Rapport de ZHPDiag v1.28.34 par Nicolas Coolman, Update du 06/03/2012
Run by Marie at 07/03/2012 19:33:41
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Web site : http://nicolascoolman.skyrock.com/
State : Nouvelle version disponible
---\\ Web Browser
MSIE: Internet Explorer v8.0.7601.17514
MFIE: Mozilla Firefox 10.0.2 v10.0.2 (Defaut)
---\\ Windows Product Information
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 3Q6C9
Windows License : OK
~ Windows Remaining Initializations Number : 2
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Information
~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4063 MB (64% free)
System Restore: Activé (Enable)
System drive C: has 50 GB (22%) free of 220 GB
---\\ Logged in mode
~ Computer Name: MARIE-PC
~ User Name: Marie
~ All Users Names: Marie, HomeGroupUser$, Games, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Marie\AppData\Roaming\
~ %Desktop% : C:\Users\Marie\Desktop\
~ %Favorites% : C:\Users\Marie\Favorites\
~ %LocalAppData% : C:\Users\Marie\AppData\Local\
~ %StartMenu% : C:\Users\Marie\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\system32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 50 Go of 220 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 233 Go of 233 Go)
E:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 13 Go)
F:\ CD-ROM drive (Free 0 Go of 4 Go)
G:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoDispScrSavPage: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyComputer: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) (.14/07/2009 - 02:39:31.) -- C:\Windows\system32\rundll32.exe [45568]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\system32\Wininit.exe [129024]
[MD5.F6C45D1D448B38A3298505917710F047] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.16/12/2011 - 09:47:38.) -- C:\Windows\system32\wininet.dll [1188864]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.20/11/2010 - 14:25:30.) -- C:\Windows\system32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\system32\sppcomapi.dll [232448]
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows multi-utilisateurs.) (.20/11/2010 - 14:07:20.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\drivers\netBT.sys [261632]
[MD5.A2F74975097F52A00745F9637451FDD8] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.11/03/2011 - 07:41:34.) -- C:\Windows\system32\drivers\ntfs.sys [1659776]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\drivers\volsnap.sys [295808]
~ Scan Generic Processes in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/3580
~ Mes musiques (My Musics) : 91/2805
~ Mes Videos (My Videos) : 1/14
~ Mes Favoris (My Favorites) : Non accessible (Not found)
~ Mes Documents (My Documents) : 1/870
~ Menu demarrer (Programs) : 3/26
~ Scan Hidden Files in 00mn 03s
---\\ Processus lancés
[MD5.FCEF5DC1794CB2C4B305F780D4F7797B] - (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3514176] [PID.3028]
[MD5.1F256EE9929FBA1BAE428B6CE2FC59BD] - (.Pas de propriétaire - puush.) -- C:\Program Files (x86)\puush\puush.exe [558824] [PID.3044]
[MD5.8F89E6CB82E6DB45BC993D423CD0FDBD] - (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe [323640] [PID.484]
[MD5.30183A68E8EFDE4CB7D65C815081DADA] - (.Yuna Software - Messenger Plus! 5.) -- C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe [801792] [PID.2716]
[MD5.4405758C4569213F3CFAC20E495EDF4C] - (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [258512] [PID.2796]
[MD5.0DCAC41EB58A45049BD7FF665C32D5F4] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [421736] [PID.2852]
[MD5.0DE3C7622EC33126579B1742260F08C2] - (.Pas de propriétaire - HpqToaster Module.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe [632888] [PID.3696]
[MD5.C65B115A03DB0260895DE96681E88221] - (.CyberLink Corp. - HP DVDSmart Resident Program.) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe [128296] [PID.3872]
[MD5.B508A4EE516D905730458BB50B79979B] - (.CyberLink - CyberLink MediaLibray Service.) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [206120] [PID.3880]
[MD5.5AC757AE411CBC603C33C85F81F8657D] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [924632] [PID.2764]
[MD5.46AE705AC463F50AC714C8084A09A2A3] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [2211328] [PID.5004]
[MD5.27C9A4E1EF31C7A64DE8FBC0AA568503] - (.Avira Operations GmbH & Co. KG - Avira Scheduler.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [86224] [PID.]
[MD5.E491888D529410D7BD8FBBAD825795C8] - (.Avira Operations GmbH & Co. KG - Avira On-Access Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [110032] [PID.]
[MD5.3DEBBECF665DCDDE3A95D9B902010817] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [55144] [PID.]
[MD5.BCC4A8B2E2E902F52E7F2E7D8E125765] - (.Hewlett-Packard Company - HP Quick Synchronization Service.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [94264] [PID.]
[MD5.EC9739A46F1F83C6E52A7A4697F44A65] - (.Hewlett-Packard Company - hpqwmiex Module.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [799800] [PID.]
[MD5.C7A0E61D5714AC20DE52D4F66EC773B8] - (.Hewlett-Packard Development Company, L.P. - Com for QLB application.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [227896] [PID.]
~ Scan Processes Running in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Marie\AppData\Roaming\Mozilla\Firefox\Profiles\3od8snne.default\prefs.js
M0 - MFSP: prefs.js [Marie - 3od8snne.default] http://www.google.fr
M2 - MFEP: prefs.js [Marie - 3od8snne.default\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}] [WOT] WOT v20120302 (.WOT Services Oy.)
M2 - MFEP: prefs.js [Marie - 3od8snne.default\{a21cd440-41d6-11e0-9207-0800200c9a66}] [] FT SleekDark v2.5.1.1 (.Stefano.)
M2 - MFEP: prefs.js [Marie - 3od8snne.default\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}] [dwhelper] DownloadHelper v4.9.8 (.Michel Gutierrez.)
M2 - MFEP: prefs.js [Marie - 3od8snne.default\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}] [] Adobe DLM (powered by getPlus(R)) v1.6.2.102 (.NOS Microsystems Ltd..)
M2 - MFEP: prefs.js [Marie - 3od8snne.default\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}] [greasemonkey] Greasemonkey v0.9.18 (.Aaron Boodman; http://youngpup.net/.)
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN:Firefox Plugin Navigator . (.Yahoo! Inc. - Yahoo! activeX Plug-in Bridge.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npyaxmpb.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\Program Files\Microsoft Office\Office14\NPAUTHZ.dll
P2 - FPN: [HKCU] [@facebook.com/FBPlugin,version=1.0.1] - (...) -- C:\Users\Marie\AppData\Roaming\Facebook\npfbplugin_1_0_1.dll (.not file.)
P2 - FPN: [HKCU] [@facebook.com/FBPlugin,version=1.0.3] - (...) -- C:\Users\Marie\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll (.not file.)
~ Scan Firefox Browser in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,C:\MSDCSC\msdcsc.exe
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Groove GFS Browser Helper [64Bits] - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.dll
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office\Office14\URLREDIR.dll
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper [64Bits] - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
~ Scan BHO in 00mn 00s
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [TomTomHOME.exe] C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe (.not file.)
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O4 - HKCU\..\Run: [puush] . (.Pas de propriétaire - puush.) -- C:\Program Files (x86)\puush\puush.exe
O4 - HKCU\..\Run: [EPSON Stylus DX7400 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\System32\spool\drivers\x64\3\E_IATICDE.exe
O4 - HKLM\..\Wow6432Node\Run: [QlbCtrl.exe] . (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
O4 - HKLM\..\Wow6432Node\Run: [WirelessAssistant] . (.Hewlett-Packard Company - HP Wireless Assistant Main Program.) -- C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Wow6432Node\Run: [PlusService] . (.Yuna Software - Messenger Plus! 5.) -- C:\Program Files (x86)\Yuna Software\Messenger Plus!\PlusService.exe
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [BCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-2642183312-4080467580-3688361502-1001\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-2642183312-4080467580-3688361502-1001\..\Run: [TomTomHOME.exe] C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe (.not file.)
O4 - HKUS\S-1-5-21-2642183312-4080467580-3688361502-1001\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O4 - HKUS\S-1-5-21-2642183312-4080467580-3688361502-1001\..\Run: [puush] . (.Pas de propriétaire - puush.) -- C:\Program Files (x86)\puush\puush.exe
O4 - HKUS\S-1-5-21-2642183312-4080467580-3688361502-1001\..\Run: [EPSON Stylus DX7400 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\System32\spool\drivers\x64\3\E_IATICDE.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Marie\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Jouer à HP Games.lnk . (.WildTangent, Inc..) -- C:\Program Files (x86)\HP Games\HP Game Console\GameConsole-wt.exe
O4 - Global Startup: C:\Users\Marie\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Marie\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\Games\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Games\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Administrateur\Desktop\Brothers In Arms.lnk . (...) -- C:\Program Files (x86)\Ubisoft\Gearbox Software\BrothersInArms\System\bia.exe (.not file.)
~ Scan Global Startup in 00mn 00s
---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: &Envoyer à OneNote - (.not file.) - C:\Program Files\MICROS~4\Office14\ONBttnIE.dll
O8 - Extra context menu item: E&xporter vers Microsoft Excel - (.not file.) - C:\Program Files\MICROS~4\Office14\EXCEL.exe
~ Scan IE Menu Contextuel in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer à OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~2\Office14\ONBttnIE.dll
O9 - Extra button: Notes &liées OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~2\Office14\ONBTTN~1.dll
~ Scan IE Extra Buttons in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\System32\nlaapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\System32\NapiNSP.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\System32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\System32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\System32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\System32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Scan Winsock in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{35DC429A-2B31-4B62-ADFD-72F53525A9B5}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{35DC429A-2B31-4B62-ADFD-72F53525A9B5}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{35DC429A-2B31-4B62-ADFD-72F53525A9B5}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\microsoft shared\Help\hxds.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: ms-itss [64Bits] - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files (x86)\Common Files\microsoft shared\Information Retrieval\msitss.dll
O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: deflate [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Filter: gzip [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe
O23 - Service: Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Avira Scheduler.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG - Avira On-Access Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: HP Support Assistant Service (HP Support Assistant Service) . (.Hewlett-Packard Company - HP Support Assistant Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) . (.Hewlett-Packard Company - HP Quick Synchronization Service.) - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Service (hpsrv) . (.Hewlett-Packard Company - HpService.) - C:\Windows\system32\Hpservice.exe
O23 - Service: Audio Service (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\stacsv64.exe
~ Scan Services in 00mn 00s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\HPCeeScheduleForMarie.job
[MD5.4F7E06A56EFAFF14F0A59F6CF3F2D07D] [APT] [CapSchedInst] (.CL.) -- C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSchedInst.exe
[MD5.BD9236FC40A5075B1BA47F772735B9B9] [APT] [CapSvcInst] (.CL.) -- C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSvcInst.exe
[MD5.3E18AA0C9BBDA53EC9639C4B53094FCC] [APT] [CapUninst] (.CL.) -- C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapUninst.exe
[MD5.B508A4EE516D905730458BB50B79979B] [APT] [CLMLSvc] (.CyberLink.) -- C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
[MD5.C65B115A03DB0260895DE96681E88221] [APT] [DVDAgent] (.CyberLink Corp..) -- C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
[MD5.455B6AF8235787AB6E36193FBD9BB0AA] [APT] [HPCeeScheduleForMarie] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
[MD5.28B01A58758B08F9B2086DBAAEAE791E] [APT] [RecoveryCDWin7] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP TCS\RemEngine.exe
[MD5.682A19CEA431A29D0B5A931332ADBC2A] [APT] [TVAgent] (.CyberLink Corp..) -- C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe
[MD5.00000000000000000000000000000000] [APT] [{14DDB0C4-64CE-4A5C-8284-F3C6F1060C0F}] (...) -- C:\Program Files (x86)\Ubisoft\Gearbox Software\BrothersInArms\System\Setup.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{7A005FD2-F8C6-42F7-9703-A42615296968}] (...) -- C:\Program Files (x86)\Electronic Arts\EADM\EADMUI\EADMUI.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{C3FA41A4-B8FD-4425-856A-655156CC6611}] (...) -- C:\Users\Marie\Documents\Sims 3 dl\VU\5.2.4\5.2.4\Sims3_5.2.4.009001_from_5.0.44.008001.exe (.not file.)
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
[MD5.1DB8C2220EFDBA97F671F46F6A8DE51E] [APT] [HP Support Assistant Quick Start] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFMsgr.exe
[MD5.7A14C25B7EC229B7F8B3E457779C83CC] [APT] [HP Total Care Tune-Up] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPTuneUp.exe
[MD5.0757398E1539E633CEC5179A3BCA5F4F] [APT] [PC Health Analysis] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
[MD5.0757398E1539E633CEC5179A3BCA5F4F] [APT] [PC Tuneup] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
[MD5.A87F567F053191361B617D7908F8E062] [APT] [Update Check] (.Hewlett-Packard.) -- C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater\HPSFUpdater.exe
~ Scan Scheduled Task in 00mn 02s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Windows Media Player.) -- C:\Windows\system32\wmp.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn 00s
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\Windows\system32\DRIVERS\avipbb.sys
O41 - Driver: (avkmgr) . (.Avira GmbH - Avira Manager Driver.) - C:\Windows\system32\DRIVERS\avkmgr.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\system32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\system32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\system32\drivers\rdprefmp.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\system32\DRIVERS\serial.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\system32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM] -- {0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader 9.1 MUI - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {343666E2-A059-48AC-AD67-230BF74E2DB2}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {75104836-CAC7-444E-A39E-3F54151942F5}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
O42 - Logiciel: Avira Free Antivirus - (.Avira.) [HKLM] -- Avira AntiVir Desktop
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: Broadcom 802.11 Wireless LAN Adapter - (.Broadcom Corporation.) [HKLM] -- Broadcom 802.11 Wireless LAN Adapter
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM] -- {266D0EEA-E5A6-4A08-A0EE-5391D4EA44A7}
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite
O42 - Logiciel: Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{11057D82-9A99-466B-89F3-7A821B2E360E}
O42 - Logiciel: DriverAgent by eSupport.com - (.Pas de propriétaire.) [HKLM] -- DriverAgent.exe
O42 - Logiciel: ENE CIR Receiver Driver - (.ENE.) [HKLM] -- FFE7D41DF3C645075BB149E21988B63996C34187
O42 - Logiciel: EPSON Logiciel imprimante - (.SEIKO EPSON Corporation.) [HKLM] -- EPSON Printer and Utilities
O42 - Logiciel: EPSON Scan - (.Pas de propriétaire.) [HKLM] -- EPSON Scanner
O42 - Logiciel: Free M4a to MP3 Converter 7.0 - (.ManiacTools.com.) [HKLM] -- Free M4a to MP3 Converter_is1
O42 - Logiciel: GTA San Andreas - (.Rockstar Games.) [HKLM] -- {D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}
O42 - Logiciel: GeoGebra - (.International GeoGebra Institute.) [HKLM] -- GeoGebra
O42 - Logiciel: HP 3D DriveGuard - (.Hewlett-Packard.) [HKLM] -- {8FCDACA0-E090-4A9A-AC71-A96E7371DC6E}
O42 - Logiciel: HP Advisor - (.Hewlett-Packard.) [HKLM] -- {B53E61D7-7C80-40DF-82D2-CF5390D6D20A}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM] -- {07FA4960-B038-49EB-891B-9F95930AA544}
O42 - Logiciel: HP Games - (.WildTangent.) [HKLM] -- WildTangent hp Master Uninstall
O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM] -- InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}
O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM] -- {DCCAD079-F92C-44DA-B258-624FC6517A5A}
O42 - Logiciel: HP MediaSmart Internet TV - (.Hewlett-Packard.) [HKLM] -- InstallShield_{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}
O42 - Logiciel: HP MediaSmart Internet TV - (.Hewlett-Packard.) [HKLM] -- {E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}
O42 - Logiciel: HP MediaSmart Live TV - (.Hewlett-Packard.) [HKLM] -- InstallShield_{67626E09-5366-4480-8F1E-93FADF50CA15}
O42 - Logiciel: HP MediaSmart Live TV - (.Hewlett-Packard.) [HKLM] -- {67626E09-5366-4480-8F1E-93FADF50CA15}
O42 - Logiciel: HP MediaSmart Movie Themes - (.Hewlett-Packard.) [HKLM] -- InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}
O42 - Logiciel: HP MediaSmart Movie Themes - (.Hewlett-Packard.) [HKLM] -- {3023EBDA-BF1B-4831-B347-E5018555F26E}
O42 - Logiciel: HP MediaSmart Music/Photo/Video - (.Hewlett-Packard.) [HKLM] -- InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}
O42 - Logiciel: HP MediaSmart Music/Photo/Video - (.Hewlett-Packard.) [HKLM] -- {B2EE25B9-5B00-4ACF-94F0-92433C28C39E}
O42 - Logiciel: HP MediaSmart SmartMenu - (.Hewlett-Packard.) [HKLM] -- {88E60521-1E4E-4785-B9F1-1798A4BD0C30}
O42 - Logiciel: HP MediaSmart Webcam - (.Hewlett-Packard.) [HKLM] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: HP MediaSmart Webcam - (.Hewlett-Packard.) [HKLM] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: HP Quick Launch Buttons - (.Hewlett-Packard Company.) [HKLM] -- {34D2AB40-150D-475D-AE32-BD23FB5EE355}
O42 - Logiciel: HP Setup - (.Hewlett-Packard.) [HKLM] -- {F3B912F5-EB57-45AA-B3D1-EB532BCF6EF8}
O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard Company.) [HKLM] -- {6F44AF95-3CDE-4513-AD3F-6D45F17BF324}
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {D46D081B-F60E-467E-A7C4-117B70D76731}
O42 - Logiciel: HP User Guides 0153 - (.Hewlett-Packard.) [HKLM] -- {2EBA8202-FBD5-4004-81EA-BDC38C054CE2}
O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM] -- {F9A43C0C-F274-4EC0-B02E-202C15C09C00}
O42 - Logiciel: Hewlett-Packard ACLM.NET v1.1.2.0 - (.Hewlett-Packard.) [HKLM] -- {6F340107-F9AA-47C6-B54C-C3A19F11553F}
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {133742BA-6F46-4D3E-85AF-78631D9AD8B8}
O42 - Logiciel: JMicron Flash Media Controller Driver - (.JMicron Technology Corp..) [HKLM] -- {26604C7E-A313-4D12-867F-7C6E7820BE4C}
O42 - Logiciel: Java(TM) 6 Update 24 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216024FF}
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: Les Sims™ 3 - (.Electronic Arts.) [HKLM] -- {C05D8CDB-417D-4335-A38C-A0659EDFD6B8}
O42 - Logiciel: Les Sims™ 3 Accès VIP - (.Electronic Arts.) [HKLM] -- {45057FCE-5784-48BE-8176-D9D00AF56C3C}
O42 - Logiciel: Les Sims™ 3 Ambitions - (.Electronic Arts.) [HKLM] -- {910F4A29-1134-49E0-AD8B-56E4A3152BD1}
O42 - Logiciel: Les Sims™ 3 Inspiration Loft Kit - (.Electronic Arts.) [HKLM] -- {71828142-5A24-4BD0-97E7-976DA08CE6CF}
O42 - Logiciel: Les Sims™ 3 Vitesse ultime ! Kit - (.Electronic Arts.) [HKLM] -- {ED436EA8-4145-4703-AE5D-4D09DD24AF5A}
O42 - Logiciel: Les Sims™ 3 Générations - (.Electronic Arts.) [HKLM] -- {E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}
O42 - Logiciel: Les Sims™ 3 Destination Aventure - (.Electronic Arts.) [HKLM] -- {BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}
O42 - Logiciel: Les Sims™ 3 Animaux & Cie - (.Electronic Arts.) [HKLM] -- {C12631C6-804D-4B32-B0DD-8A496462F106}
O42 - Logiciel: Les Sims™ 3 Jardin de Style Kit - (.Electronic Arts.) [HKLM] -- {117B6BF6-82C3-420C-B284-9247C8568E53}
O42 - Logiciel: Les Sims™ 3 Vie Citadine Kit - (.Electronic Arts.) [HKLM] -- {7B11296A-F894-449C-8DF6-6AAAA7D4D118}
O42 - Logiciel: LightScribe System Software - (.LightScribe.) [HKLM] -- {82EF29B1-9B60-4142-A155-0599216DD053}
O42 - Logiciel: Logiciel d'archivage WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver
O42 - Logiciel: MSVC90_x64 - (.Nokia.) [HKLM] -- {AB071C8B-873C-459F-ACA9-9EBE03C3E89B}
O42 - Logiciel: MSVC90_x86 - (.Nokia.) [HKLM] -- {AF111648-99A1-453E-81DD-80DBBF6DAD0D}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Malwarebytes Anti-Malware version 1.60.1.1000 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Messenger Plus! 5 - (.Yuna Software.) [HKLM] -- Messenger Plus!
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{047B0968-E622-4FAA-9B4B-121FA109EDDE}
O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-0015-040C-0000-0000000FF1CE}_Office14.PROPLUS_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB}
O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-0016-040C-0000-0000000FF1CE}_Office14.PROPLUS_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB}
O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-0018-040C-0000-0000000FF1CE}_Office14.PROPLUS_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB}
O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-0019-040C-0000-0000000FF1CE}_Office14.PROPLUS_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB}
O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001A-040C-0000-0000000FF1CE}_Office14.PROPLUS_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB}
O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001B-040C-0000-0000000FF1CE}_Office14.PROPLUS_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB}
O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001F-0401-0000-0000000FF1CE}_Office14.PROPLUS_{1A43C155-3DDA-43C9-92C5-0E7D0B2B156D}
O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001F-0407-0000-0000000FF1CE}_Office14.PROPLUS_{65A2328E-FDFB-4CA3-8582-357EA6825FEA}
O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUS_{99ACCA38-6DD3-48A8-96AE-A283C9759279}
O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUS_{46298F6A-1E7E-4D4A-B5F5-106A4F0E48C6}
O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001F-0413-0000-0000000FF1CE}_Office14.PROPLUS_{5072FEA2-862C-4BF0-9654-CB0DCBE2BE28}
O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUS_{DEA87BE2-FFCC-4F33-9946-FCBE55A1E998}
O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{967EF02C-5C7E-4718-8FCB-BDC050190CCF}
O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-002A-040C-1000-0000000FF1CE}_Office14.PROPLUS_{0CCCD9C7-637C-41CA-A293-6E9992109B09}
O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-002C-040C-0000-0000000FF1CE}_Office14.PROPLUS_{C8E4AA87-3E5A-4C70-8CB7-43FE25C99B74}
O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-0044-040C-0000-0000000FF1CE}_Office14.PROPLUS_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB}
O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-006E-040C-0000-0000000FF1CE}_Office14.PROPLUS_{7C5C7E8C-F6D2-43AC-93A4-89E4FF7367E6}
O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-00A1-040C-0000-0000000FF1CE}_Office14.PROPLUS_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB}
O42 - Logiciel: Microsoft Office 2010 Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90140000-00BA-040C-0000-0000000FF1CE}_Office14.PROPLUS_{C3AE9E57-4CD3-44FB-802F-9B461B26E3EB}
O42 - Logiciel: Microsoft Office Access MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0015-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Excel MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0016-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Groove MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-00BA-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0044-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Office 64-bit Components 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-002A-0000-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Office OneNote MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-00A1-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Outlook MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001A-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0018-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French) - (.Microsoft Corporation.) [HKLM] -- {95120000-00AF-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Professional Plus 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Professionnel Plus 2010 - (.Microsoft Corporation.) [HKLM] -- Office14.PROPLUS
O42 - Logiciel: Microsoft Office Proof (Arabic) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0401-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Dutch) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0413-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (English) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (German) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0407-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Spanish) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001F-0C0A-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proofing (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-002C-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Publisher MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-0019-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Shared 64-bit MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-002A-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Shared MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-006E-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Suite Activation Assistant - (.Microsoft Corporation.) [HKLM] -- {E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}
O42 - Logiciel: Microsoft Office Word MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-001B-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {B6E3757B-5E77-3915-866A-CCFC4B8D194C}
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {071c9b48-7c32-4621-a0ac-3f809523288f}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d}
O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {8338783A-0968-3B85-AFC7-BAAE0A63DC50}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {86CE85E6-DBAC-3FFD-B977-E4B79F83C909}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {8220EEFE-38CD-377E-8595-13398D740ACE}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F}
O42 - Logiciel: Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 - (.Microsoft Corporation.) [HKLM] -- {DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}
O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM] -- {F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
O42 - Logiciel: Microsoft WSE 3.0 Runtime - (.Microsoft Corp..) [HKLM] -- {E3E71D07-CD27-46CB-8448-16D4FB29AA13}
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {3B160861-7250-451E-B5EE-8B92BF30A710}
O42 - Logiciel: Microsoft_VC80_CRT_x86 - (.Adobe.) [HKLM] -- {92D58719-BBC1-4CC3-A08B-56C9E884CC2C}
O42 - Logiciel: Microsoft_VC80_CRT_x86_x64 - (.Adobe.) [HKLM] -- {4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}
O42 - Logiciel: Microsoft_VC80_MFCLOC_x86 - (.Adobe.) [HKLM] -- {D92BBB52-82FF-42ED-8A3C-4E062F944AB7}
O42 - Logiciel: Microsoft_VC80_MFCLOC_x86_x64 - (.Adobe.) [HKLM] -- {1E9FC118-651D-4934-97BE-E53CAE5C7D45}
O42 - Logiciel: Microsoft_VC80_MFC_x86 - (.Adobe.) [HKLM] -- {D1A19B02-817E-4296-A45B-07853FD74D57}
O42 - Logiciel: Microsoft_VC80_MFC_x86_x64 - (.Adobe.) [HKLM] -- {C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}
O42 - Logiciel: Microsoft_VC90_ATL_x86 - (.Adobe.) [HKLM] -- {033E378E-6AD3-4AD5-BDEB-CBD69B31046C}
O42 - Logiciel: Microsoft_VC90_ATL_x86_x64 - (.Adobe.) [HKLM] -- {8557397C-A42D-486F-97B3-A2CBC2372593}
O42 - Logiciel: Microsoft_VC90_CRT_x86 - (.Adobe.) [HKLM] -- {08D2E121-7F6A-43EB-97FD-629B44903403}
O42 - Logiciel: Microsoft_VC90_CRT_x86_x64 - (.Adobe.) [HKLM] -- {92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}
O42 - Logiciel: Microsoft_VC90_MFC_x86 - (.Adobe.) [HKLM] -- {635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}
O42 - Logiciel: Microsoft_VC90_MFC_x86_x64 - (.Adobe.) [HKLM] -- {A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}
O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0020-040C-0000-0000000FF1CE}
O42 - Logiciel: Mozilla Firefox 10.0.2 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 10.0.2 (x86 fr)
O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238}
O42 - Logiciel: PC Connectivity Solution - (.Nokia.) [HKLM] -- {C373F7C4-05D2-4047-96D1-6AF30661C6AA}
O42 - Logiciel: Package de pilotes Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0) - (.Nokia.) [HKLM] -- FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D
O42 - Logiciel: PhotoFiltre - (.Pas de propriétaire.) [HKCU] -- PhotoFiltre
O42 - Logiciel: PoiEdit - (.Pas de propriétaire.) [HKLM] -- PoiEdit
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM] -- {40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: PowerRecover - (.CyberLink Corp..) [HKLM] -- {44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}
O42 - Logiciel: QLBCASL - (.Hewlett-Packard.) [HKLM] -- {F1D7AC58-554A-4A58-B784-B61558B1449A}
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {7BE15435-2D3E-4B58-867F-9C75BED0208C}
O42 - Logiciel: Realtek 8136 8168 8169 Ethernet Driver - (.Realtek.) [HKLM] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2446708
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2478663
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2518870
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2539636
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2572078
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2633870
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2656351
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2553091) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{07CA44F3-F5B3-4D12-8C91-EDC5FE91D45C}
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2553096) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{10802A6D-EDBF-4383-BCBD-9D5B32F56D35}
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2589320) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DCE6D0BF-93E4-46C5-9A7C-F1EFF9707C02}
O42 - Logiciel: Security Update for Microsoft PowerPoint 2010 (KB2553185) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{61461470-8168-4F4B-97B7-617AF354F028}
O42 - Logiciel: Security Update for Microsoft SharePoint Workspace 2010 (KB2566445) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{337A3FB9-281D-4EC8-9CC1-7F6DDAC2359F}
O42 - Logiciel: Security Update for Microsoft SharePoint Workspace 2010 (KB2566445) - (.Microsoft.) [HKLM] -- {90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{337A3FB9-281D-4EC8-9CC1-7F6DDAC2359F}
O42 - Logiciel: Security Update for Microsoft Visio Viewer 2010 (KB2597170) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{011FE2F6-5427-4EC9-AE80-6B28E69781C1}
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM] -- SynTPDeinstKey
O42 - Logiciel: System Requirements Lab - (.Husdawg, LLC.) [HKLM] -- {1E99F5D7-4262-4C7C-9135-F066E7485811}
O42 - Logiciel: System Requirements Lab CYRI - (.Husdawg, LLC.) [HKLM] -- {943A8D28-80D6-41DC-AE94-81FEB42041BF}
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2468871) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2468871
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2533523) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2533523
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2600217) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2600217
O42 - Logiciel: Update for Microsoft Excel 2010 (KB2553439) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{3D1F379C-AA64-4823-90A4-A8DDD4B48C21}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2494150) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553065) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{A8686D24-1E89-43A1-973E-05A258D2B3F8}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553092) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{7AC49FC8-F8D2-4DD8-9086-09E52385A21F}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{48E1B6C2-7299-4F3F-AA63-42F0ACE55AA4}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-001F-0401-0000-0000000FF1CE}_Office14.PROPLUS_{57820349-C59E-45FF-BDDC-C68384C39FE0}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-001F-0407-0000-0000000FF1CE}_Office14.PROPLUS_{E6EAF5E1-5E2A-4E4F-847E-97B45179E45B}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUS_{17E7B9AB-2DD2-457D-8D8E-CD14ACA973FE}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUS_{15058154-469F-4794-ACD5-94F8420F9B80}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-001F-0413-0000-0000000FF1CE}_Office14.PROPLUS_{AC5C66AB-7561-4D7E-9EAD-0204DE4EEC9B}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUS_{995A7832-B512-46D5-87C9-2D71FB541435}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{C8694FF0-8203-483B-A07A-2BC40433167D}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-006E-040C-0000-0000000FF1CE}_Office14.PROPLUS_{B9A75D61-A9B7-452A-9FFB-BA8AC6697C99}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553385) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{28FAC187-7C0E-413A-B90A-76F19D0FBF30}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2566458) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{EFB525A0-E1C0-4E32-9968-FE401BC87363}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{ED31DE9A-3E13-4E2C-9106-E0D8AFFB9FA6}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{4D98EEEA-A31B-42FA-991A-F989594F4DA5}
O42 - Logiciel: Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{4D98EEEA-A31B-42FA-991A-F989594F4DA5}
O42 - Logiciel: Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{BEBC2484-290C-46AD-9834-6DAD1FA80273}
O42 - Logiciel: Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{BEBC2484-290C-46AD-9834-6DAD1FA80273}
O42 - Logiciel: Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-00A1-040C-0000-0000000FF1CE}_Office14.PROPLUS_{FD88F03A-5684-4BF7-A01F-8514F8D3CB59}
O42 - Logiciel: Update for Microsoft Outlook 2010 (KB2553323) 32-Bit Edition - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{29E94638-D92F-4C40-BDA1-FEDCC92F478D}
O42 - Logiciel: Update for Microsoft Outlook Social Connector (KB2583935) - (.Microsoft.) [HKLM] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{EDF9874C-9E37-4110-9FC3-094247E114DF}
O42 - Logiciel: Update for Microsoft Outlook Social Connector (KB2583935) - (.Microsoft.) [HKLM] -- {90140000-001A-040C-0000-0000000FF1CE}_Office14.PROPLUS_{23639AE1-CE0D-4ED2-9110-995796F53580}
O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {B3B487E7-6171-4376-9074-B28082CEB504}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B}
O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
O42 - Logiciel: Yahoo! Install Manager - (.Pas de propriétaire.) [HKLM] -- YInstHelper
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {5E11C972-1E76-45FE-8F92-14E0D1140B1B}
O42 - Logiciel: puush - (.Dean Herbert.) [HKLM] -- {C3592426-531E-4110-911D-BFECE2CE284B}
---\\ HKCU & HKLM Software Keys
[HKCU\Software\AOL]
[HKCU\Software\ATI]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Audacity]
[HKCU\Software\Avira]
[HKCU\Software\B-Phreaks]
[HKCU\Software\CDDB]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Conduit]
[HKCU\Software\CyberLink]
[HKCU\Software\DT Soft]
[HKCU\Software\Dnote Software]
[HKCU\Software\EPSON]
[HKCU\Software\ESET]
[HKCU\Software\EasyBits]
[HKCU\Software\Electronic Arts]
[HKCU\Software\GTAGarage]
[HKCU\Software\Gabest]
[HKCU\Software\Google]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IM Providers]
[HKCU\Software\JavaSoft]
[HKCU\Software\JvJ]
[HKCU\Software\LightScribe]
[HKCU\Software\Logitech]
[HKCU\Software\MC4D]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\ManiacTools]
[HKCU\Software\MiKSoft]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Mumble]
[HKCU\Software\NCH Software]
[HKCU\Software\NCH Swift Sound]
[HKCU\Software\Netscape]
[HKCU\Software\Norton]
[HKCU\Software\ODBC]
[HKCU\Software\Phoenix Technologies]
[HKCU\Software\Pipix]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Roupe]
[HKCU\Software\SecuROM]
[HKCU\Software\Smart PC Solutions]
[HKCU\Software\Softonic]
[HKCU\Software\Synaptics]
[HKCU\Software\System Requirements Lab]
[HKCU\Software\TechSmith]
[HKCU\Software\TomTom]
[HKCU\Software\Trolltech]
[HKCU\Software\Ubisoft]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\Yahoo]
[HKCU\Software\Yuna Software]
[HKCU\Software\puush]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\Adobe]
[HKLM\Software\America Online]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Avira]
[HKLM\Software\BcmSetup]
[HKLM\Software\C07ft5Y]
[HKLM\Software\CA561B]
[HKLM\Software\CDDB]
[HKLM\Software\CXT]
[HKLM\Software\Caphyon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Conduit]
[HKLM\Software\Cyberlink]
[HKLM\Software\DT Soft]
[HKLM\Software\Dell Computer Corporation]
[HKLM\Software\Digital River]
[HKLM\Software\EPSON]
[HKLM\Software\EasyBits]
[HKLM\Software\Electronic Arts]
[HKLM\Software\Eset]
[HKLM\Software\FileZilla 3]
[HKLM\Software\GEAR Software]
[HKLM\Software\Google]
[HKLM\Software\HPQLOG]
[HKLM\Software\HPQ]
[HKLM\Software\HP]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IDT]
[HKLM\Software\InstallShield]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\LabelPrint_Upgrade]
[HKLM\Software\LightScribe]
[HKLM\Software\Logitech]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NCH Software]
[HKLM\Software\NCH Swift Sound]
[HKLM\Software\Name of your company]
[HKLM\Software\Nokia]
[HKLM\Software\Norton]
[HKLM\Software\Nullsoft]
[HKLM\Software\ODBC]
[HKLM\Software\OldTimer Tools]
[HKLM\Software\P2G_Upgrade]
[HKLM\Software\PC Connectivity Solution]
[HKLM\Software\PDR_Upgrade]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Product_Upgrade]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Rockstar Games]
[HKLM\Software\Sims]
[HKLM\Software\Sonic]
[HKLM\Software\Symantec]
[HKLM\Software\Synaptics]
[HKLM\Software\TomTom]
[HKLM\Software\TrendMicro]
[HKLM\Software\Ubisoft]
[HKLM\Software\VDownloader]
[HKLM\Software\Volatile]
[HKLM\Software\WildTangent]
[HKLM\Software\WinRAR]
[HKLM\Software\Windows]
[HKLM\Software\Wow6432Node]
[HKLM\Software\X-AVCSD]
[HKLM\Software\Yahoo]
[HKLM\Software\Yuna Software]
[HKLM\Software\instinno]
[HKLM\Software\mozilla.org]
~ Scan Softwares in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 24/08/2009 - 00:36:48 - [18,144] ----D- C:\Program Files\ATI
O43 - CFD: 13/10/2011 - 20:24:44 - [0,569] ----D- C:\Program Files\Bonjour
O43 - CFD: 24/08/2009 - 00:41:40 - [11,671] ----D- C:\Program Files\Broadcom
O43 - CFD: 20/08/2011 - 22:49:40 - [8,066] ----D- C:\Program Files\CCleaner
O43 - CFD: 17/09/2011 - 11:06:18 - [65,799] ----D- C:\Program Files\Common Files
O43 - CFD: 27/08/2011 - 18:01:12 - [2,667] ----D- C:\Program Files\DIFX
O43 - CFD: 16/03/2011 - 14:04:42 - [86,076] ----D- C:\Program Files\DVD Maker
O43 - CFD: 31/10/2009 - 20:53:06 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 24/08/2009 - 01:14:40 - [4,247] ----D- C:\Program Files\Hewlett-Packard
O43 - CFD: 10/02/2012 - 17:13:20 - [29,237] ----D- C:\Program Files\IDT
O43 - CFD: 17/02/2012 - 03:56:42 - [4,943] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 25/01/2012 - 16:39:46 - [1,999] ----D- C:\Program Files\iPod
O43 - CFD: 25/01/2012 - 16:40:14 - [4,365] ----D- C:\Program Files\iTunes
O43 - CFD: 24/08/2009 - 10:29:18 - [142,324] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 27/01/2012 - 16:37:10 - [21,848] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 14/07/2009 - 06:32:40 - [0,025] ----D- C:\Program Files\MSBuild
O43 - CFD: 31/10/2009 - 20:55:14 - [0,120] R---D- C:\Program Files\Online Services
O43 - CFD: 14/07/2009 - 06:32:40 - [35,109] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 24/08/2009 - 00:39:02 - [36,874] ----D- C:\Program Files\Synaptics
O43 - CFD: 14/07/2009 - 06:09:28 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 16/03/2011 - 14:04:38 - [3,853] ----D- C:\Program Files\Windows Defender
O43 - CFD: 16/03/2011 - 14:04:42 - [6,359] ----D- C:\Program Files\Windows Mail
O43 - CFD: 16/03/2011 - 14:04:42 - [7,331] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 31/10/2009 - 20:53:06 - [12,043] ----D- C:\Program Files\Windows NT
O43 - CFD: 16/03/2011 - 14:04:40 - [5,261] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 16/03/2011 - 14:04:42 - [0,233] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 16/03/2011 - 14:04:42 - [10,848] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 06/12/2009 - 17:54:50 - [4,282] ----D- C:\Program Files\WinRAR
O43 - CFD: 30/01/2010 - 17:09:32 - [6,277] ----D- C:\Program Files\Common Files\Apple
O43 - CFD: 06/01/2011 - 22:57:24 - [0,633] ----D- C:\Program Files\Common Files\logishrd
O43 - CFD: 27/01/2012 - 16:38:20 - [46,677] ----D- C:\Program Files\Common Files\Microsoft Shared
O43 - CFD: 14/07/2009 - 04:20:10 - [0,003] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 14/07/2009 - 04:20:10 - [0,581] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 10/11/2011 - 12:18:32 - [11,629] ----D- C:\Program Files\Common Files\System
O43 - CFD: 17/09/2011 - 11:08:14 - [0,005] ----D- C:\ProgramData\Adobe
O43 - CFD: 13/03/2010 - 23:06:54 - [309,287] ----D- C:\ProgramData\Apple
O43 - CFD: 02/02/2010 - 17:58:08 - [68,863] ----D- C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 24/08/2009 - 00:38:40 - [0,000] ----D- C:\ProgramData\ATI
O43 - CFD: 18/12/2011 - 19:14:00 - [77,558] ----D- C:\ProgramData\Avira
O43 - CFD: 31/10/2009 - 20:53:06 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 25/08/2010 - 11:21:54 - [0,137] ----D- C:\ProgramData\CyberLink
O43 - CFD: 17/10/2010 - 12:26:42 - [0,002] ----D- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 30/06/2011 - 18:10:20 - [0,012] ----D- C:\ProgramData\EA Core
O43 - CFD: 06/11/2010 - 16:33:46 - [0,000] ----D- C:\ProgramData\EA Logs
O43 - CFD: 11/11/2010 - 14:02:38 - [0] ----D- C:\ProgramData\eMule
O43 - CFD: 06/03/2012 - 23:05:04 - [0,479] ----D- C:\ProgramData\EPSON
O43 - CFD: 31/10/2009 - 20:53:06 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 16/12/2010 - 13:25:24 - [95,339] ----D- C:\ProgramData\Hewlett-Packard
O43 - CFD: 27/08/2011 - 17:59:44 - [189,705] ----D- C:\ProgramData\Installations
O43 - CFD: 07/02/2010 - 14:24:02 - [0,001] ----D- C:\ProgramData\LightScribe
O43 - CFD: 26/02/2011 - 13:22:26 - [16,719] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 31/10/2009 - 20:53:06 - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 16/05/2011 - 14:45:10 - [0,125] ----D- C:\ProgramData\Messenger Plus!
O43 - CFD: 27/01/2012 - 16:39:22 - [402,169] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 17/02/2012 - 03:12:18 - [0,071] ----D- C:\ProgramData\Microsoft Help
O43 - CFD: 31/10/2009 - 20:53:06 - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 29/12/2011 - 16:36:36 - [0] ----D- C:\ProgramData\NCH Software
O43 - CFD: 02/02/2010 - 17:41:46 - [0,000] ----D- C:\ProgramData\Norton
O43 - CFD: 20/08/2009 - 08:39:26 - [8,745] ----D- C:\ProgramData\NortonInstaller
O43 - CFD: 27/08/2011 - 18:01:36 - [0] ----D- C:\ProgramData\PC Suite
O43 - CFD: 05/12/2010 - 15:00:52 - [0] ----D- C:\ProgramData\PlayFirst
O43 - CFD: 31/08/2011 - 15:47:36 - [0,002] ----D- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 25/04/2010 - 19:10:16 - [0,000] ----D- C:\ProgramData\Sun
O43 - CFD: 24/08/2009 - 01:16:40 - [0,676] ----D- C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 17/07/2010 - 14:21:26 - [0] ----D- C:\ProgramData\TomTom
O43 - CFD: 05/12/2010 - 14:59:48 - [-1098,906] ----D- C:\ProgramData\WildTangent
O43 - CFD: 30/01/2010 - 17:10:42 - [0,002] ----D- C:\ProgramData\{0DD0EEEE-2A7C-411C-9243-1AE62F445FC3}
O43 - CFD: 16/12/2010 - 13:29:14 - [33,621] ----D- C:\ProgramData\{23D58E70-3B83-4B83-A227-68770F84F5EC}
O43 - CFD: 01/04/2010 - 21:01:24 - [19,334] ----D- C:\ProgramData\{657095DF-DBDB-4B17-8245-B38845C97069}
O43 - CFD: 26/08/2010 - 19:58:54 - [33,718] ----D- C:\ProgramData\{8D274659-3D84-4410-A197-C170D180BC76}
O43 - CFD: 22/07/2010 - 21:56:54 - [0,852] ----D- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
O43 - CFD: 20/01/2012 - 18:10:10 - [45,653] ----D- C:\ProgramData\{A8DA1505-E615-42BB-BB77-74D5CC91FE7E}
O43 - CFD: 15/02/2010 - 12:14:28 - [19,334] ----D- C:\ProgramData\{B0689242-B0A0-4F2C-83E0-F3E560357B90}
O43 - CFD: 29/09/2011 - 12:03:00 - [45,266] ----D- C:\ProgramData\{D3B41B92-9BC2-43EB-916A-4FA9E8191837}
O43 - CFD: 24/04/2010 - 23:59:28 - [20,236] ----D- C:\ProgramData\{DA06AA03-DF24-4ECE-939E-1B0939235C66}
O43 - CFD: 23/06/2011 - 16:04:44 - [34,794] ----D- C:\ProgramData\{E91883C8-8CDC-46A4-A45F-CB40EB82ED60}
O43 - CFD: 19/02/2012 - 00:23:58 - [134,414] ----D- C:\Users\Marie\AppData\Roaming\.minecraft
O43 - CFD: 17/09/2011 - 11:06:40 - [7,063] ----D- C:\Users\Marie\AppData\Roaming\Adobe
O43 - CFD: 08/12/2010 - 21:17:34 - [0,001] ----D- C:\Users\Marie\AppData\Roaming\Apowersoft
O43 - CFD: 25/11/2011 - 12:43:40 - [2004,654] ----D- C:\Users\Marie\AppData\Roaming\Apple Computer
O43 - CFD: 31/10/2009 - 21:05:20 - [0] ----D- C:\Users\Marie\AppData\Roaming\ATI
O43 - CFD: 19/04/2011 - 14:39:58 - [0,001] ----D- C:\Users\Marie\AppData\Roaming\Audacity
O43 - CFD: 18/12/2011 - 19:17:34 - [0] ----D- C:\Users\Marie\AppData\Roaming\Avira
O43 - CFD: 01/05/2010 - 22:26:46 - [0,003] ----D- C:\Users\Marie\AppData\Roaming\CyberLink
O43 - CFD: 25/01/2012 - 14:23:16 - [0,787] ----D- C:\Users\Marie\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 20/08/2011 - 22:57:44 - [0,023] ----D- C:\Users\Marie\AppData\Roaming\FileZilla
O43 - CFD: 04/09/2011 - 13:02:00 - [0,050] ----D- C:\Users\Marie\AppData\Roaming\FreeFLVConverter
O43 - CFD: 02/12/2011 - 16:16:34 - [0,026] ----D- C:\Users\Marie\AppData\Roaming\Gearbox Software
O43 - CFD: 19/06/2010 - 23:29:16 - [0,095] ----D- C:\Users\Marie\AppData\Roaming\Hewlett-Packard
O43 - CFD: 10/04/2010 - 18:27:08 - [0,000] ----D- C:\Users\Marie\AppData\Roaming\HP Support Assistant
O43 - CFD: 31/10/2009 - 20:55:16 - [0,033] ----D- C:\Users\Marie\AppData\Roaming\HP TCS
O43 - CFD: 22/08/2010 - 10:14:42 - [0,193] ----D- C:\Users\Marie\AppData\Roaming\hpqlog
O43 - CFD: 10/04/2010 - 18:27:08 - [0,007] ----D- C:\Users\Marie\AppData\Roaming\HpUpdate
O43 - CFD: 31/10/2009 - 21:04:58 - [0] ----D- C:\Users\Marie\AppData\Roaming\Identities
O43 - CFD: 31/10/2009 - 21:05:46 - [0,012] ----D- C:\Users\Marie\AppData\Roaming\Macromedia
O43 - CFD: 26/02/2011 - 13:22:48 - [2,651] ----D- C:\Users\Marie\AppData\Roaming\Malwarebytes
O43 - CFD: 24/08/2009 - 10:29:18 - [0] ----D- C:\Users\Marie\AppData\Roaming\Media Center Programs
O43 - CFD: 27/01/2012 - 17:49:24 - [20,082] -S--D- C:\Users\Marie\AppData\Roaming\Microsoft
O43 - CFD: 31/10/2009 - 21:43:42 - [40,993] ----D- C:\Users\Marie\AppData\Roaming\Mozilla
O43 - CFD: 26/08/2011 - 23:47:20 - [1,000] ----D- C:\Users\Marie\AppData\Roaming\Mumble
O43 - CFD: 10/02/2012 - 17:06:20 - [5,245] ----D- C:\Users\Marie\AppData\Roaming\NCH Software
O43 - CFD: 27/08/2011 - 18:01:38 - [0,001] ----D- C:\Users\Marie\AppData\Roaming\Nokia
O43 - CFD: 14/10/2011 - 14:17:00 - [0,103] ----D- C:\Users\Marie\AppData\Roaming\Notepad++
O43 - CFD: 05/01/2011 - 18:15:40 - [9,786] ----D- C:\Users\Marie\AppData\Roaming\OpenOffice.org
O43 - CFD: 27/08/2011 - 18:01:36 - [0,000] ----D- C:\Users\Marie\AppData\Roaming\PC Suite
O43 - CFD: 20/01/2010 - 19:01:02 - [0,001] ----D- C:\Users\Marie\AppData\Roaming\PhotoFiltre
O43 - CFD: 05/12/2010 - 15:00:52 - [0,012] ----D- C:\Users\Marie\AppData\Roaming\PlayFirst
O43 - CFD: 16/07/2010 - 19:45:24 - [0,024] ----D- C:\Users\Marie\AppData\Roaming\pokerth
O43 - CFD: 21/01/2012 - 19:16:02 - [0,001] ----D- C:\Users\Marie\AppData\Roaming\puush
O43 - CFD: 08/07/2010 - 21:28:28 - [0,040] ----D- C:\Users\Marie\AppData\Roaming\Rainmeter
O43 - CFD: 07/11/2010 - 02:10:54 - [0,010] R-H-D- C:\Users\Marie\AppData\Roaming\SecuROM
O43 - CFD: 10/12/2011 - 12:14:24 - [1,722] ----D- C:\Users\Marie\AppData\Roaming\SystemRequirementsLab
O43 - CFD: 05/01/2011 - 11:58:36 - [0,013] ----D- C:\Users\Marie\AppData\Roaming\Template
O43 - CFD: 22/08/2011 - 03:56:58 - [0,144] ----D- C:\Users\Marie\AppData\Roaming\Todae
O43 - CFD: 28/03/2010 - 19:29:08 - [18,980] ----D- C:\Users\Marie\AppData\Roaming\TomTom
O43 - CFD: 31/10/2009 - 23:51:14 - [0,001] ----D- C:\Users\Marie\AppData\Roaming\WildTangent
O43 - CFD: 06/12/2009 - 17:55:04 - [0,000] ----D- C:\Users\Marie\AppData\Roaming\WinRAR
O43 - CFD: 31/10/2009 - 21:54:50 - [0,013] ----D- C:\Users\Marie\AppData\Roaming\_MDLogs
O43 - CFD: 17/09/2011 - 11:05:10 - [0,481] ----D- C:\Users\Marie\AppData\Local\Adobe
O43 - CFD: 01/11/2009 - 22:03:54 - [0] ----D- C:\Users\Marie\AppData\Local\Apple
O43 - CFD: 22/07/2010 - 22:11:00 - [114,800] ----D- C:\Users\Marie\AppData\Local\Apple Computer
O43 - CFD: 31/10/2009 - 20:53:16 - [0] -SH-D- C:\Users\Marie\AppData\Local\Application Data
O43 - CFD: 31/10/2009 - 21:05:20 - [0,058] ----D- C:\Users\Marie\AppData\Local\ATI
O43 - CFD: 07/11/2009 - 21:25:44 - [0] ----D- C:\Users\Marie\AppData\Local\CyberLink
O43 - CFD: 02/03/2012 - 11:46:18 - [0] ----D- C:\Users\Marie\AppData\Local\Diagnostics
O43 - CFD: 10/02/2012 - 17:13:20 - [0,070] ----D- C:\Users\Marie\AppData\Local\ElevatedDiagnostics
O43 - CFD: 02/12/2011 - 15:07:04 - [0,631] ----D- C:\Users\Marie\AppData\Local\eSupport.com
O43 - CFD: 02/08/2011 - 20:45:28 - [0] ----D- C:\Users\Marie\AppData\Local\Google
O43 - CFD: 01/05/2010 - 22:01:04 - [36,630] ----D- C:\Users\Marie\AppData\Local\Hewlett-Packard
O43 - CFD: 31/10/2009 - 20:53:16 - [0] -SH-D- C:\Users\Marie\AppData\Local\Historique
O43 - CFD: 02/12/2011 - 14:57:04 - [0,001] ----D- C:\Users\Marie\AppData\Local\LiteFire
O43 - CFD: 10/02/2012 - 18:58:56 - [1329,158] ----D- C:\Users\Marie\AppData\Local\Microsoft
O43 - CFD: 01/12/2010 - 03:08:08 - [0,349] ----D- C:\Users\Marie\AppData\Local\Microsoft Games
O43 - CFD: 01/11/2009 - 12:32:26 - [0] ----D- C:\Users\Marie\AppData\Local\Microsoft Help
O43 - CFD: 31/10/2009 - 21:19:58 - [760,499] ----D- C:\Users\Marie\AppData\Local\Mozilla
O43 - CFD: 07/11/2009 - 21:25:42 - [0] ----D- C:\Users\Marie\AppData\Local\PowerCinema
O43 - CFD: 07/03/2012 - 19:33:20 - [868,803] ----D- C:\Users\Marie\AppData\Local\Temp
O43 - CFD: 31/10/2009 - 20:53:16 - [0] -SH-D- C:\Users\Marie\AppData\Local\Temporary Internet Files
O43 - CFD: 28/03/2010 - 19:29:08 - [1,803] ----D- C:\Users\Marie\AppData\Local\TomTom
O43 - CFD: 13/05/2011 - 20:28:52 - [943,933] ----D- C:\Users\Marie\AppData\Local\VirtualStore
O43 - CFD: 15/12/2010 - 10:01:24 - [0,012] ----D- C:\Users\Marie\AppData\Local\Windows Live
O43 - CFD: 17/09/2011 - 11:06:34 - [655,827] ----D- C:\Program Files (x86)\Adobe
O43 - CFD: 26/07/2011 - 20:22:44 - [2,316] ----D- C:\Program Files (x86)\Apple Software Update
O43 - CFD: 24/08/2009 - 00:38:14 - [80,724] ----D- C:\Program Files (x86)\ATI Technologies
O43 - CFD: 18/12/2011 - 19:14:00 - [167,654] ----D- C:\Program Files (x86)\Avira
O43 - CFD: 13/10/2011 - 20:24:44 - [0,586] ----D- C:\Program Files (x86)\Bonjour
O43 - CFD: 27/01/2012 - 16:39:48 - [571,643] ----D- C:\Program Files (x86)\Common Files
O43 - CFD: 20/08/2009 - 10:17:46 - [966,888] ----D- C:\Program Files (x86)\CyberLink
O43 - CFD: 04/12/2011 - 18:07:14 - [22,986] ----D- C:\Program Files (x86)\DAEMON Tools Lite
O43 - CFD: 14/01/2012 - 19:02:28 - [0] ----D- C:\Program Files (x86)\Digiarty
O43 - CFD: 10/12/2010 - 21:27:14 - [4,663] ----D- C:\Program Files (x86)\Dnote Software
O43 - CFD: 13/01/2012 - 16:38:44 - [1458,812] ----D- C:\Program Files (x86)\Electronic Arts
O43 - CFD: 06/03/2012 - 23:09:36 - [5,974] ----D- C:\Program Files (x86)\epson
O43 - CFD: 03/07/2011 - 17:25:28 - [16,264] ----D- C:\Program Files (x86)\FileZilla FTP Client
O43 - CFD: 23/02/2012 - 03:00:30 - [3,794] ----D- C:\Program Files (x86)\Free M4a to MP3 Converter
O43 - CFD: 28/09/2010 - 19:14:02 - [5,874] ----D- C:\Program Files (x86)\GeoGebra
O43 - CFD: 20/01/2012 - 18:11:32 - [1454,285] ----D- C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 20/08/2009 - 11:18:02 - [2,972] ----D- C:\Program Files (x86)\Hp
O43 - CFD: 20/08/2009 - 09:12:30 - [282,309] ----D- C:\Program Files (x86)\HP Games
O43 - CFD: 12/02/2012 - 15:53:12 - [1476,308] --H-D- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 17/02/2012 - 03:56:42 - [5,453] ----D- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 25/01/2012 - 16:40:14 - [140,752] ----D- C:\Program Files (x86)\iTunes
O43 - CFD: 28/04/2011 - 15:56:50 - [85,162] ----D- C:\Program Files (x86)\Java
O43 - CFD: 24/08/2009 - 00:39:14 - [1,840] ----D- C:\Program Files (x86)\JMicron
O43 - CFD: 07/03/2012 - 18:56:14 - [11,423] ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 15/12/2010 - 10:24:36 - [0,216] ----D- C:\Program Files (x86)\Microsoft
O43 - CFD: 27/01/2012 - 16:36:32 - [38,002] ----D- C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 27/01/2012 - 16:39:24 - [1001,623] ----D- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 20/08/2009 - 09:38:26 - [7,431] ----D- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant
O43 - CFD: 17/02/2012 - 16:27:52 - [36,634] ----D- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 27/01/2012 - 16:39:22 - [1,722] ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 27/01/2012 - 16:39:22 - [0,757] ----D- C:\Program Files (x86)\Microsoft Sync Framework
O43 - CFD: 27/01/2012 - 16:39:50 - [0,312] ----D- C:\Program Files (x86)\Microsoft Synchronization Services
O43 - CFD: 27/01/2012 - 16:37:46 - [1,314] ----D- C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 16/12/2010 - 01:04:20 - [137,975] ----D- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 05/11/2010 - 17:57:48 - [0,934] ----D- C:\Program Files (x86)\Microsoft WSE
O43 - CFD: 27/01/2012 - 16:39:22 - [7,789] ----D- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 04/03/2012 - 21:53:04 - [38,925] ----D- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 27/01/2012 - 16:40:16 - [0,025] ----D- C:\Program Files (x86)\MSBuild
O43 - CFD: 01/11/2009 - 13:02:40 - [0] ----D- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 31/10/2009 - 20:55:14 - [18,981] R---D- C:\Program Files (x86)\Online Services
O43 - CFD: 29/12/2011 - 14:45:02 - [37,897] ----D- C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 27/08/2011 - 18:00:36 - [19,887] ----D- C:\Program Files (x86)\PC Connectivity Solution
O43 - CFD: 20/01/2010 - 18:25:06 - [3,518] ----D- C:\Program Files (x86)\PhotoFiltre
O43 - CFD: 21/01/2012 - 19:16:18 - [0,533] ----D- C:\Program Files (x86)\puush
O43 - CFD: 29/12/2011 - 12:02:00 - [72,431] ----D- C:\Program Files (x86)\QuickTime
O43 - CFD: 24/08/2009 - 00:40:52 - [1,115] ----D- C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 06:32:40 - [37,345] ----D- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 12/02/2012 - 15:53:12 - [697,707] ----D- C:\Program Files (x86)\Rockstar Games
O43 - CFD: 10/12/2011 - 12:14:30 - [0,889] ----D- C:\Program Files (x86)\SystemRequirementsLab
O43 - CFD: 17/07/2010 - 14:18:00 - [0] ----D- C:\Program Files (x86)\TomTom HOME
O43 - CFD: 10/02/2012 - 17:06:02 - [0,035] ----D- C:\Program Files (x86)\TomTom HOME 2
O43 - CFD: 14/07/2009 - 05:57:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 31/01/2011 - 10:18:42 - [0,180] ----D- C:\Program Files (x86)\VDownloader
O43 - CFD: 04/12/2011 - 18:13:58 - [0,334] ----D- C:\Program Files (x86)\WB Games
O43 - CFD: 22/08/2011 - 04:01:24 - [0,844] ----D- C:\Program Files (x86)\Winamp
O43 - CFD: 20/08/2009 - 18:12:32 - [0,500] ----D- C:\Program Files (x86)\Windows Defender
O43 - CFD: 15/12/2010 - 10:24:32 - [43,730] ----D- C:\Program Files (x86)\Windows Live
O43 - CFD: 15/12/2010 - 10:24:10 - [0,234] ----D- C:\Program Files (x86)\Windows Live SkyDrive
O43 - CFD: 16/03/2011 - 14:04:48 - [5,895] ----D- C:\Program Files (x86)\Windows Mail
O43 - CFD: 16/03/2011 - 14:04:46 - [5,090] ----D- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 06:32:40 - [11,632] ----D- C:\Program Files (x86)\Windows NT
O43 - CFD: 16/03/2011 - 14:04:46 - [4,213] ----D- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 16/03/2011 - 14:04:46 - [0,181] ----D- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 16/03/2011 - 14:04:48 - [5,717] ----D- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 28/01/2011 - 12:01:42 - [0,831] ----D- C:\Program Files (x86)\Yahoo!
O43 - CFD: 19/03/2011 - 23:08:40 - [22,764] ----D- C:\Program Files (x86)\Yuna Software
O43 - CFD: 07/03/2012 - 19:33:50 - [10,096] ----D- C:\Program Files (x86)\ZHPDiag
O43 - CFD: 17/09/2011 - 11:08:18 - [86,182] ----D- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 31/08/2011 - 15:20:44 - [30,670] ----D- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 25/01/2012 - 16:39:46 - [98,967] ----D- C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 27/01/2012 - 16:39:48 - [0,095] ----D- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 20/08/2009 - 08:26:12 - [3,689] ----D- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 08/03/2011 - 07:22:28 - [1,189] ----D- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 24/08/2009 - 01:01:48 - [31,218] ----D- C:\Program Files (x86)\Common Files\LightScribe
O43 - CFD: 30/01/2012 - 11:28:14 - [259,785] ----D- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 22/08/2011 - 03:56:50 - [4,559] ----D- C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 14/07/2009 - 04:20:10 - [0,003] ----D- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 14/07/2009 - 04:20:10 - [39,200] ----D- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 30/01/2012 - 11:26:14 - [16,088] ----D- C:\Program Files (x86)\Common Files\System
O43 - CFD: 20/08/2009 - 08:27:42 - [0] ----D- C:\Program Files (x86)\Common Files\Windows Live
~ Scan Program Folder in 00mn 28s
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.F5A5FADDFC1EB808CA051CA377AC559E] - 07/03/2012 - 19:30:38 ---A- . (...) -- C:\Windows\setupact.log [114281]
O44 - LFC:[MD5.1C84AD5B6B2F67080E86090C59258463] - 07/03/2012 - 19:15:31 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1556440]
O44 - LFC:[MD5.6556000123110E953FEFAF553A262ED9] - 07/03/2012 - 19:15:31 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [107714]
O44 - LFC:[MD5.EBE8BD07D78C4C95C47348C1B504E456] - 07/03/2012 - 19:15:31 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [132068]
O44 - LFC:[MD5.F40C909275A3EC109CC507BE64AFC134] - 07/03/2012 - 19:15:31 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [618330]
O44 - LFC:[MD5.F32D2131F305EF458C516850FF6F3356] - 07/03/2012 - 19:15:31 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [706838]
O44 - LFC:[MD5.1C84AD5B6B2F67080E86090C59258463] - 07/03/2012 - 19:15:31 RSHAD . (...) -- C:\Windows\system32\PerfStringBackup.INI [1556440]
O44 - LFC:[MD5.6556000123110E953FEFAF553A262ED9] - 07/03/2012 - 19:15:31 RSHAD . (...) -- C:\Windows\system32\perfc009.dat [107714]
O44 - LFC:[MD5.EBE8BD07D78C4C95C47348C1B504E456] - 07/03/2012 - 19:15:31 RSHAD . (...) -- C:\Windows\system32\perfc00C.dat [132068]
O44 - LFC:[MD5.F40C909275A3EC109CC507BE64AFC134] - 07/03/2012 - 19:15:31 RSHAD . (...) -- C:\Windows\system32\perfh009.dat [618330]
O44 - LFC:[MD5.F32D2131F305EF458C516850FF6F3356] - 07/03/2012 - 19:15:31 RSHAD . (...) -- C:\Windows\system32\perfh00C.dat [706838]
O44 - LFC:[MD5.1ECF212D8351DBD564E87473AE502A1D] - 07/03/2012 - 19:15:02 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1833009]
O44 - LFC:[MD5.23113ADA62D192D1789826363AD36DE4] - 07/03/2012 - 19:11:15 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.EEA9D3F976FF5592CA86262C87CF600C] - 07/03/2012 - 19:11:07 ---A- . (...) -- C:\Windows\PFRO.log [20512]
O44 - LFC:[MD5.D71742AFA3AE455565E93E2BBA165BA7] - 06/03/2012 - 23:09:34 ---A- . (.SEIKO EPSON CORP. - EPSON WIA Module.) -- C:\Windows\SysNative\esxcwiad.dll [101376]
O44 - LFC:[MD5.D71742AFA3AE455565E93E2BBA165BA7] - 06/03/2012 - 23:09:34 RSHAD . (.SEIKO EPSON CORP. - EPSON WIA Module.) -- C:\Windows\system32\esxcwiad.dll [101376]
O44 - LFC:[MD5.2530DECD7EE9BC38198EC56224FD33C5] - 06/03/2012 - 23:00:41 ---A- . (.SEIKO EPSON CORP. - E_DCINST.) -- C:\Windows\SysNative\E_GCINST.DLL [8704]
O44 - LFC:[MD5.9891511E620B74DAC5FC6376667F10BE] - 06/03/2012 - 23:00:41 ---A- . (.SEIKO EPSON CORPORATION - ECBTEGB AMD64.) -- C:\Windows\SysNative\E_IBCBCDE.DLL [81408]
O44 - LFC:[MD5.5119CA537F22E38019C811C0BE314EC2] - 06/03/2012 - 23:00:41 ---A- . (.SEIKO EPSON CORPORATION - EPSON Bi-directional Monitor AMD64.) -- C:\Windows\SysNative\E_ILMCDE.DLL [108032]
O44 - LFC:[MD5.2530DECD7EE9BC38198EC56224FD33C5] - 06/03/2012 - 23:00:41 RSHAD . (.SEIKO EPSON CORP. - E_DCINST.) -- C:\Windows\system32\E_GCINST.DLL [8704]
O44 - LFC:[MD5.9891511E620B74DAC5FC6376667F10BE] - 06/03/2012 - 23:00:41 RSHAD . (.SEIKO EPSON CORPORATION - ECBTEGB AMD64.) -- C:\Windows\system32\E_IBCBCDE.DLL [81408]
O44 - LFC:[MD5.5119CA537F22E38019C811C0BE314EC2] - 06/03/2012 - 23:00:41 RSHAD . (.SEIKO EPSON CORPORATION - EPSON Bi-directional Monitor AMD64.) -- C:\Windows\system32\E_ILMCDE.DLL [108032]
O44 - LFC:[MD5.9D37DF046275D281DBFE69D6BEB8075C] - 04/03/2012 - 21:57:16 ---A- . (...) -- C:\Windows\ntbtlog.txt [178382]
O44 - LFC:[MD5.328498189EEE7B2CCD573810BF29053F] - 17/02/2012 - 16:28:17 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [5022632]
O44 - LFC:[MD5.328498189EEE7B2CCD573810BF29053F] - 17/02/2012 - 16:28:17 RSHAD . (...) -- C:\Windows\system32\FNTCACHE.DAT [5022632]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 16/02/2012 - 20:25:56 ---A- . (...) -- C:\Windows\SysNative\HP_ActiveX_Patch_NOT_DETECTED.txt [0]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 16/02/2012 - 20:25:56 RSHAD . (...) -- C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt [0]
O44 - LFC:[MD5.852E3C0A60D368C487949E55AD52A47F] - 15/02/2012 - 19:41:59 RSHAD . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\Windows\system32\drivers\avipbb.sys [132320]
O44 - LFC:[MD5.5AB8037E28D8E8C98D75B12638BE761B] - 10/02/2012 - 17:13:13 ---A- . (.Andrea Electronics Corporation - Capture Noise Filters (64-bit).) -- C:\Windows\SysNative\AESTAC64.dll [160768]
O44 - LFC:[MD5.F6D05B05F5B4580B40A000857A04BBB6] - 10/02/2012 - 17:13:13 ---A- . (.Andrea Electronics Corporation - Capture Noise Filters Properties (64-bit).) -- C:\Windows\SysNative\AESTEC64.dll [436224]
O44 - LFC:[MD5.C469893743E18BA547DB3C7ED98B32F5] - 10/02/2012 - 17:13:13 ---A- . (.Andrea Electronics Corporation - Render Noise Filters (64-bit).) -- C:\Windows\SysNative\AESTAR64.dll [68608]
O44 - LFC:[MD5.5AB8037E28D8E8C98D75B12638BE761B] - 10/02/2012 - 17:13:13 RSHAD . (.Andrea Electronics Corporation - Capture Noise Filters (64-bit).) -- C:\Windows\system32\AESTAC64.dll [160768]
O44 - LFC:[MD5.F6D05B05F5B4580B40A000857A04BBB6] - 10/02/2012 - 17:13:13 RSHAD . (.Andrea Electronics Corporation - Capture Noise Filters Properties (64-bit).) -- C:\Windows\system32\AESTEC64.dll [436224]
O44 - LFC:[MD5.C469893743E18BA547DB3C7ED98B32F5] - 10/02/2012 - 17:13:13 RSHAD . (.Andrea Electronics Corporation - Render Noise Filters (64-bit).) -- C:\Windows\system32\AESTAR64.dll [68608]
O44 - LFC:[MD5.5F9479B2BD3575E789F06F4DEB86C9E0] - 10/02/2012 - 17:13:11 ---A- . (.Andrea Electronics Corporation - Andrea filters third-party access (64-bit).) -- C:\Windows\SysNative\AESTCo64.dll [90624]
O44 - LFC:[MD5.CBB07BECC28AA37B838D7891E43B3341] - 10/02/2012 - 17:13:11 ---A- . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\SysNative\idt64mp1.exe [564224]
O44 - LFC:[MD5.A70D3A7417A57CE35451332AE0D5C83C] - 10/02/2012 - 17:13:11 ---A- . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\SysNative\idtcpl64.cpl [12158464]
O44 - LFC:[MD5.8CCAC20D08D0B5B3717F211D12C38D35] - 10/02/2012 - 17:13:11 ---A- . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\SysNative\stlang64.dll [3593216]
O44 - LFC:[MD5.7A2C26459B599A2D6D5401F73ACA1981] - 10/02/2012 - 17:13:11 ---A- . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\sttray64.exe [450048]
O44 - LFC:[MD5.5F9479B2BD3575E789F06F4DEB86C9E0] - 10/02/2012 - 17:13:11 RSHAD . (.Andrea Electronics Corporation - Andrea filters third-party access (64-bit).) -- C:\Windows\system32\AESTCo64.dll [90624]
O44 - LFC:[MD5.CBB07BECC28AA37B838D7891E43B3341] - 10/02/2012 - 17:13:11 RSHAD . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\system32\idt64mp1.exe [564224]
O44 - LFC:[MD5.A70D3A7417A57CE35451332AE0D5C83C] - 10/02/2012 - 17:13:11 RSHAD . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\system32\idtcpl64.cpl [12158464]
O44 - LFC:[MD5.8CCAC20D08D0B5B3717F211D12C38D35] - 10/02/2012 - 17:13:11 RSHAD . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\system32\stlang64.dll [3593216]
O44 - LFC:[MD5.DCBADE1C40D65EFC7B95890825402221] - 19/12/2007 - 02:40:00 ---A- . (...) -- C:\Windows\SysNative\2hps.ico [3774]
O44 - LFC:[MD5.4DB832701EA2D47F325ED11F012F7338] - 19/12/2007 - 02:40:00 ---A- . (...) -- C:\Windows\SysNative\bltinmic.ico [3774]
O44 - LFC:[MD5.E02E99CFA701FC38161FDCA3EB809581] - 19/12/2007 - 02:40:00 ---A- . (...) -- C:\Windows\SysNative\nbspkrs.ico [15222]
O44 - LFC:[MD5.DCBADE1C40D65EFC7B95890825402221] - 19/12/2007 - 02:40:00 RSHAD . (...) -- C:\Windows\system32\2hps.ico [3774]
O44 - LFC:[MD5.4DB832701EA2D47F325ED11F012F7338] - 19/12/2007 - 02:40:00 RSHAD . (...) -- C:\Windows\system32\bltinmic.ico [3774]
O44 - LFC:[MD5.E02E99CFA701FC38161FDCA3EB809581] - 19/12/2007 - 02:40:00 RSHAD . (...) -- C:\Windows\system32\nbspkrs.ico [15222]
~ Scan Files in 00mn 53s
---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\TSpkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
~ Scan Keys in 00mn 00s
---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\system32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\system32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\Wdf01000.sys . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en mode noyau.) -- C:\Windows\system32\Drivers\Wdf01000.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\system32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\system32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\system32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\system32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\system32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\Wdf01000.sys . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en mode noyau.) -- C:\Windows\system32\Drivers\Wdf01000.sys
~ Scan CSB in 00mn 00s
---\\ MountPoints2 Shell Key (O51)
O51 - MPSK:{b480e040-1e99-11e1-9671-806e6f6e6963}\AutoRun\command. (...) -- G:\Autorun.exe (.not file.)
O51 - MPSK:{e751c544-9040-11de-8a85-806e6f6e6963}\AutoRun\command. (.Macrovision Corporation - DemoShield Multi-CD Launch.) -- F:\Install.exe
~ Scan Keys in 00mn 03s
---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"VIDC.I420"="lvcod64.dll" . (.Logitech Inc. - Video Codec.) -- C:\Windows\system32\lvcod64.dll
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ Scan Keys in 00mn 00s
---\\ ShareTools MSconfig StartupReg (O53) (None)
---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "HideFastUserSwitching"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKCU\...\Policies\System] - "WallpaperStyle"=
O55 - MWPS:[HKCU\...\Policies\System] - "DisableLockWorkstation"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableTaskMgr"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableChangePassword"=0
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=0
~ Scan Keys in 00mn 00s
---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.5C368F4B04ED2A923E6AFCA2D37BAFF5] - 13/05/2011 - 17:57:58 ---A- . (.Hewlett-Packard Company - HP Accelerometer.) -- C:\Windows\system32\drivers\Accelerometer.sys [43320]
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 RSHAD . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [491088]
O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 RSHAD . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [339536]
O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 RSHAD . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys [182864]
O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 RSHAD . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [15440]
O58 - SDL:[MD5.D4121AE6D0C0E7E13AA221AA57EF2D49] - 11/03/2011 - 07:41:12 RSHAD . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [107904]
O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 RSHAD . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys [194128]
O58 - SDL:[MD5.540DAF1CEA6094886D72126FD7C33048] - 11/03/2011 - 07:41:12 RSHAD . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [27008]
O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 RSHAD . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [87632]
O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 RSHAD . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [97856]
O58 - SDL:[MD5.04A5815DF7E8B037DF674D3CCACC0C31] - 29/06/2009 - 18:00:00 RSHAD . (.ATI Research Inc. - Ati High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\AtiHdmi.sys [116752]
O58 - SDL:[MD5.C5758BF1DFD762A5B17041FF061B7750] - 02/07/2009 - 22:51:00 RSHAD . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys [6036480]
O58 - SDL:[MD5.AA8F79A1BDFC03B3BC70C44AB00589B4] - 01/12/2011 - 17:55:27 RSHAD . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\system32\drivers\avgntflt.sys [97312]
O58 - SDL:[MD5.852E3C0A60D368C487949E55AD52A47F] - 15/02/2012 - 19:41:59 RSHAD . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\Windows\system32\drivers\avipbb.sys [132320]
O58 - SDL:[MD5.248DB59FC86DE44D2779F4C7FB1A567D] - 01/12/2011 - 17:55:27 RSHAD . (.Avira GmbH - Avira Manager Driver.) -- C:\Windows\system32\drivers\avkmgr.sys [27760]
O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 RSHAD . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys [270848]
O58 - SDL:[MD5.F99C7AE4BB91BD1506B3572F944307BB] - 24/08/2009 - 00:41:24 RSHAD . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless driver.) -- C:\Windows\system32\drivers\BCMWL664.SYS [2769400]
O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 RSHAD . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [18432]
O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 RSHAD . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [8704]
O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 RSHAD . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [286720]
O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 RSHAD . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [47104]
O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 RSHAD . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [14976]
O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 21:41:10 RSHAD . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [14720]
O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 RSHAD . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys [468480]
O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 RSHAD . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [17488]
O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 RSHAD . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [530496]
O58 - SDL:[MD5.524C79054636D2E5751169005006460B] - 29/06/2009 - 19:17:00 RSHAD . (.ENE TECHNOLOGY INC. - ENE CIR Driver for eHome(64).) -- C:\Windows\system32\drivers\enecir.sys [70656]
O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 RSHAD . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys [3286016]
O58 - SDL:[MD5.E403AACF8C7BB11375122D2464560311] - 18/05/2009 - 14:17:08 RSHAD . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys [34152]
O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 RSHAD . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys [31232]
O58 - SDL:[MD5.4E0BEC0F78096FFD6D3314B497FC49D3] - 13/05/2011 - 17:58:16 RSHAD . (.Hewlett-Packard Company - HP Disk Filter - SATA/RAID.) -- C:\Windows\system32\drivers\hpdskflt.sys [30008]
O58 - SDL:[MD5.9AF482D058BE59CC28BCE52E7C4B747C] - 29/04/2009 - 07:48:32 RSHAD . (.Hewlett-Packard Development Company, L.P. - HpqKbFiltr Keyboard Filter Driver.) -- C:\Windows\system32\drivers\HpqKbFiltr.sys [18432]
O58 - SDL:[MD5.39D2ABCD392F3D8A6DCE7B60AE7B8EFC] - 20/11/2010 - 14:33:35 RSHAD . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys [78720]
O58 - SDL:[MD5.AAAF44DB3BD0B9D1FB6969B23ECC8366] - 11/03/2011 - 07:41:26 RSHAD . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys [410496]
O58 - SDL:[MD5.A87261EF1546325B559374F5689CF5BC] - 10/06/2009 - 21:37:05 RSHAD . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\system32\drivers\igdkmd64.sys [6108416]
O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 RSHAD . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [44112]
O58 - SDL:[MD5.F8844B00C10E386C704C610E95A9847D] - 21/07/2009 - 04:39:00 RSHAD . (.JMicron Technology Corporation - JMicron JMB38X Flash Media Controller Driver.) -- C:\Windows\system32\drivers\jmcr.sys [140712]
O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 RSHAD . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [114752]
O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 RSHAD . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [106560]
O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 RSHAD . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys [65600]
O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 RSHAD . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [115776]
O58 - SDL:[MD5.DB5C32A4130E6B36CD6ED7A5A6C7751E] - 12/10/2007 - 01:56:34 RSHAD . (.Logitech Inc. - Logitech Video Driver.) -- C:\Windows\system32\drivers\LV561V64.sys [582680]
O58 - SDL:[MD5.6562FCEE704F14C05F5338B147D67A16] - 12/10/2007 - 02:00:22 RSHAD . (.Logitech Inc. - USB Statistic Driver.) -- C:\Windows\system32\drivers\LVUSBS64.sys [50072]
O58 - SDL:[MD5.79DA94B35371B9E7104460C7693DCB2C] - 10/12/2011 - 15:24:08 RSHAD . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [23152]
O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 RSHAD . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys [35392]
O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 RSHAD . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [284736]
O58 - SDL:[MD5.64428DFDAF6E88366CB51F45A79C5F69] - 10/06/2009 - 21:35:28 RSHAD . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\system32\drivers\netw5v64.sys [5434368]
O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 RSHAD . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [51264]
O58 - SDL:[MD5.0A92CB65770442ED0DC44834632F66AD] - 11/03/2011 - 07:41:34 RSHAD . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [148352]
O58 - SDL:[MD5.DAB0E87525C10052BF65F06152F37E4A] - 11/03/2011 - 07:41:34 RSHAD . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [166272]
O58 - SDL:[MD5.BC0018C2D29F655188A0ED3FA94FDB24] - 28/08/2008 - 11:44:42 RSHAD . (.Nokia - PCCS Mode Change Filter Driver.) -- C:\Windows\system32\drivers\pccsmcfdx64.sys [25600]
O58 - SDL:[MD5.65937A34C9A5741E3030A86905400D91] - 29/08/2006 - 15:56:19 RSHAD . (.B-phreaks - Prodigy LPT WinXP device Driver.) -- C:\Windows\system32\drivers\prodigy.sys [32377]
O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 RSHAD . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1524816]
O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 RSHAD . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [128592]
O58 - SDL:[MD5.91296F0B2653281B2F11E0FCE56AA427] - 13/07/2009 - 23:31:00 RSHAD . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver.) -- C:\Windows\system32\drivers\Rt64win7.sys [233472]
O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 RSHAD . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [23040]
O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 RSHAD . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [43584]
O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 RSHAD . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [80464]
O58 - SDL:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 04/12/2011 - 00:00:00 RSHAD . (...) -- C:\Windows\system32\drivers\sptd.sys [530488]
O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 14/07/2009 - 02:45:55 RSHAD . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys [24656]
O58 - SDL:[MD5.ED1722F43CE61409EF68340402D6267D] - 22/07/2009 - 02:33:00 RSHAD . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\system32\drivers\stwrt64.sys [487936]
O58 - SDL:[MD5.3A706A967295E16511E40842B1A2761D] - 27/05/2010 - 21:32:56 RSHAD . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\system32\drivers\SynTP.sys [320560]
O58 - SDL:[MD5.AA33FC47ED58C34E6E9261E4F850B7EB] - 10/05/2011 - 07:06:08 RSHAD . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\system32\drivers\usbaapl64.sys [51712]
O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 RSHAD . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [17488]
O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 14/07/2009 - 02:45:55 RSHAD . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [161872]
O58 - SDL:[MD5.0C4540311E11664B245A263E1154CEF8] - 10/06/2009 - 22:01:11 RSHAD . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\system32\drivers\VSTAZL6.SYS [292864]
O58 - SDL:[MD5.18E40C245DBFAF36FD0134A7EF2DF396] - 10/06/2009 - 22:01:11 RSHAD . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\system32\drivers\VSTCNXT6.SYS [740864]
O58 - SDL:[MD5.02071D207A9858FBE3A48CBFD59C4A04] - 10/06/2009 - 22:01:11 RSHAD . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\system32\drivers\VSTDPV6.SYS [1485312]
O58 - SDL:[MD5.B3EEACF62445E24FBB2CD4B0FB4DB026] - 10/06/2009 - 21:35:33 RSHAD . (.Marvell - Miniport Driver for Marvell Yukon Ethernet Controller..) -- C:\Windows\system32\drivers\yk62x64.sys [389120]
O58 - SDL:[MD5.1ED08A6264C5C92099D6D1DAE5E8F530] - 02/12/2011 - 15:06:50 ---A- . (.Phoenix Technologies - DriverAgent Direct I/O for 64-bit Windows.) -- C:\Windows\SysWOW64\drivers\DrvAgent64.SYS [21712]
~ Scan Drivers in 00mn 17s
---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.28 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s
---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\adp94xx.sys (adp94xx) .(.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) - LEGACY_ADP94XX
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\adpahci.sys (adpahci) .(.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) - LEGACY_ADPAHCI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\adpu320.sys (adpu320) .(.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) - LEGACY_ADPU320
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\aliide.sys (aliide) .(.Acer Laboratories Inc. - ALi mini IDE Driver.) - LEGACY_ALIIDE
O64 - Services: CurCS - 11/03/2011 - C:\Windows\system32\drivers\amdsata.sys (amdsata) .(.Advanced Micro Devices - AHCI 1.2 Device Driver.) - LEGACY_AMDSATA
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\amdsbs.sys (amdsbs) .(.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) - LEGACY_AMDSBS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\arc.sys (arc) .(.Adaptec, Inc. - Adaptec RAID Storport Driver.) - LEGACY_ARC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\arcsas.sys (arcsas) .(.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) - LEGACY_ARCSAS
O64 - Services: CurCS - 01/12/2011 - C:\Windows\system32\DRIVERS\avgntflt.sys (avgntflt) .(.Avira GmbH - Avira Minifilter Driver.) - LEGACY_AVGNTFLT
O64 - Services: CurCS - 15/02/2012 - C:\Windows\system32\DRIVERS\avipbb.sys (avipbb) .(.Avira GmbH - Avira Driver for Security Enhancement.) - LEGACY_AVIPBB
O64 - Services: CurCS - 01/12/2011 - C:\Windows\system32\DRIVERS\avkmgr.sys (avkmgr) .(.Avira GmbH - Avira Manager Driver.) - LEGACY_AVKMGR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\cmdide.sys (cmdide) .(.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) - LEGACY_CMDIDE
O64 - Services: CurCS - 02/12/2011 - C:\Windows\sysWOW64\Drivers\DrvAgent64.sys (DrvAgent64) .(.Phoenix Technologies - DriverAgent Direct I/O for 64-bit Windows.) - LEGACY_DRVAGENT64
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\elxstor.sys (elxstor) .(.Emulex - Storport Miniport Driver for LightPulse HBA.) - LEGACY_ELXSTOR
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\HpSAMD.sys (HpSAMD) .(.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) - LEGACY_HPSAMD
O64 - Services: CurCS - 11/03/2011 - C:\Windows\system32\drivers\iaStorV.sys (iaStorV) .(.Intel Corporation - Intel Matrix Storage Manager driver - x64.) - LEGACY_IASTORV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\iirsp.sys (iirsp) .(.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) - LEGACY_IIRSP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\lsi_fc.sys (LSI_FC) .(.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) - LEGACY_LSI_FC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\lsi_sas.sys (LSI_SAS) .(.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) - LEGACY_LSI_SAS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\lsi_sas2.sys (LSI_SAS2) .(.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) - LEGACY_LSI_SAS2
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\lsi_scsi.sys (LSI_SCSI) .(.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) - LEGACY_LSI_SCSI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\megasas.sys (megasas) .(.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) - LEGACY_MEGASAS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\MegaSR.sys (MegaSR) .(.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) - LEGACY_MEGASR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\nfrd960.sys (nfrd960) .(.IBM Corporation - IBM ServeRAID Controller Driver.) - LEGACY_NFRD960
O64 - Services: CurCS - 11/03/2011 - C:\Windows\system32\drivers\nvraid.sys (nvraid) .(.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) - LEGACY_NVRAID
O64 - Services: CurCS - 11/03/2011 - C:\Windows\system32\drivers\nvstor.sys (nvstor) .(.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) - LEGACY_NVSTOR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\ql2300.sys (ql2300) .(.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) - LEGACY_QL2300
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\ql40xx.sys (ql40xx) .(.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) - LEGACY_QL40XX
O64 - Services: CurCS - ??\??\???? - C:\Windows\system32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\SiSRaid2.sys (SiSRaid2) .(.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) - LEGACY_SISRAID2
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\sisraid4.sys (SiSRaid4) .(.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) - LEGACY_SISRAID4
O64 - Services: CurCS - ??\??\???? - C:\Windows\system32\Drivers\sptd.sys - sptd (sptd) .(...) - LEGACY_SPTD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\stexstor.sys (stexstor) .(.Promise Technology - Promise SuperTrak EX Series Driver for Win.) - LEGACY_STEXSTOR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\viaide.sys (viaide) .(.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) - LEGACY_VIAIDE
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\vsmraid.sys (vsmraid) .(.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) - LEGACY_VSMRAID
~ Scan Services in 00mn 00s
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\system32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\system32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\system32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\system32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
~ Scan Keys in 00mn 00s
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
~ Scan Keys in 00mn 00s
---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] ${searchCLSID} [DefaultScope] - (@ieframe.dll,-12512) - http://search.live.com
O69 - SBI: SearchScopes [HKCU] {44C52540-F5A3-42DE-9033-923538F6C948} - (Kelkoo) - http://fr.kelkoopartners.net
O69 - SBI: SearchScopes [HKCU] {E6042866-D4BA-4DF4-84BC-588E0A3452BC} - (AOL Recherche) - http://slirsredirect.search.aol.com
O69 - SBI: SearchScopes [HKCU] {EE827FB0-3919-499E-9774-F2F7D0C4C983} - (Yahoo!) - http://fr.search.yahoo.com
~ Scan Keys in 00mn 00s
---\\ Recherche des services démarrés par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\system32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\system32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\system32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\system32\gpsvc.dll [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\system32\ikeext.dll [853504]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\system32\Audiosrv.dll [679424]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\system32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\system32\rasmans.dll [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\system32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\system32\sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\system32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\system32\tapisrv.dll [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\system32\termsrv.dll [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\system32\wuaueng.dll [2420736]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\system32\qmgr.dll [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\system32\shsvcs.dll [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\system32\iphlpsvc.dll [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\system32\appinfo.dll [70656]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\system32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\system32\sessenv.dll [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\system32\browser.dll [136192]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\system32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\system32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\system32\bdesvc.dll [100864]
~ Scan Services in 00mn 00s
---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.6D9E5361414A404F62DC249F2AADC327] [SPRF][31/01/2008] (.Pas de propriétaire - 7-zip32.) -- C:\Users\Marie\AppData\Local\Temp\7-zip32.dll [506880]
[MD5.197215658B8015182192E1EBCA3BBCC3] [SPRF][07/01/2012] (.Ask.com - AskIC Dynamic Link Library.) -- C:\Users\Marie\AppData\Local\Temp\AskSLib.dll [246440]
[MD5.669905607BF2DAC3C8AE20BCCC04D7BE] [SPRF][13/01/2012] (...) -- C:\Users\Marie\AppData\Local\Temp\ffmpeg15.exe [2170880]
[MD5.0847BC96E23565DBAE072CA335A212C9] [SPRF][06/03/2012] (.Mozilla Foundation - User-Generated Microsoft (R) C/C++ Runtime Library.) -- C:\Users\Marie\AppData\Local\Temp\mozcrt19.dll [718296]
[MD5.9037A7E8B0B4FDDFC5A6E5A7482C94D6] [SPRF][06/03/2012] (.Mozilla Foundation - Pas de description.) -- C:\Users\Marie\AppData\Local\Temp\mozutils.dll [43992]
[MD5.578F38D4AE4DAA643E66FFDB42460463] [SPRF][06/03/2012] (.Netscape Communications Corporation - NSPR Library.) -- C:\Users\Marie\AppData\Local\Temp\nspr4.dll [155648]
[MD5.C3E5F42AC591AA00195289C164550471] [SPRF][06/03/2012] (.Mozilla Foundation - NSS Utility Library.) -- C:\Users\Marie\AppData\Local\Temp\nssutil3.dll [87544]
[MD5.60B8974FA964F568C25A55C19D59883A] [SPRF][06/03/2012] (.Netscape Communications Corporation - PLC Library.) -- C:\Users\Marie\AppData\Local\Temp\plc4.dll [28672]
[MD5.3DE7C6D01B163FBBEDE001C3FEA49787] [SPRF][04/02/2011] (.Hewlett-Packard Company - Resource.) -- C:\Users\Marie\AppData\Local\Temp\Resource.exe [88120]
[MD5.4E8EDBFB9F2F50C3F38067AC70C7094D] [SPRF][20/01/2012] (.Hewlett-Packard - Pas de description.) -- C:\Users\Marie\AppData\Local\Temp\sp54620.exe [48868760]
[MD5.188FCE83B29A7DDDFC2CBA1F7904C049] [SPRF][20/01/2012] (...) -- C:\Users\Marie\AppData\Local\Temp\temp.bat [295]
[MD5.B7670E6B00E95D77CEC02EE9B3BB0D8F] [SPRF][06/03/2012] (...) -- C:\Users\Marie\AppData\Local\Temp\Uni000.exe [56352]
[MD5.75B2951107C4ECA90FA33AA3E7BFBA0E] [SPRF][29/12/2011] (.NCH Software - Switch Sound File Converter.) -- C:\Users\Marie\AppData\Local\Temp\uninst.exe [1273860]
[MD5.7C7C95C271A66FDF8351FE1ADEC87334] [SPRF][09/09/2011] (.Hewlett-Packard Company - HP Support Assistant Uninstaller.) -- C:\Users\Marie\AppData\Local\Temp\UninstallHPSA.exe [449592]
[MD5.40395C175553CB14D2050888EFCCDF00] [SPRF][13/05/2011] (.Microsoft Corporation - Microsoft Visual C++ 2008 Redistributable Setup.) -- C:\Users\Marie\AppData\Local\Temp\vcredist_x64.exe [4961800]
[MD5.D41D8CD98F00B204E9800998ECF8427E] [SPRF][05/01/2011] (...) -- C:\Users\Marie\AppData\Roaming\wklnhst.dat [0]
[MD5.80F4A456633F78A26A3C6B16E64EFEC5] [SPRF][28/09/2007] (.Microsoft - Uno Messenger.) -- C:\Windows\Downloaded Program Files\GAME_UNO1.dll [381960]
[MD5.8945CCA5FC4F25168E8B6F401EFAF51F] [SPRF][22/02/2007] (.Microsoft Corporation - Zone.com Stats Client for MSN Messenger.) -- C:\Windows\Downloaded Program Files\MessengerStatsPAClient.dll [304544]
~ Scan Files in 00mn 01s
---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "{C7A93BFF-0062-4098-B746-93464B40022A}" | In - None - P6 - TRUE | .(.CyberLink Corp. - PowerDirector.) -- C:\Program Files (x86)\CyberLink\PowerDirector\PDR.exe
O87 - FAEL: "{4EEA7C24-3D4E-447F-ABE1-3BA24A8881EC}" | In - None - P6 - TRUE | .(.CyberLink Corp. - HP DVDSmart Main Program.) -- C:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPDVDSmart.exe
O87 - FAEL: "{C436FF30-F7A1-4328-869A-F713D727B735}" | In - None - P6 - TRUE | .(.CyberLink Corp. - HP MediaSmart Music Main Program.) -- C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\HPTouchSmartMusic.exe
O87 - FAEL: "{31A3E0A7-292A-4718-90E5-621D01571291}" | In - None - P6 - TRUE | .(.CyberLink Corp. - HP MediaSmart Photo Main Program.) -- C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\HPTouchSmartPhoto.exe
O87 - FAEL: "{74BB49F5-847D-4881-AA9C-E281A5557E98}" | In - None - P6 - TRUE | .(.CyberLink Corp. - HP MediaSmart Video Main Program.) -- C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\HPTouchSmartVideo.exe
O87 - FAEL: "{61BEF861-FDF5-468F-A2EA-AA524AAB6406}" | In - None - P6 - TRUE | .(.CyberLink Corp. - CyberLink PowerCinema Resident Program.) -- C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe
O87 - FAEL: "{A708AD42-4535-40D3-8E7E-16CDCF9A9FD4}" | In - None - P6 - TRUE | .(.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
O87 - FAEL: "{22720B11-BD20-41DA-88C3-46AF5EBE3569}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{2A5F8A62-9D54-4988-9BE2-E6E6A5CB5E62}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "TCP Query User{1861B346-2C7B-4665-9656-38D2445A0FBA}C:\program files (x86)\mozilla firefox\firefox.exe" | In - Public - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "UDP Query User{3C3AA4E0-BF78-4C81-8DDA-E54D30BDA294}C:\program files (x86)\mozilla firefox\firefox.exe" | In - Public - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{CE5F8406-8D1D-4313-9554-46813631EF85}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
O87 - FAEL: "{49179729-2368-43EB-916F-D4F62D1015E6}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{7EB4014E-1C38-495D-BAA5-D2A4DEAA6B12}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{40ADEAC5-F605-47CB-9797-70B6F66C0A69}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{443CC445-70BD-4FD9-99CA-CAD3BC9B1B9A}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{CC95A3E6-D3B9-40FB-AED9-5C3F3956C0EF}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe
~ Scan Firewall in 00mn 01s
---\\ Scan Additionnel (O88)
Database Version : 9066 - (06/03/2012)
Clés trouvées (Keys found) : 1
Valeurs trouvées (Values found) : 1
Dossiers trouvés (Folders found) : 0
Fichiers trouvés (Files found) : 0
[HKLM\Software\WOW6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}] =>Toolbar.AskSBar
[HKCU\Software\Microsoft\Internet Explorer\New Windows\Allow]:*.chat-land.org =>Hijacker.ChercheUS
~ Scan Additionnel in 00mn 07s
---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 02/03/2009 89600 | (AESTFilters) . (.Andrea Electronics Corporation.) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
SR - | Auto 02/07/2009 203264 | (AMD External Events Utility) . (.AMD.) - C:\Windows\system32\atiesrxx.exe
SR - | Auto 01/12/2011 86224 | (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
SR - | Auto 01/12/2011 110032 | (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
SR - | Auto 24/10/2011 55144 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Demand 25/02/2010 227896 | (Com4QLBEx) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
SS - | Demand 30/09/2010 246520 | (GameConsoleService) . (.WildTangent, Inc..) - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
SR - | Auto 09/09/2011 86072 | (HP Support Assistant Service) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
SR - | Auto 28/03/2011 94264 | (HPDrvMntSvc.exe) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
SR - | Demand 28/03/2011 799800 | (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
SR - | Auto 13/05/2011 30520 | (hpsrv) . (.Hewlett-Packard Company.) - C:\Windows\system32\Hpservice.exe
SR - | Demand 16/01/2012 934760 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SS - | Demand 17/06/2009 73728 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
SS - | Demand 247152 | (RichVideo) . (...) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
SS - | Demand 0 | Remote Packet Capture Protocol v.0 (experimental) (rpcapd) . (...) - C:\Program Files\WinPcap\rpcapd.exe
SS - | Demand 08/06/2011 633856 | (ServiceLayer) . (.Nokia.) - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
SR - | Auto 22/07/2009 240128 | (STacSV) . (.IDT, Inc..) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\stacsv64.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Scan Services in 00mn 09s
---\\ Liste des émulateurs de CD/DVD (Hook du MBR)
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite
O58 - SDL:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 04/12/2011 - 00:00:00 RSHAD . (...) -- C:\Windows\system32\drivers\sptd.sys [530488]
~ Scan Emulateurs in 00mn 09s
End of the scan (1495 lines in 02mn 14s)(0)