Rapport de ZHPDiag v1.31.31 par Nicolas Coolman, Update du 19/10/2012 Run by angel at 23/10/2012 21:15:38 Web site : http://nicolascoolman.skyrock.com/ State : Version à jour. UAC : Not Found or deactivate by user ---\\ Web Browser MSIE: Internet Explorer v9.10.8250.0 MFIE: Mozilla Firefox 15.0.1 v15.0.1 (Defaut) GCIE: Google Chrome v22.0.1229.94 ---\\ Windows Product Information ~ Langage: Français Unknown Windows Ultimate Edition, 32-bit (Build 8250) Windows Server License Manager Script : OK ~ ion : Windows(R) Operating System, RETAIL channel Windows ID Activation : OK ~ Windows Partial Key : BKG7J Windows License : OK ~ Windows Remaining Initializations Number : 1000 Software Protection Service (Protection logicielle) : OK Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ System Information ~ Processor: x86 Family 15 Model 72 Stepping 2, AuthenticAMD ~ Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 3070 MB (74% free) System Restore: Activé (Enable) System drive C: has 37 GB (50%) free of 73 GB ---\\ Logged in mode ~ Computer Name: ADVMR ~ User Name: angel ~ All Users Names: angel, Administrateur, ~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89 Logged in as Administrator ---\\ Environnement Variables ~ System Unit : C:\ ~ %AppData% : C:\Users\a\AppData\Roaming\ ~ %Desktop% : C:\Users\a\Desktop\ ~ %Favorites% : C:\Users\a\dwhelper\Favorites\ ~ %LocalAppData% : C:\Users\a\AppData\Local\ ~ %StartMenu% : C:\Users\a\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\System32\ ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 37 Go of 73 Go) D:\ CD-ROM drive (Not Inserted) E:\ Hard drive, Flash drive, Thumb drive (Free 12 Go of 76 Go) F:\ CD-ROM drive (Not Inserted) ---\\ Security Center & Tools Informations ~ UAC deactivate by user [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyComputer: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ~ Scan Security Center in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.E3B79A4BC5823337D81682703AAFE714] - (.Microsoft Corporation - Explorateur Windows.) (.18/02/2012 - 07:20:44.) -- C:\Windows\Explorer.exe [2077272] [MD5.AD618BE35FE7475F8A335BF59C674002] - (.Microsoft Corporation - Application de démarrage de Windows.) (.18/02/2012 - 07:09:29.) -- C:\Windows\System32\Wininit.exe [101376] [MD5.72AE4A2E73E8DFF87094C7DBD479C918] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.18/02/2012 - 07:08:47.) -- C:\Windows\System32\wininet.dll [1760768] [MD5.1E3B3EE8C4836509134B8A6AF8A438CF] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.28/03/2012 - 02:55:09.) -- C:\Windows\System32\Winlogon.exe [393728] [MD5.F9DC23B7EC34A83BCCAD508A17DDBA19] - (.Microsoft Corporation - Bibliothèque de licences.) (.18/02/2012 - 07:08:18.) -- C:\Windows\System32\sppcomapi.dll [246272] [MD5.8EE826DE760F4D51DBCFC5419EF80882] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.18/02/2012 - 08:00:10.) -- C:\Windows\system32\Drivers\AFD.sys [436224] [MD5.2A11F10D52E227CDA3BEFF44B3A7840F] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.18/02/2012 - 07:36:22.) -- C:\Windows\system32\Drivers\atapi.sys [23352] [MD5.3F9E1367FC9120AC766184180254267D] - (.Microsoft Corporation - CD-ROM File System Driver.) (.18/02/2012 - 06:25:13.) -- C:\Windows\system32\Drivers\Cdfs.sys [87552] [MD5.3621168FDD36E7F49C38D92175529E73] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.18/02/2012 - 06:20:53.) -- C:\Windows\system32\Drivers\Cdrom.sys [136192] [MD5.CF1778994C83625F5E363185132410FE] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.18/02/2012 - 06:21:38.) -- C:\Windows\system32\Drivers\DfsC.sys [91648] [MD5.EB5B50212B7C1C89B94052613E46CC34] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.18/02/2012 - 06:21:44.) -- C:\Windows\system32\Drivers\HDAudBus.sys [60928] [MD5.818E35E0D179013CA9A546DC8E4DE905] - (.Microsoft Corporation - Pilote de port i8042.) (.18/02/2012 - 06:23:07.) -- C:\Windows\system32\Drivers\i8042prt.sys [89600] [MD5.F5F46B501E55CFB0086F061FB85C750F] - (.Microsoft Corporation - IP Network Address Translator.) (.18/02/2012 - 06:16:35.) -- C:\Windows\system32\Drivers\IpNat.sys [123392] [MD5.F604DE6153A4702EE70EDB84B2013459] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.18/02/2012 - 06:16:58.) -- C:\Windows\system32\Drivers\MRxSmb.sys [293376] [MD5.091208B94E078B41AEA0C932BDE2D3A7] - (.Microsoft Corporation - MBT Transport driver.) (.18/02/2012 - 06:18:24.) -- C:\Windows\system32\Drivers\netBT.sys [249344] [MD5.DAC376DBB5B43418D883C42A743DB7EA] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.18/02/2012 - 08:00:16.) -- C:\Windows\system32\Drivers\ntfs.sys [1550136] [MD5.0070765E48CF71887882F245B1480305] - (.Microsoft Corporation - Pilote de port parallèle.) (.18/02/2012 - 06:24:52.) -- C:\Windows\system32\Drivers\Parport.sys [89600] [MD5.06B7A4DC15646C435227EEDAADAA5694] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.18/02/2012 - 06:16:56.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [88064] [MD5.E818C4A56350E786EC3840F76FC8A795] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.18/02/2012 - 06:19:24.) -- C:\Windows\system32\Drivers\rdpdr.sys [154112] [MD5.90B6FD4D1434513D030254B0D16FEB20] - (.Microsoft Corporation - TDI Translation Driver.) (.18/02/2012 - 08:00:10.) -- C:\Windows\system32\Drivers\tdx.sys [94720] [MD5.4D99FC1262B1C482EE21E05E87C6611B] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.18/02/2012 - 07:39:29.) -- C:\Windows\system32\Drivers\volsnap.sys [284984] ~ Scan Generic Processes in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 1/2 ~ Mes Favoris (My Favorites) : 1/2 ~ Mes Documents (My Documents) : 1/9 ~ Mon Bureau (My Desktop) : 1/40 ~ Menu demarrer (Programs) : 1/48 ~ Scan Hidden Files in 00mn 00s ---\\ Processus lancés [MD5.12E33DD823D74680DE6F33BFA359EFB3] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [766536] [PID.3944] [MD5.3A87ACD9A13FECB0EFA340C7F11379E2] - (.TuneUp Software - TuneUp Utilities.) -- E:\aaa\TuneUpPortable\App\TuneUp\TuneUpUtilitiesApp32.exe [1212224] [PID.3664] [MD5.4998024402D36471D7D238F3292A0F81] - (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files\AVG\AVG2013\avgui.exe [3116152] [PID.3600] [MD5.888CD92B5D3017EFDD860EE36D8B7EF4] - (.IObit - Monitors and Optimizes memory usage to incr.) -- C:\Program Files\IObit\Advanced SystemCare 5\Suo10_SmartRAM.exe [421208] [PID.3316] [MD5.1BD96C48598C0D8534E6DFB1BAF4DC13] - (.IObit - Advanced SystemCare 5 Tray.) -- C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe [574296] [PID.2864] [MD5.7C41251B396B49A32BBAD173EC43BF66] - (.Crystal Rich Ltd - USB and SATA Device Manager.) -- C:\Program Files\USB Safely Remove\USBSafelyRemove.exe [1382912] [PID.3264] [MD5.6B33FB0A4923937D952D297B92B9BE9A] - (.A-Volute - Eris3D.) -- C:\Program Files\A-Volute\Eris3D\UserInterface\Eris3D.exe [386048] [PID.4304] [MD5.83166BFFA8C4BBAC4413F47C865CC8EE] - (.Microsoft Corporation - Outil de notification de cadeaux MSN.) -- C:\Users\a\AppData\Roaming\Microsoft\Outil de notification de cadeaux MSN\msnotif.exe [183096] [PID.4624] [MD5.BC03475EC281AA1E685388896ACADE8D] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [917984] [PID.3848] [MD5.E546C3925E4A9F9B2F25A0E49C3219C1] - (.AVG Technologies CZ, s.r.o. - AVG Configuration Management Application.) -- C:\Program Files\AVG\AVG2013\avgcfgex.exe [327288] [PID.5772] [MD5.56873D899C0707AA017AA2D74EC190AE] - (...) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [3770368] [PID.5476] ~ Scan Processes Running in 00mn 00s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) C:\Users\a\AppData\Roaming\Mozilla\Firefox\Profiles\tut1562o.default\prefs.js M3 - MFPP: Plugins - [angel] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml M3 - MFPP: Plugins - [angel] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml M3 - MFPP: Plugins - [angel] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml M3 - MFPP: Plugins - [angel] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml M3 - MFPP: Plugins - [angel] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml M3 - MFPP: Plugins - [angel] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml M3 - MFPP: Plugins - [angel] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml M0 - MFSP: prefs.js [angel - tut1562o.default] www.orange.fr M2 - MFEP: prefs.js [angel - tut1562o.default\112ef6a658d3952ae725bce84ddf105a909444ce@builder.extensionfactory.com] [] Zebulon v1.2.1.0 (..) M2 - MFEP: prefs.js [angel - tut1562o.default\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}] [dwhelper] DownloadHelper v4.9.10 (.Michel Gutierrez.) P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll P2 - FPN: [HKLM] [@java.com/DTPlugin,version=1.6.0_35] - (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Windows\system32\npdeployJava1.dll P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_35 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.10411.0.) -- c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\Program Files\Microsoft Office\Office14\NPAUTHZ.dll P2 - FPN: [HKLM] [@microsoft.com/SharePoint,version=14.0] - (.Microsoft Corporation - The plug-in allows you to open and edit files using Microsoft Office a.) -- C:\Program Files\Microsoft Office\Office14\NPSPWRAP.dll P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.2] - (.VideoLAN - VLC media player Web Plugin 2.0.2.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.4.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\a\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\a\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll ~ Scan Firefox Browser in 00mn 00s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Google Inc. - Google Update.) (No version) -- (.not file.) ~ Scan IE Browser in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Scan Proxy management in 00mn 00s ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\Windows\explorer.exe F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe ~ Scan Keys in 00mn 00s ---\\ Redirection du fichier Hosts (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Scan Hosts File in 00mn 00s ~ Nombre de lignes (Lines number): 1 ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: (no name) - {0055C089-8582-441B-A0BF-17B458C2A3A8} Clé orpheline O2 - BHO: (no name) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} Clé orpheline O2 - BHO: (no name) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} Clé orpheline O2 - BHO: (no name) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} Clé orpheline O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} Clé orpheline O2 - BHO: (no name) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Clé orpheline O2 - BHO: (no name) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} Clé orpheline O2 - BHO: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} Clé orpheline O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} Clé orpheline ~ Scan BHO in 00mn 00s ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: (no name) - [HKLM]{D4027C7F-154A-4066-A1AD-4243D8127440} . (...) -- (.not file.) ~ Scan Toolbar in 00mn 00s ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [AVG_UI] . (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files\AVG\AVG2013\avgui.exe O4 - HKLM\..\Run: [vProt] C:\Program Files\AVG Secure Search\vprot.exe (.not file.) O4 - HKLM\..\Run: [ROC_roc_ssl_v12] C:\Program Files\AVG Secure Search\ROC_roc_ssl_v12.exe (.not file.) O4 - HKLM\..\Run: [ROC_ROC_JULY_P1] C:\Program Files\AVG Secure Search\ROC_ROC_JULY_P1.exe (.not file.) O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe O4 - HKCU\..\Run: [AVG PC Tuneup] . (.AVG - PC Tuneup 2011.) -- C:\Program Files\AVG\AVG PC Tuneup\BoostSpeed.exe O4 - HKCU\..\Run: [SmartRAM] . (.IObit - Monitors and Optimizes memory usage to incr.) -- C:\Program Files\IObit\Advanced SystemCare 5\Suo10_SmartRAM.exe O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe O4 - HKCU\..\Run: [AlcoholAutomount] . (.Alcohol Soft Development Team - Alcohol Virtual Drive Auto-mount Service.) -- C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe O4 - HKCU\..\Run: [Advanced SystemCare 5] . (.IObit - Advanced SystemCare 5 Tray.) -- C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe O4 - HKCU\..\Run: [USB Safely Remove] . (.Crystal Rich Ltd - USB and SATA Device Manager.) -- C:\Program Files\USB Safely Remove\USBSafelyRemove.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-21-364900717-3816137986-4006343834-1001\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe O4 - HKUS\S-1-5-21-364900717-3816137986-4006343834-1001\..\Run: [AVG PC Tuneup] . (.AVG - PC Tuneup 2011.) -- C:\Program Files\AVG\AVG PC Tuneup\BoostSpeed.exe O4 - HKUS\S-1-5-21-364900717-3816137986-4006343834-1001\..\Run: [SmartRAM] . (.IObit - Monitors and Optimizes memory usage to incr.) -- C:\Program Files\IObit\Advanced SystemCare 5\Suo10_SmartRAM.exe O4 - HKUS\S-1-5-21-364900717-3816137986-4006343834-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe O4 - HKUS\S-1-5-21-364900717-3816137986-4006343834-1001\..\Run: [AlcoholAutomount] . (.Alcohol Soft Development Team - Alcohol Virtual Drive Auto-mount Service.) -- C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe O4 - HKUS\S-1-5-21-364900717-3816137986-4006343834-1001\..\Run: [Advanced SystemCare 5] . (.IObit - Advanced SystemCare 5 Tray.) -- C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe O4 - HKUS\S-1-5-21-364900717-3816137986-4006343834-1001\..\Run: [USB Safely Remove] . (.Crystal Rich Ltd - USB and SATA Device Manager.) -- C:\Program Files\USB Safely Remove\USBSafelyRemove.exe ~ Scan Application in 00mn 00s ---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5) O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no ~ Scan IE Control Panel in 00mn 00s ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~1\Office14\ONBttnIE.dll O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~1\Office14\ONBTTN~1.dll O9 - Extra button: Notes &liées OneNote - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- C:\Program Files\Skype\Toolbars\Internet Explorer\icon.ico ~ Scan IE Extra Buttons in 00mn 00s ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll ~ Scan Winsock in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{31E546BD-4451-44CF-862A-02FF4EA4AF53}: DhcpNameServer = 192.168.170.1 O17 - HKLM\System\CCS\Services\Tcpip\..\{99ED541D-16E6-42C3-83BB-C35B5C0DC8E3}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\..\{31E546BD-4451-44CF-862A-02FF4EA4AF53}: DhcpDomain = isc.org O17 - HKLM\System\CS1\Services\Tcpip\..\{31E546BD-4451-44CF-862A-02FF4EA4AF53}: DhcpNameServer = 192.168.170.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{99ED541D-16E6-42C3-83BB-C35B5C0DC8E3}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{31E546BD-4451-44CF-862A-02FF4EA4AF53}: DhcpDomain = isc.org ~ Scan Domain in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll O18 - Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} . (...) -- O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll O18 - Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} . (.Skype Technologies S.A. - Skype Click to Call for Internet Explorer.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\Program Files\Common Files\Skype\Skype4COM.dll O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll O18 - Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll ~ Scan Protocole Additionnel in 00mn 00s ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. ~ Scan SSODL in 00mn 00s ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Advanced SystemCare Service 5 (AdvancedSystemCareService5) . (.IObit - Advanced SystemCare Service.) - C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe O23 - Service: Pare-feu AVG (avgfws) . (.AVG Technologies CZ, s.r.o. - AVG Firewall Service.) - C:\Program Files\AVG\AVG2013\avgfws.exe O23 - Service: AVGIDSAgent (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) - C:\Program Files\AVG\AVG2013\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) . (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - C:\Program Files\AVG\AVG2013\avgwdsvc.exe O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) . (.Alcohol Soft Development Team - Alcohol Virtual Drive Auto-mount Service.) - C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: Nahimic VAD Settings (NahimicVADSettingsSrv) . (...) - C:\Program Files\A-Volute\Eris3D\UserInterface\NahimicSettingsSrv.exe O23 - Service: Nahimic VAD Service (NahimicVADSrv) . (.Microsoft - NahimicVADService.) - C:\Program Files\A-Volute\Eris3D\UserInterface\NahimicVADService.exe O23 - Service: oem3.inf (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 179.4.) - C:\Windows\System32\nvvsvc.exe O23 - Service: Skype C2C Service (Skype C2C Service) . (.Skype Technologies S.A. - Skype C2C Service.) - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: Stardock Start8 (Start8) . (.Stardock Software, Inc - Stardock Start8 Service.) - C:\Program Files\Stardock\Start8\Start8Srv.exe O23 - Service: StarWind AE Service (StarWindServiceAE) . (.StarWind Software - StarWind iSCSI Target (Alcohol Edition).) - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) . (.TuneUp Software - TuneUp Utilities Service.) - E:\aaa\TuneUpPortable\App\TuneUp\TuneUpUtilitiesService32.exe O23 - Service: USB Safely Remove Assistant (USBSafelyRemoveService) . (...) - C:\Program Files\USB Safely Remove\USBSRService.exe O23 - Service: (vToolbarUpdater12.2.6) . (.Pas de propriétaire - ToolbarU Application.) - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe ~ Scan Services in 00mn 00s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ~ Scan Desktop Component in 00mn 00s ---\\ BootExecute (O34) O34 - HKLM BootExecute: (autocheck autochk *) - File not found ~ Scan Keys in 00mn 00s ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-364900717-3816137986-4006343834-1001Core1cd691b41411f48.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-364900717-3816137986-4006343834-1001UA.job [MD5.44C00A385CA9DBC1D5CF3781F8C26AEA] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [MD5.00000000000000000000000000000000] [APT] [AutoKMS] (...) -- C:\Windows\AutoKMS.exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [Google Updater and Installer] (...) -- C:\Users\angel\angelppDangeltangel\Locangell\Google\Updangelte\GoogleUpdangelte.exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskUserS-1-5-21-364900717-3816137986-4006343834-1001Core1cd691b41411f48] (...) -- C:\Users\angel\angelppDangeltangel\Locangell\Google\Updangelte\GoogleUpdangelte.exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskUserS-1-5-21-364900717-3816137986-4006343834-1001UA] (...) -- C:\Users\angel\angelppDangeltangel\Locangell\Google\Updangelte\GoogleUpdangelte.exe (.not file.) [MD5.98A078F838A70F84E1BD490D7C7675F4] [APT] [Java Update Scheduler] (.Sun Microsystems, Inc..) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [MD5.B63E5C7807334A3A8F731062F15462CC] [APT] [Programme de mise … jour en ligne de Adobe] (.Adobe Systems Incorporated.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [MD5.2A474C9DBB9FBAC669D86149F7CE5FF3] [APT] [Scheduled Update for Ask Toolbar] (...) -- C:\Program Files\Ask.com\UpdateTask.exe [MD5.F46EF6CE702545721A73C8CC4F458EA3] [APT] [TuneUpUtilities_Task_BkGndMaintenance2012] (.TuneUp Software.) -- E:\aaa\TuneUpPortable\App\TuneUp\OneClick.exe ~ Scan Scheduled Task in 00mn 05s ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\System32\iedkcs32.dll O40 - ASIC: Internet Explorer - >{ABB824FE-FBBE-464D-9AAA-FAFED848BF41} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll O40 - ASIC: Microsoft Windows Media Player 12.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 11.4 r402.) -- C:\Windows\system32\Macromed\Flash\Flash32_11_4_402_265.ocx ~ Scan Active Setup in 00mn 00s ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: oem5.inf (Avgfwfd) . (.AVG Technologies CZ, s.r.o. - AVG Filter Driver.) - C:\Windows\System32\DRIVERS\avgfwd6x.sys O41 - Driver: (AVGIDSDriver) . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Driver..) - C:\Windows\System32\DRIVERS\avgidsdriverx.sys O41 - Driver: (AVGIDSShim) . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Loader Dri.) - C:\Windows\System32\DRIVERS\avgidsshimw8x.sys O41 - Driver: (Avgldx86) . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - C:\Windows\System32\DRIVERS\avgldx86.sys O41 - Driver: (Avgwfpx) . (.AVG Technologies CZ, s.r.o. - AVG Firewall driver.) - C:\Windows\System32\DRIVERS\avgwfpx.sys O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\System32\DRIVERS\BasicDisplay.sys O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys ~ Scan Drivers in 00mn 00s ---\\ Logiciels installés (O42) O42 - Logiciel: AVG 2013 - (.AVG Technologies.) [HKLM] -- AVG O42 - Logiciel: AVG 2013 - (.AVG Technologies.) [HKLM] -- {013C4AC1-64FB-46EA-9320-D34CEB65BDBC} O42 - Logiciel: AVG 2013 - (.AVG Technologies.) [HKLM] -- {DD92BCB0-B554-4F04-9CB1-DAB1AE81CE53} O42 - Logiciel: AVG PC Tuneup - (.AVG.) [HKLM] -- {50316C0A-CC2A-460A-9EA5-F486E54AC17D}_is1 O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Reader X (10.1.4) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AA1000000001} O42 - Logiciel: Advanced SystemCare 5 - (.IObit.) [HKLM] -- Advanced SystemCare 5_is1 O42 - Logiciel: Ashampoo Burning Studio 11 v.11.0.4 - (.Ashampoo GmbH & Co. KG.) [HKLM] -- Ashampoo Burning Studio 11_is1 O42 - Logiciel: CrystalDiskMark 3.0.1c - (.Crystal Dew World.) [HKLM] -- CrystalDiskMark_is1 O42 - Logiciel: Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE0DC7B0-0811-4FD3-8FB7-E13BC1D44595} O42 - Logiciel: EBP Mon Budget Perso 2011 11.0 - (.EBP.) [HKLM] -- EBP Mon Budget Perso 2011 11.0 O42 - Logiciel: EBP Mon Budget Perso 2011 11.0 - (.EBP.) [HKLM] -- {8EF51C6E-7EA7-4B27-AB39-9F050F0F14A0} O42 - Logiciel: Eris3D - (.A-Volute.) [HKLM] -- {780B1B31-2EFD-4B15-AEF4-77E4EEB893AC} O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome O42 - Logiciel: HD Tune 2.55 - (.EFD Software.) [HKLM] -- HD Tune_is1 O42 - Logiciel: ISOBuddy - (.Pas de propriétaire.) [HKLM] -- ISOBuddy O42 - Logiciel: Iminent - (.Iminent.) [HKLM] -- {D18E9DB2-AC98-4399-8878-C1059403144D} O42 - Logiciel: Internet Download Manager - (.Pas de propriétaire.) [HKLM] -- Internet Download Manager O42 - Logiciel: IsoBuster 3.0 - (.Smart Projects.) [HKLM] -- IsoBuster_is1 O42 - Logiciel: Java(TM) 6 Update 35 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216035FF} O42 - Logiciel: LIVE TV Desktop Ultimate Edition 2012 Full - (.SoftVipDownload.) [HKLM] -- LIVE TV Desktop Ultimate Edition 2012 Full O42 - Logiciel: Malwarebytes Anti-Malware version 1.65.1.1000 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-0015-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB} O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-0016-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB} O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-0018-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB} O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-0019-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB} O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001A-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB} O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001B-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB} O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001F-0401-0000-0000000FF1CE}_Office14.PROPLUSR_{1A43C155-3DDA-43C9-92C5-0E7D0B2B156D} O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001F-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{65A2328E-FDFB-4CA3-8582-357EA6825FEA} O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{99ACCA38-6DD3-48A8-96AE-A283C9759279} O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{46298F6A-1E7E-4D4A-B5F5-106A4F0E48C6} O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001F-0413-0000-0000000FF1CE}_Office14.PROPLUSR_{5072FEA2-862C-4BF0-9654-CB0DCBE2BE28} O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUSR_{DEA87BE2-FFCC-4F33-9946-FCBE55A1E998} O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-002C-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{C8E4AA87-3E5A-4C70-8CB7-43FE25C99B74} O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-0044-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB} O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-006E-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{7C5C7E8C-F6D2-43AC-93A4-89E4FF7367E6} O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-00A1-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB} O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-00BA-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB} O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{047B0968-E622-4FAA-9B4B-121FA109EDDE} O42 - Logiciel: Microsoft Office Access MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0015-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Excel MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0016-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Groove MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-00BA-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0044-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office OneNote MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-00A1-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Outlook MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001A-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0018-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Professional Plus 2010 - (.Microsoft Corporation.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Professionnel Plus 2010 - (.Microsoft Corporation.) [HKLM] -- Office14.PROPLUSR O42 - Logiciel: Microsoft Office Proof (Arabic) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0401-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Dutch) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0413-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (English) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (German) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0407-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Spanish) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0C0A-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-002C-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Publisher MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0019-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-006E-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Word MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001B-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F} O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM] -- {F0C3E5D1-1ADE-321E-8167-68EF0DE699A5} O42 - Logiciel: Mozilla Firefox 15.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 15.0.1 (x86 fr) O42 - Logiciel: Mozilla Firefox 16.0.1 (x86 fr) - (.Mozilla.) [HKCU] -- Mozilla Firefox 16.0.1 (x86 fr) O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService O42 - Logiciel: Mozilla Thunderbird 15.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Thunderbird 15.0.1 (x86 fr) O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Drivers O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM] -- {8AAB4176-A747-493A-A42C-B63CFADFD8E3} O42 - Logiciel: Ontrack EasyRecovery Professional - (.Kroll Ontrack Inc..) [HKLM] -- InstallShield_{268723B7-A994-4286-9F85-B974D5CAFC7B} O42 - Logiciel: Outil de notification de cadeaux MSN - (.Microsoft Corporation.) [HKCU] -- {CAD9C0EB-457D-49BB-A6AD-389304C38B2A} O42 - Logiciel: Readiris Pro 12 - (.I.R.I.S..) [HKLM] -- {B6214EA9-7BE8-4A91-B8B3-45F42F90188F} O42 - Logiciel: Rohos Face Logon (Free) 2.9.1 - (.Tesline-service s.r.l..) [HKLM] -- Rohos_FaceLogon1_is1 O42 - Logiciel: Security Update for Microsoft Excel 2010 (KB2597166) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{B76D8C6D-1F13-42A7-9931-D7504CB89D6D} O42 - Logiciel: Security Update for Microsoft InfoPath 2010 (KB2687417) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{D267D0F7-9770-467D-ACF3-FB2F7E0AC532} O42 - Logiciel: Security Update for Microsoft InfoPath 2010 (KB2687436) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{FDCB9E3E-FA40-40E9-AFF4-73BDE8E52205} O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2553091) - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{07CA44F3-F5B3-4D12-8C91-EDC5FE91D45C} O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2553096) - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{10802A6D-EDBF-4383-BCBD-9D5B32F56D35} O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2553260) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{ED57715B-D523-4EC9-854B-FB3E768E4349} O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2553371) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{CCC48FE2-175F-4CDE-82DF-F7BC4672C1A3} O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2553447) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{CC39BA1F-7A25-440C-86A7-77E35D8CC88C} O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2589320) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DCE6D0BF-93E4-46C5-9A7C-F1EFF9707C02} O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2589322) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{87149E40-4C8B-4E16-8571-D54E9B817D0B} O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2597986) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{54A1B66B-F5B2-45AD-8B19-5F51A027A1B9} O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2598243) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{B5489515-6DD4-47A5-AE4E-64751D15F10E} O42 - Logiciel: Security Update for Microsoft PowerPoint 2010 (KB2553185) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{61461470-8168-4F4B-97B7-617AF354F028} O42 - Logiciel: Security Update for Microsoft SharePoint Workspace 2010 (KB2566445) - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{337A3FB9-281D-4EC8-9CC1-7F6DDAC2359F} O42 - Logiciel: Security Update for Microsoft Visio Viewer 2010 (KB2598287) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{0A682BA4-3C78-42C3-8DDF-EB9A6ABE5535} O42 - Logiciel: Security Update for Microsoft Word 2010 (KB2553488) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{4D8C4F20-7E4F-4068-A0A4-BF841D42693A} O42 - Logiciel: Skype Click to Call - (.Skype Technologies S.A..) [HKLM] -- {B6CF2967-C81E-40C0-9815-C05774FEF120} O42 - Logiciel: Skype™ 5.10 - (.Skype Technologies S.A..) [HKLM] -- {EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8} O42 - Logiciel: Start8 - (.Stardock Corporation.) [HKLM] -- Start80.95 O42 - Logiciel: TechPowerUp GPU-Z - (.Pas de propriétaire.) [HKLM] -- TechPowerUp GPU-Z O42 - Logiciel: USB Safely Remove 4.7 - (.SafelyRemove.com.) [HKLM] -- USB Safely Remove_is1 O42 - Logiciel: Update for Microsoft Office 2010 (KB2553065) - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{A8686D24-1E89-43A1-973E-05A258D2B3F8} O42 - Logiciel: Update for Microsoft Office 2010 (KB2553092) - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{7AC49FC8-F8D2-4DD8-9086-09E52385A21F} O42 - Logiciel: Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{48E1B6C2-7299-4F3F-AA63-42F0ACE55AA4} O42 - Logiciel: Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{18B3CF2A-73F7-4716-B1AE-86D68726D408} O42 - Logiciel: Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-001F-0401-0000-0000000FF1CE}_Office14.PROPLUSR_{57820349-C59E-45FF-BDDC-C68384C39FE0} O42 - Logiciel: Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-001F-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{E6EAF5E1-5E2A-4E4F-847E-97B45179E45B} O42 - Logiciel: Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{15058154-469F-4794-ACD5-94F8420F9B80} O42 - Logiciel: Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-001F-0413-0000-0000000FF1CE}_Office14.PROPLUSR_{AC5C66AB-7561-4D7E-9EAD-0204DE4EEC9B} O42 - Logiciel: Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUSR_{995A7832-B512-46D5-87C9-2D71FB541435} O42 - Logiciel: Update for Microsoft Office 2010 (KB2553272) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{C06ABC7E-8923-4BB1-A7A2-197F5A3E0973} O42 - Logiciel: Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-006E-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{B9A75D61-A9B7-452A-9FFB-BA8AC6697C99} O42 - Logiciel: Update for Microsoft Office 2010 (KB2566458) - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{EFB525A0-E1C0-4E32-9968-FE401BC87363} O42 - Logiciel: Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{ED31DE9A-3E13-4E2C-9106-E0D8AFFB9FA6} O42 - Logiciel: Update for Microsoft Office 2010 (KB2598289) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{06ABCB4E-77D8-4420-B2EA-EF51558DBFD1} O42 - Logiciel: Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-00A1-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{FD88F03A-5684-4BF7-A01F-8514F8D3CB59} O42 - Logiciel: Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{3613AECC-1454-4DDD-AC36-C42DC16D6DEE} O42 - Logiciel: Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-001A-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{320987F5-60AE-484D-BA8A-24DADD7E697F} O42 - Logiciel: Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{38990592-F6A1-4A26-96C7-0600E36AE794} O42 - Logiciel: Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Editi - (.Microsoft.) [HKLM] -- {90140000-001A-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{7EB5858D-D86C-4081-BA4E-B2BFA32A6760} O42 - Logiciel: Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Editi - (.Microsoft.) [HKLM] -- {91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{BC6DFBFD-16DD-47E1-A7EF-2C062930FA4F} O42 - Logiciel: VLC media player 2.0.2 - (.VideoLAN.) [HKLM] -- VLC media player O42 - Logiciel: VSO CopyTo 5 - (.VSO Software.) [HKLM] -- {9B05F6FC-AE16-488C-A822-F641ADC61B6A}_is1 O42 - Logiciel: WBFS Manager 4.0 - (.WBFS.) [HKLM] -- {825E9A84-1E03-4526-9F8E-45015C938A7C} O42 - Logiciel: WinRAR 4.11 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver O42 - Logiciel: WinUtilities 10.39 Professional Edition - (.YL Computing, Inc.) [HKLM] -- {FC274982-5AAD-4C20-848D-4424A5043009}_is1 O42 - Logiciel: µTorrent - (.Pas de propriétaire.) [HKLM] -- uTorrent ---\\ HKCU & HKLM Software Keys [HKCU\Software\A-Volute] [HKCU\Software\APN] [HKCU\Software\Adobe] [HKCU\Software\Alcohol Soft] [HKCU\Software\AppDataLow\Software\AskToolbar] [HKCU\Software\AppDataLow\Software\Microsoft] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\Ashampoo] [HKCU\Software\Ask.com] [HKCU\Software\Avg] [HKCU\Software\BitTorrent] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\Digital River] [HKCU\Software\DownloadManager] [HKCU\Software\FinalWire] [HKCU\Software\Google] [HKCU\Software\Hewlett-Packard] [HKCU\Software\HookNetwork] [HKCU\Software\Iris] [HKCU\Software\JavaSoft] [HKCU\Software\Macromedia] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\NVIDIA Corporation] [HKCU\Software\Netscape] [HKCU\Software\ODBC] [HKCU\Software\Ontrack] [HKCU\Software\Policies] [HKCU\Software\RegisteredApplications] [HKCU\Software\SCS Software] [HKCU\Software\SafelyRemove] [HKCU\Software\Skype] [HKCU\Software\Smart Projects] [HKCU\Software\Stardock] [HKCU\Software\SysInternals] [HKCU\Software\TuneUp] [HKCU\Software\VSO] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\ZebHelpProcess Helper] [HKCU\Software\rohos] [HKCU\Software\techPowerUp] [HKLM\Software\AGEIA Technologies] [HKLM\Software\APN] [HKLM\Software\ATI Technologies] [HKLM\Software\Adobe] [HKLM\Software\AdwCleaner] [HKLM\Software\Alcohol Soft] [HKLM\Software\Ashampoo] [HKLM\Software\AskToolbar] [HKLM\Software\Avg] [HKLM\Software\CXT] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Google] [HKLM\Software\HDTune] [HKLM\Software\Hewlett-Packard] [HKLM\Software\I.R.I.S.] [HKLM\Software\IObit] [HKLM\Software\InstallShield] [HKLM\Software\Intel] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\Licenses] [HKLM\Software\Loader] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes' Anti-Malware (Trial)] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\MimarSinan] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NVIDIA Corporation] [HKLM\Software\ODBC] [HKLM\Software\Ontrack] [HKLM\Software\Policies] [HKLM\Software\RegisteredApplications] [HKLM\Software\Skype] [HKLM\Software\Stardock] [HKLM\Software\TuneUp-BackupByTuneUpPortable] [HKLM\Software\TuneUp] [HKLM\Software\VSO] [HKLM\Software\VideoLAN] [HKLM\Software\WinRAR] [HKLM\Software\Windows] [HKLM\Software\Zemana] [HKLM\Software\mozilla.org] [HKLM\Software\rohos] ~ Scan Softwares in 00mn 00s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 18/06/2012 - 11:11:44 - [12,035] ----D C:\Program Files\A-Volute O43 - CFD: 30/03/2012 - 23:53:21 - [113,097] ----D C:\Program Files\Adobe O43 - CFD: 16/03/2012 - 00:54:56 - [117,550] ----D C:\Program Files\AGEIA Technologies O43 - CFD: 26/06/2012 - 01:03:21 - [10,269] ----D C:\Program Files\Alcohol Soft O43 - CFD: 31/03/2012 - 23:49:11 - [287,386] ----D C:\Program Files\Ashampoo O43 - CFD: 16/03/2012 - 02:31:03 - [3,312] ----D C:\Program Files\Ask.com O43 - CFD: 19/08/2012 - 01:25:33 - [148,523] ----D C:\Program Files\AVG O43 - CFD: 19/08/2012 - 01:22:47 - [292,440] ----D C:\Program Files\Common Files O43 - CFD: 21/07/2012 - 00:21:42 - [1,493] ----D C:\Program Files\CrystalDiskMark O43 - CFD: 21/03/2012 - 23:39:00 - [4,833] ----D C:\Program Files\EBP O43 - CFD: 15/03/2012 - 23:31:10 - [0] R---D C:\Program Files\Fichiers communs O43 - CFD: 21/07/2012 - 00:35:25 - [1,069] ----D C:\Program Files\GPU-Z O43 - CFD: 21/07/2012 - 00:11:56 - [1,234] ----D C:\Program Files\HD Tune O43 - CFD: 20/07/2012 - 23:21:15 - [0,279] ----D C:\Program Files\InstallShield Installation Information O43 - CFD: 24/06/2012 - 01:11:54 - [13,966] ----D C:\Program Files\Internet Download Manager O43 - CFD: 18/02/2012 - 12:46:43 - [4,929] ----D C:\Program Files\Internet Explorer O43 - CFD: 20/04/2012 - 02:12:03 - [91,552] ----D C:\Program Files\IObit O43 - CFD: 24/06/2012 - 19:45:15 - [4,341] ----D C:\Program Files\ISOBuddy O43 - CFD: 24/06/2012 - 20:37:22 - [9,979] ----D C:\Program Files\IsoBuster O43 - CFD: 21/10/2012 - 22:52:50 - [169,356] ----D C:\Program Files\Java O43 - CFD: 20/07/2012 - 23:20:59 - [79,712] ----D C:\Program Files\Kroll Ontrack O43 - CFD: 21/03/2012 - 01:39:23 - [13,470] ----D C:\Program Files\LIVE TV Desktop Ultimate Edition 2012 Full O43 - CFD: 21/10/2012 - 22:59:22 - [0,180] ----D C:\Program Files\ma-config.com O43 - CFD: 22/10/2012 - 23:00:38 - [12,631] ----D C:\Program Files\Malwarebytes' Anti-Malware O43 - CFD: 16/04/2012 - 02:13:25 - [38,002] ----D C:\Program Files\Microsoft Analysis Services O43 - CFD: 16/04/2012 - 02:17:40 - [950,489] ----D C:\Program Files\Microsoft Office O43 - CFD: 10/06/2012 - 16:28:00 - [40,838] ----D C:\Program Files\Microsoft Silverlight O43 - CFD: 16/04/2012 - 02:17:39 - [1,722] ----D C:\Program Files\Microsoft SQL Server Compact Edition O43 - CFD: 16/04/2012 - 02:17:39 - [0,757] ----D C:\Program Files\Microsoft Sync Framework O43 - CFD: 16/04/2012 - 02:18:19 - [0,312] ----D C:\Program Files\Microsoft Synchronization Services O43 - CFD: 20/04/2012 - 22:30:32 - [1,314] ----D C:\Program Files\Microsoft Visual Studio 8 O43 - CFD: 16/04/2012 - 02:17:39 - [7,797] ----D C:\Program Files\Microsoft.NET O43 - CFD: 22/10/2012 - 20:37:43 - [44,911] ----D C:\Program Files\Mozilla Firefox O43 - CFD: 22/10/2012 - 22:13:12 - [0,212] ----D C:\Program Files\Mozilla Maintenance Service O43 - CFD: 29/09/2012 - 19:38:03 - [40,995] ----D C:\Program Files\Mozilla Thunderbird O43 - CFD: 16/04/2012 - 02:19:30 - [0,025] ----D C:\Program Files\MSBuild O43 - CFD: 01/08/2012 - 18:40:01 - [121,775] ----D C:\Program Files\Readiris Pro 12 O43 - CFD: 16/03/2012 - 01:52:09 - [37,181] ----D C:\Program Files\Reference Assemblies O43 - CFD: 01/05/2012 - 00:09:39 - [9,870] ----D C:\Program Files\Rohos O43 - CFD: 27/06/2012 - 11:40:37 - [37,115] R---D C:\Program Files\Skype O43 - CFD: 21/10/2012 - 22:52:53 - [7,936] ----D C:\Program Files\Stardock O43 - CFD: 18/02/2012 - 10:39:47 - [0] --H-D C:\Program Files\Uninstall Information O43 - CFD: 21/03/2012 - 23:15:26 - [6,809] ----D C:\Program Files\USB Safely Remove O43 - CFD: 14/05/2012 - 12:39:47 - [1,679] ----D C:\Program Files\uTorrent O43 - CFD: 02/04/2012 - 00:29:20 - [91,822] ----D C:\Program Files\VideoLAN O43 - CFD: 20/06/2012 - 15:38:16 - [120,975] ----D C:\Program Files\VSO O43 - CFD: 20/06/2012 - 15:38:15 - [13,547] ----D C:\Program Files\VSORAW O43 - CFD: 01/04/2012 - 20:07:18 - [3,531] ----D C:\Program Files\WBFS O43 - CFD: 18/02/2012 - 12:46:43 - [5,316] ----D C:\Program Files\Windows Defender O43 - CFD: 18/02/2012 - 12:54:01 - [7,159] ----D C:\Program Files\Windows Journal O43 - CFD: 18/02/2012 - 10:21:49 - [3,031] ----D C:\Program Files\Windows Live O43 - CFD: 18/02/2012 - 12:46:44 - [5,496] ----D C:\Program Files\Windows Mail O43 - CFD: 20/04/2012 - 22:30:32 - [4,815] ----D C:\Program Files\Windows Media Player O43 - CFD: 18/02/2012 - 10:22:00 - [0,197] ----D C:\Program Files\Windows Multimedia Platform O43 - CFD: 15/03/2012 - 23:31:10 - [7,231] ----D C:\Program Files\Windows NT O43 - CFD: 18/02/2012 - 12:46:43 - [5,109] ----D C:\Program Files\Windows Photo Viewer O43 - CFD: 18/02/2012 - 10:22:00 - [0,197] ----D C:\Program Files\Windows Portable Devices O43 - CFD: 20/04/2012 - 22:30:32 - [5,667] ----D C:\Program Files\Windows Sidebar O43 - CFD: 08/04/2012 - 14:29:45 - [717,514] --H-D C:\Program Files\WindowsApps O43 - CFD: 16/03/2012 - 01:28:31 - [5,895] ----D C:\Program Files\WinRAR O43 - CFD: 21/03/2012 - 23:45:32 - [22,052] ----D C:\Program Files\WinUtilities O43 - CFD: 23/10/2012 - 21:15:41 - [10,013] ----D C:\Program Files\ZHPDiag O43 - CFD: 30/03/2012 - 23:55:15 - [3,722] ----D C:\Program Files\Common Files\Adobe O43 - CFD: 22/10/2012 - 22:10:04 - [0,689] ----D C:\Program Files\Common Files\AVG Secure Search O43 - CFD: 16/04/2012 - 02:18:17 - [0,095] ----D C:\Program Files\Common Files\DESIGNER O43 - CFD: 16/05/2012 - 00:03:02 - [4,801] ----D C:\Program Files\Common Files\InstallShield O43 - CFD: 16/03/2012 - 00:42:35 - [1,201] ----D C:\Program Files\Common Files\Java O43 - CFD: 20/04/2012 - 22:30:32 - [237,251] ----D C:\Program Files\Common Files\microsoft shared O43 - CFD: 18/02/2012 - 10:22:00 - [0,003] ----D C:\Program Files\Common Files\Services O43 - CFD: 16/03/2012 - 01:16:14 - [2,056] ----D C:\Program Files\Common Files\Skype O43 - CFD: 20/04/2012 - 22:30:32 - [10,062] ----D C:\Program Files\Common Files\System O43 - CFD: 16/03/2012 - 00:54:30 - [32,560] ----D C:\Program Files\Common Files\Wise Installation Wizard O43 - CFD: 21/10/2012 - 22:52:53 - [2,579] ----D C:\ProgramData\Adobe O43 - CFD: 21/10/2012 - 22:59:38 - [0,518] ----D C:\ProgramData\AutoKMS O43 - CFD: 21/10/2012 - 22:52:54 - [105,209] ----D C:\ProgramData\AVG2013 O43 - CFD: 21/10/2012 - 22:59:43 - [0,078] ----D C:\ProgramData\Hewlett-Packard O43 - CFD: 21/10/2012 - 22:59:43 - [0,000] ----D C:\ProgramData\IObit O43 - CFD: 22/10/2012 - 23:00:36 - [5,928] ----D C:\ProgramData\Malwarebytes O43 - CFD: 23/10/2012 - 20:42:35 - [5,865] ----D C:\ProgramData\MFAData O43 - CFD: 23/10/2012 - 12:08:09 - [296,670] -S--D C:\ProgramData\Microsoft O43 - CFD: 21/10/2012 - 22:59:44 - [0,000] ----D C:\ProgramData\Microsoft Help O43 - CFD: 22/10/2012 - 20:37:32 - [0,007] ----D C:\ProgramData\Mozilla O43 - CFD: 22/10/2012 - 21:04:29 - [0,027] ----D C:\ProgramData\MRT O43 - CFD: 21/10/2012 - 22:04:56 - [0] ----D C:\ProgramData\NVIDIA O43 - CFD: 21/10/2012 - 22:53:07 - [29,006] ----D C:\ProgramData\Skype O43 - CFD: 22/10/2012 - 20:59:45 - [0] ---AD C:\ProgramData\TEMP O43 - CFD: 21/10/2012 - 22:26:12 - [16,245] ----D C:\ProgramData\TuneUp Software O43 - CFD: 21/10/2012 - 21:34:02 - [0,017] ----D C:\ProgramData\USBSRService O43 - CFD: 21/10/2012 - 22:42:11 - [0] ----D C:\ProgramData\vso O43 - CFD: 21/10/2012 - 22:59:57 - [22,922] -SH-D C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936} O43 - CFD: 21/10/2012 - 22:59:59 - [7,101] --H-D C:\ProgramData\{B13ABCF5-B7C5-4990-B955-78652891D0BD} O43 - CFD: 22/10/2012 - 01:28:43 - [5,291] ----D C:\Users\a\AppData\Roaming\Adobe O43 - CFD: 22/10/2012 - 01:40:00 - [680,859] ----D C:\Users\a\AppData\Roaming\AVG O43 - CFD: 21/10/2012 - 23:00:59 - [0,037] ----D C:\Users\a\AppData\Roaming\AVG2013 O43 - CFD: 21/10/2012 - 23:00:59 - [0,000] ----D C:\Users\a\AppData\Roaming\dvdcss O43 - CFD: 21/10/2012 - 23:00:59 - [0,000] ----D C:\Users\a\AppData\Roaming\HideIPEasy O43 - CFD: 21/10/2012 - 22:54:17 - [2,055] ----D C:\Users\a\AppData\Roaming\IDM O43 - CFD: 21/10/2012 - 23:44:45 - [79,730] ----D C:\Users\a\AppData\Roaming\IObit O43 - CFD: 21/10/2012 - 23:01:03 - [0,001] ----D C:\Users\a\AppData\Roaming\Macromedia O43 - CFD: 22/10/2012 - 23:01:22 - [10,404] ----D C:\Users\a\AppData\Roaming\Malwarebytes O43 - CFD: 23/10/2012 - 12:08:10 - [92,943] -S--D C:\Users\a\AppData\Roaming\Microsoft O43 - CFD: 21/10/2012 - 22:27:55 - [19,808] ----D C:\Users\a\AppData\Roaming\Mozilla O43 - CFD: 21/10/2012 - 23:01:17 - [0] ----D C:\Users\a\AppData\Roaming\Skype O43 - CFD: 21/10/2012 - 23:01:17 - [0,017] ----D C:\Users\a\AppData\Roaming\Thunderbird O43 - CFD: 21/10/2012 - 22:54:34 - [0,018] ----D C:\Users\a\AppData\Roaming\TuneUp Software O43 - CFD: 21/10/2012 - 22:05:32 - [0,016] ----D C:\Users\a\AppData\Roaming\USBSafelyRemove O43 - CFD: 21/10/2012 - 23:01:17 - [0,001] ----D C:\Users\a\AppData\Roaming\vlc O43 - CFD: 23/10/2012 - 12:21:15 - [0,970] ----D C:\Users\a\AppData\Roaming\WinRAR O43 - CFD: 21/10/2012 - 22:59:59 - [0,000] ----D C:\Users\a\AppData\Local\A-Volute O43 - CFD: 22/10/2012 - 01:28:43 - [9,191] ----D C:\Users\a\AppData\Local\Adobe O43 - CFD: 21/10/2012 - 22:53:13 - [1,487] ----D C:\Users\a\AppData\Local\Apps O43 - CFD: 21/10/2012 - 23:36:49 - [2,488] ----D C:\Users\a\AppData\Local\Avg2013 O43 - CFD: 21/10/2012 - 22:22:59 - [1,464] ----D C:\Users\a\AppData\Local\Diagnostics O43 - CFD: 21/10/2012 - 22:17:00 - [336,759] ----D C:\Users\a\AppData\Local\Google O43 - CFD: 21/10/2012 - 22:35:25 - [0] ----D C:\Users\a\AppData\Local\Macromedia O43 - CFD: 23/10/2012 - 12:08:10 - [161,417] ----D C:\Users\a\AppData\Local\Microsoft O43 - CFD: 21/10/2012 - 23:00:15 - [0,000] ----D C:\Users\a\AppData\Local\Microsoft Help O43 - CFD: 21/10/2012 - 22:53:52 - [9,286] ----D C:\Users\a\AppData\Local\Mozilla O43 - CFD: 21/10/2012 - 23:00:38 - [0,009] ----D C:\Users\a\AppData\Local\OCCT O43 - CFD: 21/10/2012 - 22:54:13 - [113,049] ----D C:\Users\a\AppData\Local\Packages O43 - CFD: 23/10/2012 - 21:09:16 - [18,550] -SH-D C:\Users\a\AppData\Local\Temp O43 - CFD: 22/10/2012 - 00:27:21 - [0,012] ----D C:\Users\a\AppData\Local\VirtualStore O43 - CFD: 21/10/2012 - 23:00:56 - [0,003] ----D C:\Users\a\AppData\Local\WBFSManager O43 - CFD: 21/10/2012 - 23:01:06 - [0,004] R---D C:\Users\a\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 21/10/2012 - 23:01:06 - [0,003] R---D C:\Users\a\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 21/10/2012 - 23:01:06 - [0,000] R---D C:\Users\a\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 21/10/2012 - 23:01:06 - [0,002] ----D C:\Users\a\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ashampoo O43 - CFD: 21/10/2012 - 23:01:06 - [0,005] ----D C:\Users\a\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome O43 - CFD: 21/10/2012 - 23:01:06 - [0,006] ----D C:\Users\a\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager O43 - CFD: 21/10/2012 - 23:01:06 - [0,005] ----D C:\Users\a\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LIVE TV Desktop Ultimate Edition 2012 Full O43 - CFD: 21/10/2012 - 23:01:07 - [0,000] ----D C:\Users\a\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 21/10/2012 - 23:01:07 - [0,001] R---D C:\Users\a\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 21/10/2012 - 23:01:07 - [0,004] R---D C:\Users\a\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 21/10/2012 - 23:01:07 - [0,003] ----D C:\Users\a\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z O43 - CFD: 21/10/2012 - 23:01:07 - [0,007] ----D C:\Users\a\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\USB Safely Remove O43 - CFD: 21/10/2012 - 23:01:08 - [0,003] ----D C:\Users\a\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR ~ Scan Program Folder in 00mn 13s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.9AC2ABD232174051BF5488B0E2B5A3BC] - 23/10/2012 - 20:14:19 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1813144] O44 - LFC:[MD5.03C2D64E757A827013CB641461A7DD43] - 23/10/2012 - 20:14:19 ---A- . (...) -- C:\Windows\System32\perfc009.dat [135652] O44 - LFC:[MD5.CFE0009295CD7A6FA81A55E95EA4BD61] - 23/10/2012 - 20:14:19 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [155176] O44 - LFC:[MD5.B93E6E743EE4761800142AE505869648] - 23/10/2012 - 20:14:19 ---A- . (...) -- C:\Windows\System32\perfh009.dat [724160] O44 - LFC:[MD5.81194910DBC53F839C04B08718F9FDA2] - 23/10/2012 - 20:14:19 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [801896] O44 - LFC:[MD5.41732A6698AAB784230A4F36E1CA650A] - 23/10/2012 - 20:09:44 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.C6F7A4778A4D04A0882E519F9C5C8DED] - 23/10/2012 - 20:07:36 ---A- . (...) -- C:\Windows\MEMORY.DMP [337043120] O44 - LFC:[MD5.9998154689B96EBEF2680364DC002CC6] - 23/10/2012 - 19:51:44 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1440757] O44 - LFC:[MD5.0DB7527DB188C7D967A37BB51BBF3963] - 23/10/2012 - 19:13:35 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\System32\Drivers\mbamswissarmy.sys [40776] O44 - LFC:[MD5.6356E263237367DE76F2713FEF25CEF5] - 23/10/2012 - 00:02:18 ---A- . (...) -- C:\Windows\PFRO.log [3886] O44 - LFC:[MD5.441BCC884D52FCF239B304D6078F9716] - 22/10/2012 - 21:10:30 ---A- . (...) -- C:\AdwCleaner[S1].txt [42669] O44 - LFC:[MD5.4C9FBE733BA8A082DBF0925EA97251F5] - 22/10/2012 - 20:34:50 ---A- . (...) -- C:\AdwCleaner[R1].txt [48056] O44 - LFC:[MD5.34395548A9A7152FDAF8716D94160CEA] - 22/10/2012 - 20:06:06 ---A- . (...) -- C:\WinChk.txt [868] O44 - LFC:[MD5.ADECCA41346CEA0E53EB31D4C9277E44] - 22/10/2012 - 00:10:19 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512] O44 - LFC:[MD5.DE7DAA2A2D8835E091BD117E1677AEAE] - 21/10/2012 - 22:43:12 ---A- . (...) -- C:\Windows\System32\fichsort.txt [1438] O44 - LFC:[MD5.84C0B1598643EC6545E22B86F9124307] - 21/10/2012 - 18:13:10 ---A- . (...) -- C:\Windows\System32\jupdate-1.6.0_37-b06.log [3054] O44 - LFC:[MD5.CA063620EB8E3B1FDB5FB8933D24456B] - 11/10/2012 - 21:48:49 ---A- . (...) -- C:\Windows\System32\netcfg-1505737.txt [131] O44 - LFC:[MD5.CA063620EB8E3B1FDB5FB8933D24456B] - 11/10/2012 - 21:38:20 ---A- . (...) -- C:\Windows\System32\netcfg-877989.txt [131] O44 - LFC:[MD5.40D17026A62097532A52E64FFBCF988B] - 11/10/2012 - 21:03:11 ---A- . (...) -- C:\Windows\System32\netcfg-424560901.txt [1109] O44 - LFC:[MD5.CDCFF34D0E470B30B2C9C55FF970FFBE] - 05/10/2012 - 05:21:54 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Early Launch Anti-Malware Driver.) -- C:\Windows\System32\Drivers\avgbootx.sys [18352] O44 - LFC:[MD5.6DF7236D3A16C8417FF72F2EB2ADD244] - 05/10/2012 - 02:26:22 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) -- C:\Windows\System32\Drivers\avgmfx86.sys [93536] O44 - LFC:[MD5.D53D35031365A0ECCB1DC1BC1B15B18E] - 02/10/2012 - 02:30:38 ---A- . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) -- C:\Windows\System32\Drivers\avgldx86.sys [159712] O44 - LFC:[MD5.500D089CE760D83DA2B6CBA681AA9949] - 29/09/2012 - 18:54:26 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [22856] ~ Scan Files in 00mn 12s ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46) O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL ~ Scan ShellExecuteHooks in 00mn 00s ---\\ Déni du service (Local Security Authority) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\System32\schannel.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Live Security Package.) -- C:\Windows\System32\livessp.dll ~ Scan Keys in 00mn 00s ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys ~ Scan CSB in 00mn 00s ---\\ Image File Execution Options (IFEO) (O50) O50 - IFEO:Image File Execution Options - unins000.exe - "E:\aaa\TuneUpPortable\App\TuneUp\TUAutoReactivator32.exe" O50 - IFEO:Image File Execution Options - welcome.exe - "E:\aaa\TuneUpPortable\App\TuneUp\TUAutoReactivator32.exe" ~ Scan IFEO in 00mn 00s ---\\ MountPoints2 Shell Key (O51) O51 - MPSK:{e8a2e6dd-8bf2-11e1-8e36-b6abe1c209f7}\AutoRun\command. (...) -- G:\LaunchU3.exe (.not file.) ~ Scan Keys in 00mn 00s ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ~ Scan Keys in 00mn 00s ---\\ ShareTools MSconfig StartupReg (O53) O53 - SMSR:HKLM\...\startupreg\ApnUpdater [Key] . (.Ask - Ask Updater.) -- c:\program files\ask.com\updater\updater.exe O53 - SMSR:HKLM\...\startupreg\IDMan [Key] . (.Tonec Inc. - Internet Download Manager (IDM).) -- c:\program files\internet download manager\idman.exe O53 - SMSR:HKLM\...\startupreg\OfficeSyncProcess [Key] . (.Microsoft Corporation - Microsoft Office Document Cache.) -- c:\program files\microsoft office\office14\msosync.exe O53 - SMSR:HKLM\...\startupreg\uTorrent [Key] . (.BitTorrent, Inc. - µTorrent.) -- c:\program files\utorrent\utorrent.exe ~ Scan SMSR Keys in 00mn 00s ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll ~ Scan Keys in 00mn 00s ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0 O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 ~ Scan Keys in 00mn 00s ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=255 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDrives"= O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=255 ~ Scan Keys in 00mn 00s ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.135DD329C9C4AB8E3B33A855C47F2909] - 18/02/2012 - 07:36:22 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [85304] O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 18/02/2012 - 03:12:56 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029] ~ Scan Drivers in 00mn 00s ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: ZHPDiag 1.31 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 ~ Scan ADS in 00mn 00s ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.bat> [HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> [HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe O67 - Shell Spawning: <.exe> [HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.js> [HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ~ Scan Keys in 00mn 00s ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe (.not file.) O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Windows\System32\ie4uinit.exe (.not file.) O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe (.not file.) O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Windows\System32\ie4uinit.exe (.not file.) O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe (.not file.) O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Windows\System32\ie4uinit.exe (.not file.) ~ Scan Keys in 00mn 00s ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] {9D5BD211-422C-4164-9298-BB4186A30F31} [DefaultScope] - (Bing) - http://www.bing.com ~ Scan Keys in 00mn 00s ---\\ Recherche des services démarrés par Svchost (O83) O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [167424] O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [112640] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [112640] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [240128] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1059840] O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [658432] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [86528] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [296960] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [81408] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [49152] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [374784] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [244224] O83 - Search Svchost Services: UxTuneUp (UxTuneUp) . (.TuneUp Software - TuneUp Theme Extension.) -- C:\Windows\System32\uxtuneup.dll [28992] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2518016] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [622592] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [473088] O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [717824] O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [20992] O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [48640] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [114688] O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [89600] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [943104] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [166912] O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [62464] O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [105472] O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [155648] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [228864] O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [58880] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [72704] O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Microsoft.) -- C:\Windows\System32\ncasvc.dll [133632] O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire de configuration de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [130048] O83 - Search Svchost Services: SystemEventsBroker (SystemEventsBroker) . (.Microsoft Corporation - Service Broker pour les événements système.) -- C:\Windows\System32\SystemEventsBrokerServer.dll [104960] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [33792] O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [1438720] O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [145408] O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [149504] ~ Scan Services in 00mn 00s ---\\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.254FBCA565E049648B0CCE2CEADF05D2] [SPRF][20/06/2012] (...) -- C:\Users\a\AppData\Roaming\inst.exe [87608] [MD5.5B6C11DE7E839C05248CED8825470FEF] [SPRF][20/06/2012] (.VSO Software - low level access layer for CD/DVD/BD devices.) -- C:\Users\a\AppData\Roaming\pcouffin.sys [47360] [MD5.D89B5D0769D1BEEA2F622C61F2401E95] [SPRF][11/11/2010] (.Freebyte.com - HJSplit.) -- C:\Users\a\Desktop\hjsplit.exe [201728] [MD5.5A45A7E3E12BE51844B741945FB8E85E] [SPRF][24/06/2012] (.Iminent - IMinent bootstrapper.) -- C:\Users\a\Desktop\IminentSetup_2-KFRPtAWP-1_.exe [825312] [MD5.FD122B0B41561530D63EB171DB2608D9] [SPRF][24/06/2012] (.Pixbyte Development SL - ISOBuddy.) -- C:\Users\a\Desktop\isobuddy_101.exe [2116728] ~ Scan Files in 00mn 00s ---\\ Firewall Active Exception List (FirewallRules) (O87) O87 - FAEL: "{7237BF4E-9C15-4CB1-82E6-473323ACF7D6}" | In - None - P6 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe O87 - FAEL: "{9DAD0B59-DBEE-4D4B-896D-247E0D4EB865}" | In - None - P6 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe O87 - FAEL: "{7DE5BA33-1125-4FEF-B8A2-0D62E8F779F5}" | In - None - P17 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe O87 - FAEL: "{012BB76D-4F35-4CC4-8990-C7B376309387}" |In - None - P17 - TRUE | .(...) -- C:\Program Files\Iminent\Iminent.exe (.not file.) O87 - FAEL: "{9BA8F9B2-A7FC-45A7-9E3E-DBB245AD6C77}" |In - None - P17 - TRUE | .(...) -- C:\Program Files\Iminent\Iminent.Messengers.exe (.not file.) O87 - FAEL: "{85734DBE-39C8-4CF7-97D7-AE660891FBF3}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Installer Application.) -- C:\Program Files\AVG\AVG2013\avgmfapx.exe O87 - FAEL: "{B0BBD530-092B-4FFD-A927-F895EF9C416C}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Installer Application.) -- C:\Program Files\AVG\AVG2013\avgmfapx.exe O87 - FAEL: "{F80DECD0-78EA-49CE-9B2E-C6144A6200B1}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files\AVG\AVG2013\avgnsx.exe O87 - FAEL: "{140C853A-CEF0-40E7-B1A3-1DBD8C60DB1B}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files\AVG\AVG2013\avgnsx.exe O87 - FAEL: "{33C1190C-D0EA-4C2F-B983-B63DC211D5B6}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Diagnostics.) -- C:\Program Files\AVG\AVG2013\avgdiagex.exe O87 - FAEL: "{84791FD7-D755-4CB8-A573-1472B5BADAC7}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Diagnostics.) -- C:\Program Files\AVG\AVG2013\avgdiagex.exe ~ Scan Firewall in 00mn 01s ---\\ Scan Additionnel (O88) Database Version : 9204 - (19/10/2012) Clés trouvées (Keys found) : 28 Valeurs trouvées (Values found) : 1 Dossiers trouvés (Folders found) : 2 Fichiers trouvés (Files found) : 1 [HKLM\Software\Classes\AppID\GenericAskToolbar.DLL] =>Toolbar.AskSBar [HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd] =>Toolbar.AskSBar [HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd.1] =>Toolbar.AskSBar [HKLM\Software\Classes\TbHelper.TbTask] =>Toolbar.Agent [HKLM\Software\Classes\TbHelper.TbTask.1] =>Toolbar.Agent [HKLM\Software\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}] =>Toolbar.AskTBar [HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}] =>Toolbar.AskSBar [HKLM\Software\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}] =>Toolbar.Ask [HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}] =>Toolbar.Ask [HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}] =>Toolbar.AskSBar [HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}] =>Toolbar.AskSBar [HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}] =>Toolbar.AskSBar [HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}] =>Toolbar.Ask [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Toolbar.AskSBar [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Toolbar.AskSBar [HKLM\Software\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Toolbar.AskSBar [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Toolbar.AskSBar [HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF] =>Toolbar.AskSBar [HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF] =>Toolbar.AskSBar [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF] =>Toolbar.AskSBar [HKCU\Software\APN] =>Toolbar.Agent [HKLM\Software\APN] =>Toolbar.Agent [HKCU\Software\Ask.com] =>Toolbar.AskBar [HKCU\Software\Ask.com] =>Toolbar.AskBarDis [HKCU\Software\AppDataLow\Software\AskToolbar] =>Toolbar.AskTBar [HKLM\Software\AskToolbar] =>Toolbar.AskTBar [HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{D4027C7F-154A-4066-A1AD-4243D8127440} =>Toolbar.AskSBar C:\Program Files\Ask.com =>Toolbar.AskBar C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar =>Toolbar.AskTBar ~ Scan Additionnel in 00mn 09s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 27/07/2012 63960 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe SS - | Demand 11/10/2012 250808 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe SR - | Auto 14/03/2012 913752 | (AdvancedSystemCareService5) . (.IObit.) - C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe SR - | Auto 02/10/2012 1314720 | (avgfws) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files\AVG\AVG2013\avgfws.exe SR - | Auto 02/10/2012 5783672 | (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files\AVG\AVG2013\avgidsagent.exe SR - | Auto 02/10/2012 193568 | (avgwd) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files\AVG\AVG2013\avgwdsvc.exe SS - | Auto 05/01/2012 75624 | (AxAutoMntSrv) . (.Alcohol Soft Development Team.) - C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe SS - | Demand 14/11/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe SR - | Auto 29/09/2012 399432 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe SR - | Auto 29/09/2012 676936 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe SS - | Demand 22/10/2012 115168 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe SR - | Auto 6656 | (NahimicVADSettingsSrv) . (...) - C:\Program Files\A-Volute\Eris3D\UserInterface\NahimicSettingsSrv.exe SR - | Auto 26/09/2011 7168 | (NahimicVADSrv) . (.Microsoft.) - C:\Program Files\A-Volute\Eris3D\UserInterface\NahimicVADService.exe SR - | Auto 30/01/2009 203296 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\System32\nvvsvc.exe SS - | Disabled 01/11/2011 69632 | (Rohos) . (.Tesline-Service SRL.) - C:\Program Files\Rohos\ntserv.exe SR - | Auto 13/08/2012 3064000 | (Skype C2C Service) . (.Skype Technologies S.A..) - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe SS - | Auto 07/06/2012 160944 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe SR - | Auto 24/09/2012 113296 | (Start8) . (.Stardock Software, Inc.) - C:\Program Files\Stardock\Start8\Start8Srv.exe SR - | Auto 23/12/2009 370688 | (StarWindServiceAE) . (.StarWind Software.) - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe SR - | Auto 02/11/2011 1479488 | (TuneUp.UtilitiesSvc) . (.TuneUp Software.) - E:\aaa\TuneUpPortable\App\TuneUp\TuneUpUtilitiesService32.exe SR - | Auto 257880 | (USBSafelyRemoveService) . (...) - C:\Program Files\USB Safely Remove\USBSRService.exe SS - | Auto 18/02/2012 24064 | C:\Windows\System32\uxtuneup.dll (UxTuneUp) . (.TuneUp Software.) - C:\Windows\System32\svchost.exe SR - | Auto 722528 | (vToolbarUpdater12.2.6) . (...) - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe SS - | Demand 18/02/2012 24064 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe ~ Scan Services in 00mn 10s End of the scan (1095 lines in 00mn 55s)(0)