherche,Extensionsprefs.js

(...)(...)(...)(...)(...)(...)(...)(...)

Feuille1

Page 60

Explorer\Main,Extensions

(no

Proxy

lignes

redirection

e-Carte

au[Windows

(.Mozilla(.WOT[HKLM][HKLM][HKLM]

DÃ©marrage,Recherche,URLSearchHook,Explorer\Main,StartExplorer\Main,StartExplorer\Main,Default_Page_URLExplorer\Main,Default_Search_URLExplorer\Main,SearchExplorer\Main,SearchExplorer\Main,Default_Page_URL

Explorer\Main,SecurityExplorer\Main,Default_Search_URLExplorer\Search,Default_Search_URLExplorer\SearchUrl,DefaultExplorer\AboutURLs,Tabs

Explorer\PhishingFilter,Enabled

Settings,ProxyOverrideSettings,MigrateProxySettings,EnableHttp1_1Settings,ProxyHttp1.1Settings,AutoConfigProxy

UserInit=C:\Windows\system32\userinit.exeShell=C:\Windows\explorer.exeVMApplet=rundll32

hÃ´te

Object

[SynTPEnh][QlbCtrl.exe][Persistence][IgfxTray][HotKeysCmds][MSC][RIMBBLaunchAgent.exe][HP

Feuille1

Page 61

DNS

servicesAdobeBluetooth

France

enFlash

Robot]

AdobeDriver

Adobe

Driver

[Google[Google

(LayeredLSPLSPLSPLSPLSPLSPLSPLSPLSP

DhcpNameServerDhcpNameServerDhcpNameServer

FsUsbExService

Recovery

(.Piriform

(...)(.Google(.Google(...)(...)(...)(...)

EDPLQYG1GoogleUpdateTaskUserS-1-5-21-1768449568-3379944238-3116535841-1000CoreGoogleUpdateTaskUserS-1-5-21-1768449568-3379944238-3116535841-1000UAHs4ktZma8SbRRx4T3rw2UR2fgmf

CCleanerSkipUACOrphean

EDPLQYG1GoogleUpdateTaskUserS-1-5-21-1768449568-3379944238-3116535841-1000Core

Feuille1

Page 62

AdobeAdobeAdobe

MozillaMozilla

Shop

Adobe

GoogleUpdateTaskUserS-1-5-21-1768449568-3379944238-3116535841-1000UAHs4ktZma8SbMaxComputerCleaner_StartRAFZERKRRx4T3rw2UR2fgmfOrpheanOrpheanOrphean

(O42)

BlackBerryCCleanerAcrobat.comIntel(R)HPHPHPCyberLinkPower2GoPowerDirectorIsoBusterMalwarebytesMicrosoft

PicasaRevoSFR

SynapticsVirtualisWinRARCyberLinkJavaFXHPOpenOffice.orgMicrosoftHPESUMicrosoftCiscoPower2GoMa-Config.comMicrosoft

swMSMMicrosoftPaint.NET

Feuille1

Page 63

32SoftwareAdobeAdobe

Windows

HPAcrobat.comHPHPDiagnosticAlertVC80CRTRedistCiscoArcSoft

QuickTimeCiscoBlackBerryAtherosMicrosoftPowerDirector

NikonHPWIDCOMMPHOTOfunSTUDIOApplePictureProjectGoogleMyFreeCodecÂµTorrent

HKLM

Feuille1

Page 64

Feuille1

Page 65

Err :510

Feuille1

Page 66

Feuille1

Page 67

dossiers2015/05/142015/05/142015/05/142015/05/142015/05/142010/07/192009/10/242012/02/292013/07/152009/10/242015/05/152009/10/24

Feuille1

Page 68

2013/07/032014/10/062009/06/062012/09/022011/06/212012/09/032013/07/032012/09/182015/05/152010/02/012012/03/022015/05/172009/06/072014/10/062012/04/242009/10/242015/08/042010/12/292011/01/312013/07/032012/09/062006/11/022011/10/072013/02/162015/05/142015/05/142012/12/242009/10/222012/12/242009/11/132012/10/102012/09/182010/08/132015/07/042015/07/042006/11/022012/08/162009/06/062013/04/082015/05/142012/07/032014/10/062011/10/012013/08/202012/12/242012/04/082012/08/162012/07/272010/05/012013/06/272015/05/15

Feuille1

Page 69

2006/11/022012/08/232012/09/182012/02/292009/10/242015/05/142014/01/282009/11/112012/09/052015/05/142009/10/242014/04/022012/04/082006/11/022010/04/272013/07/032009/12/142014/10/062012/07/032010/02/102010/02/102010/02/102014/04/062012/04/122015/08/022009/06/062010/02/102010/02/122010/02/102013/02/182011/04/232015/05/152012/08/072012/04/082009/10/242013/05/072012/07/032008/01/212014/11/152012/09/182009/06/072012/04/222009/10/252006/11/022015/05/162012/10/102012/08/162009/06/302009/06/062013/04/082012/12/24

Feuille1

Page 70

2009/07/292009/06/302010/05/012013/06/272009/02/262009/06/062014/01/282009/11/112015/06/102012/07/032013/02/182015/05/162015/05/142015/05/162013/08/022011/12/262012/09/022013/06/272006/11/022009/03/182010/02/012009/06/062012/04/232009/11/222006/11/022012/09/022006/11/022012/09/232009/06/072011/12/202009/06/062006/11/022012/02/272014/10/062009/06/072012/09/182009/09/302009/10/242014/10/012012/08/312009/06/062014/04/062015/05/172009/06/062012/07/042012/07/052012/07/042014/10/062014/03/132012/12/242009/07/07

Feuille1

Page 71

2012/08/232013/07/172014/10/042006/11/022010/05/182011/05/032009/03/182006/11/022013/06/022009/11/042010/10/292013/10/242009/09/302009/11/082013/01/132009/09/252011/04/232012/08/302010/03/112013/07/122013/11/142010/10/072012/09/022011/06/232014/05/142009/10/292009/06/072009/06/072012/02/072009/10/242014/04/062009/06/302012/12/242012/09/022012/12/182010/12/292006/11/022006/11/022013/02/272012/07/112009/10/062009/09/252012/08/232008/01/012014/01/252015/05/162013/07/162012/09/032012/09/052012/08/232009/10/24

Feuille1

Page 72

2013/11/142013/11/142009/06/172008/01/012015/02/282009/07/072009/10/242009/06/062009/09/302009/06/062013/07/312008/01/012009/06/062010/04/062009/10/242009/06/062015/05/152013/07/052015/05/142012/07/272014/05/092010/06/182014/01/302010/04/162012/08/232013/06/012012/09/162012/02/072014/10/042011/05/032010/05/012014/04/022013/04/082010/09/302013/11/242015/02/252008/01/012013/02/192010/04/102015/08/042015/06/102012/09/022012/09/232009/06/062008/01/012010/04/062011/02/022010/02/032015/05/142015/08/022015/05/14

Feuille1

Page 73

2015/05/152011/02/022012/08/232012/09/062015/08/042015/05/142012/09/032009/11/072009/06/062012/02/272015/05/142012/07/052015/05/142013/12/282009/11/172008/01/012013/07/172012/07/042012/02/292011/12/192015/08/042012/12/242009/07/062012/02/242012/08/232015/05/102013/07/172008/01/012015/05/152009/10/222014/06/282015/05/162010/09/302008/01/012015/08/042014/10/032009/06/062012/04/082008/01/012015/07/212009/06/302013/10/242015/05/142013/12/282008/01/012008/01/012008/01/012008/01/012008/01/012008/01/012011/12/17

Feuille1

Page 74

2012/10/302010/05/012014/10/062015/05/162008/01/012008/01/01

Installer

pilotes

clÃ©s

Anti-Malware

Task

04:32:4604:32:5104:32:5204:32:5306:43:1004:32:4904:32:5001:01:4610:24:4510:24:4610:25:2410:24:4410:24:4410:24:4706:43:1011:50:1104:32:5004:32:4804:32:5217:12:0404:32:4910:29:3611:50:1707:49:3611:50:0711:50:0904:32:4904:32:5104:32:4808:41:3608:41:4221:03:5404:32:53

Feuille1

Page 75

2015/08/042015/08/042015/08/04

04:32:5211:49:5908:41:5004:32:4511:50:1909:36:5004:32:4704:32:4716:07:4016:07:4204:28:2804:32:5011:50:3513:47:5208:37:2104:32:5211:50:0511:49:5611:50:0300:55:1404:32:4511:50:3504:32:4906:43:1004:32:4909:30:5610:49:0410:49:0610:49:0610:49:0609:09:4209:09:4509:43:2009:09:4109:09:4409:09:4409:09:2909:09:3509:09:3809:09:4009:09:3109:09:2009:09:2309:09:2409:09:2609:09:22

modifiÃ©s

Feuille1

Page 76

2015/07/282015/07/282015/08/04

sur

SpawningSpawning:

dÃ©marrage

Feuille1

Page 77

NormalPack

-0

produitsManager

OK

(3)

-0

(2)

32-bit(Normal(66%

au

disques65

1

de

(x86

GÃ©nÃ©ration

NPAPI

systÃ¨meFamily

(Enable)has

Administrator

Feuille1

Page 78

OK

fichiers-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

-0-0

[User[User[User

----------------

(G0,G1,G2)

[Domi(...)

Feuille1

Page 79

-0Services

PagePage==BarPage=Off

====

=

Management=====

est

deBleue

.

.

.

.

.

.

.Software

[@adobe.com/FlashPlayer][@microsoft.com/WLPG,version=15.4.3502.0922][@RIM.com/WebSLLauncher,version=1.0]

Phishing

Risk

name)

F0,(.Microsoft(.Microsoftshell32,Control_RunDLL

(O1)

dÃ©marrageDefender]

Feuille1

Page 80

ServiceFileFileFileFileFileFileFileFileFile

===

Service

Service

automatique

--

--------FlashRobot

-0-0-0-0-0

Flash-0-0

Robot-0-0

Update]Update]

(O17)

NTAcrobat

(FsUsbExService)Telecom(MBAMService)

PlayerLtd.)(...)

Inc..)Inc..)

Feuille1

Page 81

-0-0-0-0-0-0-0-0

(68)AIRFlashFlash

-0-0

-0-0

2.6

FirefoxMaintenance

3

-0for

4.20

2.1.1

3.4

for

-0-0

AIR-0

Desktop

GraphicsPhotosmartPrintOCRYouCam

Anti-MalwareSecurity

Uninstaller

PointingCrÃ©dit

YouCam

Update

AntimalwareQuick

WorksEAP-FAST

Security

Securityv3.5.11

Feuille1

Page 82

-0

-0-0

PanoramaBit

Shockwave-0

Driver

-07

Message

Bluetooth8.0Application

-0Chrome

-0-0

Software

Common

Deskjet

LEAP

UpdateReader

PEAPDesktop

Automated

Photosmart

Feuille1

Page 83

Feuille1

Page 84

Feuille1

Page 85

Feuille1

Page 86

Programs/ProgramFiles/ProgramData/AppData21:08:1921:08:1921:08:1921:08:1913:23:3610:29:5010:39:0823:59:2314:16:1009:31:0923:18:5910:39:13

Feuille1

Page 87

09:31:5712:09:0714:16:4116:44:0511:26:4908:33:2709:31:0312:07:4723:16:0722:28:0916:47:1607:21:5712:17:5911:55:1410:56:2913:00:3417:02:4712:03:3509:31:4009:59:3309:34:4014:35:5109:25:4217:55:3406:14:4314:35:0809:01:1215:47:3209:01:1211:14:2205:35:5915:30:2506:44:3808:33:3208:33:3214:35:5118:10:3314:19:4317:53:1912:14:0317:17:1312:04:5820:45:2318:52:1509:01:2109:38:0314:30:4620:56:4315:25:2717:13:2823:15:02

Feuille1

Page 88

14:35:5120:41:1316:13:0122:01:1310:54:0110:28:1509:59:5515:41:0109:04:0009:36:1210:39:3415:49:1417:34:5414:58:1817:24:3008:48:5415:28:3111:44:5617:06:1822:30:3722:30:3722:30:3012:48:3212:06:0622:37:0214:16:4122:30:3604:19:3822:30:3722:24:4009:49:1123:25:1409:49:2318:04:0510:39:3916:10:2117:07:2404:56:2723:38:4212:09:1012:18:1809:59:1409:38:3714:52:5307:11:2705:36:0018:10:3418:46:0014:19:4317:53:1909:01:50

Feuille1

Page 89

15:07:1418:46:4415:25:2717:13:2323:44:5814:19:4010:00:1015:41:0313:18:4717:10:0322:24:5008:21:4109:46:0508:21:4510:08:2119:30:0016:19:3817:12:4414:59:4404:42:4922:35:0814:16:4121:47:5520:12:1114:59:4416:33:4114:59:4407:53:1916:45:2516:20:4414:16:4114:59:4411:08:5112:03:1317:19:2412:08:3507:58:0713:00:3109:11:4214:03:5314:16:4112:40:3107:34:3414:16:4119:29:5309:49:4022:24:5410:59:1808:19:1109:07:2618:22:26

Feuille1

Page 90

21:11:2714:58:5914:19:0014:59:4415:39:5808:48:3905:16:5114:59:4405:39:5317:53:5406:24:3209:40:1508:02:2916:39:3318:03:4307:32:3409:45:4714:15:3522:14:5512:21:3222:48:5508:38:1016:19:5413:27:5808:02:1312:20:2517:08:4617:09:3920:54:1610:46:2412:39:3918:36:0009:01:4716:33:3512:53:5412:04:0213:18:3313:18:3318:42:5909:09:0615:29:1507:35:1121:11:2818:04:2616:12:0008:21:4516:02:4806:48:4607:30:2420:56:5912:37:11

Feuille1

Page 91

22:49:0622:49:0618:21:4418:04:2618:22:2613:53:3808:48:5514:25:0508:02:2914:19:4609:44:2118:04:4014:24:2917:07:0309:30:4814:40:1503:46:4211:08:2612:12:2211:31:2308:09:3013:59:2100:55:5313:10:2620:43:4016:09:0001:39:1120:57:1314:18:4808:47:0614:33:0516:39:1217:58:4115:31:1412:26:5418:54:1118:04:4109:41:4713:14:2822:11:2313:12:0416:19:4108:03:1814:16:5118:04:2417:10:0916:45:0200:20:5713:23:4821:58:4409:46:24

Feuille1

Page 92

22:53:3016:44:4520:55:1609:35:0222:06:4709:57:4109:14:1018:13:4814:16:5111:12:3609:46:2622:06:4314:01:3119:48:1812:57:0418:04:2415:27:5819:29:5822:39:5417:54:3713:58:1809:02:3418:50:0912:26:3421:15:4110:23:5714:59:0018:04:2522:53:2812:38:3915:58:2308:21:4515:31:0518:04:2522:11:0910:48:4314:16:5122:14:1218:04:2513:26:1918:50:3609:40:2813:23:4719:48:1418:04:4018:04:4018:04:4018:04:4018:04:4018:04:4011:18:01

Feuille1

Page 93

de

duAAAANAAAAAAAAANAAAAAAAAAAAAAAAAAA

09:01:0715:25:2711:44:5808:03:1518:04:4018:04:40

[Key][Key](cleanup)[Key]

[Key][Key]

Feuille1

Page 94

AAAAAAAANNNAAAAAAAAAAAANAAAAAAAAAAAAAAAAAAAAAA

ou14:16:4014:09:5913:04:47

Feuille1

Page 95

Internet

Feuille1

Page 96

(Normal2

fr)

WindowsScript:(Auto)

-0

-0

(6)6

65

(2)

0s

2s

boot)free)

systÃ¨me

GBGB

SÃ©curitÃ©

Feuille1

Page 97

ExplorateurProcessusApplicationExtensionsApplication

CD-ROM

Pilote

Windows

PilotePiloteRAS

Pilote

Bluetooth

(3)

-0--

gÃ©nÃ©riques

DLLAncillaryATAPI

SCSIDFSHigh

IP

MBT

MicrosoftSMBTDI

0s

Data\Default]Data\Default]Data\Default]

(P2,M0,M1,M2,M3)

C:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\Program

Feuille1

Page 98

-0-0-0

==

==

PagePage

-01

111

Corporation.)Corporation.)

(1)sain

navigateur

du

Default.)Oy

(R0,R1,R3,R4)

www.google.comhttp://www.microsoft.com/

www.google.com

www.google.comhttp://www.bing.com/http://www.bing.com/res://ieframe.dll/tabswelcome.htm

(R5)

wininet.dll

F1,

sysdm.cpl

Browser

%ProgramFiles%\Windows(.Synaptics,(.Hewlett-Packard(.Intel(.Intel(.Intel(.Microsoft(.ResearchUpdate]

Feuille1

Page 99

.

.

.

.

.

.

.

.

.

.

.

(3)192.168.1.1192.168.1.1192.168.1.1

non

.

.for

----

----

-0

-0

Provider)

Update(btwdins)

Routing

(O39)Updater]

C:\ProgramData\LolliScan\LolliScan.exe

C:\Users\Domi\AppData\Roaming\Hs4ktZma8Sb.exeC:\ProgramC:\ProgramData\18b7a06c9f5a43a4b293b8ab47ed27ff\18b7a06c9f5a43a4b293b8ab47ed27ff.exeC:\Users\Domi\AppData\Roaming\RRx4T3rw2UR2fgmf.exePlayer

(...)(.Google(.Google(...)(...)Player(.Piriform(...)

(...)(.Google

Feuille1

Page 100

-0-0

Software

Software-0

-0version

39.0Service

-01.95Kit

Mutuel(32-bit)

-0-0-0-0

Service

-0Module

Client-0

Client-0

(.Google(...)(...)(...)(...)(...)(...)(...)

PlayerPlayer

(.Piriform.)(.AdobeMediaEssentialProjects

(.CyberLink(.CyberLink

Essentials

HPDevice

LaunchMicrosoft

(.CyberLink(.Cybelsoft.)

(.Adobe

Feuille1

Page 101

8.0.50727.6195Module

X

ModuleSoftwareInstallation

USB/DVDCenter

SoftwareLESupport

-0

Access(.AdobeF2400(.Microsoft.)

MakerHPHelper

Player(.Apple

Troubleshooting(.CyberLink

All-In-One

(...)

(...)(...)

Keys

Feuille1

Page 102

Feuille1

Page 103

Feuille1

Page 104

Feuille1

Page 105

-0-0-0-0-0-0-0-0-0-0-0-0

(O43)

Feuille1

Page 106

-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Feuille1

Page 107

-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Feuille1

Page 108

-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Feuille1

Page 109

-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Feuille1

Page 110

-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Feuille1

Page 111

-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0-0

Feuille1

Page 112

-0-0-0-0-0-0

registre..

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

[Key][Key]

systÃ¨me

Feuille1

Page 113

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

.

AAA

crÃ©es

Feuille1

Page 114

AAA

(1)

navigateurs-0-0-0-0-0-0

[HKLM\..\open\Command]

(SMI)Firefox>[HKLM\..\Shell\open\Command][HKLM\..\Shell\open\Command]Firefox>[HKLM\..\InstallInfo\ShowIconsCommand][HKLM\..\InstallInfo\ShowIconsCommand]Firefox>[HKLM\..\InstallInfo\ReinstallCommand][HKLM\..\InstallInfo\ReinstallCommand]Firefox>[HKLM\..\InstallInfo\HideIconsCommand][HKLM\..\InstallInfo\HideIconsCommand]

Feuille1

Page 115

(3):OK

-0

(3)

-0

Windows

boot)(Build

v39.0

1s

2s

Model

GB

freefree

Feuille1

Page 116

(23)Windows.)

deInternetd'ouvertureclient

IDEFileCD-ROM

de

Transportdude

TransportTranslationde

Support

-0

(15)

Files\MozillaFiles\MozillaFiles\MozillaFiles\MozillaFiles\MozillaFiles\MozillaFiles\MozillaFiles\Mozilla

hÃ´te

Function

NamespaceDefinition

NetworkNT

L2TPRDP

[jafdhbipfdlldljdanpnlipdinjcjjid][nfkdglgjjpicgkbfdflchobhdiblbjgf][nmmhkkegccagdldgiimedpiccmgmieda]

w0hbv0us.default-1431618661383]C:\Users\Domi\AppData\Roaming\Mozilla\Firefox\Profiles\w0hbv0us.default-1431618661383\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

Feuille1

Page 117

---0

(15)

==

(5)

-0

CorporationCorporationCorporationCorporationIn.

(.Adobe(.Microsoft.)(.Research

www.google.comwww.google.com

http://go.microsoft.com/www.google.com

{CFBFAE00-17A6-11D0-99CB-00C04FD64497}

F2,

(The

(BHO)Helper

sytÃ¨meDefender\MSASCui.exeInc.Development

Feuille1

Page 118

-0

Service.

Table

Windows

(31)

Files\Max

--

----

--

--

(.Google(.Google

(O10)(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft(.Microsoft

Microsoft

(.Teruten

(.Malwarebytes

(.AdobeC:\ProgramC:\Program(.notC:\Users\Domi\AppData\Local\Google\Update\GoogleUpdate.exeC:\Users\Domi\AppData\Local\Google\Update\GoogleUpdate.exe(.not

(.not(.notUpdater(...)

Inc..)Inc..)

UpdaterLtd.)

(...)

Inc..)

Feuille1

Page 119

--------------

1718

7.1

2.011.09.0

2.1.8.1057-0

-0

-0deSuppliesDriver

-0-0

FR-FRButtons

-0

FR-FR

-0

Inc..)

19s(.Adobe

[HKLM]SystemsAccelerator

(.CyberLinkCorp..)Corp..)(.Smart

(x86

(.Google,

(.CyberLink(.Oracle(.Hewlett-Packard.)(.OpenOffice.org.)

Vista(.Microsoft

Corp..)[HKLM]

(.AdobeSystems,

(.dotPDN

Feuille1

Page 120

Service

-0-03

-0(10.1.4)

-0

-07.1

Services

-0Software6.2.0.5800

-0-0

(212)

SystemsAll-in-One[HKLM]

CIO

Inc..)

Program

Corp..)Download

[HKLM](.Google[HKCU][HKCU]

Feuille1

Page 121

Feuille1

Page 122

Feuille1

Page 123

Feuille1

Page 124

(324)[0][0][0][][][][][][][][][]

Feuille1

Page 125

[0][0][0][][][][][][][][0][][][][0][][][][][0][][][][0][][0][][][][][][][][][][][][][][0][][][][][][][0][][][][0]

Feuille1

Page 126

[][][][][][0][][][][][][][][0][][0][][][][][][][][][][][][][][][][][][][][][][][][][][0][][][][][][][][][]

Feuille1

Page 127

[][][][][][][][][][][][0][][][][0][][][0][][][0][][][0][][0][][][][0][0][][0][][][][][][][0][][][0][][][][0][0][][]

Feuille1

Page 128

[][][][0][][][][0][0][][][][][][][][0][][][][][][][0][][][][][][][][][][][][][][][][][][][][][][0][][][0][][]

Feuille1

Page 129

[][][][][][][][][][][][][][][][][][][][][][][0][0][][][][][][][][][][0][][][][][][][][][][0][][][][][0][0][]

Feuille1

Page 130

[0][0][][][][][][][0][][][][][][][][][][][][][][0][][][][0][][][][][0][][][][][0][][][0][][][0][][][][][][][][0]

Feuille1

Page 131

[0][0][][][][]

.

.

StartupReg(.Apple(...)[Key](...)

(...)(.BitTorrent,

(SDL)(.Adaptec,(.Adaptec,(.Adaptec,(.Adaptec,(.Acer(.Adaptec,(.Adaptec,(.Atheros(.Brother(.Brother(.Brother(.Brother(.Brother(.Brother(.CMD(.Adaptec,(.Intel(.Emulex(.Hewlett-Packard(.Hewlett-Packard(.Intel(.Intel(.Intel(.Intel(R)(.Integrated(.Integrated(.LSI(.LSI(.LSI(.Malwarebytes(.Malwarebytes(.Malwarebytes(.LSI

Feuille1

Page 132

(Utilisateur)...

(.LSI(.LSI(.Malwarebytes(.Intel(.IBM(.N-trig(.NVIDIA(.NVIDIA(.Printing(.Printing(.Sonic(.QLogic(.QLogic(.Realtek(.Macrovision(.Silicon(.LSI(.LSI(.LSI(.Synaptics,(.ULi(.Promise(.Promise(.VIA(.VIA(.Marvell(.ZTE(.ZTE(.ZTE(.ZTE(...)(...)(...)(...)(...)(...)(...)(...)(...)(...)(...)(...)(...)(...)(...)(...)

Feuille1

Page 133

.

.

.

-0

internet

(.Microsoft

(O68)(.MozillaChrome>[HKLM\..\Shell\open\Command](.Microsoft(.MozillaChrome>[HKLM\..\InstallInfo\ShowIconsCommand](.Microsoft(.MozillaChrome>[HKLM\..\InstallInfo\ReinstallCommand](.Microsoft(.MozillaChrome>[HKLM\..\InstallInfo\HideIconsCommand](.Microsoft

w0hbv0us.default-1431618661383]w0hbv0us.default-1431618661383]w0hbv0us.default-1431618661383]w0hbv0us.default-1431618661383]w0hbv0us.default-1431618661383]w0hbv0us.default-1431618661383]

Feuille1

Page 134

6002)

-0OK

15

-0

(13)

0s

free

0sofof

Feuille1

Page 135

-0()Windows

pourdedeDriver

Driver.)ClientAudioport

driver.)

port

driver.)Driver.)

PortailMenu

-0

dÃ©marrage

MiniportSystem

AddressSMB

systÃ¨me

mini-port/call-managerDevice

clichÃ©

Server.)

0s

Google

https://fr-mg42.mail.yahoo.com/neo/launch?.rand=95tajsjeme521

Firefox\browser\searchplugins\amazon-france.xmlFirefox\browser\searchplugins\bing.xmlFirefox\browser\searchplugins\cnrtl-tlfi-fr.xmlFirefox\browser\searchplugins\ddg.xmlFirefox\browser\searchplugins\eBay-france.xmlFirefox\browser\searchplugins\google.xmlFirefox\browser\searchplugins\wikipedia-fr.xmlFirefox\browser\searchplugins\yahoo-france.xml

Feuille1

Page 136

--In

-0

-0

-0

-0-0-0-0

Motion

C:\ProgramWOT.)Systems

about:noadd-onsabout:securityrisk

Orphean

F3

0shosts

(O2)Object

(O4)

Company,

(.Hewlett-Packard

Feuille1

Page 137

(9)Corporation.)Corporation.)Corporation.)Corporation.)Corporation.)Corporation.)Corporation.)Corporation.)Corporation.)

et

-0ServiceCorporation

-0

Files\Driverfile.)

file.)Computerfile.)file.)

-0--

----

-0--

--

--

Inc.Inc.

0s

(AdobeARMservice)(.Broadcom

(Recovery

SystemsFiles\CCleaner\CCleaner.exe

C:\Windows\Tasks\EDPLQYG1.job

C:\Windows\Tasks\Hs4ktZma8Sb.jobC:\Windows\Tasks\RRx4T3rw2UR2fgmf.job

C:\Windows\System32\Tasks\CreateChoiceProcessTask

C:\Windows\System32\Tasks\EDPLQYG1

Feuille1

Page 138

--

ActiveX

-0--

Driver-0-0-0

-0

fr)

connexion-0-0

Corporation.)

6.40-0

Corporation.)

--

C:\Windows\System32\Tasks\Hs4ktZma8SbC:\Windows\System32\Tasks\MaxComputerCleaner_StartC:\Windows\System32\Tasks\RAFZERKC:\Windows\System32\Tasks\RRx4T3rw2UR2fgmfC:\Windows\System32\Tasks\RunAsStdUserC:\Windows\System32\Tasks\{569012F3-360D-476F-9003-DF1A1E232A14}C:\Windows\System32\Tasks\{831583BE-F14F-41D0-80B3-46FDA9C199B0}

Systems

NPAPI

Incorporated.)

Corp..)[HKLM][HKLM]Projects.)

(.Microsoft

(.Mozilla.)Inc..)(.VS

(...)(.win.rarCorp..)

[HKLM][HKLM]Language

(.Cisco[HKLM]

LanguageSystemsInc.)(.MicrosoftLLC.)

Feuille1

Page 139

Driver--

-0

-0

-0-0

9.0-0

--

----

-0

LibraryIncorporated.)

(.DivX,(.Cisco

Components(.Google

(.Adobe[HKLM](.Cisco

Shim[HKLM]Tool(...)

(.Panasonic(.Apple

Inc..)

Feuille1

Page 140

Feuille1

Page 141

Feuille1

Page 142

Feuille1

Page 143

-0DDDDDDDDDDDD

Feuille1

Page 144

DD

DDDDD

DDDDDDDDDDDDDDDDDDDDDDDDDDDD

DDDDDDDDDDDDD

SHD

HD

RD

Feuille1

Page 145

DDDDDDDDDDDDD

DDDDDDDDDDDDDDDDDD

DDD

DDDD

DDDD

D

HD

RDRD

RDRD

RD

RDSD

Feuille1

Page 146

DDDDDDDD

DDDDDDDDD

DD

D

D

DDD

DDDDDDDD

D

DDDDDDD

RD

SHD

SHDHD

SHD

SHD

SHDSHD

SHDSD

SHD

Feuille1

Page 147

DDD

DDD

DDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDDD

DDDDDDDDD

SHD

SHD

SHDC

Feuille1

Page 148

DDDD

DDDDDDDDDDDDD

DDDDDDDD

DDDDDDDDDDDDDDD

DDDDDDD

HD

SD

RHD

SHD

Feuille1

Page 149

DDDDDDDD

DDDDDDDDDDDDDDDDDDDDDDDDDDD

DDDDDDD

DDD

D

SHD

SHD

RDRD

RD

Feuille1

Page 150

DDD

DD

--.--

--

Communications,Industries,Industries,IndustriesIndustriesIndustriesIndustries

Corporation-0

CorporationCorporation

Corporation

CorporationCorporationCorporationCorporation

RD

(SMSR)Inc.

(...)(.Apple

Inc.

(O58)Inc.Inc.Inc.Inc.LaboratoriesInc.Inc.

Technology,Inc.

CompanyDevelopment

Corp./ICP

TechnologyTechnologyLogicLogicLogic

Feuille1

Page 151

Corporation,

CorporationCorporationCorporation

CorporationCorporationCommunicationsCommunicationsSolutionsCorporationCorporationCorporationCorporation,

Technologies,Technologies

-0

Corporation

--------------------------------

Logic

Innovative

IntegratedLogicLogicLogicInc.ElectronicsTechnology,Technology,

Incorporated

IncorporatedIncorporated

(O61)(..)(..)(..)

Feuille1

Page 152

Corporation

(12)Corporation




Corporation

(..)(..)(..)

0s

(.Google

(.Google

(.Google

(.Google

(SBI)user_pref("browser.search.searchengine.alias",user_pref("browser.search.searchengine.desc",user_pref("browser.search.searchengine.iconURL",user_pref("browser.search.searchengine.name",user_pref("browser.search.searchengine.ptid",user_pref("browser.search.searchengine.uid",

Feuille1

Page 153

14210

-0

0s

Stepping

of

0s

Feuille1

Page 154

--

de

session

forDriver.)Driver.)()Driver.)Bus

()de

driver.)

()()

--

OrangeContextuelChrome

1s

(Rundll32).)

Win32.)

l'API

i8042.)Translator.)Minirdr.)

parallÃ¨le.)

redirector.)

instantanÃ©

2s

Feuille1

Page 155

Files\Mozilla--

Motion.)

-0

file

(1)-0

(11)

L.P.

-0

Incorporated.)C:\Program

0s

0s

Synaptics

persistenceigfxTrayhkcmdMicrosoftLimited

Feuille1

Page 156

-0-0

-0------------------

non.Corporation.

-0Service

FsUsbDevice.)(FTRTSVC)

5sIncorporated.)

Robot\1.1.0.14\DriverRobot.exe

Cleaner\MaxComputerCleaner.exe

(.AdobeC:\Windows\Tasks\Driver

C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1768449568-3379944238-3116535841-1000Core.jobC:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1768449568-3379944238-3116535841-1000UA.job

(.AdobeC:\Windows\System32\Tasks\CCleanerSkipUAC

C:\Windows\System32\Tasks\Driver

C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1768449568-3379944238-3116535841-1000Core

Feuille1

Page 157

-0-0

-0

----

Corporation.)-0

-0

----Pack

--

Pack

Corporation.)

C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1768449568-3379944238-3116535841-1000UA

Task

Incorporated.)

(.ResearchCCleaner[HKLM]

(.HP.)(.HP.)(.HP.)[HKLM]

[HKLM](.Malwarebytes

[HKLM][HKLM]Revo

(.HP.)(.Synaptics.)[HKLM]GmbH.)[HKLM][HKLM]

M1(.Hewlett-Packard.)[HKLM]Systems,

{425FFD94-36BD-4933-881B-FE0B9DADF2B7}

Incorporated.)[HKLM]

[HKLM]

Feuille1

Page 158

-0

14.0

Installer

--

-0--

-0

-0

Corporation.)

[HKLM]

{846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}Inc.)Systems,(.ArcSoft.)

Inc..)FranÃ§aisSystems,

Systems,(.Research(.Atheros.)

[HKLM]

(.Broadcom

Inc..){FF3999BE-1A7B-4738-88AA-97BF14094A4A}[HKCU]MyFreeCodecuTorrent

20s

Feuille1

Page 159

Feuille1

Page 160

Feuille1

Page 161

Feuille1

Page 162

------------------------

18s

Feuille1

Page 163

------------------------------------------------------------------------------------------------------

Feuille1

Page 164

------------------------------------------------------------------------------------------------------

Feuille1

Page 165

------------------------------------------------------------------------------------------------------

Feuille1

Page 166

------------------------------------------------------------------------------------------------------

Feuille1

Page 167

------------------------------------------------------------------------------------------------------

Feuille1

Page 168

------------------------------------------------------------------------------------------------------

Feuille1

Page 169

------------

-0

--

-0

(79)-0-0-0-0

-0-0

-0-0

-0

-0-0

vortex-0

Express,Express,

-0-0-0-0-0-0-0

(O53)

C:\Program(.MicrosoftC:\Program

Inc.C:\Program

Inc.

Inc.Ltd.Ltd.Ltd.Ltd.Ltd.Ltd.Inc.

Storport

Company,

Feuille1

Page 170

Corporation-0-0-0

Technologies-0-0

-0-0-0-0

-0-0-0-0

Pilote-0-0-0-0

(6)------

Inc.

Assoc.,Assoc.,

MacrovisionSystems

Inc.Inc.Inc.Inc.Inc.,Ltd

C:\Windows\System32\ANSI.SYSC:\Windows\System32\country.sysC:\Windows\System32\FsUsbExDisk.SysC:\Windows\System32\HIMEM.SYSC:\Windows\System32\KEY01.SYSC:\Windows\System32\KEYBOARD.SYSC:\Windows\System32\NTDOS.SYSC:\Windows\System32\NTDOS404.SYSC:\Windows\System32\NTDOS411.SYSC:\Windows\System32\NTDOS412.SYSC:\Windows\System32\NTDOS804.SYSC:\Windows\System32\NTIO.SYSC:\Windows\System32\NTIO404.SYSC:\Windows\System32\NTIO411.SYSC:\Windows\System32\NTIO412.SYSC:\Windows\System32\NTIO804.SYS

Feuille1

Page 171

------

-0

-0-0

-0-0

-0-0

-0-0

-0

Inc.

Inc.

Inc.

Inc.

(O69)oursurfing)this is my first firefox searchEngine)http://www.oursurfing.com/favicon.ico)oursurfing)cmi)WDCXWD1600BEVT-60ZCT1_WD-WXE209PUA161UA161)

Feuille1

Page 172

13

142

GBGB

0s

Feuille1

Page 173

()Windows.)()Windows.)

()()--()Driver.)()()()--fichiers()()()----du

Orange

C:\Windows\Explorer.exe

uilisateurWinSock.)

C:\Program

manifest

Feuille1

Page 174

--Files\Windows--

Err :510

-0

-0

-0Module.)Module.)Module.)

-0

Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}C:\Users\Domi\AppData\Roaming\Mozilla\Firefox\Profiles\w0hbv0us.default-1431618661383\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}

IniFiles,

is

{2E03C0FD-4C48-43A7-9A54-00240C70FF16}

TouchPad

Security

hpwuSchd

Feuille1

Page 175

ProgrammeProgramme

-0-0

.

for

--

[116648][116648]

Robot.job

Robot

0sC:\Windows\System32\wpclsp.dllC:\Windows\System32\wpclsp.dllC:\Windows\System32\wpclsp.dllC:\Windows\System32\wpclsp.dllC:\Windows\System32\wpclsp.dllC:\Windows\System32\wpclsp.dllC:\Windows\System32\wpclsp.dllC:\Windows\System32\wpclsp.dllC:\Windows\System32\wpclsp.dll

dÃ©sactivÃ©s(.Adobe

Malwarebytes

(.not

(.not

Systems

Systems

Feuille1

Page 176

In

--

--

--Corporation.)

----

--

----

-0-0

--

-0

--

--

[HKLM](.Adobe(.Adobe

(.Intel[HKLM][HKLM][HKLM]

InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}

[HKLM](.Mozilla.)

Group.)(.SFR.)[HKLM][HKLM]

[HKLM]

{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}{2F90A789-DD1E-41CE-BFCA-BD78213BABC7}

[HKLM]

Inc..){40BF1E83-20EB-11D8-97C5-0009C5020658}

[HKLM]

[HKLM]

Feuille1

Page 177

--Rel.

-0

-0

In

--

Corporation.)

--

(.Hewlett-Packard.)

[HKLM]Inc..)[HKLM]

[HKLM]

Inc..){B67BAFBA-4C9F-48FA-9496-933E3B255044}Inc..)

[HKLM](...){CB099890-1D5F-11D5-9EA9-0050BAE317E1}(.Microsoft

(.HP.)

[HKLM][HKLM]

Feuille1

Page 178

Feuille1

Page 179

Feuille1

Page 180

Feuille1

Page 181

C:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\Program

Feuille1

Page 182

C:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\Program

Feuille1

Page 183

C:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\Start

Feuille1

Page 184

C:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\Microsoft\Windows\StartC:\ProgramData\18b7a06c9f5a43a4b293b8ab47ed27ffC:\ProgramData\7c0535b143fc4671b6ebd202fbffe066C:\ProgramData\acnExVZC:\ProgramData\AdobeC:\ProgramData\AlwilC:\ProgramData\AppleC:\ProgramData\AppleC:\ProgramData\ApplicationC:\ProgramData\AtherosC:\ProgramData\BlizzardC:\ProgramData\BureauC:\ProgramData\CommonC:\ProgramData\CyberLinkC:\ProgramData\DesktopC:\ProgramData\DivXC:\ProgramData\DocumentsC:\ProgramData\DownloadedC:\ProgramData\EBPC:\ProgramData\f-secureC:\ProgramData\FavorisC:\ProgramData\FavoritesC:\ProgramData\GoogleC:\ProgramData\HappyCloudC:\ProgramData\Hewlett-PackardC:\ProgramData\HPC:\ProgramData\HPC:\ProgramData\ma-config.comC:\ProgramData\MalwarebytesC:\ProgramData\McAfeeC:\ProgramData\MenuC:\ProgramData\MicrosoftC:\ProgramData\MicrosoftC:\ProgramData\ModÃ¨lesC:\ProgramData\MozillaC:\ProgramData\NortonC:\ProgramData\NortonInstallerC:\ProgramData\OracleC:\ProgramData\OrangeC:\ProgramData\PanasonicC:\ProgramData\QuickTime

Feuille1

Page 185

C:\ProgramData\ResearchC:\ProgramData\SamsungC:\ProgramData\SkypeC:\ProgramData\StartC:\ProgramData\SunC:\ProgramData\SymantecC:\ProgramData\TempC:\ProgramData\TemplatesC:\ProgramData\TurbineC:\ProgramData\UABC:\ProgramData\VirtualizedApplicationsC:\ProgramData\VSC:\ProgramData\WEBREGC:\ProgramData\WildTangentC:\ProgramData\WindowsSearchC:\ProgramData\WLInstallerC:\ProgramData\Yahoo!C:\ProgramData\{AB2D8F2E-F7AD-4446-A11A-50D846B2CF2A}C:\ProgramData\{dd9a9e7625afb6d9307f2cd8e4c1abd8}C:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\ProgramC:\Users\Domi\AppData\Roaming\.minecraftC:\Users\Domi\AppData\Roaming\.monoC:\Users\Domi\AppData\Roaming\39464E43-1431604033-5230-485A-00238B8ED55AC:\Users\Domi\AppData\Roaming\AdobeC:\Users\Domi\AppData\Roaming\AppleC:\Users\Domi\AppData\Roaming\avgC:\Users\Domi\AppData\Roaming\BlackberryC:\Users\Domi\AppData\Roaming\Blitware

Feuille1

Page 186

C:\Users\Domi\AppData\Roaming\com.zoosk.DesktopC:\Users\Domi\AppData\Roaming\com.zoosk.Desktop.096E6A67431258A508A2446A847B240591D2C99B.1C:\Users\Domi\AppData\Roaming\CyberLinkC:\Users\Domi\AppData\Roaming\dvdcssC:\Users\Domi\AppData\Roaming\GoldenGateC:\Users\Domi\AppData\Roaming\GoogleC:\Users\Domi\AppData\Roaming\GTekC:\Users\Domi\AppData\Roaming\hewlett-packardC:\Users\Domi\AppData\Roaming\HPC:\Users\Domi\AppData\Roaming\HPC:\Users\Domi\AppData\Roaming\HpUpdateC:\Users\Domi\AppData\Roaming\IconesC:\Users\Domi\AppData\Roaming\IdentitiesC:\Users\Domi\AppData\Roaming\ImgBurnC:\Users\Domi\AppData\Roaming\InstallShieldC:\Users\Domi\AppData\Roaming\MacromediaC:\Users\Domi\AppData\Roaming\MailUpdateC:\Users\Domi\AppData\Roaming\MalwarebytesC:\Users\Domi\AppData\Roaming\MicrosoftC:\Users\Domi\AppData\Roaming\Mount&BladeC:\Users\Domi\AppData\Roaming\MozillaC:\Users\Domi\AppData\Roaming\OpenOffice.orgC:\Users\Domi\AppData\Roaming\OrangeC:\Users\Domi\AppData\Roaming\PeerNetworkingC:\Users\Domi\AppData\Roaming\ResearchC:\Users\Domi\AppData\Roaming\RovioC:\Users\Domi\AppData\Roaming\SamsungC:\Users\Domi\AppData\Roaming\SecuROMC:\Users\Domi\AppData\Roaming\SkypeC:\Users\Domi\AppData\Roaming\SoftGridC:\Users\Domi\AppData\Roaming\SynthesiaC:\Users\Domi\AppData\Roaming\TeamViewerC:\Users\Domi\AppData\Roaming\TemplateC:\Users\Domi\AppData\Roaming\TPC:\Users\Domi\AppData\Roaming\UnityC:\Users\Domi\AppData\Roaming\uTorrentC:\Users\Domi\AppData\Roaming\vlcC:\Users\Domi\AppData\Roaming\WinRARC:\Users\Domi\AppData\Roaming\WormuxC:\Users\Domi\AppData\Roaming\ZHPC:\Users\Domi\AppData\Local\AdobeC:\Users\Domi\AppData\Local\AppleC:\Users\Domi\AppData\Local\AppleC:\Users\Domi\AppData\Local\ApplicationC:\Users\Domi\AppData\Local\ApplicationHistoryC:\Users\Domi\AppData\Local\AppsC:\Users\Domi\AppData\Local\assemblyC:\Users\Domi\AppData\Local\BlizzardC:\Users\Domi\AppData\Local\BreakingNewsAlertC:\Users\Domi\AppData\Local\CrashDumpsC:\Users\Domi\AppData\Local\CrashRpt

Feuille1

Page 187

C:\Users\Domi\AppData\Local\deniC:\Users\Domi\AppData\Local\DeploymentC:\Users\Domi\AppData\Local\DownloadedC:\Users\Domi\AppData\Local\ElevatedDiagnosticsC:\Users\Domi\AppData\Local\GameoC:\Users\Domi\AppData\Local\globalUpdateC:\Users\Domi\AppData\Local\GoogleC:\Users\Domi\AppData\Local\Hewlett-PackardC:\Users\Domi\AppData\Local\HistoriqueC:\Users\Domi\AppData\Local\HPC:\Users\Domi\AppData\Local\InstallerC:\Users\Domi\AppData\Local\MacromediaC:\Users\Domi\AppData\Local\Max_Computer_CleanerC:\Users\Domi\AppData\Local\MicrosoftC:\Users\Domi\AppData\Local\MicrosoftC:\Users\Domi\AppData\Local\MicrosoftC:\Users\Domi\AppData\Local\MigWizC:\Users\Domi\AppData\Local\MozillaC:\Users\Domi\AppData\Local\MPlayerC:\Users\Domi\AppData\Local\OrangeC:\Users\Domi\AppData\Local\Paint.NETC:\Users\Domi\AppData\Local\PanasonicC:\Users\Domi\AppData\Local\PixologyC:\Users\Domi\AppData\Local\PunkBusterC:\Users\Domi\AppData\Local\ResearchC:\Users\Domi\AppData\Local\RobloxC:\Users\Domi\AppData\Local\SamsungC:\Users\Domi\AppData\Local\Scrabble3DC:\Users\Domi\AppData\Local\Setup904587C:\Users\Domi\AppData\Local\SevenC:\Users\Domi\AppData\Local\SkypeC:\Users\Domi\AppData\Local\SmartWebC:\Users\Domi\AppData\Local\SoftGridC:\Users\Domi\AppData\Local\SolidC:\Users\Domi\AppData\Local\TempC:\Users\Domi\AppData\Local\Temp(441)C:\Users\Domi\AppData\Local\TemporaryC:\Users\Domi\AppData\Local\TheC:\Users\Domi\AppData\Local\TurbineC:\Users\Domi\AppData\Local\UnityC:\Users\Domi\AppData\Local\VirtualStoreC:\Users\Domi\AppData\Local\VSC:\Users\Domi\AppData\Local\WebBarC:\Users\Domi\AppData\Local\WindowsC:\Users\Domi\AppData\Roaming\Microsoft\Windows\StartC:\Users\Domi\AppData\Roaming\Microsoft\Windows\StartC:\Users\Domi\AppData\Roaming\Microsoft\Windows\StartC:\Users\Domi\AppData\Roaming\Microsoft\Windows\StartC:\Users\Domi\AppData\Roaming\Microsoft\Windows\StartC:\Users\Domi\AppData\Roaming\Microsoft\Windows\StartC:\Users\Domi\AppData\Roaming\Microsoft\Windows\Start

Feuille1

Page 188

(8)

CorporationFiles\Windows

-0

-0

-0

-0-0-0-0-0-0-0-0

Pilote

SmartL.P.

C:\Users\Domi\AppData\Roaming\Microsoft\Windows\StartC:\Users\Domi\AppData\Roaming\Microsoft\Windows\StartC:\Users\Domi\AppData\Roaming\Microsoft\Windows\StartC:\Users\Domi\AppData\Roaming\Microsoft\Windows\StartC:\Users\Domi\AppData\Roaming\Microsoft\Windows\StartC:\Users\Domi\AppData\Roaming\Microsoft\Windows\Start

AppleFiles\Hewlett-Packard\HP

C:\Program

Files\CommonÂµTorrent.)

AdaptecAdaptecAdaptecAdaptec

AdaptecAdaptec

Adaptec

Miniport

IntelIntelGmbHIntel(R)Inc.Inc.LSILSILSIMalwarebytesMalwarebytesMalwarebytesMEGASAS

Feuille1

Page 189

-0-0

-0

Europe-0

-0-0-0-0-0

USBUSBUSBUSB

-0

MalwarebytesIntelÂ®IBM

NVIDIAÂ®NVIDIAÂ®Inc.Inc.PxQLogicQLogicRealtek

LSILSILSISynaptics

miniport

C:\Users\Domi\Downloads\mbam2log_1(1).exeC:\Users\Domi\Downloads\mbam2log_1.exeC:\Users\Domi\Downloads\OneClick2RP.exe

Feuille1

Page 190

Lanceur

Firefox.)-0

InternetFirefox

-0UtilitaireFirefox

-0UtilitaireFirefox

-0Utilitaire

(10)

C:\Users\Domi\AppData\Local\Google\Update\Install\{F97BF20E-534D-46BD-A948-B12F99C9AC66}\44.0.2403.125_43.0.2357.134_chrome_updater.exeC:\Users\Domi\AppData\Local\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\44.0.2403.125\44.0.2403.125_43.0.2357.134_chrome_updater.exeC:\Users\Domi\AppData\Local\Adobe\Acrobat\10.0\UserCache.bin

0s

Feuille1

Page 191

GenuineIntel

GB

Feuille1

Page 192

[2926592]--()--()de()----

--()------

------

volume.)

C:\Windows\System32\drivers\Cdrom.sys

C:\Windows\System32\drivers\netBT.sysNT.)

C:\Windows\System32\drivers\smb.sysC:\Windows\System32\drivers\tdx.sys

Files\WIDCOMM\Bluetooth

Feuille1

Page 193

Live\Photo

Internet

.

------Client

Application.)

C:\Windows\System32\Macromed\Flash\NPSWF32_18_0_0_209.dll

C:\Program

Autoloading

clean)

1s

0s

Enhancements.)Quick

Launch

Feuille1

Page 194

d'installationd'installation

Bluetooth

Windows)

[3611416]file.)[0]

[0]file.)[0][0]

[328]

[990][1000]

[3162]

[2850]

(Hijacker.Winsock)(Hijacker.Winsock)(Hijacker.Winsock)(Hijacker.Winsock)(Hijacker.Winsock)(Hijacker.Winsock)(Hijacker.Winsock)(Hijacker.Winsock)(Hijacker.Winsock)

(O23)Systems

C:\Windows\System32\FsUsbExService.Exe(.FranceAnti-Malware.)

C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe

Incorporated.)

Incorporated.)

Feuille1

Page 195

[4022][3214][3562][4032]

[3180][3042]

--

Motion

Corporation.)------

--

----

--

--

--

--

SystemsSystems

com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1

InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}

IsoBuster_is1[HKLM]

[HKLM]MozillaMaintenanceServicePicasa[HKLM][HKLM]

Virtualis

{01FB4998-33C4-4431-85ED-079E3EEFE75D}{1111706F-666A-4037-7777-211328764D10}

(.Microsoft(.Hewlett-Packard.)

{3B160861-7250-451E-B5EE-8B92BF30A710}[HKLM]

(.Microsoft

{612C34C7-5E90-47D8-9B5C-0F717DD82726}

{72EF03F5-0507-4861-9A44-D99FD4C41417}

Feuille1

Page 196

6

--

--

--

Motion--

Corporation.)

----

[HKLM]{77DCDCE3-2DED-62F3-8154-05E745472D07}

[HKLM]

(.Hewlett-Packard.)

(.Adobe[HKLM]

[HKLM]

[HKLM]

{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}[HKLM][HKLM]

Google

Feuille1

Page 197

Feuille1

Page 198

Feuille1

Page 199

Feuille1

Page 200

Files\AdobeFiles\Adobe(0)

Files\13c0c15a-7b86-4a21-b72b-22bb68b6e93fFiles\450c05ba-477a-44b0-bcc7-f474e2d95235Files\8fe2edcd-623c-40b1-ad3f-f290027245f7

Files\AlwilFiles\ArcSoftFiles\AtherosFiles\CCleanerFiles\CiscoFiles\CommonFiles\CyberLink

Feuille1

Page 201

Files\EAFiles\Fichiers

Files\Internet

Files\Java

Files\MozillaFiles\Mozilla

Files\OracleFiles\Orange

Files\PC

Files\DevNet

Files\GoogleFiles\GPLGSFiles\Hewlett-PackardFiles\Hosts_Anti_Adwares_PUPsFiles\HPFiles\InstallShieldFiles\IntelFiles\InterActual

Files\Inventel

Files\LucasArtsFiles\ma-config.comFiles\MalwarebytesFiles\MarkAnyFiles\MessengerFiles\MicrosoftFiles\MicrosoftFiles\MicrosoftFiles\MicrosoftFiles\MicrosoftFiles\MicrosoftFiles\MicrosoftFiles\MicrosoftFiles\MicrosoftFiles\MicrosoftFiles\MicrosoftFiles\MicrosoftFiles\Microsoft.NETFiles\Movie

Files\MSBuildFiles\MyFreeFiles\OnlineFiles\OpenOffice.orgFiles\Opera

Files\OrangeHSSFiles\Paint.NETFiles\PanasonicFiles\Pando

Files\Picasa2Files\PvmFiles\QuickTimeFiles\Realtek

Feuille1

Page 202

Files\Smart

Files\Software

Files\Turbine

Files\VS

Files\WindowsFiles\WindowsFiles\WindowsFiles\WindowsFiles\WindowsFiles\WindowsFiles\WindowsFiles\WindowsFiles\WindowsFiles\Windows

Files\ReferenceFiles\ResearchFiles\SamsungFiles\SearchGBYFiles\SecuritooFiles\setupFiles\SFR

Files\SMINST

Files\SynapticsFiles\TeamViewer

Files\UninstallFiles\uTorrentFiles\VideoLANFiles\Virtualis

Files\WIDCOMM

Files\WinRARFiles\Yahoo!Files\ZHPDiagMenu\Programs\AccessoriesMenu\Programs\AdministrativeMenu\Programs\ArcSoftMenu\Programs\BlackBerryMenu\Programs\CDexMenu\Programs\ExtrasMenu\Programs\GamesMenu\Programs\HPMenu\Programs\LiveboxMenu\Programs\LucasArtsMenu\Programs\ma-config.comMenu\Programs\MaintenanceMenu\Programs\MicrosoftMenu\Programs\MicrosoftMenu\Programs\MyFreeMenu\Programs\NikonMenu\Programs\OnlineMenu\Programs\OpenOffice.orgMenu\Programs\Panasonic

Feuille1

Page 203

Software

ComputerData

Files

Installations

Menu\Programs\PicasaMenu\Programs\PictureProjectMenu\Programs\PvmMenu\Programs\QuickTimeMenu\Programs\RecoveryMenu\Programs\ServicesMenu\Programs\SFRMenu\Programs\SmartMenu\Programs\StartupMenu\Programs\SynthesiaMenu\Programs\WinRAR

Product

DÃ©marrer

Help

Feuille1

Page 204

In

Menu

Computer

Revo

Files\CommonFiles\CommonFiles\CommonFiles\CommonFiles\CommonFiles\CommonFiles\CommonFiles\CommonFiles\CommonFiles\CommonFiles\CommonFiles\CommonFiles\CommonFiles\CommonFiles\CommonFiles\CommonFiles\CommonFiles\CommonFiles\CommonFiles\CommonFiles\CommonFiles\CommonFiles\CommonFiles\Common

Desktop

Feuille1

Page 205

In

Client

ComputerData

TCS

Warband

Entertainment

Feuille1

Page 206

Installations

In

Zip

ClientState

InternetLord

Live

GamesHelp

Revo

Menu\Programs\AccessoriesMenu\Programs\AdministrativeMenu\Programs\CyberLinkMenu\Programs\CyberLinkMenu\Programs\GoogleMenu\Programs\MaintenanceMenu\Programs\My

Feuille1

Page 207

-0

-0

Files\Orange\Orange

Files\Java\Java--

WindowsWindows

RAIDSAS

WindowsWindowsPilote

Ultra

Driver

-0

-0

-0-0

RAID

Menu\Programs\OrangeMenu\Programs\PvmMenu\Programs\RevoMenu\Programs\StartupMenu\Programs\WindowsMenu\Programs\WinRAR

Push.)Advisor\HPAdvisor.exe

Live\Messenger\MsnMsgr.Exe

QuickTime

77s

LHStorPortALi

Atheros

BrotherBrotherBrotherCMD

dÃ©sÃ©rialisÃ©

Array

MatrixGraphics

High

LogicLogicLogicAnti-Malware.)ChameleonAnti-Malware.)

Feuille1

Page 208

Web

Pilote

Fibre

PromisePromiseVIAVIA

LSIMegaRAID

WirelessServeRAID

nForce(TM)nForce(TM)(PCAUSA)(PCAUSA)Engine

iSCSI8101E/8168/8169Limited,SiSLogicLogicLogicTouchpadULi

NDIS6.0Modem/SerialNDISModem/SerialModem/Serial

13s

Feuille1

Page 209

du

--

Explorer.)

d'initialisation

d'initialisation

d'initialisation

-0

Google

Helper.)Google

Helper.)Google

Helper.)Google

Feuille1

Page 210

(System)

Feuille1

Page 211

[44544]--

[1129472]--Windows m.)--

[19944][70144]

[67072][75264]

--[54784][100864][106496]

[185856]() --

[79360][76288][248832]

[66560][72192]() --

[555560]

Err :510

C:\Windows\System32\rundll32.exeC:\Windows\System32\Wininit.exe

C:\Windows\System32\wininet.dllC:\Windows\System32\Winlogon.exe

C:\Windows\System32\drivers\AFD.sysC:\Windows\System32\drivers\atapi.sysC:\Windows\System32\drivers\Cdfs.sys

C:\Windows\System32\drivers\DfsC.sysC:\Windows\System32\drivers\HDAudBus.sys

C:\Windows\System32\drivers\i8042prt.sysC:\Windows\System32\drivers\IpNat.sysC:\Windows\System32\drivers\MRxSmb.sys

C:\Windows\System32\drivers\Parport.sysC:\Windows\System32\drivers\Rasl2tp.sysC:\Windows\System32\drivers\rdpdr.sys

Software\bin\btwdins.exe

Inc.

Feuille1

Page 212

Explorer

(3)

(4)

--Buttons.)

User Interface.)Agent Service.)--

Gallery\NPWLPG.dllFiles\Common Files\Research

programs

(.Orbiscom Ltd.

C:\ProgramLaunchC:\Windows\System32\igfxpers.exeC:\Windows\System32\igfxtray.exeC:\Windows\System32\hkcmd.exe

C:\Program

Feuille1

Page 213

dede

(6) -0-0

Support

SA-0

.

Err :510

--[456]Err :510

[1022][1074]

--[2770]

[3236]Err :510

[3560]

Google.)Google.)

IncorporatedServer.)

TelecomC:\Program(.SoftThinks

C:\Windows\Tasks\Adobe

C:\Windows\System32\Tasks\Adobe

Feuille1

Page 214

[3956]

Err :510

[3300]

Adobe AIR

--

--

-- Mozilla

3----Shop for

Mutuelarchiver

Corporation.)--

--

Corporation.)

Incorporated.) [HKLM]Incorporated.) [HKLM]Ltd..) [HKLM]

[HKLM]HP PhotosmartHP PrintHPOCR

MalwarebytesMicrosoft Security

RevoSFR_Kit

SynTPDeinstKeyCrÃ©ditWinRAR

[HKLM][HKLM]{3877C901-7B90-4727-A639-B6ED2DD59D43}

{3F4BA3A2-7BE0-48EA-B4BC-CA4D842A409A}

[HKLM]{52E225FC-FCB4-41F7-837B-6E37FB05BD7B}

{6E3939AE-9996-4D07-9A30-14C78AE93576}

Feuille1

Page 215

--

-0

--

--

--

--

--

--

----

Chrome

{732A3F80-008B-4350-BD58-EC5AE98707B8}

(.HP.)

{933B4015-4618-4716-A828-5289FC03165F}{934B3B19-8193-467A-B356-E73F82647D38}

{A5F68DC8-0278-4AD8-B413-861509B5F25B}[HKLM]{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}Systems Incorporated.)

{AD72CFB4-C2BF-424E-9DF0-C7BAD1F30A11}

{BAD1449B-DF0C-4118-B76D-68C54009576C}Ltd..) [HKLM]{C3A32068-8AB1-4327-BB16-BED9C6219DC7}

{c9920352-04e6-469d-bab8-e2b9c7c75415}.sdb

[HKLM]

{D64BC2CF-0F12-47d7-B412-B4F3FD684253}{E464702F-5433-46EC-8F65-159276C0A54F}

{EF8D221C-9346-4FAA-8482-B0CF76773ABF}{F5266D28-E0B2-4130-BFC5-EE155AD514DC}

Feuille1

Page 216

Feuille1

Page 217

Feuille1

Page 218

Feuille1

Page 219

Err :510Err :510Err :510

Software

Files

Feuille1

Page 220

communs

Installation Information

Explorer

Plus! Live

OfficeOffice 15

Client

SQL

ServicesStudio

FirefoxMaintenance Service

CodecServices

3

Solution

Games

Anti-Malware

ATSGames

SecuritySilverlight

ServerSync FrameworkSynchronizationVisualWorks

Maker

NetworksConnectivity

Feuille1

Page 221

In Motion

Err :510

Information

Collaboration

LiveMail

PhotoPortable

Panorama

Office

Codec

Services3.4

Assemblies

Projects

Revo Group

Calendar

Defender

Media PlayerNT

GalleryDevices

Sidebar

ToolsMaker

and Upgrades

Works

FotoShare

Feuille1

Page 222

3

Manageren ligne

Err :510

Assistant

Projects

Feuille1

Page 223

Motion

Files\AdobeFiles\Adobe AIRFiles\Adobe(6)

Files\BlizzardFiles\DESIGNERFiles\France

In

Files\Services

Files\Windows Live

Group

Files\AppleEntertainment

TelecomFiles\Hewlett-PackardFiles\HPFiles\InstallShieldFiles\LightScribeFiles\microsoft sharedFiles\NikonFiles\PanasonicFiles\PX StorageFiles\ResearchFiles\Samsung

Files\SpeechEnginesFiles\SteamFiles\System

Files\WindowsLiveInstallerFiles\XCPCSync.OEM

Feuille1

Page 224

Err :510

Motion

Err :510

Err :510

Feuille1

Page 225

Err :510Err :510

Err :510

Err :510

Motion

Err :510

Files

Err :510

DVD Suite

Chrome

Application

Networks

of the

Group

Tools

YouCam

Feuille1

Page 226

7 USB

--file.)

Processusfile.)

--

Driver

mini IDEDriver.)

RAIDExtensibleME USBME USB

driverUSBUSB

IDE

6for

Driver.)

ManagerModeRaidAudio

SAS

--Protection Driver.)--

Driver

Uninstaller

0sC:\Program

(.nothÃ´te

(.notInstaller\OrangeInstaller.exe (.notTask.)Update\jusched.exe (.notC:\Program Files\uTorrent\uTorrent.exe

SAS/SATA StorportSATA StorportUltra160Ultra320 SCSI

StorportWS03Wireless

Brother SÃ©rieSerial

MDMSerial

PCISCSI miniport.)NDIS

LightPulseStorportHpqKbFiltr KeyboardStorageKernelIntel/ICPDefinitionITE IT8211ITE IT8212Fusion-MPT FCFusion-MPTFusion-MPT SCSI

C:\Windows\System32\drivers\mbam.sys

C:\Windows\System32\drivers\MBAMSwissArmy.sysController

Feuille1

Page 227

SoftwareRAID

Driver.)de

RAID Driver.)Performance

-0-0

Driver

32-bit-0

Driver.) --

RAID DRIVERpour

Driver.)Driver.)Driver.)Driver.)

[9029][27097][36640][4768][42809][42537][27866][29146][29370][29274][29146][33952][34672][35776][35536][34672]

[948736][948736][739397]

MegaRAIDController

Access Control.)WiFi LinkControllerintÃ©grÃ©

SataPCAUSAPCAUSA

DeviceChannel StorStorport MiniportNDIS6

MacrovisionAHCI Stor-Miniport8XX SCSIHi-Perf SCSIUltra160 SCSI

SATA ControllerUltra/Sata SeriesSATAII150 SeriesGeneric PCI

contrÃ´leurDeviceMiniportDeviceDevice

Feuille1

Page 228

[7371344][7371344][72403]

composant logiciel

Files\MozillaChrome.) ------Chrome.) --d'Internet--Chrome.) --d'Internet--Chrome.) --d'Internet

Err :510Err :510Err :510Err :510Err :510Err :510

C:\Program

iexplore.exeC:\Program

Expl.)C:\Program

Expl.)C:\Program

Expl.)

8s

Feuille1

Page 229

Feuille1

Page 230

[96768]

[314368]()[273408]

[561152]

C:\Windows\System32\drivers\ntfs.sys

C:\Windows\System32\drivers\volsnap.sys

[PID.736]

Feuille1

Page 231

In

-0

--

----

All

Files\Synaptics\SynTP\SynTPEnh.exe

Files\HP\HP

Feuille1

Page 232

----

Adobe-0

-0

-0

[268976]

[0]

[0]

Flash

Flash

0s

Files\Malwarebytes

Feuille1

Page 233

------

HDMI

ClientFirefox

--

--

EssentialProjects

Anti-Malware_is1

Uninstaller

HP

{34D2AB40-150D-475D-AE32-BD23FB5EE355}

Feuille1

Page 234

--

[HKLM]

{A80FA752-C491-4ED9-ABF0-4278563160B2}

[HKLM]

{CCF298AF-9CE1-4B26-B251-486E98A34789}

Feuille1

Page 235

Feuille1

Page 236

Feuille1

Page 237

Feuille1

Page 238

Feuille1

Page 239

Compact

Feuille1

Page 240

3

Feuille1

Page 241

Feuille1

Page 242

MotionEngine

Feuille1

Page 243

Feuille1

Page 244

Rings

Feuille1

Page 245

DVD

Windows

file.)

file.)

Driver.)Driver.)

Driver.)Driver.)--Driver.)

I/F

Driver.)Driver.)Bus--de

--

driverDriver.)

HDMI.)

DriverDriverDriver

--

for

Files\Common

C:\Program

(x86).)

LANMass-StorageMass-Storage

(WDM

HBA.)

Filter

Storport

ATA/ATAPIATA

Feuille1

Page 246

RAIDDriver--Driver.)--

--Driver.)

for

Driver.)Driver.)

Driver.)

Driver.)DriverWindowsIDEFOREth.)--------

digitalisateur

NDISNDIS

Miniport

SECURITY

MiniportMiniportMiniportC:\Windows\System32\drivers\SynTP.sys

Feuille1

Page 247

enfichable

Files\Mozilla

--Files\Mozilla

--Files\Mozilla

--

Firefox\firefox.exeC:\Users\Domi\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Domi\AppData\Local\Google\Chrome\Application\chrome.exe



Feuille1

Page 248

Feuille1

Page 249

--

[1082232]

[224640]

Feuille1

Page 250

Software

Motion\BBWebSLLauncher\NPWebSLLauncher.dll

0s

rights

C:\Program

c:\ProgramC:\Program

Feuille1

Page 251

C:\Users\Domi\AppData\Local\Google\Update\GoogleUpdate.exeC:\Users\Domi\AppData\Local\Google\Update\GoogleUpdate.exe

AcrobatC:\Program

.)Anti-Malware\mbamservice.exeSTServices.)

Player

Player

Feuille1

Page 252

AdobeAdobe

39.0

Supplies

BlackBerry_Desktop

{32E9C1A5-0FDA-4483-987D-DBABF9CC1DD8}

{50779A29-834E-4E36-BBEB-B7CABC67A825}

Feuille1

Page 253

--

--

{BE5B0450-DCCB-4FE9-93E2-3B38D88A745B}

Feuille1

Page 254

Feuille1

Page 255

Feuille1

Page 256

Feuille1

Page 257

Feuille1

Page 258

Edition

Feuille1

Page 259

Feuille1

Page 260

Feuille1

Page 261

Feuille1

Page 262

Feuille1

Page 263

Online

Feuille1

Page 264

----------

--

version).)----Driver.)

la--

Driver.)(base).)--Driver.)--

RAID

Windows.)

Download

Files\Apple\Apple

(Rundll32).)

Files\QuickTime\QTTask.exe

C:\Windows\System32\drivers\arc.sys

deviceBulk-OnlyBulk-Only(WDM).)

C:\Windows\System32\drivers\djsvs.sys

C:\Windows\System32\drivers\HpCISSs.sys

SCSI

(StorPort).)(StorPort).)(StorPort).)

C:\Windows\System32\drivers\mbamchameleon.sys

Feuille1

Page 265

Driver.)for

--

de

--5.05.0WindowsDriver.)----Driver.)--Driver.)Driver.)Driver.)

--forDrivers.)Bus

--

C:\Windows\System32\drivers\mwac.sys

C:\Windows\System32\drivers\nfrd960.sys

C:\Windows\System32\drivers\nvraid.sys

AMD-X86-64.)

C:\Windows\System32\drivers\ZTEusbmdm6k.sysC:\Windows\System32\drivers\ZTEusbnet.sysC:\Windows\System32\drivers\ZTEusbnmea.sysC:\Windows\System32\drivers\ZTEusbser6k.sys

Feuille1

Page 266

Ob.)

Firefox\uninstall\helper.exe

C:\Windows\System32\ie4uinit.exeFirefox\uninstall\helper.exe

C:\Windows\System32\ie4uinit.exeFirefox\uninstall\helper.exe

C:\Windows\System32\ie4uinit.exe

Feuille1

Page 267

Feuille1

Page 268

[20480]C:\Windows\System32\fr-FR\user32.dll.mui

Feuille1

Page 269

-0reserved.

Files\Hewlett-Packard\HP Quick

Files\Microsoft SecurityFiles\Common Files\ResearchUpdate\HPWuSchd2.exe

Feuille1

Page 270

Service.)

-0

-0

Err :510

UpdateFiles\WIDCOMM\Bluetooth Software\bin\btwdins.exe

C:\Program

C:\Program

Updater.job

Updater

Feuille1

Page 271

FlashFlash

fr)

PlayerPlayer

(x86

Feuille1

Page 272

{819CA3BC-2FF8-4811-B42F-421F7BFD3559}

{AC76BA86-7AD7-1036-7B44-AA1000000001}

Feuille1