~ Rapport de ZHPDiag v2014.8.3.113 - Nicolas Coolman (03/08/2014) ~ Lancé par luce (04/08/2014 11:53:06) ~ Adresse du Site Web http://nicolascoolman.fr ~ Adresse du Forum http://forum.nicolascoolman.fr ~ Traduit par Nicolas Coolman ~ Etat de la version : Version à jour. ~ Liste blanche : Désactivée par l'utilisateur ~ Elévation des Privilèges : OK ~ User Account Control (UAC): Not Found ---\\ Navigateurs Internet MSIE: Internet Explorer v8.0.6001.18702 MFIE: Mozilla Firefox 31.0 GCIE: Google Chrome v36.0.1985.125 (Defaut) ---\\ Informations sur les produits Windows ~ Langage: Français Microsoft Windows XP, 32-bit Service Pack 3 (Build 2600) Windows Automatic Updates : OK Windows Genuine Advantage : OK ---\\ Logiciels de protection du système avast! Free Antivirus v9.0.2021 Malwarebytes Anti-Malware version 2.0.2.1012 ---\\ Logiciels d'optimisation du système CCleaner v4.07 Uniblue RegistryBooster 2010 ---\\ Logiciels de partage PeerToPeer ---\\ Surveillance de Logiciels Adobe Flash Player 14 Plugin Adobe Reader 8.3.1 - Français ---\\ Informations sur le système ~ Processor: x86 Family 6 Model 14 Stepping 8, GenuineIntel ~ Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 2038 MB (60% free) System Restore: Activé (Enable) System drive C: has 19 GB (18%) free of 103 GB ---\\ Mode de connexion au système ~ Computer Name: YOUR-A289DD5720 ~ User Name: luce ~ All Users Names: SUPPORT_388945a0, luce, HelpAssistant, ASPNET, Administrateur, ~ Unselected Option: None Logged in as Administrator ---\\ Variables d'environnement ~ System Unit : C:\ ~ %AppZHP% : C:\Documents and Settings\luce\Application Data\ZHP\ ~ %AppData% : C:\Documents and Settings\luce\Application Data\ ~ %Desktop% : C:\Documents and Settings\luce\Bureau\ ~ %Favorites% : C:\Documents and Settings\luce\Favoris\ ~ %LocalAppData% : C:\Documents and Settings\luce\Local Settings\Application Data\ ~ %StartMenu% : C:\Documents and Settings\luce\Menu Démarrer\ ~ %Windir% : C:\WINDOWS\ ~ %System% : C:\WINDOWS\system32\ ---\\ Enumération des unités disques C: Hard drive, Flash drive, Thumb drive (Free 19 Go of 103 Go) D: Hard drive, Flash drive, Thumb drive (Free 1 Go of 8 Go) E: CD-ROM drive (Not Inserted) F: Floppy drive, Flash card reader, USB Key (Free 3 Go of 4 Go) ---\\ Etat du Centre de Sécurité Windows [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ~ Security Center: 45 Scanned in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.14/04/2008 - 03:34:03.) -- C:\WINDOWS\Explorer.exe [1037824] [MD5.E1948B1F45A176FB4A0251446A5AE86D] - (.Microsoft Corporation - Internet Extensions for Win32.) (.06/03/2014 - 18:58:52.) -- C:\WINDOWS\system32\wininet.dll [920064] [MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.14/04/2008 - 03:34:28.) -- C:\WINDOWS\system32\Winlogon.exe [512000] [MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.17/08/2011 - 14:49:54.) -- C:\WINDOWS\system32\Drivers\AFD.sys [138496] [MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 - 19:40:30.) -- C:\WINDOWS\system32\Drivers\atapi.sys [96512] [MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/04/2008 - 20:14:21.) -- C:\WINDOWS\system32\Drivers\Cdfs.sys [63744] [MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.13/04/2008 - 19:40:46.) -- C:\WINDOWS\system32\Drivers\Cdrom.sys [62976] [MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) (.14/04/2008 - 02:57:38.) -- C:\WINDOWS\system32\Drivers\Fips.sys [44672] [MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.13/04/2008 - 17:36:05.) -- C:\WINDOWS\system32\Drivers\HDAudBus.sys [144384] [MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) (.14/04/2008 - 03:00:52.) -- C:\WINDOWS\system32\Drivers\i8042prt.sys [54144] [MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.13/04/2008 - 19:40:58.) -- C:\WINDOWS\system32\Drivers\Imapi.sys [42112] [MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) (.13/04/2008 - 19:57:15.) -- C:\WINDOWS\system32\Drivers\IpNat.sys [152832] [MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.13/04/2008 - 20:19:42.) -- C:\WINDOWS\system32\Drivers\IPSec.sys [75264] [MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.15/07/2011 - 14:29:31.) -- C:\WINDOWS\system32\Drivers\MRxSmb.sys [456320] [MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) (.13/04/2008 - 20:21:00.) -- C:\WINDOWS\system32\Drivers\netBT.sys [162816] [MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.13/04/2008 - 20:15:53.) -- C:\WINDOWS\system32\Drivers\ntfs.sys [574976] [MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/04/2008 - 03:09:40.) -- C:\WINDOWS\system32\Drivers\Parport.sys [80384] [MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.13/04/2008 - 20:19:43.) -- C:\WINDOWS\system32\Drivers\Rasl2tp.sys [51328] [MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.13/04/2008 - 19:32:51.) -- C:\WINDOWS\system32\Drivers\rdpdr.sys [196224] [MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) (.14/04/2008 - 02:57:34.) -- C:\WINDOWS\system32\Drivers\redbook.sys [58752] [MD5.46DE1126684369BACE4849E4FC8C43CA] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.14/04/2008 - 02:56:04.) -- C:\WINDOWS\system32\Drivers\volsnap.sys [53376] ~ Generic Processes: Scanned in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 2/8478 ~ Mes musiques (My Musics) : 15/105 ~ Mes Videos (My Videos) : 2/59 ~ Mes Favoris (My Favorites) : 1/204 ~ Mes Documents (My Documents) : 3/10109 ~ Mon Bureau (My Desktop) : 1/77 ~ Menu demarrer (Programs) : 1/47 ~ Hidden Files: Scanned in 00mn 01s ---\\ Processus lancés [MD5.17A96D36938CCBAD4134FA7B389C87E6] - (.Tall Emu - Online Armor Component.) -- C:\Program Files\Tall Emu\Online Armor\oacat.exe [1244360] [PID.1220] [MD5.73F5C13B431915BAE35254B4E95DFB71] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344] [PID.1628] [MD5.8648D670AE0D95C95E7BBB5B80661796] - (.Microsoft Corporation - MS DTC console program.) -- C:\WINDOWS\system32\msdtc.exe [6144] [PID.1592] [MD5.86E8BCAA91FC2ACFACD99CF2BF9F1F47] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe [49152] [PID.2496] [MD5.7AEA4DF1CA68FD45DD4BBE1F0243CE7F] - (...) -- C:\Program Files\CDBurnerXP\NMSAccessU.exe [71096] [PID.2716] [MD5.D2EF43881DEF1BBAED2393AD6E6BA955] - (.Clarus, Inc. - SZDrvSvc.) -- C:\Program Files\Clarus\Samsung Drive Manager\SZDrvSvc.exe [19456] [PID.3184] [MD5.52404CC76E9D53843BDF97564BB16BED] - (.Microsoft Corporation - MCRD Device Service.) -- C:\WINDOWS\ehome\mcrdsvc.exe [99328] [PID.3280] [MD5.E9B5F354AE80325283FD5C1C05217B01] - (.Microsoft Corporation - Message Queuing Service.) -- C:\WINDOWS\system32\mqsvc.exe [4608] [PID.2292] [MD5.04C1DCBB226C6AE647B794833CE3CEB6] - (.Hewlett-Packard Development Company, L.P. - hpqwmiex Module.) -- C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [135168] [PID.1808] [MD5.5E9A6658A2A69AE7EB195113B7A2E7A9] - (.Microsoft Corporation - Application Layer Gateway Service.) -- C:\WINDOWS\System32\alg.exe [44544] [PID.352] [MD5.23E8D8A4001CCB62A5B648C962C64FE7] - (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1040384] [PID.3824] [MD5.0B692C328AF648AD478A967C21DD7936] - (.Pas de propriétaire - AgentMon Application.) -- C:\Program Files\VTech\DownloadManager\System\AgentMonitor.exe [391040] [PID.2572] [MD5.099E24D4FE2ADA03F648B470830BD382] - (.Dropbox, Inc. - Dropbox.) -- C:\Documents and Settings\luce\Application Data\Dropbox\bin\Dropbox.exe [35464216] [PID.2332] [MD5.D84AEA3F3329D622DFC1297DDDF6163B] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720] [PID.3276] [MD5.4FBC630768570E6AC35C3DE8F6EC79F5] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes Anti-Malware\mbam.exe [6970168] [PID.3632] [MD5.B43E68B8A022FB00FF54360D408E871B] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [860488] [PID.3428] [MD5.AAB9A24EC7199F18D588AA8BF705D345] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [8084992] [PID.3568] ~ Processes Running: Scanned in 00mn 00s ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Documents and Settings\luce\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences G0 - GCSP: Preference [User Data\Default][HomePage] http://www.google.fr G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Google Store v.0.2 (Activé) G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé) G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Activé) G2 - GCE: Preference [User Data\Default] [gfdkimpbcpahaombhbimeihdjnejgicl] Feedback v.1.0 (Activé) G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] avast! Online Security v.9.0.2022.121, (Désactivé) G2 - GCE: Preference [User Data\Default] [kmendfapggjehodndflmmgagdbamhnfd] CryptoTokenExtension v.0.0.1 (Activé) G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé) G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé) G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé) G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Google+ Hangouts v.1.0 (Activé) G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v.0.0.6.1 (Activé) ---\\ Liste des dossiers d'extension Google Chrome G2 - EXT: C:\Documents and Settings\luce\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [avast! Online Security] G2 - EXT: C:\Documents and Settings\luce\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [Google Wallet] ~ Google Lines Browser: 14 Scanned in 00mn 00s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) M0 - MFSP: prefs.js [luce - zf7ahcjf.default-1407085586598] www.google.fr M2 - MFEP: prefs.js [luce - zf7ahcjf.default-1407085586598\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}] [dwhelper] DownloadHelper v4.9.22 (..) M2 - MFEP: Extension [luce - zf7ahcjf.default-1407085586598] {1018e4d6-728f-4b20-ad56-37578a4de76b} M2 - MFEP: Extension [luce - zf7ahcjf.default-1407085586598] {66E978CD-981F-47DF-AC42-E3CF417C1467} M2 - MFEP: Extension [luce - zf7ahcjf.default-1407085586598] {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 8.3.1.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.30514.0.) -- c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.5] - (.Microsoft Corp. - Office Live Update v1.5.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8117.0416] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll P2 - FPN: [HKLM] [@RIM.com/WebSLLauncher,version=1.0] - (...) -- C:\Program Files\Fichiers communs\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.0] - (.VideoLAN - VLC media player Web Plugin 2.1.3.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll =>.VideoLAN P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.5] - (.VideoLAN - VLC media player Web Plugin 2.1.3.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll =>.VideoLAN ~ Firefox Browser: 16 Scanned in 00mn 00s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.aliceadsl.fr R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://www.google.com R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0 R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2 ~ IE Browser: 12 Scanned in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 ~ Proxy management: Scanned in 00mn 00s ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ~ Keys: Scanned in 00mn 00s ---\\ Hosts file redirection (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Hosts File: Scanned in 00mn 00s ~ Nombre de lignes (Lines number): 1 ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} . (.Microsoft Corporation - Family Safety Browser Helper Object Library.) -- C:\Program Files\Windows Live\Family Safety\fssbho.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Sun Microsystems, Inc. - Java(TM) 2 Platform Standard Edition binary.) -- C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} . (...) -- "C:\Program Files\Microsoft\BingBar\BingExt.dll" (.not file.) =>Toolbar.Bing ~ BHO: 14 Scanned in 00mn 00s ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: Bing Bar - [HKLM]{8dcb7100-df86-4384-8842-8fa844297b3f} . (.Microsoft Corporation. - Extensions du client Bing.) -- C:\Program Files\Microsoft\BingBar\BingExt.dll =>Toolbar.Bing O3 - Toolbar: avast! Online Security - [HKLM]{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O3 - Toolbar\WebBrowser: (no name) - [HKCU]{01E04581-4EEE-11D0-BFE9-00AA005B4383} Clé orpheline O3 - Toolbar\WebBrowser: (no name) - [HKCU]{0E5CBF21-D15F-11D0-8301-00AA005B4383} Clé orpheline O3 - Toolbar\WebBrowser: (no name) - [HKCU]{C4069E3A-68F1-403E-B40E-20066696354B} Clé orpheline O3 - Toolbar\WebBrowser: (no name) - [HKCU]{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} Clé orpheline O3 - Toolbar\WebBrowser: (no name) - [HKCU]{21FA44EF-376D-4D53-9B0F-8A89D3229068} Clé orpheline ~ Toolbar: Scanned in 00mn 00s ---\\ Applications lancées au démarrage du système (O4) O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [@OnlineArmor GUI] . (.Tall Emu - Online Armor Component.) -- C:\Program Files\Tall Emu\Online Armor\oaui.exe O4 - HKLM\..\Run: [Tweak UI] Clé orpheline O4 - HKLM\..\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe O4 - HKLM\..\Run: [AgentMonitor] . (.Pas de propriétaire - AgentMon Application.) -- C:\Program Files\VTech\DownloadManager\System\AgentMonitor.exe O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd O4 - HKCU\..\Run: [CCleaner] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-21-330335342-898667485-1520520032-1005\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-21-330335342-898667485-1520520032-1005\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd O4 - HKUS\S-1-5-21-330335342-898667485-1520520032-1005\..\Run: [CCleaner] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd ~ Application: Scanned in 00mn 00s ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -- Clé orpheline O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} . (...) -- C:\Program Files\Hewlett-Packard\Smart Print 2.0\smartprint.ico O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} -- Clé orpheline O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe ~ IE Extra Buttons: Scanned in 00mn 00s ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll =>.Microsoft Corporation O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll =>.Microsoft Corporation ~ Winsock: 3 Scanned in 00mn 00s ---\\ Piratage de l'Option 'Rétablir les paramètres Web' (O14) O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL=http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=FR_FR&c=64&bd=presario&pf=laptop ~ IE Paramètres WEB: Scanned in 00mn 00s ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} ((no name)) - http://www.mypix.com/fr/fr/importer/newconf/aurigma5.8.1.0/ImageUploader5.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} ((no name)) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {DAF7E6E6-D53A-439A-B28D-12271406B8A9} ((no name)) - http://mobileapps.blackberry.com/devicesoftware/AxLoader.cab ~ Objets ActiveX: Scanned in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{965AC6B0-A313-436B-A8A9-2BAD017C6009}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{965AC6B0-A313-436B-A8A9-2BAD017C6009}: DhcpNameServer = 192.168.1.254 O17 - HKLM\System\CS2\Services\Tcpip\..\{965AC6B0-A313-436B-A8A9-2BAD017C6009}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS3\Services\Tcpip\..\{965AC6B0-A313-436B-A8A9-2BAD017C6009}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 ~ Domain: Scanned in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll =>.Microsoft Corporation O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll ~ Protocole Additionnel: Scanned in 00mn 00s ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\WINDOWS\system32\cscdll.dll O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\system32\dimsntfy.dll O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\WINDOWS\system32\igfxdev.dll O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\WINDOWS\system32\sclgntfy.dll O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\WlNotify.dll O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll ~ Winlogon: Scanned in 00mn 00s ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll ~ SSODL: 5 Scanned in 00mn 00s ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: hpqwmiex (hpqwmiex) . (.Hewlett-Packard Development Company, L.P. - hpqwmiex Module.) - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - Pas de description.) - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe O23 - Service: NMSAccess (NMSAccess) . (...) - C:\Program Files\CDBurnerXP\NMSAccessU.exe O23 - Service: Online Armor Helper Service (OAcat) . (.Tall Emu - Online Armor Component.) - C:\Program Files\Tall Emu\Online Armor\oacat.exe O23 - Service: Online Armor (SvcOnlineArmor) . (.Tall Emu - Online Armor Component.) - C:\Program Files\Tall Emu\Online Armor\oasrv.exe O23 - Service: Samsung Drive Manager Service (SZDrvSvc) . (.Clarus, Inc. - SZDrvSvc.) - C:\Program Files\Clarus\Samsung Drive Manager\SZDrvSvc.exe ~ Services: 8 Scanned in 00mn 05s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Word.) - C:\Program Files\Microsoft Office\Office10\WINWORD.exe O24 - Desktop General: BackupWallPaper - .(...) - C:\Documents and Settings\luce\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O24 - Desktop General: WallPaper - .(...) - C:\Documents and Settings\luce\Local Settings\Application Data\Microsoft\Wallpaper1.bmp ~ Desktop Component: 4 Scanned in 00mn 00s ---\\ Enumère les données de BootExecute (BEX) (O34) O34 - HKLM BootExecute: (autocheck autochk *) - File not found ~ BEX: 1 Scanned in 00mn 00s ---\\ Tâches planifiées en automatique (O39) [MD5.A6B6AB9502B63F43A9A56AE6AFB22078] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [262320] [MD5.6D51713A36C0733A4BDD94EAD5A33AD9] [APT] [At1] (.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPCustPartic.exe [2938984] [MD5.6D51713A36C0733A4BDD94EAD5A33AD9] [APT] [At2] (.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPCustPartic.exe [2938984] [MD5.6D51713A36C0733A4BDD94EAD5A33AD9] [APT] [At3] (.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPCustPartic.exe [2938984] [MD5.6D51713A36C0733A4BDD94EAD5A33AD9] [APT] [At4] (.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPCustPartic.exe [2938984] [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [136176] [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [136176] O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job [1002] O39 - APT: At1 - (.Hewlett-Packard Co..) -- C:\WINDOWS\Tasks\At1.job [462] O39 - APT: At2 - (.Hewlett-Packard Co..) -- C:\WINDOWS\Tasks\At2.job [462] O39 - APT: At3 - (.Hewlett-Packard Co..) -- C:\WINDOWS\Tasks\At3.job [462] O39 - APT: At4 - (.Hewlett-Packard Co..) -- C:\WINDOWS\Tasks\At4.job [462] O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job [1048] O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [1052] O39 - APT: - (..) -- C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP -mensuellement.job [214] ~ Scheduled Task: 16 Scanned in 00mn 00s ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Mise à jour de la version d’Internet Explorer - <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} . (.Microsoft Corporation - IE Per User Active Setup Uninstall Utility.) -- C:\WINDOWS\system32\ieudinit.exe O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Utilitaire d'installation du Lecteur Windows Media Microsoft.) -- C:\WINDOWS\inf\unregmp2.exe =>.Microsoft Corporation O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\WINDOWS\system32\ie4uinit.exe.mui O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - IEAK branding.) -- C:\WINDOWS\system32\iedkcs32.dll O40 - ASIC: Outlook Express - >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} . (.Microsoft Corporation - Windows NT User Data Migration Tool.) -- C:\WINDOWS\system32\shmgrate.exe =>.Microsoft Corporation O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) 2 Platform Standard Edition binary.) -- C:\Program Files\Java\jre1.5.0_06\bin\regutils.dll O40 - ASIC: Microsoft NetShow Player - {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} . (.Microsoft Corporation - Windows Media 6.4 Player Shim.) -- C:\WINDOWS\system32\wmpdxm.dll O40 - ASIC: Lecteur Windows Media Microsoft 6.4 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media 6.4 Player Shim.) -- C:\WINDOWS\system32\wmpdxm.dll =>.Microsoft Corporation O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\WINDOWS\system32\themeui.dll O40 - ASIC: Microsoft Outlook Express 6 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Bibliothèque d'installation Outlook Express.) -- C:\Program Files\Outlook Express\setup50.exe =>.Microsoft Corporation O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (...) -- C:\WINDOWS\INF\msnetmtg.inf O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (...) -- C:\WINDOWS\INF\msmsgs.inf O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\WINDOWS\system32\msieftp.dll O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (...) -- C:\WINDOWS\INF\wmp.inf =>.Microsoft Corporation O40 - ASIC: Carnet d'adresses 6 - {7790769C-0471-11d2-AF11-00C04FA35D02} . (.Microsoft Corporation - Bibliothèque d'installation Outlook Express.) -- C:\Program Files\Outlook Express\setup50.exe =>.Microsoft Corporation O40 - ASIC: Mise à jour du Bureau Windows - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll O40 - ASIC: Internet Explorer - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\WINDOWS\system32\ie4uinit.exe.mui O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- c:\WINDOWS\system32\mscories.dll O40 - ASIC: Google Chrome - {8A69D345-D564-463c-AFF1-A69D9E530F96} . (.Google Inc. - Google Chrome Installer.) -- C:\Program Files\Google\Chrome\Application\36.0.1985.125\Installer\chrmstp.exe O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 14.0 r0.) -- C:\WINDOWS\system32\Macromed\Flash\Flash32_14_0_0_145.ocx O40 - ASIC: Installed Component - S-1-5-21-330335342-898667485-1520520032-1005 - <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} -- Not Hexadécimal CLSID O40 - ASIC: Installed Component - S-1-5-21-330335342-898667485-1520520032-1005 - >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS -- Not Hexadécimal CLSID ~ Active Setup: 22 Scanned in 00mn 00s ---\\ Pilotes lancés au démarrage du système (O41) O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys O41 - Driver: (aswRdr) . (.AVAST Software - avast! TDI Redirect Driver.) - C:\WINDOWS\system32\drivers\aswRdr.sys O41 - Driver: (aswSnx) . (.AVAST Software - avast! Virtualization Driver.) - C:\WINDOWS\system32\drivers\aswSnx.sys O41 - Driver: (aswSP) . (.AVAST Software - avast! self protection module.) - C:\WINDOWS\system32\drivers\aswSP.sys O41 - Driver: (aswTdi) . (.AVAST Software - avast! TDI Filter Driver.) - C:\WINDOWS\system32\drivers\aswTdi.sys O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for RootKit Detection.) - C:\WINDOWS\system32\DRIVERS\avipbb.sys O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\system32\DRIVERS\cdrom.sys O41 - Driver: (eabfiltr) . (.Hewlett-Packard Development Company, L.P. - QLB PS/2 Keyboard filter driver.) - C:\WINDOWS\system32\DRIVERS\eabfiltr.sys O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\WINDOWS\system32\DRIVERS\i8042prt.sys O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\WINDOWS\system32\DRIVERS\imapi.sys O41 - Driver: (intelppm) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\WINDOWS\system32\DRIVERS\intelppm.sys O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\WINDOWS\system32\DRIVERS\ipsec.sys O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\WINDOWS\system32\DRIVERS\kbdclass.sys O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre souris HID.) - C:\WINDOWS\system32\DRIVERS\kbdhid.sys O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\WINDOWS\system32\DRIVERS\mouclass.sys O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\WINDOWS\system32\DRIVERS\mrxsmb.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\WINDOWS\system32\DRIVERS\netbios.sys O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\WINDOWS\system32\DRIVERS\netbt.sys O41 - Driver: (OADevice) . (.Tall Emu - OA Helper Driver.) - C:\WINDOWS\system32\drivers\OADriver.sys O41 - Driver: (OAmon) . (.Tall Emu - TDI Helper Driver.) - C:\WINDOWS\system32\drivers\OAmon.sys O41 - Driver: (OAnet) . (.Tall Emu Pty Ltd - OA Helper Driver.) - C:\WINDOWS\system32\drivers\OAnet.sys O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\WINDOWS\system32\DRIVERS\rasacd.sys O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\WINDOWS\system32\DRIVERS\rdbss.sys O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\WINDOWS\system32\DRIVERS\RDPCDD.sys O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\WINDOWS\system32\DRIVERS\redbook.sys O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\WINDOWS\system32\DRIVERS\ssmdrv.sys O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\WINDOWS\system32\DRIVERS\tcpip.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\WINDOWS\system32\DRIVERS\termdd.sys O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys O41 - Driver: (WmiAcpi) . (.Microsoft Corporation - Windows Management Interface for ACPI.) - C:\WINDOWS\system32\DRIVERS\wmiacpi.sys ~ Drivers: 120 Scanned in 00mn 00s ---\\ Logiciels installés (O42) O42 - Logiciel: Adiboud'Chou Sur la Banquise - (.Mindscape.) [HKLM] -- InstallShield_{93CCBA71-D35E-4BB5-8CDE-336BA5672BC7} O42 - Logiciel: Adobe Flash Player 14 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 14 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Reader 8.3.1 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A83000000003} O42 - Logiciel: Amélioration de nos services - (.Hewlett-Packard.) [HKLM] -- InstallShield_{23012310-3E05-46A5-88A9-C6CBCABCAC79} O42 - Logiciel: AnumanLive - (...) [HKLM] -- AnumanLive O42 - Logiciel: ArcSoft PhotoImpression 5 - (.ArcSoft.) [HKLM] -- {E629851A-1B1A-4671-961A-A9AF549E03A2} O42 - Logiciel: Bing Bar - (.Microsoft Corporation.) [HKLM] -- {B4089055-D468-45A4-A6BA-5A138DD715FC} =>Toolbar.Bing O42 - Logiciel: BlackBerry Desktop Software 5.0.1 - (.Research In Motion Ltd..) [HKLM] -- BlackBerry_{205A5182-EFC8-4C25-B61D-C164F8FF4048} O42 - Logiciel: BlackBerry Desktop Software 5.0.1 - (.Research In Motion Ltd..) [HKLM] -- {205A5182-EFC8-4C25-B61D-C164F8FF4048} O42 - Logiciel: BlackBerry® Media Sync - (.Research In Motion.) [HKLM] -- {689E0AB3-50B2-4E5A-9DCE-6DA9F5BE1314} O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1 O42 - Logiciel: Ciel Devis Factures Démo 11.0 - (.Ciel.) [HKLM] -- {FF4FAD40-F795-4932-B962-B5C93F726837} O42 - Logiciel: Clean Virus MSN - (.AxBx.) [HKLM] -- Clean Virus MSN_is1 O42 - Logiciel: ClocX (1.5b2) - (...) [HKLM] -- ClocX O42 - Logiciel: Coffret de pilotes Logitech QuickCam - (...) [HKLM] -- lvdrivers_11.50 O42 - Logiciel: Conexant HD Audio - (...) [HKLM] -- CNXT_HDAUDIO O42 - Logiciel: Connexion Facile à Internet - (.Hewlett-Packard.) [HKLM] -- InstallShield_{8105684D-8CA6-440D-8F58-7E5FD67A499D} O42 - Logiciel: Disney/Pixar UP - (.THQ.) [HKLM] -- {DE29F484-C1F2-4FFF-ACD8-1B729E3C638E} O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU] -- Dropbox O42 - Logiciel: Explor@ Park - (.VTech.) [HKLM] -- VTechDownloadManager O42 - Logiciel: Extension d'application APIBAT - (.APIBAT.) [HKLM] -- {B7C76AC1-35E0-4254-B97D-07DB2BD65D64} O42 - Logiciel: Farm Frenzy 3 - (.Mindscape.) [HKLM] -- {5186380B-691F-4A28-BD9D-40657F3AADAA} O42 - Logiciel: Flvto Youtube Downloader - (.Hotger.) [HKLM] -- Flvto Youtube Downloader O42 - Logiciel: GemMaster Mystic - (...) [HKLM] -- 99A88D57-2C93-491B-87B8-E41A870FB6BE O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: HD-DV decoder - (.NewSoft.) [HKLM] -- {C26ED93F-A16E-4FC9-B158-A1D5CC604949} O42 - Logiciel: HP Deskjet 3050A J611 series Aide - (.Hewlett Packard.) [HKLM] -- {97DDCAB8-B770-4089-A10F-67568069D78A} O42 - Logiciel: HP Help and Support - (.HPQ.) [HKLM] -- {A93C4E94-1005-489D-BEAA-B873C1AA6CFC} O42 - Logiciel: HP Imaging Device Functions 6.0 - (.HP.) [HKLM] -- HP Imaging Device Functions O42 - Logiciel: HP Photo Creations - (.HP.) [HKLM] -- HP Photo Creations O42 - Logiciel: HP Photosmart Premier Software 6.0 - (.HP.) [HKLM] -- HP Photo & Imaging =>.Hewlett-Packard Co O42 - Logiciel: HP Quick Launch Buttons 6.10 A2 - (.Hewlett-Packard Company.) [HKLM] -- {34D2AB40-150D-475D-AE32-BD23FB5EE355} O42 - Logiciel: HP QuickPlay 2.3 - (...) [HKLM] -- {45D707E9-F3C4-11D9-A373-0050BAE317E1} O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5} O42 - Logiciel: HP User Guides 0035 - (.Hewlett-Packard.) [HKLM] -- {BE247E71-C143-40BB-ADF2-A465DF062BAB} O42 - Logiciel: HP Wireless Assistant 2.00 G2 - (.Hewlett-Packard Company.) [HKLM] -- {4302B2DD-D958-40E3-BAF3-B07FFE1978CE} O42 - Logiciel: HiYo - (.IncrediMail.) [HKLM] -- HiYo O42 - Logiciel: HiYo - (.IncrediMail - Certified Microsoft Partner.) [HKLM] -- {00E1E235-AB45-4695-A156-073118949ED4} O42 - Logiciel: Hotfix for Windows Media Player 10 (KB903157) - (.Microsoft Corporation.) [HKLM] -- KB903157 =>.Microsoft Corporation O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5 O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5 O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (...) [HKLM] -- {8A708DD8-A5E6-11D4-A706-000629E95E20} O42 - Logiciel: Intel(R) Network Connections Drivers - (...) [HKLM] -- PROSet O42 - Logiciel: InterActual Player - (...) [HKLM] -- InterActual Player O42 - Logiciel: J2SE Runtime Environment 5.0 Update 6 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0150060} O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {8E5233E1-7495-44FB-8DEB-4BE906D59619} O42 - Logiciel: K-Lite Codec Pack 5.1.0 (Standard) - (...) [HKLM] -- KLiteCodecPack_is1 O42 - Logiciel: KC Softwares IDPhotoStudio - (.KC Softwares.) [HKLM] -- KC Softwares IDPhotoStudio_is1 O42 - Logiciel: Kit de Connexion Alice ADSL - (...) [HKLM] -- {3A0221AD-D30B-4320-8F9B-1D0F0E6C6843} O42 - Logiciel: Logiciel de base du périphérique HP Deskjet 3050A J611 series - (.Hewlett-Packard Co..) [HKLM] -- {D2782627-DEFC-486F-A424-FC178C9D70B4} =>.Hewlett-Packard Co O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94} O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.) [HKLM] -- {C04E32E0-0416-434D-AFB9-6969D703A9EF} O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: MSXML 6 Service Pack 2 (KB954459) - (.Microsoft Corporation.) [HKLM] -- {1A528690-6A2D-4BC5-B143-8C4AE8D19D96} O42 - Logiciel: Macromedia Flash Player 8 - (.Macromedia.) [HKLM] -- {6815FCDD-401D-481E-BA88-31B4754C2B46} O42 - Logiciel: Macromedia Shockwave Player - (.Macromedia, Inc..) [HKLM] -- {838A1BC9-95CA-4880-9BE3-2A7D23600A2B} O42 - Logiciel: Malwarebytes Anti-Malware version 2.0.2.1012 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes Anti-Malware_is1 O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570} O42 - Logiciel: Microsoft Publisher 2002 - (.Microsoft Corporation.) [HKLM] -- {9019040C-6000-11D3-8CFE-0050048383C9} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5} O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB} O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {A059DE09-1B49-4450-B340-7AE097EC3F04} O42 - Logiciel: Mozilla Firefox 31.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 31.0 (x86 fr) O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService O42 - Logiciel: NetWaiting - (.BVRP Software, Inc.) [HKLM] -- {3F92ABBB-6BBF-11D5-B229-002078017FBF} O42 - Logiciel: Online Armor 3.5 - (.Tall Emu Pty Ltd.) [HKLM] -- OnlineArmor_is1 O42 - Logiciel: Otto - (...) [HKLM] -- 0D20D36D-A11C-444c-9AF7-70CBFED42ECF O42 - Logiciel: Oui-Oui -En route pour l'école - (...) [HKLM] -- Oui-Oui -En route pour l'école O42 - Logiciel: Photosmart 130,230,7150,7345,7350,7550 (Supprimer uniquement) - (...) [HKLM] -- hphuni04 O42 - Logiciel: Pingu et ses Amis - (...) [HKLM] -- {2F351040-9251-11D4-821A-0050BAA163D4} O42 - Logiciel: Qtrax Player - (.portal.qtrax.com.) [HKCU] -- 3823525114.portal.qtrax.com =>P2P.Qtrax O42 - Logiciel: QuickTime - (...) [HKLM] -- QuickTime O42 - Logiciel: Roxio Media Manager - (.Roxio.) [HKLM] -- {B98BE95C-E76F-4246-B8E6-BEB8EE791D06} O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44} O42 - Logiciel: Sage Apibâtiment Batigest Edition Artisan - (...) [HKLM] -- Batigest Edition Artisan O42 - Logiciel: Samsung Drive Manager - (.Clarus.) [HKLM] -- {9F1A6A24-4901-42F6-A355-5DD2B82E62AE} O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM] -- {758C8301-2696-4855-AF45-534B1200980A} O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906 O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7} O42 - Logiciel: Skype™ 6.2 - (.Skype Technologies S.A..) [HKLM] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D} O42 - Logiciel: Soft Data Fax Modem with SmartCP - (...) [HKLM] -- CNXT_MODEM_PCI_VEN_14F1&DEV_5045_at8ven5m O42 - Logiciel: Sonic Audio Module - (.Sonic Solutions.) [HKLM] -- {AB708C9B-97C8-4AC9-899B-DBF226AC9382} O42 - Logiciel: Sonic Copy Module - (.Sonic Solutions.) [HKLM] -- {B12665F4-4E93-4AB4-B7FC-37053B524629} O42 - Logiciel: Sonic Data Module - (.Sonic Solutions.) [HKLM] -- {075473F5-846A-448B-BCB3-104AA1760205} O42 - Logiciel: Sonic Express Labeler - (.Sonic Solutions.) [HKLM] -- {6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA} O42 - Logiciel: Sonic MyDVD Plus - (.Sonic Solutions.) [HKLM] -- {21657574-BD54-48A2-9450-EB03B2C7FC29} O42 - Logiciel: Sonic Update Manager - (.Sonic Solutions.) [HKLM] -- {30465B6C-B53F-49A1-9EBA-A3F187AD502E} O42 - Logiciel: SonicAC3Encoder - (.Sonic Solutions.) [HKLM] -- {52FBAE98-D389-4281-8C14-21B4046CCB4E} O42 - Logiciel: SonicMPEGEncoder - (.Sonic Solutions.) [HKLM] -- {B16AF568-A644-483C-A6DA-5028CD019C8C} O42 - Logiciel: Spotify - (...) [HKLM] -- Spotify O42 - Logiciel: Streaming Audio Recorder V3.3.3 - (.Apowersoft.) [HKLM] -- {B6D9D06B-4B4D-4B41-B963-C056B627F704}_is1 O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics.) [HKLM] -- SynTPDeinstKey O42 - Logiciel: Todae - Live Media - (.Todae.fr.) [HKLM] -- Live Media O42 - Logiciel: Uniblue RegistryBooster 2010 - (.Uniblue Systems Ltd.) [HKLM] -- {E63E34A7-E552-412B-9E40-FD6FC5227ABA}_is1 O42 - Logiciel: Unlocker 1.8.7 - (.Cedrick Collomb.) [HKLM] -- Unlocker O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM] -- VLC media player =>.VideoLAN O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.) [HKLM] -- KB892130 O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.) [HKLM] -- WGA O42 - Logiciel: Windows Imaging Component - (.Microsoft Corporation.) [HKLM] -- WIC O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8 O42 - Logiciel: Windows Media Connect - (.Microsoft Corporation.) [HKLM] -- WMCSetup O42 - Logiciel: Windows Media Format 11 runtime - (...) [HKLM] -- Windows Media Format Runtime O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- WMFDist11 O42 - Logiciel: Windows XP Service Pack 3 - (.Microsoft Corporation.) [HKLM] -- Windows XP Service O42 - Logiciel: Xvid 1.2.2 final uninstall - (.Xvid team (Koepi).) [HKLM] -- Xvid_is1 O42 - Logiciel: avast! Free Antivirus v9.0.2021 - (.AVAST Software.) [HKLM] -- Avast O42 - Logiciel: neroxml - (.Nero AG.) [HKLM] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B} O42 - Logiciel: Étude pour l'amélioration du produit HP Deskjet 3050A J611 series - (.Hewlett-Packard Co..) [HKLM] -- {F3056F80-0EFA-457F-A80D-9DF753139323} =>.Hewlett-Packard Co ~ Logic: 87 Scanned in 00mn 00s ---\\ HKCU & HKLM Software Keys [HKCU\Software\ALWIL Software] [HKCU\Software\AVAST Software] [HKCU\Software\Adobe] [HKCU\Software\Ahead] [HKCU\Software\AppDataLow] [HKCU\Software\Aurigma] [HKCU\Software\Avira] [HKCU\Software\BitDefender] [HKCU\Software\BonSoft] [HKCU\Software\Canneverbe Limited] [HKCU\Software\Clarus] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\CyberLink] [HKCU\Software\DivXNetworks] [HKCU\Software\FlvtoConverter] [HKCU\Software\Freeware] [HKCU\Software\GNU] [HKCU\Software\Gabest] [HKCU\Software\Genesis Digital Innovations] =>PUP.Genesis [HKCU\Software\Google] [HKCU\Software\HPQ] [HKCU\Software\HP] [HKCU\Software\Haali] [HKCU\Software\Hewlett-Packard] [HKCU\Software\HiYo] [HKCU\Software\IM Providers] [HKCU\Software\InstallShield] [HKCU\Software\Intel] [HKCU\Software\JEDI-VCL] [HKCU\Software\JavaSoft] [HKCU\Software\KC Softwares] [HKCU\Software\Leadertech] [HKCU\Software\Legacy Interactive] [HKCU\Software\Licenses] [HKCU\Software\Logitech] [HKCU\Software\Macromedia] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\MediaInfo] [HKCU\Software\Mindscape] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\Nero] [HKCU\Software\Netscape] [HKCU\Software\ODBC] [HKCU\Software\OnlineArmor] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\Premium Clock] [HKCU\Software\RealNetworks] [HKCU\Software\RealVNC] [HKCU\Software\Research In Motion] [HKCU\Software\Roxio] [HKCU\Software\Samsung] [HKCU\Software\SecuROM] [HKCU\Software\Skype] [HKCU\Software\Softthinks] [HKCU\Software\Sonic Solutions] [HKCU\Software\Sonic] [HKCU\Software\Spotify] [HKCU\Software\Streaming Audio Recorder] [HKCU\Software\Synaptics] [HKCU\Software\Sysinternals] [HKCU\Software\TeleCharger] [HKCU\Software\Todae] [HKCU\Software\Trolltech] [HKCU\Software\VB and VBA Program Settings] [HKCU\Software\Visan] [HKCU\Software\WinRAR SFX] [HKCU\Software\Windows Live Writer] [HKCU\Software\Windows Live] [HKCU\Software\Wow6432Node] [HKCU\Software\Yahoo] [HKCU\Software\ej-technologies] [HKCU\Software\hotger] [HKLM\Software\A-Patch] [HKLM\Software\ALWIL Software] [HKLM\Software\AVAST Software] [HKLM\Software\AVS4YOU] [HKLM\Software\Adobe] [HKLM\Software\AdwCleaner] [HKLM\Software\Ahead] [HKLM\Software\Alice ADSL] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\ArcSoft] [HKLM\Software\Audible] [HKLM\Software\BBC Multimedia] [HKLM\Software\BVRP Software, Inc] [HKLM\Software\BrowserChoice] [HKLM\Software\C07ft5Y] [HKLM\Software\CXT] [HKLM\Software\Canneverbe Limited] [HKLM\Software\Clarus] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Codec Tweak Tool] [HKLM\Software\Conexant] [HKLM\Software\CyberLink] [HKLM\Software\Debug] [HKLM\Software\Dropbox] [HKLM\Software\EURATEC] [HKLM\Software\GNU] [HKLM\Software\Gabest] [HKLM\Software\Gemplus] [HKLM\Software\Google] [HKLM\Software\HPQ] [HKLM\Software\HP] [HKLM\Software\HaaliMkx] [HKLM\Software\Hachette Multimedia] [HKLM\Software\Hachette Multimédia] [HKLM\Software\Hewlett-Packard] [HKLM\Software\IM Providers] [HKLM\Software\InstallShield] [HKLM\Software\InstalledOptions] [HKLM\Software\Intel] [HKLM\Software\InterActual Technologies] [HKLM\Software\InterVideo] [HKLM\Software\JavaSoft] [HKLM\Software\KLCodecPack] [HKLM\Software\LEAD Technologies, Inc.] [HKLM\Software\LightScribe] [HKLM\Software\Logitech] [HKLM\Software\LÀ-HAUT] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes Anti-Rootkit] [HKLM\Software\Malwarebytes' Anti-Malware (Trial)] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\MarkAny] [HKLM\Software\McAfee.com] [HKLM\Software\MicroVision] [HKLM\Software\Microgistix] [HKLM\Software\MimarSinan] [HKLM\Software\Mindscape] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NewSoft] [HKLM\Software\ODBC] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\Program Groups] [HKLM\Software\RealNetworks] [HKLM\Software\RealVNC] [HKLM\Software\RegisteredApplications] [HKLM\Software\Research In Motion] [HKLM\Software\RocketLife] [HKLM\Software\Roxio] [HKLM\Software\SAMSUNG] [HKLM\Software\Safer Networking Limited] [HKLM\Software\Sage Apibâtiment] [HKLM\Software\Sage] [HKLM\Software\Schlumberger] [HKLM\Software\Secure] [HKLM\Software\Skype] [HKLM\Software\SoftThinks] [HKLM\Software\Sonic] [HKLM\Software\Swearware] [HKLM\Software\Symantec] [HKLM\Software\Synaptics] [HKLM\Software\THQ] [HKLM\Software\Tall Emu] [HKLM\Software\Todae] [HKLM\Software\UIU] [HKLM\Software\UP] [HKLM\Software\VideoLAN] [HKLM\Software\Visan] [HKLM\Software\Windows 3.1 Migration Status] [HKLM\Software\Wow6432Node] [HKLM\Software\X-AVCSD] [HKLM\Software\Xing Technology Corp.] [HKLM\Software\Yahoo] [HKLM\Software\Yuan High-Tech] [HKLM\Software\ZSMC] [HKLM\Software\ej-technologies] [HKLM\Software\environment] [HKLM\Software\magnet] [HKLM\Software\mozilla.org] ~ Key Software: 382 Scanned in 00mn 00s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 02/11/2013 - 13:24:04 - [] ----D C:\Program Files\Adobe O43 - CFD: 11/10/2009 - 13:29:56 - [] ----D C:\Program Files\Alice O43 - CFD: 28/11/2010 - 17:55:33 - [] ----D C:\Program Files\Alwil Software O43 - CFD: 30/12/2013 - 21:20:37 - [] ----D C:\Program Files\Apowersoft O43 - CFD: 26/12/2008 - 19:01:53 - [] ----D C:\Program Files\ArcSoft O43 - CFD: 02/11/2013 - 14:30:57 - [] ----D C:\Program Files\AVAST Software O43 - CFD: 07/07/2009 - 22:14:10 - [] ----D C:\Program Files\AVS4YOU O43 - CFD: 28/11/2010 - 16:39:52 - [] ----D C:\Program Files\AxBx O43 - CFD: 02/11/2013 - 13:43:15 - [] ----D C:\Program Files\CCleaner O43 - CFD: 14/08/2010 - 11:46:10 - [] ----D C:\Program Files\CDBurnerXP O43 - CFD: 04/02/2013 - 10:35:42 - [] ----D C:\Program Files\Ciel O43 - CFD: 07/07/2012 - 13:47:34 - [] ----D C:\Program Files\Clarus O43 - CFD: 08/03/2010 - 15:29:35 - [] ----D C:\Program Files\ClocX O43 - CFD: 28/10/2006 - 19:26:55 - [0] ----D C:\Program Files\ComPlus Applications O43 - CFD: 08/11/2008 - 22:20:48 - [] ----D C:\Program Files\CONEXANT O43 - CFD: 28/07/2012 - 18:52:11 - [] ----D C:\Program Files\Copie de USB Drivers O43 - CFD: 20/06/2014 - 15:28:18 - [] ----D C:\Program Files\Dropbox O43 - CFD: 03/08/2014 - 17:49:25 - [] ----D C:\Program Files\Fichiers communs O43 - CFD: 08/11/2008 - 22:21:36 - [] ----D C:\Program Files\FrenchOtto O43 - CFD: 08/11/2008 - 22:21:38 - [] ----D C:\Program Files\GemMasterFrench O43 - CFD: 30/07/2012 - 20:41:21 - [] ----D C:\Program Files\Google O43 - CFD: 02/12/2011 - 19:39:15 - [] ----D C:\Program Files\Gost In Love O43 - CFD: 15/09/2012 - 19:50:35 - [] ----D C:\Program Files\GUME.tmp O43 - CFD: 24/01/2010 - 18:34:08 - [] ----D C:\Program Files\Hachette Multimedia O43 - CFD: 09/01/2010 - 19:11:06 - [] ----D C:\Program Files\Hachette Multimédia O43 - CFD: 29/07/2013 - 21:48:35 - [] ----D C:\Program Files\Hewlett-Packard O43 - CFD: 19/03/2011 - 15:15:12 - [] ----D C:\Program Files\HiYo O43 - CFD: 29/07/2013 - 21:46:43 - [] ----D C:\Program Files\HP O43 - CFD: 29/07/2013 - 21:48:27 - [] ----D C:\Program Files\HP Photo Creations O43 - CFD: 15/11/2008 - 18:20:34 - [] ----D C:\Program Files\HP Photosmart 11 =>.Hewlett-Packard Co O43 - CFD: 08/11/2008 - 14:32:31 - [] ----D C:\Program Files\HPQ O43 - CFD: 15/07/2012 - 21:27:42 - [] --H-D C:\Program Files\InstallShield Installation Information O43 - CFD: 15/06/2010 - 18:17:18 - [] ----D C:\Program Files\InterActual O43 - CFD: 11/04/2014 - 00:34:13 - [] ----D C:\Program Files\Internet Explorer O43 - CFD: 08/11/2008 - 22:22:46 - [] ----D C:\Program Files\Java O43 - CFD: 11/10/2009 - 15:05:21 - [] ----D C:\Program Files\K-Lite Codec Pack O43 - CFD: 31/08/2009 - 13:16:51 - [] ----D C:\Program Files\KC Softwares O43 - CFD: 04/08/2014 - 11:42:21 - [] ----D C:\Program Files\Malwarebytes Anti-Malware O43 - CFD: 13/05/2012 - 19:55:07 - [] ----D C:\Program Files\MarkAny O43 - CFD: 10/10/2009 - 19:39:55 - [] ----D C:\Program Files\Messenger O43 - CFD: 27/07/2012 - 19:01:13 - [] ----D C:\Program Files\Microsoft O43 - CFD: 12/11/2008 - 00:04:46 - [] ----D C:\Program Files\Microsoft CAPICOM 2.1.0.2 O43 - CFD: 08/11/2008 - 22:22:55 - [] ----D C:\Program Files\microsoft frontpage O43 - CFD: 09/11/2008 - 11:46:53 - [] ----D C:\Program Files\Microsoft Office O43 - CFD: 25/07/2014 - 21:29:25 - [] ----D C:\Program Files\Microsoft Silverlight O43 - CFD: 09/11/2008 - 11:17:02 - [] ----D C:\Program Files\Microsoft SQL Server Compact Edition O43 - CFD: 18/12/2008 - 21:06:44 - [] ----D C:\Program Files\Microsoft Sync Framework O43 - CFD: 08/11/2008 - 22:23:22 - [] ----D C:\Program Files\Microsoft Works O43 - CFD: 15/07/2012 - 21:27:01 - [] ----D C:\Program Files\Mindscape O43 - CFD: 13/08/2010 - 01:25:17 - [] ----D C:\Program Files\Movie Maker O43 - CFD: 30/07/2014 - 22:36:54 - [] ----D C:\Program Files\Mozilla Firefox O43 - CFD: 31/07/2014 - 21:22:30 - [] ----D C:\Program Files\Mozilla Maintenance Service O43 - CFD: 15/08/2009 - 18:52:16 - [] ----D C:\Program Files\MSBuild O43 - CFD: 08/11/2008 - 22:23:23 - [] ----D C:\Program Files\MSN O43 - CFD: 08/11/2008 - 22:23:24 - [] ----D C:\Program Files\MSN Gaming Zone O43 - CFD: 10/11/2008 - 23:41:55 - [0] ----D C:\Program Files\MSXML 4.0 O43 - CFD: 30/07/2009 - 20:46:12 - [] ----D C:\Program Files\MSXML 6.0 O43 - CFD: 10/10/2009 - 13:29:33 - [] ----D C:\Program Files\Navilog1 O43 - CFD: 10/10/2009 - 19:30:46 - [] ----D C:\Program Files\NetMeeting O43 - CFD: 08/11/2008 - 22:23:26 - [] ----D C:\Program Files\NetWaiting O43 - CFD: 08/11/2008 - 22:23:37 - [] ----D C:\Program Files\Online Services O43 - CFD: 17/12/2010 - 04:00:33 - [] ----D C:\Program Files\Outlook Express =>.Microsoft Corporation O43 - CFD: 08/03/2010 - 15:18:09 - [] ----D C:\Program Files\Premium Clock O43 - CFD: 24/01/2010 - 18:29:29 - [] ----D C:\Program Files\QuickTime O43 - CFD: 15/08/2009 - 18:52:06 - [] ----D C:\Program Files\Reference Assemblies O43 - CFD: 13/08/2011 - 19:26:07 - [] ----D C:\Program Files\Research In Motion O43 - CFD: 13/08/2011 - 19:32:39 - [] ----D C:\Program Files\Roxio O43 - CFD: 28/07/2012 - 19:02:00 - [] ----D C:\Program Files\Samsung O43 - CFD: 08/11/2008 - 22:23:47 - [] ----D C:\Program Files\Services en ligne O43 - CFD: 04/03/2013 - 10:41:57 - [] R---D C:\Program Files\Skype O43 - CFD: 08/11/2008 - 22:24:20 - [] ----D C:\Program Files\Sonic O43 - CFD: 11/08/2010 - 11:30:16 - [] ----D C:\Program Files\Spotify O43 - CFD: 11/10/2009 - 13:57:12 - [] ----D C:\Program Files\Spybot - Search & Destroy O43 - CFD: 08/11/2008 - 22:24:23 - [] ----D C:\Program Files\Synaptics O43 - CFD: 11/10/2009 - 15:03:25 - [] ----D C:\Program Files\Tall Emu O43 - CFD: 15/10/2011 - 16:42:40 - [0] ----D C:\Program Files\The Game Factory O43 - CFD: 10/06/2011 - 20:45:50 - [] ----D C:\Program Files\THQ O43 - CFD: 15/04/2011 - 19:32:09 - [] ----D C:\Program Files\Tibidous O43 - CFD: 28/10/2006 - 19:26:58 - [0] --H-D C:\Program Files\Uninstall Information O43 - CFD: 02/11/2013 - 14:02:20 - [] ----D C:\Program Files\Unlocker O43 - CFD: 27/01/2009 - 21:56:52 - [] ----D C:\Program Files\VideoLAN O43 - CFD: 01/01/2014 - 16:44:54 - [] ----D C:\Program Files\VTech O43 - CFD: 04/03/2013 - 10:42:05 - [] ----D C:\Program Files\Windows Live O43 - CFD: 18/12/2008 - 21:03:05 - [] ----D C:\Program Files\Windows Live SkyDrive O43 - CFD: 08/11/2008 - 22:24:26 - [] ----D C:\Program Files\Windows Media Connect 2 O43 - CFD: 07/11/2009 - 22:11:54 - [] ----D C:\Program Files\Windows Media Player =>.Microsoft Corporation O43 - CFD: 10/10/2009 - 19:30:43 - [] ----D C:\Program Files\Windows NT O43 - CFD: 08/11/2008 - 22:24:31 - [] ----D C:\Program Files\Windows Plus O43 - CFD: 14/08/2010 - 11:23:41 - [0] ----D C:\Program Files\Windows Sidebar O43 - CFD: 28/10/2006 - 19:26:58 - [0] --H-D C:\Program Files\WindowsUpdate O43 - CFD: 08/11/2008 - 22:24:33 - [] ----D C:\Program Files\xerox O43 - CFD: 15/04/2011 - 19:32:54 - [] ----D C:\Program Files\Xvid O43 - CFD: 11/10/2009 - 15:07:32 - [] ----D C:\Program Files\Yahoo! O43 - CFD: 03/08/2014 - 22:23:16 - [] ----D C:\Program Files\ZHPDiag =>.Nicolas Coolman O43 - CFD: 02/11/2013 - 13:24:21 - [] ----D C:\Program Files\Fichiers communs\Adobe O43 - CFD: 26/12/2008 - 19:03:23 - [] ----D C:\Program Files\Fichiers communs\AIPTEK HD-DV O43 - CFD: 03/08/2014 - 17:49:25 - [] ----D C:\Program Files\Fichiers communs\AOL O43 - CFD: 03/07/2013 - 20:24:28 - [] ----D C:\Program Files\Fichiers communs\ApLogistique O43 - CFD: 07/07/2009 - 22:16:17 - [] ----D C:\Program Files\Fichiers communs\AVSMedia O43 - CFD: 04/02/2013 - 10:36:02 - [] ----D C:\Program Files\Fichiers communs\Ciel O43 - CFD: 09/11/2008 - 11:37:13 - [] ----D C:\Program Files\Fichiers communs\Designer O43 - CFD: 03/07/2013 - 20:36:06 - [] ----D C:\Program Files\Fichiers communs\EURATEC O43 - CFD: 08/11/2008 - 22:20:48 - [] ----D C:\Program Files\Fichiers communs\HP O43 - CFD: 08/11/2008 - 22:20:51 - [] ----D C:\Program Files\Fichiers communs\InstallShield O43 - CFD: 08/11/2008 - 22:20:51 - [] ----D C:\Program Files\Fichiers communs\Java O43 - CFD: 29/07/2009 - 23:04:32 - [] ----D C:\Program Files\Fichiers communs\LightScribe O43 - CFD: 04/08/2014 - 10:46:08 - [] ----D C:\Program Files\Fichiers communs\LogiShrd O43 - CFD: 09/11/2008 - 19:00:58 - [] ----D C:\Program Files\Fichiers communs\Logitech O43 - CFD: 07/07/2009 - 22:14:23 - [] ----D C:\Program Files\Fichiers communs\Microsoft Shared O43 - CFD: 08/11/2008 - 22:21:06 - [] ----D C:\Program Files\Fichiers communs\MSSoap O43 - CFD: 08/11/2008 - 22:21:06 - [] ----D C:\Program Files\Fichiers communs\ODBC O43 - CFD: 15/06/2009 - 15:22:01 - [] ----D C:\Program Files\Fichiers communs\Real O43 - CFD: 13/08/2011 - 19:24:40 - [] ----D C:\Program Files\Fichiers communs\Research In Motion O43 - CFD: 13/08/2011 - 19:33:04 - [] ----D C:\Program Files\Fichiers communs\Roxio Shared O43 - CFD: 08/11/2008 - 22:21:06 - [] ----D C:\Program Files\Fichiers communs\Services O43 - CFD: 04/03/2013 - 10:41:57 - [] ----D C:\Program Files\Fichiers communs\Skype O43 - CFD: 08/11/2008 - 22:21:08 - [] ----D C:\Program Files\Fichiers communs\Sonic Shared O43 - CFD: 08/11/2008 - 22:21:08 - [] ----D C:\Program Files\Fichiers communs\SpeechEngines O43 - CFD: 08/11/2008 - 22:21:09 - [] ----D C:\Program Files\Fichiers communs\SureThing Shared O43 - CFD: 08/01/2009 - 20:28:45 - [] ----D C:\Program Files\Fichiers communs\Symantec Shared O43 - CFD: 10/10/2009 - 19:30:39 - [] ----D C:\Program Files\Fichiers communs\System O43 - CFD: 08/11/2008 - 22:21:33 - [] ----D C:\Program Files\Fichiers communs\TiVo Shared O43 - CFD: 18/12/2008 - 20:51:45 - [] ----D C:\Program Files\Fichiers communs\Windows Live O43 - CFD: 09/11/2008 - 11:14:08 - [] -SH-D C:\Program Files\Fichiers communs\WindowsLiveInstaller O43 - CFD: 02/11/2013 - 13:24:15 - [] ----D C:\Documents and Settings\All Users\Application Data\Adobe O43 - CFD: 28/11/2010 - 17:53:15 - [] ----D C:\Documents and Settings\All Users\Application Data\Alwil Software O43 - CFD: 02/11/2013 - 14:29:46 - [] ----D C:\Documents and Settings\All Users\Application Data\AVAST Software O43 - CFD: 10/10/2009 - 18:39:38 - [] ----D C:\Documents and Settings\All Users\Application Data\Avira O43 - CFD: 14/08/2010 - 11:48:40 - [] ----D C:\Documents and Settings\All Users\Application Data\Canneverbe Limited O43 - CFD: 04/02/2013 - 10:36:08 - [] ----D C:\Documents and Settings\All Users\Application Data\Ciel O43 - CFD: 08/11/2008 - 22:17:35 - [] ----D C:\Documents and Settings\All Users\Application Data\CyberLink O43 - CFD: 08/03/2010 - 19:19:24 - [] ----D C:\Documents and Settings\All Users\Application Data\Driver Whiz O43 - CFD: 25/04/2012 - 22:17:05 - [] ----D C:\Documents and Settings\All Users\Application Data\FarmFrenzy-PizzaParty O43 - CFD: 19/03/2011 - 15:15:14 - [] ----D C:\Documents and Settings\All Users\Application Data\HiYo O43 - CFD: 06/08/2013 - 15:56:57 - [] ----D C:\Documents and Settings\All Users\Application Data\HP O43 - CFD: 29/07/2013 - 21:47:47 - [] ----D C:\Documents and Settings\All Users\Application Data\HP Photo Creations O43 - CFD: 08/11/2008 - 22:17:35 - [] ----D C:\Documents and Settings\All Users\Application Data\InstallShield O43 - CFD: 04/08/2014 - 10:45:57 - [] ----D C:\Documents and Settings\All Users\Application Data\Logishrd O43 - CFD: 14/12/2008 - 12:09:41 - [] ----D C:\Documents and Settings\All Users\Application Data\Logitech O43 - CFD: 03/08/2014 - 18:43:14 - [] ----D C:\Documents and Settings\All Users\Application Data\Malwarebytes O43 - CFD: 04/08/2014 - 00:18:44 - [] ----D C:\Documents and Settings\All Users\Application Data\Malwarebytes' Anti-Malware (portable) O43 - CFD: 22/08/2012 - 19:20:37 - [] ----D C:\Documents and Settings\All Users\Application Data\McAfee O43 - CFD: 03/08/2014 - 22:24:51 - [] -S--D C:\Documents and Settings\All Users\Application Data\Microsoft O43 - CFD: 30/04/2012 - 23:57:03 - [] ----D C:\Documents and Settings\All Users\Application Data\Mozilla O43 - CFD: 14/08/2010 - 11:28:39 - [] ----D C:\Documents and Settings\All Users\Application Data\Nero O43 - CFD: 10/10/2009 - 20:06:46 - [] ----D C:\Documents and Settings\All Users\Application Data\NOS O43 - CFD: 14/10/2009 - 20:27:47 - [] ----D C:\Documents and Settings\All Users\Application Data\OnlineArmor O43 - CFD: 13/08/2011 - 19:26:08 - [] ----D C:\Documents and Settings\All Users\Application Data\Research In Motion O43 - CFD: 13/08/2011 - 19:36:54 - [] ----D C:\Documents and Settings\All Users\Application Data\Roxio O43 - CFD: 28/07/2012 - 18:48:34 - [] ----D C:\Documents and Settings\All Users\Application Data\Samsung O43 - CFD: 08/11/2008 - 22:17:35 - [] ----D C:\Documents and Settings\All Users\Application Data\SBSI O43 - CFD: 04/03/2013 - 10:42:02 - [] ----D C:\Documents and Settings\All Users\Application Data\Skype O43 - CFD: 13/08/2011 - 19:37:16 - [] ----D C:\Documents and Settings\All Users\Application Data\Sonic O43 - CFD: 11/10/2009 - 13:54:50 - [] ----D C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy O43 - CFD: 08/01/2009 - 20:28:44 - [] ----D C:\Documents and Settings\All Users\Application Data\Symantec O43 - CFD: 29/07/2013 - 21:47:47 - [] ----D C:\Documents and Settings\All Users\Application Data\Visan O43 - CFD: 01/01/2014 - 16:44:54 - [] ----D C:\Documents and Settings\All Users\Application Data\VTech O43 - CFD: 05/10/2009 - 13:44:08 - [] ----D C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage O43 - CFD: 09/11/2008 - 11:10:38 - [] ----D C:\Documents and Settings\All Users\Application Data\WLInstaller O43 - CFD: 19/06/2009 - 20:38:39 - [] --H-D C:\Documents and Settings\All Users\Application Data\{196FECB0-E501-4CE0-B6E8-877B73B3BD5C} O43 - CFD: 10/06/2011 - 20:55:21 - [] ----D C:\Documents and Settings\luce\Application Data\Ace O43 - CFD: 29/01/2009 - 21:20:10 - [] ----D C:\Documents and Settings\luce\Application Data\Adobe O43 - CFD: 14/11/2008 - 22:42:22 - [0] ----D C:\Documents and Settings\luce\Application Data\AdobeUM O43 - CFD: 18/01/2009 - 21:26:56 - [] ----D C:\Documents and Settings\luce\Application Data\Anuman Interactive O43 - CFD: 30/12/2013 - 21:20:37 - [] ----D C:\Documents and Settings\luce\Application Data\Apowersoft O43 - CFD: 02/11/2013 - 14:45:48 - [] ----D C:\Documents and Settings\luce\Application Data\AVAST Software O43 - CFD: 14/08/2010 - 11:48:40 - [] ----D C:\Documents and Settings\luce\Application Data\Canneverbe Limited O43 - CFD: 04/08/2014 - 10:55:58 - [] ----D C:\Documents and Settings\luce\Application Data\Dropbox O43 - CFD: 05/10/2009 - 23:48:45 - [] ----D C:\Documents and Settings\luce\Application Data\dvdcss O43 - CFD: 31/12/2013 - 00:14:01 - [] ----D C:\Documents and Settings\luce\Application Data\FlvtoConverter O43 - CFD: 03/04/2009 - 23:12:12 - [] ----D C:\Documents and Settings\luce\Application Data\Google O43 - CFD: 04/08/2009 - 20:46:42 - [0] ----D C:\Documents and Settings\luce\Application Data\Help O43 - CFD: 29/07/2013 - 21:48:35 - [] ----D C:\Documents and Settings\luce\Application Data\Hewlett-Packard O43 - CFD: 19/03/2011 - 15:16:15 - [] ----D C:\Documents and Settings\luce\Application Data\HiYo O43 - CFD: 02/11/2009 - 20:12:49 - [] ----D C:\Documents and Settings\luce\Application Data\HP O43 - CFD: 29/07/2013 - 21:52:32 - [] ----D C:\Documents and Settings\luce\Application Data\HpUpdate O43 - CFD: 08/11/2008 - 22:17:31 - [] ----D C:\Documents and Settings\luce\Application Data\Identities O43 - CFD: 13/08/2011 - 19:37:25 - [] ----D C:\Documents and Settings\luce\Application Data\InstallShield O43 - CFD: 31/08/2009 - 14:24:09 - [] ----D C:\Documents and Settings\luce\Application Data\KC Softwares O43 - CFD: 26/12/2008 - 19:07:24 - [] ----D C:\Documents and Settings\luce\Application Data\Leadertech O43 - CFD: 08/11/2008 - 22:17:31 - [] ----D C:\Documents and Settings\luce\Application Data\Macromedia O43 - CFD: 09/09/2011 - 17:38:47 - [0] ----D C:\Documents and Settings\luce\Application Data\Malwarebytes O43 - CFD: 02/11/2013 - 13:47:12 - [0] ----D C:\Documents and Settings\luce\Application Data\Media Player Classic O43 - CFD: 30/12/2013 - 21:25:31 - [] -S--D C:\Documents and Settings\luce\Application Data\Microsoft O43 - CFD: 03/08/2014 - 17:49:24 - [] ----D C:\Documents and Settings\luce\Application Data\Mozilla O43 - CFD: 11/10/2009 - 15:06:03 - [] ----D C:\Documents and Settings\luce\Application Data\OnlineArmor O43 - CFD: 20/12/2013 - 02:00:55 - [] ----D C:\Documents and Settings\luce\Application Data\QuickScan O43 - CFD: 15/06/2009 - 15:21:59 - [] ----D C:\Documents and Settings\luce\Application Data\Real O43 - CFD: 13/08/2011 - 21:35:44 - [] ----D C:\Documents and Settings\luce\Application Data\Research In Motion O43 - CFD: 13/08/2011 - 21:35:23 - [] ----D C:\Documents and Settings\luce\Application Data\Roxio O43 - CFD: 28/07/2012 - 18:47:53 - [] ----D C:\Documents and Settings\luce\Application Data\Samsung O43 - CFD: 02/11/2013 - 13:38:54 - [] ----D C:\Documents and Settings\luce\Application Data\Skype O43 - CFD: 26/12/2008 - 19:08:51 - [] ----D C:\Documents and Settings\luce\Application Data\Sonic O43 - CFD: 12/08/2010 - 00:15:22 - [] ----D C:\Documents and Settings\luce\Application Data\Spotify O43 - CFD: 07/02/2009 - 15:24:21 - [] ----D C:\Documents and Settings\luce\Application Data\Sun O43 - CFD: 07/11/2009 - 22:12:00 - [] ----D C:\Documents and Settings\luce\Application Data\Todae O43 - CFD: 10/06/2011 - 20:53:55 - [] ----D C:\Documents and Settings\luce\Application Data\UP O43 - CFD: 20/06/2014 - 16:25:21 - [] ----D C:\Documents and Settings\luce\Application Data\vlc O43 - CFD: 21/12/2008 - 12:37:26 - [0] ----D C:\Documents and Settings\luce\Application Data\Windows Live Writer O43 - CFD: 24/01/2009 - 19:59:57 - [0] ----D C:\Documents and Settings\luce\Application Data\WinRAR O43 - CFD: 11/10/2009 - 14:02:37 - [] ----D C:\Documents and Settings\luce\Application Data\Yahoo! O43 - CFD: 04/08/2014 - 11:53:19 - [] ----D C:\Documents and Settings\luce\Application Data\ZHP =>.Nicolas Coolman O43 - CFD: 07/04/2013 - 23:39:17 - [] ----D C:\Documents and Settings\luce\Local Settings\Application Data\ApplicationHistory O43 - CFD: 08/11/2008 - 22:17:32 - [] ----D C:\Documents and Settings\luce\Local Settings\Application Data\BVRP Software O43 - CFD: 01/01/2014 - 16:51:47 - [] ----D C:\Documents and Settings\luce\Local Settings\Application Data\cache O43 - CFD: 28/07/2012 - 18:43:54 - [] ----D C:\Documents and Settings\luce\Local Settings\Application Data\Downloaded Installations O43 - CFD: 31/12/2013 - 00:09:20 - [] ----D C:\Documents and Settings\luce\Local Settings\Application Data\Flvto Youtube Downloader O43 - CFD: 31/12/2013 - 00:10:03 - [] ----D C:\Documents and Settings\luce\Local Settings\Application Data\FlvtoYoutubeDownloader O43 - CFD: 02/10/2012 - 21:18:28 - [] ----D C:\Documents and Settings\luce\Local Settings\Application Data\Google O43 - CFD: 04/08/2009 - 20:46:42 - [0] ----D C:\Documents and Settings\luce\Local Settings\Application Data\Help O43 - CFD: 24/02/2014 - 20:45:11 - [] ----D C:\Documents and Settings\luce\Local Settings\Application Data\HP O43 - CFD: 09/11/2008 - 11:06:58 - [] ----D C:\Documents and Settings\luce\Local Settings\Application Data\Identities O43 - CFD: 08/11/2008 - 22:17:32 - [] ----D C:\Documents and Settings\luce\Local Settings\Application Data\IsolatedStorage O43 - CFD: 30/12/2013 - 21:23:10 - [] ----D C:\Documents and Settings\luce\Local Settings\Application Data\Microsoft O43 - CFD: 26/01/2009 - 15:36:38 - [] ----D C:\Documents and Settings\luce\Local Settings\Application Data\Mozilla O43 - CFD: 16/10/2009 - 20:31:18 - [] ----D C:\Documents and Settings\luce\Local Settings\Application Data\PCHealth O43 - CFD: 02/11/2009 - 20:12:49 - [] ----D C:\Documents and Settings\luce\Local Settings\Application Data\QuickPlay O43 - CFD: 28/07/2012 - 19:10:53 - [] ----D C:\Documents and Settings\luce\Local Settings\Application Data\Samsung O43 - CFD: 12/08/2010 - 00:32:21 - [] ----D C:\Documents and Settings\luce\Local Settings\Application Data\Spotify O43 - CFD: 03/08/2014 - 22:01:00 - [] ----D C:\Documents and Settings\luce\Local Settings\Application Data\Temp O43 - CFD: 21/12/2008 - 12:37:36 - [] ----D C:\Documents and Settings\luce\Local Settings\Application Data\Windows Live Writer O43 - CFD: 10/01/2010 - 19:00:55 - [0] ----D C:\Documents and Settings\luce\Local Settings\Application Data\WMTools Downloaded Files O43 - CFD: 08/11/2008 - 22:17:33 - [] ----D C:\Documents and Settings\luce\Local Settings\Application Data\{3248F0A6-6813-11D6-A77B-00B0D0150060} O43 - CFD: 11/10/2009 - 12:33:36 - [] R---D C:\Documents and Settings\luce\Menu Démarrer\Programmes\Accessoires O43 - CFD: 11/10/2009 - 14:02:26 - [] ----D C:\Documents and Settings\luce\Menu Démarrer\Programmes\CCleaner O43 - CFD: 08/03/2010 - 15:29:40 - [] ----D C:\Documents and Settings\luce\Menu Démarrer\Programmes\ClocX O43 - CFD: 03/08/2014 - 22:07:26 - [] ----D C:\Documents and Settings\luce\Menu Démarrer\Programmes\Dropbox O43 - CFD: 03/08/2014 - 22:08:24 - [] R---D C:\Documents and Settings\luce\Menu Démarrer\Programmes\Démarrage O43 - CFD: 31/12/2013 - 00:09:20 - [] ----D C:\Documents and Settings\luce\Menu Démarrer\Programmes\Flvto Youtube Downloader O43 - CFD: 07/11/2009 - 22:12:00 - [] ----D C:\Documents and Settings\luce\Menu Démarrer\Programmes\Live Media Plugin O43 - CFD: 09/09/2011 - 23:57:17 - [] R---D C:\Documents and Settings\luce\Menu Démarrer\Programmes\Outils d'administration O43 - CFD: 24/01/2010 - 18:34:09 - [] ----D C:\Documents and Settings\luce\Menu Démarrer\Programmes\Pingu et ses Amis O43 - CFD: 08/11/2008 - 22:17:35 - [] ----D C:\Documents and Settings\luce\Menu Démarrer\Programmes\Services en ligne O43 - CFD: 11/10/2009 - 14:20:43 - [] ----D C:\Documents and Settings\luce\Menu Démarrer\Programmes\Unlocker ~ Program Folder: 234 Scanned in 00mn 00s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.3E3033E4912ADDE0B649C0DD1E6F45E2] - 01/08/2014 - 23:24:29 ---A- . (...) -- C:\WINDOWS\system32\wpa.dbl [1158] O44 - LFC:[MD5.357CEBBCD99C8928A2D1A61A6CACC168] - 01/08/2014 - 23:41:45 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\WINDOWS\avastSS.scr [43152] O44 - LFC:[MD5.588C2C48CB267E1C4B5A9EB5ACFF0116] - 01/08/2014 - 23:41:45 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\WINDOWS\system32\aswBoot.exe [276432] O44 - LFC:[MD5.3BFBB5DAE801CB893B8B46345FED6437] - 01/08/2014 - 23:41:46 ---A- . (...) -- C:\WINDOWS\system32\Drivers\aswHwid.sys [24184] O44 - LFC:[MD5.B7750AF7EDFD95674EB7CA92BCDD3358] - 01/08/2014 - 23:41:46 ---A- . (...) -- C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944] O44 - LFC:[MD5.90BEE0170D70D6744CEF2355EEAF8086] - 01/08/2014 - 23:41:46 ---A- . (...) -- C:\WINDOWS\system32\Drivers\aswVmm.sys [192352] O44 - LFC:[MD5.C3014C735F450FE822C97FFBB0627113] - 01/08/2014 - 23:41:46 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\WINDOWS\system32\Drivers\aswMonFlt.sys [67824] O44 - LFC:[MD5.26C51C289E39E8EE0F12B8B06B71E436] - 01/08/2014 - 23:41:46 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\WINDOWS\system32\Drivers\aswTdi.sys [57800] O44 - LFC:[MD5.D6C9024F5D14843D33ADA8A6A10A1BE1] - 01/08/2014 - 23:41:46 ---A- . (.AVAST Software - avast! TDI Redirect Driver.) -- C:\WINDOWS\system32\Drivers\aswRdr.sys [55112] O44 - LFC:[MD5.51FDE588D860857A97E4C4B560E40C9B] - 01/08/2014 - 23:41:46 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\WINDOWS\system32\Drivers\aswSnx.sys [779536] O44 - LFC:[MD5.C76C4569D2EE1DAA7F5EEFC9FA2C454D] - 03/08/2014 - 16:49:24 ---A- . (...) -- C:\WINDOWS\nsreg.dat [335] O44 - LFC:[MD5.AE59437143D325A10B1DE5719102C663] - 03/08/2014 - 16:49:35 --HA- . (...) -- C:\IPH.PH [218] O44 - LFC:[MD5.0DC5AF80D059DEC792B665ED598C6567] - 03/08/2014 - 17:42:09 ---A- . (.SQLite Development Team - SQLite Dynamic Link Library (No TCL).) -- C:\WINDOWS\system32\sqlite3.dll [536576] O44 - LFC:[MD5.392202E8FA2FAAD777A9A5A836B34502] - 03/08/2014 - 21:56:27 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\WINDOWS\system32\FlashPlayerCPLApp.cpl [71344] O44 - LFC:[MD5.EF160261C4B3EA402E9407D6514134F4] - 03/08/2014 - 21:56:28 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\WINDOWS\system32\FlashPlayerApp.exe [699056] O44 - LFC:[MD5.1AEB8CDB797666AF709A291B47AE81E0] - 03/08/2014 - 23:23:50 ---A- . (.AVAST Software - avast! self protection module.) -- C:\WINDOWS\system32\Drivers\aswsp.sys [414520] O44 - LFC:[MD5.C9DD76D0EF94637C77FF8CA5E0FB0684] - 04/08/2014 - 09:50:37 ---A- . (...) -- C:\WINDOWS\system.ini [227] O44 - LFC:[MD5.CA272C70EBA0B6284164A8354F8E0EB6] - 04/08/2014 - 09:50:37 ---A- . (...) -- C:\WINDOWS\win.ini [599] O44 - LFC:[MD5.0EDE1857B713B8CCEAA7E97C072EB2AE] - 04/08/2014 - 09:50:37 RSHA- . (...) -- C:\boot.ini [209] O44 - LFC:[MD5.775A29B70902354DAE316378E9EA83A6] - 04/08/2014 - 09:50:53 ----- . (...) -- C:\WINDOWS\SchedLgU.Txt [32538] O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 04/08/2014 - 09:52:03 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [2048] O44 - LFC:[MD5.19EA47D5AC6EB03FDA103DB6524FA375] - 04/08/2014 - 09:52:31 ----- . (...) -- C:\WINDOWS\wiaservc.log [50] O44 - LFC:[MD5.8C621A071AB6C6F6E115AD07447D2052] - 04/08/2014 - 09:52:32 ----- . (...) -- C:\WINDOWS\wiadebug.log [159] O44 - LFC:[MD5.9D2F52AE2A5CA64EA8F5DD2D9F3E439C] - 04/08/2014 - 09:54:34 ----- . (...) -- C:\WINDOWS\WindowsUpdate.log [1205426] O44 - LFC:[MD5.8683C1B450F4B3872839308D836E0F92] - 04/08/2014 - 10:42:16 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\system32\Drivers\mbam.sys [23256] O44 - LFC:[MD5.AED25CDB09FB4E56F45DAF6C9A1D3ED3] - 04/08/2014 - 10:42:16 ---A- . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\WINDOWS\system32\Drivers\mbamchameleon.sys [53208] ~ Files: 27 Scanned in 00mn 01s ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46) O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll O46 - SEH:ShellExecuteHooks - OA Shell Helper - {4F07DA45-8170-4859-9B5F-037EF2970034} - C:\PROGRA~1\TALLEM~1\ONLINE~1\oaevent.dll ~ ShellExecuteHooks: Scanned in 00mn 00s ---\\ Export de clé d'application autorisée (O47) O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\mqsvc.exe" [Enabled] .(.Microsoft Corporation.) -- C:\WINDOWS\system32\mqsvc.exe O47 - AAKE:Key Export SP - "C:\Program Files\Messenger\msmsgs.exe" [Enabled] .(.Microsoft Corporation.) -- C:\Program Files\Messenger\msmsgs.exe O47 - AAKE:Key Export SP - "%windir%\system32\drivers\svchost.exe" [Enabled] .(...) -- C:\WINDOWS\system32\drivers\svchost.exe (.not file.) O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export SP - "C:\Program Files\Spotify\spotify.exe" [Enabled] .(.Spotify Ltd.) -- C:\Program Files\Spotify\spotify.exe O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(...) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe (.not file.) O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" [Enabled] .(.Microsoft Corporation.) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\muzapp.exe" [Enabled] .(.Musiccity Co.Ltd..) -- C:\WINDOWS\system32\muzapp.exe O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\msiexec.exe" [Enabled] .(.Microsoft Corporation.) -- C:\WINDOWS\system32\msiexec.exe O47 - AAKE:Key Export SP - "C:\Program Files\Skype\Phone\Skype.exe" [Enabled] .(.Skype Technologies S.A..) -- C:\Program Files\Skype\Phone\Skype.exe O47 - AAKE:Key Export SP - "C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPScan.exe" [Enabled] .(.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPScan.exe O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export SP - "C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\DeviceSetup.exe" [Enabled] .(.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\DeviceSetup.exe O47 - AAKE:Key Export SP - "C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicator.exe" [Enabled] .(.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicator.exe O47 - AAKE:Key Export SP - "C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicatorCom.exe" [Enabled] .(.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicatorCom.exe O47 - AAKE:Key Export SP - "C:\Program Files\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe" [Enabled] .(.Apowersoft.) -- C:\Program Files\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe O47 - AAKE:Key Export SP - "C:\Documents and Settings\luce\Application Data\Dropbox\bin\Dropbox.exe" [Enabled] .(.Dropbox, Inc..) -- C:\Documents and Settings\luce\Application Data\Dropbox\bin\Dropbox.exe O47 - AAKE:Key Export SP - "C:\Program Files\Google\Chrome\Application\chrome.exe" [Enabled] .(.Google Inc..) -- C:\Program Files\Google\Chrome\Application\chrome.exe O47 - AAKE:Key Export SP - "C:\Program Files\VTech\DownloadManager\System\AgentMonitor.exe" [Disabled] .(..) -- C:\Program Files\VTech\DownloadManager\System\AgentMonitor.exe O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export DP - "C:\WINDOWS\system32\mqsvc.exe" [Enabled] .(.Microsoft Corporation.) -- C:\WINDOWS\system32\mqsvc.exe O47 - AAKE:Key Export DP - "%windir%\system32\drivers\svchost.exe" [Enabled] .(...) -- C:\WINDOWS\system32\drivers\svchost.exe (.not file.) O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(...) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe (.not file.) O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" [Enabled] .(.Microsoft Corporation.) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe ~ Keys Export: 25 Scanned in 00mn 00s ---\\ Déni du service (Local Security Authority) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\system32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l'Éditeur de configuration de sécurité Windows.) -- C:\WINDOWS\system32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Kerberos Security Package.) -- C:\WINDOWS\system32\kerberos.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\system32\msv1_0.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\WINDOWS\system32\wdigest.dll ~ LSA: 6 Scanned in 00mn 00s ---\\ Image File Execution Options (IFEO) (O50) O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d ~ IFEO: Scanned in 00mn 00s ---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52) O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech(TM) DSP Group pour MSACM V3.50.) -- C:\WINDOWS\system32\tssoft32.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\system32\iccvid.dll O52 - TDSD: \Drivers32\"VIDC.I420"="lvcodec2.dll" . (.Logitech Inc. - Video Codec.) -- C:\WINDOWS\system32\lvcodec2.dll O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (...) -- C:\WINDOWS\system32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (...) -- C:\WINDOWS\system32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\system32\ir41_32.ax O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\system32\sl_anet.acm O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\system32\ir50_32.dll O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm O52 - TDSD: \Drivers32\"vidc.XVID"="xvidvfw.dll" . (...) -- C:\WINDOWS\system32\xvidvfw.dll O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\system32\sl_anet.acm O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm O52 - TDSD: \drivers.desc\"iyvu9_32.dll"="Indeo® video Raw YVU9 by Intel" . (...) -- C:\WINDOWS\system32\iyvu9_32.dll O52 - TDSD: \drivers.desc\"xvidvfw.dll"="Xvid MPEG-4 Video Codec" . (...) -- C:\WINDOWS\system32\xvidvfw.dll ~ TDSD: 16 Scanned in 00mn 00s ---\\ Enumération des clés de registre StartupReg (SMSR) (O53) O53 - SMSR:HKLM\...\startupreg\@OnlineArmor GUI [Key] . (.Tall Emu - Online Armor Component.) -- C:\Program Files\Tall Emu\Online Armor\oaui.exe O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe O53 - SMSR:HKLM\...\startupreg\AnumanLive [Key] . (.Anuman Interactive - Anuman Live.) -- C:\Documents and Settings\luce\Application Data\Anuman Interactive\AnumanLive\AnumanLive.exe O53 - SMSR:HKLM\...\startupreg\BlackBerryAutoUpdate [Key] . (.Research In Motion Limited - RIM Auto Update.) -- C:\Program Files\Fichiers communs\Research In Motion\Auto Update\RIMAutoUpdate.exe O53 - SMSR:HKLM\...\startupreg\Cpqset [Key] . (...) -- C:\Program Files\Hewlett-Packard\Default Settings\cpqset.exe O53 - SMSR:HKLM\...\startupreg\ctfmon.exe [Key] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O53 - SMSR:HKLM\...\startupreg\DWQueuedReporting [Key] . (.Microsoft Corporation - Watson Subscriber for SENS Network Notifica.) -- C:\Program Files\FICHIE~1\MICROS~1\DW\dwtrig20.exe O53 - SMSR:HKLM\...\startupreg\ehTray [Key] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\WINDOWS\ehome\ehtray.exe O53 - SMSR:HKLM\...\startupreg\fssui [Key] . (.Microsoft Corporation - Windows Live Family Safety Filter.) -- C:\Program Files\Windows Live\Family Safety\fsui.exe O53 - SMSR:HKLM\...\startupreg\High Definition Audio Property Page Shortcut [Key] . (.Windows (R) Server 2003 DDK provider - High Definition Audio Property Page Shortcu.) -- C:\WINDOWS\system32\CHDAudPropShortcut.exe O53 - SMSR:HKLM\...\startupreg\Hiyo [Key] . (.IncrediMail, Ltd. - HiYo - IncrediMail Ltd Messenger plugin.) -- C:\Program Files\HiYo\bin\HiYo.exe O53 - SMSR:HKLM\...\startupreg\HP Deskjet 3050A J611 series (NET) [Key] . (.Hewlett-Packard Co. - ScanToPCActivationApp.) -- C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe =>.Hewlett-Packard Co O53 - SMSR:HKLM\...\startupreg\HP Software Update [Key] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Co O53 - SMSR:HKLM\...\startupreg\HPDJ Taskbar Utility [Key] . (.HP - Pas de description.) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe O53 - SMSR:HKLM\...\startupreg\hpWirelessAssistant [Key] . (.Hewlett-Packard Development Company, L.P. - HP Wireless Assistant Module.) -- C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe O53 - SMSR:HKLM\...\startupreg\igfxhkcmd [Key] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe O53 - SMSR:HKLM\...\startupreg\igfxpers [Key] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe O53 - SMSR:HKLM\...\startupreg\igfxtray [Key] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe O53 - SMSR:HKLM\...\startupreg\ISUSPM [Key] . (.Macrovision Corporation - Macrovision Software Manager.) -- C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe O53 - SMSR:HKLM\...\startupreg\KiesPreload [Key] . (.Samsung - Kies.) -- C:\Program Files\Samsung\Kies\Kies.exe O53 - SMSR:HKLM\...\startupreg\LDM [Key] . (...) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\LogitechCommunicationsManager [Key] . (...) -- C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\LogitechQuickCamRibbon [Key] . (...) -- C:\Program Files\Logitech\QuickCam\Quickcam.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\MsnMsgr [Key] . (...) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\Premium Clock [Key] . (.UpClock Software - Premium Clock.) -- C:\Program Files\Premium Clock\Premium.exe O53 - SMSR:HKLM\...\startupreg\QPService [Key] . (.CyberLink Corp. - HP QuickPlay Resident Program.) -- C:\Program Files\HP\QuickPlay\QPService.exe O53 - SMSR:HKLM\...\startupreg\RecGuard [Key] . (.Pas de propriétaire - Recguard Application.) -- C:\Windows\SMINST\RecGuard.exe O53 - SMSR:HKLM\...\startupreg\RoxWatchTray [Key] . (.Sonic Solutions - RoxMMTrayApp Module.) -- C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe =>.Sonic Solutions O53 - SMSR:HKLM\...\startupreg\Samsung Drive Manager [Key] . (.Clarus, Inc. - Samsung Drive Manager.) -- C:\Program Files\Clarus\Samsung Drive Manager\Drive Manager.exe O53 - SMSR:HKLM\...\startupreg\Skype [Key] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A. O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Sun Microsystems, Inc. - Java(TM) 2 Platform Standard Edition binary.) -- C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe =>.Oracle Corporation ~ SMSR Keys: 34 Scanned in 00mn 00s ---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll ~ MSCP: 6 Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "InstallVisualStyle"=1 O55 - MWPS:[HKLM\...\Policies\System] - "InstallTheme"=1 ~ MWPS: 7 Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=323 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutoRun"=67108863 O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=67108863 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=323 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoCDBurning"=0 ~ MWPE Keys: 6 Scanned in 00mn 00s ---\\ Liste des pilotes du système (SDL) (O58) O58 - SDL:10/11/2006 - 15:05:00 ---A- . (.Arcsoft, Inc. - Arcsoft(R) ASPI Shell.) -- C:\WINDOWS\system32\Drivers\afc.sys [18688] O58 - SDL:18/08/2001 - 04:51:56 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\WINDOWS\system32\Drivers\aliide.sys [5248] O58 - SDL:13/04/2008 - 19:36:39 ---A- . (.Advanced Micro Devices, Inc. - AMD Win2000 AGP Filter.) -- C:\WINDOWS\system32\Drivers\amdagp.sys [43008] O58 - SDL:02/06/2013 - 04:56:40 ---A- . (.Wondershare - Wondershare Virtual Audio Device.) -- C:\WINDOWS\system32\Drivers\Apowersoft_AudioDevice.sys [26032] O58 - SDL:18/08/2001 - 04:52:00 ---A- . (.Advanced System Products, Inc. - AdvanSys SCSI Controller Driver.) -- C:\WINDOWS\system32\Drivers\asc.sys [26496] O58 - SDL:18/08/2001 - 04:51:58 ---A- . (.Advanced System Products, Inc. - AdvanSys Ultra-Wide PCI SCSI Driver.) -- C:\WINDOWS\system32\Drivers\asc3550.sys [14848] O58 - SDL:01/08/2014 - 23:41:46 ---A- . (...) -- C:\WINDOWS\system32\Drivers\aswHwid.sys [24184] =>.ALWIL Software O58 - SDL:01/08/2014 - 23:41:46 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\WINDOWS\system32\Drivers\aswMonFlt.sys [67824] O58 - SDL:01/08/2014 - 23:41:46 ---A- . (.AVAST Software - avast! TDI Redirect Driver.) -- C:\WINDOWS\system32\Drivers\aswRdr.sys [55112] O58 - SDL:01/08/2014 - 23:41:46 ---A- . (...) -- C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944] =>.ALWIL Software O58 - SDL:01/08/2014 - 23:41:46 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\WINDOWS\system32\Drivers\aswSnx.sys [779536] O58 - SDL:03/08/2014 - 23:23:50 ---A- . (.AVAST Software - avast! self protection module.) -- C:\WINDOWS\system32\Drivers\aswsp.sys [414520] O58 - SDL:01/08/2014 - 23:41:46 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\WINDOWS\system32\Drivers\aswTdi.sys [57800] O58 - SDL:01/08/2014 - 23:41:46 ---A- . (...) -- C:\WINDOWS\system32\Drivers\aswVmm.sys [192352] =>.ALWIL Software O58 - SDL:03/08/2004 - 22:29:30 ----- . (.ATI Technologies Inc. - ATI WDM BT829 MiniDriver (A).) -- C:\WINDOWS\system32\Drivers\ati1btxx.sys [56623] O58 - SDL:03/08/2004 - 22:29:30 ----- . (.ATI Technologies Inc. - ATI Specialized MVD VBI Codec.) -- C:\WINDOWS\system32\Drivers\ati1mdxx.sys [11615] O58 - SDL:03/08/2004 - 22:29:30 ----- . (.ATI Technologies Inc. - ATI Specialized PCD VBI Codec.) -- C:\WINDOWS\system32\Drivers\ati1pdxx.sys [12047] O58 - SDL:03/08/2004 - 22:29:32 ----- . (.ATI Technologies Inc. - ATI Rage Theater Audio WDM Minidriver.) -- C:\WINDOWS\system32\Drivers\ati1raxx.sys [30671] O58 - SDL:03/08/2004 - 22:29:32 ----- . (.ATI Technologies Inc. - ATI WDM Rage Theater MiniDriver.) -- C:\WINDOWS\system32\Drivers\ati1rvxx.sys [63663] O58 - SDL:03/08/2004 - 22:29:32 ----- . (.ATI Technologies Inc. - ATI WDM TV Sound MiniDriver.) -- C:\WINDOWS\system32\Drivers\ati1snxx.sys [26367] O58 - SDL:03/08/2004 - 22:29:32 ----- . (.ATI Technologies Inc. - ATI WDM Teletext Decoder.) -- C:\WINDOWS\system32\Drivers\ati1ttxx.sys [21343] O58 - SDL:03/08/2004 - 22:29:32 ----- . (.ATI Technologies Inc. - ATI WDM TVTuner MiniDriver.) -- C:\WINDOWS\system32\Drivers\ati1tuxx.sys [36463] O58 - SDL:03/08/2004 - 22:29:32 ----- . (.ATI Technologies Inc. - ATI WDM CrossBar MiniDriver.) -- C:\WINDOWS\system32\Drivers\ati1xbxx.sys [29455] O58 - SDL:03/08/2004 - 22:29:32 ----- . (.ATI Technologies Inc. - ATI WDM TVAUDIO_CrossBar MiniDriver.) -- C:\WINDOWS\system32\Drivers\ati1xsxx.sys [34735] O58 - SDL:04/08/2004 - 00:38:42 ----- . (.ATI Technologies Inc. - Pilote de miniport ATI RAGE 128.) -- C:\WINDOWS\system32\Drivers\ati2mtaa.sys [327168] O58 - SDL:04/08/2004 - 00:38:44 ----- . (.ATI Technologies Inc. - Pilote de miniport ATI RAGE 128.) -- C:\WINDOWS\system32\Drivers\ati2mtag.sys [701440] O58 - SDL:03/08/2004 - 22:29:28 ----- . (.ATI Technologies Inc. - ATI WDM BT829 MiniDriver (A).) -- C:\WINDOWS\system32\Drivers\atinbtxx.sys [57856] O58 - SDL:03/08/2004 - 22:29:30 ----- . (.ATI Technologies Inc. - ATI Specialized MVD VBI Codec RT2.) -- C:\WINDOWS\system32\Drivers\atinmdxx.sys [13824] O58 - SDL:03/08/2004 - 22:29:30 ----- . (.ATI Technologies Inc. - ATI Specialized PCD VBI Codec RT2.) -- C:\WINDOWS\system32\Drivers\atinpdxx.sys [14336] O58 - SDL:03/08/2004 - 22:29:30 ----- . (.ATI Technologies Inc. - ATI Rage Theater Audio WDM Minidriver.) -- C:\WINDOWS\system32\Drivers\atinraxx.sys [52224] O58 - SDL:03/08/2004 - 22:29:32 ----- . (.ATI Technologies Inc. - ATI WDM Rage Theater MiniDriver RT2.) -- C:\WINDOWS\system32\Drivers\atinrvxx.sys [104960] O58 - SDL:03/08/2004 - 22:29:32 ----- . (.ATI Technologies Inc. - ATI WDM TV Sound MiniDriver.) -- C:\WINDOWS\system32\Drivers\atinsnxx.sys [28672] O58 - SDL:03/08/2004 - 22:29:32 ----- . (.ATI Technologies Inc. - ATI WDM Teletext Decoder.) -- C:\WINDOWS\system32\Drivers\atinttxx.sys [13824] O58 - SDL:03/08/2004 - 22:29:32 ----- . (.ATI Technologies Inc. - ATI WDM TVTuner MiniDriver.) -- C:\WINDOWS\system32\Drivers\atintuxx.sys [73216] O58 - SDL:03/08/2004 - 22:29:32 ----- . (.ATI Technologies Inc. - ATI WDM CrossBar MiniDriver.) -- C:\WINDOWS\system32\Drivers\atinxbxx.sys [31744] O58 - SDL:03/08/2004 - 22:29:32 ----- . (.ATI Technologies Inc. - ATI WDM TVAUDIO_CrossBar MiniDriver RT2.) -- C:\WINDOWS\system32\Drivers\atinxsxx.sys [63488] O58 - SDL:13/02/2009 - 11:17:49 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver.) -- C:\WINDOWS\system32\Drivers\avgntdd.sys [45416] O58 - SDL:10/10/2009 - 19:34:07 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\WINDOWS\system32\Drivers\avgntflt.sys [55656] O58 - SDL:13/02/2009 - 11:28:39 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver Manager.) -- C:\WINDOWS\system32\Drivers\avgntmgr.sys [22360] O58 - SDL:30/03/2009 - 09:32:47 ---A- . (.Avira GmbH - Avira Driver for RootKit Detection.) -- C:\WINDOWS\system32\Drivers\avipbb.sys [96104] O58 - SDL:12/05/2006 - 21:05:02 ---A- . (.Broadcom Corporation. - Driver for Bluetooth USB Devices.) -- C:\WINDOWS\system32\Drivers\btwusb.sys [57320] O58 - SDL:02/02/2007 - 03:00:00 ---A- . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see PxHelp).) -- C:\WINDOWS\system32\Drivers\cdr4_xp.sys [9336] O58 - SDL:02/02/2007 - 03:00:00 ---A- . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\WINDOWS\system32\Drivers\cdralw2k.sys [9464] O58 - SDL:02/06/2006 - 16:02:36 ---A- . (.Conexant Systems Inc. - High Definition Audio Function Driver.) -- C:\WINDOWS\system32\Drivers\CHDAud.sys [572928] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\Drivers\cinemst2.sys [262528] O58 - SDL:24/08/2001 - 00:04:44 ---A- . (.CMD Technology, Inc. - Pilote de bus PCI IDE CMD.) -- C:\WINDOWS\system32\Drivers\cmdide.sys [6656] O58 - SDL:28/04/2008 - 19:22:10 ---A- . (.Hewlett-Packard Development Company, L.P. - HP Tablet PC Key Button HID Driver.) -- C:\WINDOWS\system32\Drivers\CPQBttn.sys [9344] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\Drivers\cpqdap01.sys [11776] O58 - SDL:18/08/2001 - 04:52:16 ---A- . (.Mylex Corporation - Mylex Disk Array Controller Driver.) -- C:\WINDOWS\system32\Drivers\dac2w2k.sys [179584] O58 - SDL:26/06/2012 - 15:02:36 ---A- . (.Devguru Co., Ltd - Device Error Recovery SDK(x86).) -- C:\WINDOWS\system32\Drivers\dgderdrv.sys [20032] O58 - SDL:14/04/2008 - 03:05:07 ---A- . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\system32\Drivers\dmboot.sys [800256] O58 - SDL:14/04/2008 - 03:05:12 ---A- . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\system32\Drivers\dmio.sys [154496] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\system32\Drivers\dmload.sys [5888] O58 - SDL:16/11/2007 - 18:55:00 ---A- . (.Intel Corporation - Intel(R) PRO/100 Adapter NDIS 5.1 driver.) -- C:\WINDOWS\system32\Drivers\e100b325.sys [165496] O58 - SDL:19/09/2005 - 13:23:52 ---A- . (.Hewlett-Packard Development Company, L.P. - QLB PS/2 Keyboard filter driver.) -- C:\WINDOWS\system32\Drivers\eabfiltr.sys [7808] O58 - SDL:19/09/2005 - 13:24:20 ---A- . (.Hewlett-Packard Development Company, L.P. - QLB USB Keyboard filter driver.) -- C:\WINDOWS\system32\Drivers\EabUsb.sys [5760] O58 - SDL:13/04/2008 - 17:36:05 ---A- . (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\system32\Drivers\hdaudbus.sys [144384] O58 - SDL:07/01/2005 - 16:07:16 ---A- . (.Windows (R) Server 2003 DDK provider - High Definition Audio Function Driver v1.0a.) -- C:\WINDOWS\system32\Drivers\Hdaudio.sys [145920] O58 - SDL:22/11/2002 - 11:49:22 ---A- . (.HP - IEEE-1284.4-1999 Driver (Windows 2000).) -- C:\WINDOWS\system32\Drivers\hphid411.sys [50896] O58 - SDL:22/11/2002 - 11:49:22 ---A- . (.HP - IEEE-1284.4-1999 Print Class Driver.) -- C:\WINDOWS\system32\Drivers\hphipr11.sys [16112] O58 - SDL:22/11/2002 - 11:49:22 ---A- . (.HP - 1284.4<->Usb Datalink Driver (Windows 2000).) -- C:\WINDOWS\system32\Drivers\hphius11.sys [18928] O58 - SDL:22/11/2002 - 11:49:22 ---A- . (.Hewlett-Packard - Printer Card Mass Storage Driver.) -- C:\WINDOWS\system32\Drivers\hphs2k11.sys [50276] O58 - SDL:03/08/2004 - 22:41:48 ----- . (.Conexant Systems, Inc. - HSF_HWB2 WDM driver.) -- C:\WINDOWS\system32\Drivers\hsfbs2s2.sys [220032] O58 - SDL:03/08/2004 - 22:41:50 ----- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\WINDOWS\system32\Drivers\hsfcxts2.sys [685056] O58 - SDL:03/08/2004 - 22:41:56 ----- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\WINDOWS\system32\Drivers\hsfdpsp2.sys [1041536] O58 - SDL:20/04/2006 - 17:02:40 ---A- . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\WINDOWS\system32\Drivers\HSFHWAZL.sys [208000] O58 - SDL:20/04/2006 - 17:02:36 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\WINDOWS\system32\Drivers\HSF_CNXT.sys [727296] O58 - SDL:20/04/2006 - 17:03:20 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\WINDOWS\system32\Drivers\HSF_DPV.sys [995712] O58 - SDL:22/03/2006 - 21:47:06 ---A- . (.Intel Corporation - Intel Graphics Miniport Driver.) -- C:\WINDOWS\system32\Drivers\ialmnt5.sys [1166972] O58 - SDL:13/10/2005 - 10:07:12 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver.) -- C:\WINDOWS\system32\Drivers\iaStor.sys [874240] O58 - SDL:12/10/2007 - 02:55:58 ---A- . (.Logitech Inc. - Audio filter for Express Plus.) -- C:\WINDOWS\system32\Drivers\lv302af.sys [13848] O58 - SDL:06/12/2005 - 04:30:19 R--A- . (.Logitech Inc. - Logitech QuickCam Driver.) -- C:\WINDOWS\system32\Drivers\LV302AV.SYS [916096] O58 - SDL:12/10/2007 - 02:55:58 ---A- . (.Logitech Inc. - Logitech QuickCam Driver.) -- C:\WINDOWS\system32\Drivers\LV302V32.SYS [1279000] O58 - SDL:19/10/2007 - 13:16:30 ---A- . (.Logitech Inc. - Logitech Kernel Audio Processing Filter Driver.) -- C:\WINDOWS\system32\Drivers\Lvckap.sys [2109976] O58 - SDL:11/10/2007 - 18:59:02 ---A- . (.Logitech Inc. - Logitech Machine Vision Engine Loader.) -- C:\WINDOWS\system32\Drivers\LVMVdrv.sys [2142488] O58 - SDL:09/12/2005 - 15:37:42 ---A- . (...) -- C:\WINDOWS\system32\Drivers\LVPrcMon.sys [16768] O58 - SDL:12/10/2007 - 03:00:42 ---A- . (.Logitech Inc. - USB Statistic Driver.) -- C:\WINDOWS\system32\Drivers\LVUSBSta.sys [41752] O58 - SDL:12/05/2014 - 06:25:54 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\system32\Drivers\mbam.sys [23256] O58 - SDL:12/05/2014 - 06:26:02 ---A- . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\WINDOWS\system32\Drivers\mbamchameleon.sys [53208] O58 - SDL:15/02/2006 - 12:57:46 ---A- . (.Conexant - Diagnostic Interface x86 Driver.) -- C:\WINDOWS\system32\Drivers\mdmxsdk.sys [12672] O58 - SDL:18/08/2001 - 04:52:12 ---A- . (.American Megatrends Inc. - MegaRAID RAID Controller Driver for Windows Whistler 32.) -- C:\WINDOWS\system32\Drivers\mraid35x.sys [17280] O58 - SDL:03/08/2004 - 22:41:40 ----- . (.Smart Link - Pas de description.) -- C:\WINDOWS\system32\Drivers\mtlmnt5.sys [126686] O58 - SDL:03/08/2004 - 22:41:38 ----- . (.Smart Link - Pas de description.) -- C:\WINDOWS\system32\Drivers\mtlstrm.sys [1309184] O58 - SDL:03/08/2004 - 22:29:38 ----- . (.Matrox Graphics Inc. - Matrox Parhelia Miniport Driver.) -- C:\WINDOWS\system32\Drivers\mtxparhm.sys [452736] O58 - SDL:28/09/2006 - 20:23:34 ---A- . (.Intel® Corporation - Intel® Wireless LAN Driver.) -- C:\WINDOWS\system32\Drivers\NETw3x32.sys [1709696] O58 - SDL:17/11/2008 - 14:23:16 ---A- . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\WINDOWS\system32\Drivers\NETw5x32.sys [3636864] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\Drivers\nikedrv.sys [12032] O58 - SDL:03/08/2004 - 22:41:40 ----- . (.Smart Link - Pas de description.) -- C:\WINDOWS\system32\Drivers\ntmtlfax.sys [180360] O58 - SDL:03/08/2004 - 22:29:56 ----- . (.NVIDIA Corporation - NVIDIA Compatible Windows 2000 Miniport Driver, Version 56.73.) -- C:\WINDOWS\system32\Drivers\nv4_mini.sys [1897408] O58 - SDL:30/09/2009 - 07:51:30 ---A- . (.Tall Emu - OA Helper Driver.) -- C:\WINDOWS\system32\Drivers\OADriver.sys [200784] O58 - SDL:30/09/2009 - 07:51:44 ---A- . (.Tall Emu - TDI Helper Driver.) -- C:\WINDOWS\system32\Drivers\OAmon.sys [24656] O58 - SDL:30/09/2009 - 07:51:34 ---A- . (.Tall Emu Pty Ltd - OA Helper Driver.) -- C:\WINDOWS\system32\Drivers\OAnet.sys [29776] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\Drivers\ptilink.sys [17792] O58 - SDL:01/05/2007 - 02:00:00 ---A- . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\WINDOWS\system32\Drivers\pxhelp20.sys [43528] O58 - SDL:18/08/2001 - 04:52:20 ---A- . (.QLogic Corporation - Miniport Driver for QLogic ISP PCI Adapters.) -- C:\WINDOWS\system32\Drivers\ql1080.sys [40320] O58 - SDL:18/08/2001 - 04:52:20 ---A- . (.QLogic Corporation - Miniport Driver for QLogic ISP PCI Adapters.) -- C:\WINDOWS\system32\Drivers\ql12160.sys [45312] O58 - SDL:18/08/2001 - 04:52:18 ---A- . (.QLogic Corporation - Miniport Driver for QLogic ISP PCI Adapters.) -- C:\WINDOWS\system32\Drivers\ql1280.sys [49024] O58 - SDL:03/08/2004 - 22:41:40 ----- . (.Smart Link - Pas de description.) -- C:\WINDOWS\system32\Drivers\recagent.sys [13776] O58 - SDL:16/11/2005 - 21:28:32 ---A- . (.REDC - RICOH MMC Driver.) -- C:\WINDOWS\system32\Drivers\rimmptsk.sys [28928] O58 - SDL:09/01/2009 - 15:18:02 R--A- . (.Research in Motion Ltd - RIM Virtual Serial Driver.) -- C:\WINDOWS\system32\Drivers\RimSerial.sys [27136] O58 - SDL:22/12/2005 - 18:02:22 ---A- . (.REDC - RICOH MS Driver.) -- C:\WINDOWS\system32\Drivers\rimsptsk.sys [51840] O58 - SDL:20/05/2008 - 18:33:50 ---A- . (.Research In Motion Limited - BlackBerry Device Driver.) -- C:\WINDOWS\system32\Drivers\RimUsb.sys [22784] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\Drivers\rio8drv.sys [12032] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\Drivers\riodrv.sys [12032] O58 - SDL:04/08/2004 - 07:31:34 ---A- . (.Realtek Semiconductor Corporation - Realtek RTL8139 NDIS 5.0 Driver.) -- C:\WINDOWS\system32\Drivers\RTL8139.sys [20992] O58 - SDL:03/08/2004 - 22:29:52 ----- . (.S3 Graphics, Inc. - S3 ProSavage(DDR) & Twister Miniport Driver.) -- C:\WINDOWS\system32\Drivers\s3gnbm.sys [166912] O58 - SDL:13/11/2007 - 11:25:54 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\Drivers\secdrv.sys [20480] O58 - SDL:13/04/2008 - 19:36:39 ---A- . (.Silicon Integrated Systems Corporation - SiS NT AGP Filter.) -- C:\WINDOWS\system32\Drivers\sisagp.sys [40960] O58 - SDL:03/08/2004 - 22:41:42 ----- . (.Smart Link - Pas de description.) -- C:\WINDOWS\system32\Drivers\slnt7554.sys [129535] O58 - SDL:03/08/2004 - 22:41:44 ----- . (.Smart Link - Pas de description.) -- C:\WINDOWS\system32\Drivers\slntamr.sys [404990] O58 - SDL:03/08/2004 - 22:41:46 ----- . (.Smart Link - Pas de description.) -- C:\WINDOWS\system32\Drivers\slnthal.sys [95424] O58 - SDL:03/08/2004 - 22:41:46 ----- . (.Smart Link - Pas de description.) -- C:\WINDOWS\system32\Drivers\slwdmsup.sys [13240] O58 - SDL:18/08/2001 - 05:07:44 ---A- . (.Adaptec, Inc. - Adaptec AIC-6x60 series SCSI miniport.) -- C:\WINDOWS\system32\Drivers\sparrow.sys [19072] O58 - SDL:10/10/2009 - 19:34:07 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\WINDOWS\system32\Drivers\ssmdrv.sys [28520] O58 - SDL:21/05/2012 - 03:09:00 ---A- . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ver.3).) -- C:\WINDOWS\system32\Drivers\ssudbus.sys [80824] O58 - SDL:21/05/2012 - 03:09:00 ---A- . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ver.3).) -- C:\WINDOWS\system32\Drivers\ssudmdm.sys [181432] O58 - SDL:21/05/2012 - 03:09:00 ---A- . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Mobile Logging Device Driver (MSS Ver.3).) -- C:\WINDOWS\system32\Drivers\ssudserd.sys [181432] O58 - SDL:12/11/2009 - 13:48:56 ---A- . (...) -- C:\WINDOWS\system32\Drivers\StarOpen.sys [7168] O58 - SDL:18/08/2001 - 05:07:34 ---A- . (.Symbios Logic Inc. - Symbios Logic Inc. SCSI Miniport Driver.) -- C:\WINDOWS\system32\Drivers\symc810.sys [16256] O58 - SDL:18/08/2001 - 05:07:36 ---A- . (.LSI Logic - Symbios 8XX SCSI Miniport Driver.) -- C:\WINDOWS\system32\Drivers\symc8xx.sys [32640] O58 - SDL:18/08/2001 - 05:07:40 ---A- . (.LSI Logic - Symbios Hi-Perf SCSI Miniport Driver.) -- C:\WINDOWS\system32\Drivers\sym_hi.sys [28384] O58 - SDL:18/08/2001 - 05:07:42 ---A- . (.LSI Logic - Symbios Ultra3 SCSI Miniport Driver.) -- C:\WINDOWS\system32\Drivers\sym_u3.sys [30688] O58 - SDL:28/03/2008 - 00:14:00 ---A- . (.Synaptics, Inc. - Synaptics Touchpad Driver.) -- C:\WINDOWS\system32\Drivers\SynTP.sys [224672] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\Drivers\tsbvcap.sys [21376] O58 - SDL:18/08/2001 - 04:52:22 ---A- . (.Promise Technology, Inc. - Gestionnaire de miniport ULTRA66 de Promise.) -- C:\WINDOWS\system32\Drivers\ultra.sys [36736] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\Drivers\vdmindvd.sys [58112] O58 - SDL:03/08/2004 - 22:29:40 ----- . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Graphics Driver.) -- C:\WINDOWS\system32\Drivers\wadv07nt.sys [11807] O58 - SDL:03/08/2004 - 22:29:40 ----- . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Graphics Driver.) -- C:\WINDOWS\system32\Drivers\wadv08nt.sys [11295] O58 - SDL:03/08/2004 - 22:29:42 ----- . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Graphics Driver.) -- C:\WINDOWS\system32\Drivers\wadv09nt.sys [11871] O58 - SDL:03/08/2004 - 22:29:42 ----- . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Graphics Driver.) -- C:\WINDOWS\system32\Drivers\wadv11nt.sys [11935] O58 - SDL:03/08/2004 - 22:29:46 ----- . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Graphics Driver.) -- C:\WINDOWS\system32\Drivers\watv06nt.sys [22271] O58 - SDL:03/08/2004 - 22:29:46 ----- . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Graphics Driver.) -- C:\WINDOWS\system32\Drivers\watv10nt.sys [25471] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9037] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\country.sys [27097] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\himem.sys [4912] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys [42809] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys [42537] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys [27916] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys [29146] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys [29370] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys [29274] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys [29146] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys [34000] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys [34560] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys [35648] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys [35424] O58 - SDL:25/03/2006 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys [34560] O58 - SDL:15/10/2002 - 10:13:34 ---A- . (.Phoenix Technologies K.K. - USB FDD CLASS DRIVER.) -- C:\WINDOWS\system32\pusbfd1.sys [32356] ~ Drivers: 148 Scanned in 00mn 01s ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC: 03/08/2014 - 11:53:32 ---A- . (...) -- C:\Documents and Settings\luce\Mes documents\Downloads\vlc-2.1.5-win32.exe [24743106] O61 - LFC: 03/08/2014 - 11:53:32 ---A- . (.Google Inc..) -- C:\Documents and Settings\luce\Local Settings\Temp\CRX_DF399A9B283A\ChromeRecovery.exe [571272] O61 - LFC: 03/08/2014 - 11:53:32 ---A- . (.Google Inc..) -- C:\Documents and Settings\luce\Local Settings\Temp\CRX_DF399A9B283A\GoogleUpdateSetup.exe [774424] O61 - LFC: 03/08/2014 - 11:53:32 ---A- . (.Nicolas Coolman.) -- C:\Documents and Settings\luce\Mes documents\Downloads\ZHPDiag2.exe [6858013] =>.Nicolas Coolman O61 - LFC: 03/08/2014 - 11:53:33 ---A- . (...) -- C:\Documents and Settings\luce\Mes documents\Téléchargements\adwcleaner_3.302.exe [1361309] O61 - LFC: 03/08/2014 - 11:53:33 ---A- . (.Malwarebytes Corporation.) -- C:\Documents and Settings\luce\Mes documents\Téléchargements\mbam-setup-2.0.2.1012.exe [17292760] O61 - LFC: 04/08/2014 - 11:53:32 ---A- . (...) -- C:\Documents and Settings\luce\Local Settings\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp5hfyzy.dll [43008] ~ 51 Fichiers temporaires (Temporary files) ~ 19 Fichiers cookies (Cookies files) ~ Files: 7 Scanned in 00mn 04s ---\\ Liste des outils de désinfection (LATC) (O63) O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman ~ ADS: Scanned in 00mn 00s ---\\ Liste les services legacy du registre (LALS) (O64) O64 - Services: CurCS - 18/08/2001 - C:\WINDOWS\system32\DRIVERS\aliide.sys (AliIde) .(.Acer Laboratories Inc. - ALi mini IDE Driver.) - LEGACY_ALIIDE O64 - Services: CurCS - 01/08/2014 - C:\WINDOWS\system32\drivers\aswMonFlt.sys (aswMonFlt) .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT O64 - Services: CurCS - 01/08/2014 - C:\WINDOWS\system32\drivers\aswRdr.sys (aswRdr) .(.AVAST Software - avast! TDI Redirect Driver.) - LEGACY_ASWRDR O64 - Services: CurCS - 01/08/2014 - C:\WINDOWS\system32\Drivers\aswRvrt.sys (aswRvrt) .(...) - LEGACY_ASWRVRT O64 - Services: CurCS - 01/08/2014 - C:\WINDOWS\system32\drivers\aswSnx.sys (aswSnx) .(.AVAST Software - avast! Virtualization Driver.) - LEGACY_ASWSNX O64 - Services: CurCS - 03/08/2014 - C:\WINDOWS\system32\drivers\aswSP.sys (aswSP) .(.AVAST Software - avast! self protection module.) - LEGACY_ASWSP O64 - Services: CurCS - 01/08/2014 - C:\WINDOWS\system32\drivers\aswTdi.sys (aswTdi) .(.AVAST Software - avast! TDI Filter Driver.) - LEGACY_ASWTDI O64 - Services: CurCS - 01/08/2014 - C:\WINDOWS\system32\Drivers\aswVmm.sys (aswVmm) .(...) - LEGACY_ASWVMM O64 - Services: CurCS - 01/08/2014 - C:\Program Files\AVAST Software\Avast\AvastSvc.exe (avast! Antivirus) .(.AVAST Software - avast! Service.) - LEGACY_AVAST!_ANTIVIRUS O64 - Services: CurCS - 10/10/2009 - C:\WINDOWS\system32\DRIVERS\avgntflt.sys (avgntflt) .(.Avira GmbH - Avira Minifilter Driver.) - LEGACY_AVGNTFLT O64 - Services: CurCS - 30/03/2009 - C:\WINDOWS\system32\DRIVERS\avipbb.sys (avipbb) .(.Avira GmbH - Avira Driver for RootKit Detection.) - LEGACY_AVIPBB O64 - Services: CurCS - 25/03/2006 - C:\WINDOWS\system32\drivers\dmload.sys (dmload) .(.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) - LEGACY_DMLOAD O64 - Services: CurCS - 19/09/2005 - C:\WINDOWS\system32\DRIVERS\eabfiltr.sys (eabfiltr) .(.Hewlett-Packard Development Company, L.P. - QLB PS/2 Keyboard filter driver.) - LEGACY_EABFILTR O64 - Services: CurCS - 02/05/2006 - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe (hpqwmiex) .(.Hewlett-Packard Development Company, L.P. - hpqwmiex Module.) - LEGACY_HPQWMIEX O64 - Services: CurCS - 18/05/2006 - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe (LightScribeService) .(.Hewlett-Packard Company - Pas de description.) - LEGACY_LIGHTSCRIBESERVICE O64 - Services: CurCS - 12/05/2014 - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe (MBAMScheduler) .(.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - LEGACY_MBAMSCHEDULER O64 - Services: CurCS - 11/03/2011 - C:\Program Files\Clarus\Samsung Drive Manager\mdf16.sys (mdf16) .(.Pas de propriétaire - Driver for SecretZone.) - LEGACY_MDF16 O64 - Services: CurCS - 19/05/2011 - C:\Program Files\Clarus\Samsung Drive Manager\mvd23.sys (mvd23) .(.Pas de propriétaire - Virtual Disk Driver for SecretZone.) - LEGACY_MVD23 O64 - Services: CurCS - 04/03/2010 - C:\Program Files\CDBurnerXP\NMSAccessU.exe (NMSAccess) .(...) - LEGACY_NMSACCESS O64 - Services: CurCS - 30/09/2009 - C:\Program Files\Tall Emu\Online Armor\oacat.exe (OAcat) .(.Tall Emu - Online Armor Component.) - LEGACY_OACAT O64 - Services: CurCS - 30/09/2009 - C:\WINDOWS\system32\drivers\OADriver.sys (OADevice) .(.Tall Emu - OA Helper Driver.) - LEGACY_OADEVICE O64 - Services: CurCS - 30/09/2009 - C:\WINDOWS\system32\drivers\OAmon.sys (OAmon) .(.Tall Emu - TDI Helper Driver.) - LEGACY_OAMON O64 - Services: CurCS - 30/09/2009 - C:\WINDOWS\system32\drivers\OAnet.sys (OAnet) .(.Tall Emu Pty Ltd - OA Helper Driver.) - LEGACY_OANET O64 - Services: CurCS - 10/10/2009 - C:\WINDOWS\system32\DRIVERS\ssmdrv.sys (ssmdrv) .(.Avira GmbH - AVIRA SnapShot Driver.) - LEGACY_SSMDRV O64 - Services: CurCS - 20/04/2012 - C:\Program Files\Clarus\Samsung Drive Manager\SZDrvSvc.exe (SZDrvSvc) .(.Clarus, Inc. - SZDrvSvc.) - LEGACY_SZDRVSVC ~ Legacy: 225 Scanned in 00mn 00s ---\\ Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\system32\WScript.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ~ FASS Keys: 10 Scanned in 00mn 00s ---\\ Menu de démarrage Internet (SMI) (O68) O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ~ Keys: Scanned in 00mn 00s ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com O69 - SBI: SearchScopes [HKCU] {2DDF1806-3104-4C40-BCFD-F70A109BD059} [DefaultScope] - (Google) - http://www.google.com ~ Keys: Scanned in 00mn 00s ---\\ Enumère les service demarrés par Svchost (SSS) (O83) O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\WINDOWS\system32\appmgmts.dll [176640] O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\WINDOWS\system32\audiosrv.dll [42496] O83 - Search Svchost Services: Browser (Browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\system32\browser.dll [78336] O83 - Search Svchost Services: CryptSvc (CryptSvc) . (.Microsoft Corporation - Cryptographic Services.) -- C:\WINDOWS\system32\cryptsvc.dll [62464] O83 - Search Svchost Services: DMServer (DMServer) . (.Microsoft Corp. - DLL Service gestionnaire de disque logique.) -- C:\WINDOWS\system32\dmserver.dll [24576] O83 - Search Svchost Services: DHCP (DHCP) . (.Microsoft Corporation - Service client DHCP.) -- C:\WINDOWS\system32\dhcpcsvc.dll [127488] O83 - Search Svchost Services: ERSvc (ERSvc) . (.Microsoft Corporation - Windows Error Reporting Service.) -- C:\WINDOWS\system32\ersvc.dll [23040] O83 - Search Svchost Services: EventSystem (EventSystem) . (.Microsoft Corporation - Pas de description.) -- C:\WINDOWS\system32\es.dll [253952] O83 - Search Svchost Services: FastUserSwitchingCompatibility (FastUserSwitchingCompatibility) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] O83 - Search Svchost Services: HidServ (HidServ) . (.Microsoft Corporation - HID Audio Service.) -- C:\WINDOWS\system32\hidserv.dll [21504] O83 - Search Svchost Services: LanmanServer (LanmanServer) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [99840] O83 - Search Svchost Services: LanmanWorkstation (LanmanWorkstation) . (.Microsoft Corporation - Workstation Service DLL.) -- C:\WINDOWS\system32\wkssvc.dll [132096] O83 - Search Svchost Services: Messenger (Messenger) . (.Microsoft Corporation - NT Messenger Service.) -- C:\WINDOWS\system32\msgsvc.dll [33792] O83 - Search Svchost Services: Netman (Netman) . (.Microsoft Corporation - Gestionnaire de connexions réseau.) -- C:\WINDOWS\system32\netman.dll [198144] O83 - Search Svchost Services: Nla (Nla) . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll [247808] =>.Microsoft Corporation O83 - Search Svchost Services: Ntmssvc (Ntmssvc) . (.Microsoft Corporation - Gestionnaire de stockage amovible.) -- C:\WINDOWS\system32\ntmssvc.dll [438272] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\system32\rasauto.dll [88576] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\system32\rasmans.dll [186368] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\system32\mprdim.dll [53248] O83 - Search Svchost Services: Schedule (Schedule) . (.Microsoft Corporation - Moteur du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [194560] O83 - Search Svchost Services: Seclogon (Seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secondaire.) -- C:\WINDOWS\system32\seclogon.dll [18944] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\system32\sens.dll [39424] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à Microsoft NAT.) -- C:\WINDOWS\system32\ipnathlp.dll [332800] O83 - Search Svchost Services: SRService (SRService) . (.Microsoft Corporation - Service de restauration du système.) -- C:\WINDOWS\system32\srsvc.dll [171520] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\WINDOWS\system32\tapisrv.dll [249856] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] O83 - Search Svchost Services: TrkWks (TrkWks) . (.Microsoft Corporation - Distributed Link Tracking Client.) -- C:\WINDOWS\system32\trkwks.dll [90112] O83 - Search Svchost Services: W32Time (W32Time) . (.Microsoft Corporation - Service de temps Windows.) -- C:\WINDOWS\system32\w32time.dll [178176] O83 - Search Svchost Services: WZCSVC (WZCSVC) . (.Microsoft Corporation - Service configuration automatique sans fil.) -- C:\WINDOWS\system32\wzcsvc.dll [483840] O83 - Search Svchost Services: Wmi (Wmi) . (.Microsoft Corporation - API avancées Windows 32.) -- C:\WINDOWS\system32\advapi32.dll [685568] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [145408] O83 - Search Svchost Services: wscsvc (wscsvc) . (.Microsoft Corporation - Windows Security Center Service.) -- C:\WINDOWS\system32\wscsvc.dll [80896] O83 - Search Svchost Services: xmlprov (xmlprov) . (.Microsoft Corporation - Network Provisioning Service.) -- C:\WINDOWS\system32\xmlprov.dll [129024] O83 - Search Svchost Services: MHN (MHN) . (.Microsoft Corporation - Windows NT.) -- C:\WINDOWS\system32\mhn.dll [85504] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\WINDOWS\system32\qmgr.dll [409088] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update AutoUpdate Service.) -- C:\WINDOWS\system32\wuauserv.dll [6656] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] O83 - Search Svchost Services: helpsvc (helpsvc) . (.Microsoft Corporation - Microsoft PCHealth Service Holder.) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll [38400] O83 - Search Svchost Services: WmdmPmSN (WmdmPmSN) . (.Microsoft Corporation - Microsoft Media Device Service Provider.) -- C:\WINDOWS\system32\MsPMSNSv.dll [27648] O83 - Search Svchost Services: napagent (napagent) . (.Microsoft Corporation - Exécution du service Agent de quarantaine.) -- C:\WINDOWS\system32\qagentrt.dll [293376] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\WINDOWS\system32\kmsvc.dll [61440] ~ Services: 41 Scanned in 00mn 00s ---\\ Recherche particulière à la racine du système (SPRF) (O84) [MD5.1D8C7C681E45A1F8E66AEDE412F46F62] [SPRF][10/10/2009] (...) -- C:\Documents and Settings\luce\Bureau\Navilog1.exe [391992] [MD5.F2CA6D50848556723764B94ACE9DD940] [SPRF][15/10/2009] (.Research In Motion Limited. - AxLoader Module.) -- C:\WINDOWS\Downloaded Program Files\axloader.dll [163840] [MD5.3FEA9D2EDF23B0283C7A66C8DEA380BD] [SPRF][26/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player Module.) -- C:\WINDOWS\Downloaded Program Files\dwusplay.dll [24576] [MD5.CDBE35EA59BC9223E4F800BD1DB82D27] [SPRF][26/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player.) -- C:\WINDOWS\Downloaded Program Files\dwusplay.exe [196608] [MD5.29CFE9ED23C55E55838A789EB1182A9B] [SPRF][04/10/2008] (.Adobe Systems Incorporated - Adobe® Flash® Player ActiveX Installer.) -- C:\WINDOWS\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe [1887080] [MD5.2D54DAECBA60EB03F9E63DD50669F634] [SPRF][24/10/2008] (.Macrovision Corporation - Macrovision Software Manager Web Agent.) -- C:\WINDOWS\Downloaded Program Files\isusweb.dll [488736] ~ Files: 6 Scanned in 00mn 00s ---\\ Enumère les codes produits des logiciels (PUC) (O90) O90 - PUC: "5509804B864D4A546AABA531D87D51CF" . (.Bing Bar.) -- C:\WINDOWS\Installer\{B4089055-D468-45A4-A6BA-5A138DD715FC}\icon_installer_ico =>Toolbar.Bing ~ Update Products: 1 Scanned in 00mn 00s ---\\ Enumère les données de la clé NameSpace (MNS) (O92) O92 - MNS: Dossiers Web - {BDEADF00-C265-11D0-BCED-00A0C90AB50F} ~ MNS: 1 Scanned in 00mn 00s ---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS) [MD5.47C0E416314A9D6DF2DB798A7A6E445F] [WIS][19/01/2012] (.Microsoft Corporation - Bing Bar.) -- C:\Windows\Installer\1565ede.msi [1067008] =>Toolbar.Bing [MD5.D05D7375D6A0D7AD25D155AE6D9ECFA9] [WIS][13/01/2013] (.SweetIM Technologies Ltd. - SweetIM for Messenger 3.7.) -- C:\Windows\Installer\76598e6.msi [2046464] =>PUP.SweetIM [MD5.ACE618BD6CA2267D031387655C3F5C48] [WIS][13/01/2013] (.SweetIM Technologies Ltd. - SweetPacks Toolbar for Internet Explorer 4.0.) -- C:\Windows\Installer\76598ec.msi [2044928] =>PUP.SweetIM [MD5.3CD19859CD377AD00B30E4BEE49D374E] [WIS][13/01/2013] (.SweetIM Technologies Ltd. - Sweetpacks Communicator 1.1.) -- C:\Windows\Installer\76598ed.msi [2997248] =>PUP.SweetIM ~ WIS: 4 Scanned in 00mn 00s ---\\ Recherche de clés de registre CLSID (O101) [HKCR\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f}] (Bing Bar) =>Toolbar.Bing [HKCR\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}] (Bing Bar Helper) =>Toolbar.Bing ~ BCK: 6603 Scanned in 00mn 12s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Demand 12/06/2006 126976 | (AddFiltr) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe SS - | Demand 03/08/2014 262320 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe SS - | Disabled 21/10/2011 196176 | (BBSvc) . (.Microsoft Corporation..) - C:\Program Files\Microsoft\BingBar\BBSvc.exe =>Toolbar.Bing SS - | Demand 14/04/2008 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\system32\dmadmin.exe SS - | Disabled 30/07/2012 136176 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SS - | Disabled 30/07/2012 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SS - | Demand 22/10/2004 73728 | (IDriverT) . (.Macrovision Corporation.) - c:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe SS - | Demand 30/07/2014 119408 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe SS - | Demand 22/11/2002 77824 | (Pml Driver HPH11) . (.HP.) - C:\WINDOWS\system32\HPHipm11.exe SS - | Disabled 06/12/2007 88560 | (Roxio UPnP Renderer 9) . (.Sonic Solutions.) - C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe SS - | Disabled 06/12/2007 362992 | (Roxio Upnp Server 9) . (.Sonic Solutions.) - C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe SS - | Disabled 08/07/2009 313840 | (RoxLiveShare9) . (.Sonic Solutions.) - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe SS - | Disabled 08/07/2009 1108464 | (RoxMediaDB9) . (.Sonic Solutions.) - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe SS - | Disabled 08/07/2009 170480 | (RoxWatch9) . (.Sonic Solutions.) - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe SS - | Disabled 07/02/2013 161384 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe SS - | Auto 30/09/2009 3186376 | (SvcOnlineArmor) . (.Tall Emu.) - C:\Program Files\Tall Emu\Online Armor\oasrv.exe SR - | Auto 01/08/2014 50344 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe SR - | Auto 13/10/2011 249648 | (BBUpdate) . (.Microsoft Corporation.) - C:\Program Files\Microsoft\BingBar\SeaPort.exe =>Toolbar.Bing SR - | Auto 02/05/2006 135168 | (hpqwmiex) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe SR - | Auto 18/05/2006 49152 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe SR - | Auto 12/05/2014 1809720 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe SR - | Auto 04/03/2010 71096 | (NMSAccess) . (...) - C:\Program Files\CDBurnerXP\NMSAccessU.exe SR - | Auto 30/09/2009 1244360 | (OAcat) . (.Tall Emu.) - C:\Program Files\Tall Emu\Online Armor\oacat.exe SR - | Auto 20/04/2012 19456 | (SZDrvSvc) . (.Clarus, Inc..) - C:\Program Files\Clarus\Samsung Drive Manager\SZDrvSvc.exe ~ Services: Scanned in 00mn 13s ---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net Run by luce at 04/08/2014 11:54:32 device: opened successfully user: MBR read successfully Disk trace: called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll iaStor.sys C:\WINDOWS\system32\drivers\iaStor.sys Intel Corporation Intel Matrix Storage Manager driver 1 ntkrnlpa!IofCallDriver[0x804EF200] >> \Device\Harddisk0\DR0[0x8A87F030] 3 CLASSPNP[0xF74E7FD7] >> ntkrnlpa!IofCallDriver[0x804EF200] >> \Device\0000008e[0x8A842990] 5 ACPI[0xF735D620] >> ntkrnlpa!IofCallDriver[0x804EF200] >> \Device\Ide\IAAStorageDevice-0[0x8A34D030] kernel: MBR read successfully user & kernel MBR OK ~ MBR: 14 Scanned in 00mn 02s ---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by luce at 04/08/2014 11:54:34 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ MBR: Scanned in 00mn 04s ---\\ Scan Additionnel (O88) Database Version : 13026 - (03/08/2014) Clés trouvées (Keys found) : 6 Valeurs trouvées (Values found) : 1 Dossiers trouvés (Folders found) : 0 Fichiers trouvés (Files found) : 7 [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}] =>Toolbar.Bing^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B4089055-D468-45A4-A6BA-5A138DD715FC}] =>Toolbar.Bing^ [HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\3823525114.portal.qtrax.com] =>P2P.Qtrax^ [HKLM\Software\Canneverbe Limited\OpenCandy] =>Adware.OpenCandy [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536] =>PUP.SweetIM^ [HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{8dcb7100-df86-4384-8842-8fa844297b3f} =>Toolbar.Bing^ [HKCU\Software\Genesis Digital Innovations] =>PUP.Genesis^ C:\Windows\Installer\1565ede.msi =>Toolbar.Bing^ C:\Windows\Installer\76598e6.msi =>PUP.SweetIM^ C:\Windows\Installer\76598ec.msi =>PUP.SweetIM^ C:\Windows\Installer\76598ed.msi =>PUP.SweetIM^ [HKCR\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f}] (Bing Bar) =>Toolbar.Bing^ [HKCR\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}] (Bing Bar Helper) =>Toolbar.Bing^ ~ Additionnel Scan: 337808 Items scanned in 01mn 58s ---\\ Informations complémentaires sur les modules ~ http://nicolascoolman.fr/g0-page-de-demarrage-google-chrome/ =>.Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) ~ http://nicolascoolman.fr/g2-google-chrome-extensions/ =>.Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) ~ http://nicolascoolman.fr/r5-internet-explorer-proxy-management-iepm/ =>.Internet Explorer, Proxy Management (R5) ~ http://nicolascoolman.fr/o2-browser-helper-objects-de-navigateur/ =>.Browser Helper Objects de navigateur (O2) ~ http://nicolascoolman.fr/o3-internet-explorer-toolbars/ =>.Internet Explorer Toolbars (O3) ~ http://nicolascoolman.fr/o4-applications-demarrees-par-le-registre/ =>.Applications lancées au démarrage du système (O4) ~ http://nicolascoolman.fr/o50-image-file-execution-options-zhpdiag/ =>.Image File Execution Options (IFEO) (O50) ~ AMI: 7 Scanned in 00mn 00s ---\\ Récapitulatif des détections trouvées sur votre station http://nicolascoolman.fr/pup-genesis =>PUP.Genesis http://nicolascoolman.fr/pup-sweetim =>PUP.SweetIM http://nicolascoolman.fr/adware-opencandy =>Adware.OpenCandy ~ MSI: 3 link(s) detected in 00mn 00s End of the scan (1591 lines in 03mn 33s)(0)