Rapport de ZHPDiag v1.3.5.121 par Nicolas Coolman, Update du 23/02/2013
Run by Richard at 23/02/2013 20:20:13
State : Version à jour.
High Elevated Privileges : OK
UAC : Not Found


---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702 (Defaut)
MFIE: Mozilla Firefox 4.0.1 v4.0.1
GCIE: Google Chrome v24.0.1312.57

---\\ Windows Product Information
~ Langage: Français
Windows XP Professional Service Pack 3 (Build 2600)
Windows Automatic Updates : OK
Windows Genuine Advantage : OK

---\\ System Information
~ Processor: x86 Family 6 Model 15 Stepping 6, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2046 MB (47% free)
System Restore: Activé (Enable)
System drive C: has 58 GB (69%) free of 83 GB

---\\ Logged in mode
~ Computer Name: PC875223151549
~ User Name: Richard
~ All Users Names: SUPPORT_388945a0, Richard, HelpAssistant, ASPNET, Administrateur, 
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Documents and Settings\Richard\Application Data\
~ %Desktop% : C:\Documents and Settings\Richard\Bureau\
~ %Favorites% : C:\Documents and Settings\Richard\Favoris\
~ %LocalAppData% : C:\Documents and Settings\Richard\Local Settings\Application Data\
~ %StartMenu% : C:\Documents and Settings\Richard\Menu Démarrer\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\system32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 58 Go of 83 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 90 Go of 93 Go)
E:\ Hard drive, Flash drive, Thumb drive (Free 1 Go of 8 Go)
F:\ CD-ROM drive (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime :  OK
~ Scan Security Center in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.14/04/2008 - 03:34:03.) -- C:\WINDOWS\Explorer.exe [1037824]
[MD5.F60FB84A5F9DC64C62B5EDADD399C38B] - (.Microsoft Corporation - Internet Extensions for Win32.) (.26/12/2012 - 21:06:36.) -- C:\WINDOWS\system32\wininet.dll [916480]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.14/04/2008 - 03:34:28.) -- C:\WINDOWS\system32\Winlogon.exe [512000]
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.17/08/2011 - 14:49:54.) -- C:\WINDOWS\system32\Drivers\AFD.sys [138496]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 - 19:40:30.) -- C:\WINDOWS\system32\Drivers\atapi.sys [96512]
[MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/04/2008 - 20:14:21.) -- C:\WINDOWS\system32\Drivers\Cdfs.sys [63744]
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.13/04/2008 - 19:40:46.) -- C:\WINDOWS\system32\Drivers\Cdrom.sys [62976]
[MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) (.14/04/2008 - 02:57:38.) -- C:\WINDOWS\system32\Drivers\Fips.sys [44672]
[MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.13/04/2008 - 17:36:05.) -- C:\WINDOWS\system32\Drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) (.14/04/2008 - 03:00:52.) -- C:\WINDOWS\system32\Drivers\i8042prt.sys [54144]
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.13/04/2008 - 19:40:58.) -- C:\WINDOWS\system32\Drivers\Imapi.sys [42112]
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) (.13/04/2008 - 19:57:15.) -- C:\WINDOWS\system32\Drivers\IpNat.sys [152832]
[MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.13/04/2008 - 20:19:42.) -- C:\WINDOWS\system32\Drivers\IPSec.sys [75264]
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.15/07/2011 - 14:29:31.) -- C:\WINDOWS\system32\Drivers\MRxSmb.sys [456320]
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) (.13/04/2008 - 20:21:00.) -- C:\WINDOWS\system32\Drivers\netBT.sys [162816]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.13/04/2008 - 20:15:53.) -- C:\WINDOWS\system32\Drivers\ntfs.sys [574976]
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/04/2008 - 03:09:40.) -- C:\WINDOWS\system32\Drivers\Parport.sys [80384]
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.13/04/2008 - 20:19:43.) -- C:\WINDOWS\system32\Drivers\Rasl2tp.sys [51328]
[MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.13/04/2008 - 19:32:51.) -- C:\WINDOWS\system32\Drivers\rdpdr.sys [196224]
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) (.14/04/2008 - 02:57:34.) -- C:\WINDOWS\system32\Drivers\redbook.sys [58752]
[MD5.46DE1126684369BACE4849E4FC8C43CA] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.14/04/2008 - 02:56:04.) -- C:\WINDOWS\system32\Drivers\volsnap.sys [53376]
~ Scan Generic Processes in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 6/42
~ Mes musiques (My Musics) : 3/6
~ Mes Videos (My Videos) : 5/17
~ Mes Favoris (My Favorites) : 1/58
~ Mes Documents (My Documents) : 4/311
~ Mon Bureau (My Desktop) : 0/27
~ Menu demarrer (Programs) : 1/29
~ Scan Hidden Files in 00mn 03s



---\\ Processus lancés
[MD5.189C45C7CC2526DA72932872E152A061] - (.Broadcom Corporation. - Bluetooth Support Server.) -- C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe   [258103] [PID.688]
[MD5.34AE0DFA3EE3B5B9975042D87332D0B7] - (...) -- C:\Documents and Settings\Richard\Application Data\DefaultTab\DefaultTab\DTUpdate.exe   [107520] [PID.704]
[MD5.5D1347AA5AE6E2F77D7F4F8372D95AC9] - (.Microsoft Corporation - Media Center Receiver Service.) -- C:\WINDOWS\eHome\ehRecvr.exe   [237568] [PID.736]
[MD5.980EEEA91776357518892C5544768E2B] - (.Microsoft Corporation - Service de planification Media Center.) -- C:\WINDOWS\eHome\ehSched.exe   [103424] [PID.748]
[MD5.2346842F07E2AB64D1DC83A67FCCDFA1] - (.F-Secure Corporation - F-Secure Anti-Virus Scanning Service.) -- C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe   [221608] [PID.772]
[MD5.8A556A81E9FF95BD9EB7207783E8FCF4] - (.F-Secure Corporation - F-Secure Management Agent.) -- C:\Program Files\AntivirusFirewall\Common\FSMA32.exe   [188840] [PID.784]
[MD5.AC2B58DA5C00B277E2A4FA4783DF9AE9] - (.F-Secure Corporation - F-Secure Gatekeeper Handler 32-bit.) -- C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.exe   [618040] [PID.804]
[MD5.86E8C2EA0BAA47BE919072251DE6489F] - (.F-Secure Corporation - F-Secure DLL Hosting Plugin.) -- C:\Program Files\AntivirusFirewall\Common\FSHDLL32.exe   [90536] [PID.916]
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files\Google\Update\GoogleUpdate.exe   [135664] [PID.1212]
[MD5.54E0F4CCD6CE99A807459AF928DD64AC] - (.Pas de propriétaire - Inkjet Printer/Scanner/Fax Extended Survey.) -- C:\Program Files\Canon\IJPLM\IJPLMSVC.exe   [140456] [PID.1360]
[MD5.1758AF653723679E3746FC7DDD93C69B] - (.Oracle Corporation - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre7\bin\jqs.exe   [170912] [PID.1412]
[MD5.86E8BCAA91FC2ACFACD99CF2BF9F1F47] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe   [49152] [PID.1436]
[MD5.6D88C26BF33D2B8404F01CECBDD47D3A] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 86.02.) -- C:\WINDOWS\system32\nvsvc32.exe   [143426] [PID.524]
[MD5.04C1DCBB226C6AE647B794833CE3CEB6] - (.Hewlett-Packard Development Company, L.P. - hpqwmiex Module.) -- C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe   [135168] [PID.2492]
[MD5.E4D20625DBD37ADEE96383B1B010EDA0] - (.Microsoft Corporation - Message Queuing Service.) -- C:\WINDOWS\system32\mqsvc.exe   [4608] [PID.2696]
[MD5.9D33A0FFF7798747F9C98A75912C0042] - (.Microsoft Corporation - Windows NT MSMQ Trigger Service.) -- C:\WINDOWS\system32\mqtgsvc.exe   [117248] [PID.3720]
[MD5.0DAD93BB0FECF5016AE3C06CBB0A873B] - (.Microsoft Corporation - COM Surrogate.) -- C:\WINDOWS\system32\dllhost.exe   [5120] [PID.3776]
[MD5.EC005A25AB3CA6EE4E6A3753898760ED] - (.F-Secure Corporation - F-Secure Scanner Manager 32-bit.) -- C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe   [1019448] [PID.3796]
[MD5.7CD27E80DFD22F02FBDA47B706ABA0F2] - (.F-Secure Corporation - F-Secure Internet Shield daemon.) -- C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe   [524712] [PID.3848]
[MD5.3970F0746068ADF25C4FB7E1642C7FD0] - (.F-Secure Corporation - FSAV Handler.) -- C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe   [494648] [PID.2536]
[MD5.9C69E6A25F5500501B14AF43311F8D8B] - (.Microsoft Corporation - Media Center Tray Applet.) -- C:\WINDOWS\ehome\ehtray.exe   [64512] [PID.1216]
[MD5.1E4037F987986B200EB8421A1CEEEE68] - (.Hewlett-Packard Development Company, L.P. - HP Wireless Assistant Module.) -- C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe   [458752] [PID.3016]
[MD5.93AD0B78C7357A05F50E594EC7C22300] - (...) -- ystem32\RUNDLL32.exe   [0] [PID.3124]
[MD5.DAEFB050AC8FEE4F1097FCF7CB97220E] - (.Microsoft Corporation - Media Center Media Status Aggregator Servic.) -- C:\WINDOWS\eHome\ehmsas.exe   [46592] [PID.304]
[MD5.80A0309E33334FCC86F11647C8A1D942] - (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe   [794713] [PID.1804]
[MD5.578C87F9B0A271D58FEE685598984183] - (.CyberLink Corp. - HP QuickPlay Resident Program.) -- C:\Program Files\HP\QuickPlay\QPService.exe   [102400] [PID.2728]
[MD5.0B55D3A8CDAB67F647EE0CBAD87CCB6D] - (. Hewlett-Packard Development Company, L.P. - QLB Controller.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe   [163840] [PID.2136]
[MD5.FBAF93425D4B5A6C48ABB5B7F81088CD] - (.F-Secure Corporation - F-Secure Settings and Statistics.) -- C:\Program Files\AntivirusFirewall\Common\FSM32.exe   [201128] [PID.1796]
[MD5.2E289C3325ACCF1D18B21EB1334E3A0B] - (.TomTom - TomTom HOME.) -- C:\Program Files\TomTom HOME\TomTomHOME.exe   [3770024] [PID.3604]
[MD5.CAF03357DE72F8F19FA099581A685C1A] - (.Apple Computer, Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe   [282624] [PID.2092]
[MD5.21293443961A4E2597453EE7A9347F22] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe   [54840] [PID.2516]
[MD5.F43B91D94A766B5D6C401FA69BCC8A1B] - (.Discordia, LTD - Data Manager.) -- C:\Program Files\Windows Searchqu Toolbar\Datamngr\datamngrUI.exe   [1115536] [PID.0]
[MD5.27249F2A900032F3C2DFAB8DE8F16399] - (.Nuance Communications, Inc. - PaperPort Print to Desktop for NT.) -- C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe   [29984] [PID.1576]
[MD5.6EE74128721DF48D8230628EBFC831D5] - (.CANON INC. - Canon My Printer.) -- C:\Program Files\Canon\MyPrinter\BJMyPrt.exe   [2567272] [PID.3112]
[MD5.7B59D1D1F458B322A722E95554BB591E] - (.CANON INC. - Canon Solution Menu EX.) -- C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.exe   [1637496] [PID.2596]
[MD5.FB2693E1B53BCEDA1F054FF2C54881E6] - (.CANON INC. - Canon IJ Network Scanner Selector EX.) -- C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe   [439440] [PID.3556]
[MD5.12916E0642E92561C98B18A2A2D01B14] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe   [252848] [PID.2836]
[MD5.1ACBA585D47FB69C12F26074517EFE5A] - (.Ask - Ask Updater.) -- C:\Program Files\Ask.com\Updater\Updater.exe   [1644680] [PID.4028]
[MD5.7CC860115CBA837E29FB066FC68B2C3D] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe   [18708224] [PID.2008]
[MD5.0374ACB2D3003265F28D81325E51F9C6] - (.Smartbar - Smartbar.) -- C:\Documents and Settings\Richard\Local Settings\Application Data\Smartbar\Application\Smartbar.exe   [13824] [PID.1516]
[MD5.0FA15B1ADAAA642FFBFE0AE9E959AF51] - (...) -- C:\Documents and Settings\Richard\Application Data\HoolappForAndroid\Hoolapp.exe   [1209392] [PID.2924]
[MD5.A2CD5B30A85F087DE72CD3A116BD7512] - (.Broadcom Corporation. - Bluetooth Tray Application.) -- C:\Program Files\WIDCOMM\Logiciel Bluetooth\BTTray.exe   [581693] [PID.2852]
[MD5.FBB5B5B4D8C96624C7D57C5FB25F387D] - (.Eastman Kodak Company - Kodak EasyShare Software.) -- C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe   [282624] [PID.1724]
[MD5.83166BFFA8C4BBAC4413F47C865CC8EE] - (.Microsoft Corporation - Outil de notification de cadeaux MSN.) -- C:\Documents and Settings\Richard\Application Data\Microsoft\Outil de notification de cadeaux MSN\msnotif.exe   [183096] [PID.3156]
[MD5.95A5842EA6A74542A56EC7BF3B87A896] - (.Broadcom Corporation. - Bluetooth Stack COM Server.) -- C:\Program Files\WIDCOMM\Logiciel Bluetooth\BTStackServer.exe   [1265748] [PID.0]
[MD5.6C56CF33C2C6236A1162FDFC0BECD042] - (.Hewlett-Packard Development Company, L.P. - HP Photosmart Premier.) -- C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe   [475136] [PID.4600]
[MD5.A7D777DFCA71A00F938A3AEE2BD7E290] - (.CANON INC. - Canon Solution Menu EX Updater.) -- C:\Program Files\Canon\Solution Menu EX\CNSEUPDT.exe   [593032] [PID.5272]
[MD5.B60DDDD2D63CE41CB8C487FCFBB6419E] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe   [638816] [PID.6072]
[MD5.ED48AD981F026087F485403A3C2B0897] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe   [5696512] [PID.5016]
[MD5.8648D670AE0D95C95E7BBB5B80661796] - (.Microsoft Corporation - MS DTC console program.) -- C:\WINDOWS\system32\msdtc.exe   [6144] [PID.624]
[MD5.52404CC76E9D53843BDF97564BB16BED] - (.Microsoft Corporation - MCRD Device Service.) -- C:\WINDOWS\ehome\mcrdsvc.exe   [99328] [PID.2612]
[MD5.42AEF6A385354ACA65FC210CE7CE4D7C] - (.F-Secure Corporation - F-Secure ORSP Service.) -- C:\Program Files\AntivirusFirewall\ORSP Client\fsorsp.exe   [61088] [PID.3896]
[MD5.5E9A6658A2A69AE7EB195113B7A2E7A9] - (.Microsoft Corporation - Application Layer Gateway Service.) -- C:\WINDOWS\System32\alg.exe   [44544] [PID.4036]
~ Scan Processes Running in 00mn 03s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Documents and Settings\Richard\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] http://feed.snap.do
G0 - GCSP: Preference [User Data\Default] http://feed.snap.do
~ Scan Google Browser in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
C:\Documents and Settings\Richard\Application Data\Mozilla\Firefox\Profiles\axg77knl.default\prefs.js
C:\Documents and Settings\Richard\Application Data\Mozilla\Firefox\Profiles\axg77knl.default\user.js
M3 - MFPP: Plugins - [Richard] -- C:\Documents and Settings\Richard\Application Data\Mozilla\Firefox\Profiles\axg77knl.default\searchplugins\askcom.xml
M3 - MFPP: Plugins - [Richard] -- C:\Documents and Settings\Richard\Application Data\Mozilla\Firefox\Profiles\axg77knl.default\searchplugins\bing.xml
M3 - MFPP: Plugins - [Richard] -- C:\Documents and Settings\Richard\Application Data\Mozilla\Firefox\Profiles\axg77knl.default\searchplugins\Web Search.xml
M3 - MFPP: Plugins - [Richard] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Richard] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M0 - MFSP: prefs.js [Richard - axg77knl.default] http://feed.snap.do
M2 - MFEP: prefs.js [Richard - axg77knl.default\extension21810@extension21810.com] [] Giant Savings Extension v (.215 Apps.)
M2 - MFEP: prefs.js [Richard - axg77knl.default\ffxtlbr@delta.com] [] Delta Toolbar v1.5.0 (.delta-search.com.)
M2 - MFEP: prefs.js [Richard - axg77knl.default\helperbar@helperbar.com] [] Internet Turbo v1.5.0 (.Internet Turbo.)
M2 - MFEP: prefs.js [Richard - axg77knl.default\toolbar@ask.com] []  v (.Ask.com.)
M2 - MFEP: prefs.js [Richard - axg77knl.default\{99079a25-328f-4bd4-be04-00955acaa0a7}] [] Searchqu Toolbar v4.1.0.01 (.Visicom Media Inc..)
M2 - MFEP: prefs.js [Richard - axg77knl.default\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}] [] DealPly v2.0 (.DealPly.)
P2 - FPN: [HKLM] [@canon.com/EPPEX] - (.CANON INC. - CANON iMAGE GATEWAY Album Plugin Utility Module for IJ.) -- C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.15.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\WINDOWS\system32\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.15.2] - (.Oracle Corporation - Next Generation Java Plug-in 10.15.2 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.1.10329.0.) -- C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8117.0416] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@www.dlmanager.net/omaha/tools//Software Update;version=8] - (.Boxore OU. - Software Update.) -- C:\Program Files\Software\Update\1.2.201.0\npSoftwareOneClick8.dll
~ Scan Firefox Browser in 00mn 01s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://www.delta-search.com
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} . (.Boxore OU. - Software Update.) (No version) -- (.not file.)
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Boxore OU. - Software Update.) (No version) -- (.not file.)
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
~ Scan IE Browser in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Scan Keys in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 03s
~ Nombre de lignes (Lines number): 15353



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe Acrobat IE Helper Version 7.0 for Act.) -- C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: CrossriderApp0021810 - {11111111-1111-1111-1111-110211181110} . (.215 Apps - Giant Savings Extension BHO.) -- C:\Program Files\Giant Savings Extension\Giant Savings Extension.dll
O2 - BHO: Internet Turbo SmartbarEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} . (...) -- mscoree.dll (.not file.)
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} . (.CANON INC. - Easy-WebPrint EX.) -- C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: DefaultTabBHO - {7F6AFBF1-E065-4627-A2FD-810366367D01} . (.Search Results LLC. - Search Results.) -- C:\Documents and Settings\Richard\Application Data\DefaultTab\DefaultTab\DefaultTabBHO.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} . (.Pas de propriétaire - dtx Dynamic Link Library.) -- C:\Program Files\Windows Searchqu Toolbar\ToolBar\searchqudtx.dll
O2 - BHO: UrlHelper Class - {A40DC6C5-79D0-4ca8-A185-8FF989AF1115} . (.Discordia, LTD - IEHelper.) -- C:\Program Files\Windows Searchqu Toolbar\Datamngr\IEBHO.dll
O2 - BHO: (no name) - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} Clé orpheline
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll
O2 - BHO: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} . (.Delta-search.com - Pas de description.) -- C:\Program Files\Delta\delta\1.8.10.0\bh\delta.dll
O2 - BHO: LitmusBHO - {C6867EB7-8350-4856-877F-93CF8AE3DC9C} . (.F-Secure Corporation - Litmus.) -- C:\Program Files\AntivirusFirewall\NRS\iescript\baselitmus.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask - Ask Toolbar.) -- C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} . (.SEIKO EPSON CORPORATION - EPSON Web-To-Page.) -- C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
~ Scan BHO in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: EPSON Web-To-Page - [HKLM]{EE5D279F-081B-4404-994D-C6B60AAEBA6D} . (.SEIKO EPSON CORPORATION - EPSON Web-To-Page.) -- C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Searchqu Toolbar - [HKLM]{99079a25-328f-4bd4-be04-00955acaa0a7} . (.Pas de propriétaire - dtx Dynamic Link Library.) -- C:\Program Files\Windows Searchqu Toolbar\ToolBar\searchqudtx.dll
O3 - Toolbar: Canon Easy-WebPrint EX - [HKLM]{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} . (.CANON INC. - Easy-WebPrint EX.) -- C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll
O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Delta Toolbar - [HKLM]{82E1477C-B154-48D3-9891-33D83C26BCD3} . (.Delta-search.com - Pas de description.) -- C:\Program Files\Delta\delta\1.8.10.0\deltaTlbr.dll
O3 - Toolbar: Internet Turbo Smartbar - [HKLM]{ae07101b-46d4-4a98-af68-0333ea26e113} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll
O3 - Toolbar: Browsing Protection Toolbar - [HKLM]{265EEE8E-3228-44D3-AEA5-F7FDF5860049} . (.F-Secure Corporation - Litmus.) -- C:\Program Files\AntivirusFirewall\NRS\iescript\baselitmus.dll
O3 - Toolbar: Ask Toolbar - [HKLM]{D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask - Ask Toolbar.) -- C:\Program Files\Ask.com\GenericAskToolbar.dll
~ Scan Toolbar in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [ehTray] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\WINDOWS\ehome\ehtray.exe 
O4 - HKLM\..\Run: [hpWirelessAssistant] . (.Hewlett-Packard Development Company, L.P. - HP Wireless Assistant Module.) -- C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe 
O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\WINDOWS\system32\NvCpl.dll 
O4 - HKLM\..\Run: [NvMediaCenter] . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\WINDOWS\system32\NvMcTray.dll 
O4 - HKLM\..\Run: [nwiz] . (...) -- C:\WINDOWS\system32\nwiz.exe 
O4 - HKLM\..\Run: [MsmqIntCert] regsvr32 \s mqrt.dll 
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] . (.Windows (R) Server 2003 DDK provider - High Definition Audio Property Page Shortcu.) -- C:\WINDOWS\system32\CHDAudPropShortcut.exe 
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe 
O4 - HKLM\..\Run: [QPService] . (.CyberLink Corp. - HP QuickPlay Resident Program.) -- C:\Program Files\HP\QuickPlay\QPService.exe 
O4 - HKLM\..\Run: [QlbCtrl] . (. Hewlett-Packard Development Company, L.P. - QLB Controller.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe 
O4 - HKLM\..\Run: [RecGuard] . (.Pas de propriétaire - Recguard Application.) -- C:\Windows\SMINST\RecGuard.exe 
O4 - HKLM\..\Run: [F-Secure Manager] . (.F-Secure Corporation - F-Secure Settings and Statistics.) -- C:\Program Files\AntivirusFirewall\Common\FSM32.exe 
O4 - HKLM\..\Run: [F-Secure TNB] . (.F-Secure Corporation - TNBUtil.) -- C:\Program Files\AntivirusFirewall\FSGUI\TNBUtil.exe 
O4 - HKLM\..\Run: [TomTomHOME.exe] . (.TomTom - TomTom HOME.) -- C:\Program Files\TomTom HOME\TomTomHOME.exe 
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Computer, Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe 
O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe 
O4 - HKLM\..\Run: [DATAMNGR] . (.Discordia, LTD - Data Manager.) -- C:\Program Files\Windows Searchqu Toolbar\Datamngr\datamngrUI.exe 
O4 - HKLM\..\Run: [SSBkgdUpdate] . (.Nuance Communications, Inc. - SSBkgdUpdate.) -- C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe 
O4 - HKLM\..\Run: [PaperPort PTD] . (.Nuance Communications, Inc. - PaperPort Print to Desktop for NT.) -- C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe 
O4 - HKLM\..\Run: [IndexSearch] . (.Nuance Communications, Inc. - PaperPort IndexSearch.) -- C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe 
O4 - HKLM\..\Run: [PPort11reminder] . (.Nuance Communications, Inc. - Ereg.) -- C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe 
O4 - HKLM\..\Run: [CanonMyPrinter] . (.CANON INC. - Canon My Printer.) -- C:\Program Files\Canon\MyPrinter\BJMyPrt.exe 
O4 - HKLM\..\Run: [CanonSolutionMenuEx] . (.CANON INC. - Canon Solution Menu EX.) -- C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.exe 
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] . (.CANON INC. - Canon IJ Network Scanner Selector EX.) -- C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe 
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe 
O4 - HKLM\..\Run: [ApnUpdater] . (.Ask - Ask Updater.) -- C:\Program Files\Ask.com\Updater\Updater.exe 
O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe 
O4 - HKCU\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe 
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe 
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe 
O4 - HKCU\..\Run: [Driver Pro] . (.PC Utilities Pro - Driver Pro - Update your drivers now!.) -- C:\Program Files\Driver Pro\DPLauncher.exe 
O4 - HKCU\..\Run: [Browser Infrastructure Helper] . (.Smartbar - Smartbar.) -- C:\Documents and Settings\Richard\Local Settings\Application Data\Smartbar\Application\Smartbar.exe 
O4 - HKCU\..\Run: [Hoolapp Android] . (...) -- C:\Documents and Settings\Richard\Application Data\HoolappForAndroid\Hoolapp.exe 
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe 
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe 
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe 
O4 - HKUS\S-1-5-21-984214576-4009147149-1232128222-1005\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe 
O4 - HKUS\S-1-5-21-984214576-4009147149-1232128222-1005\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe 
O4 - HKUS\S-1-5-21-984214576-4009147149-1232128222-1005\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe 
O4 - HKUS\S-1-5-21-984214576-4009147149-1232128222-1005\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe 
O4 - HKUS\S-1-5-21-984214576-4009147149-1232128222-1005\..\Run: [Driver Pro] . (.PC Utilities Pro - Driver Pro - Update your drivers now!.) -- C:\Program Files\Driver Pro\DPLauncher.exe 
O4 - HKUS\S-1-5-21-984214576-4009147149-1232128222-1005\..\Run: [Browser Infrastructure Helper] . (.Smartbar - Smartbar.) -- C:\Documents and Settings\Richard\Local Settings\Application Data\Smartbar\Application\Smartbar.exe 
O4 - HKUS\S-1-5-21-984214576-4009147149-1232128222-1005\..\Run: [Hoolapp Android] . (...) -- C:\Documents and Settings\Richard\Application Data\HoolappForAndroid\Hoolapp.exe 
~ Scan Application in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader 7.0.lnk . (...)  -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A70500000002}\SC_Reader_PM.ico 
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Lanceur de tâches Microsoft Works.lnk . (.Microsoft® Corporation.)  -- C:\Program Files\Microsoft Works\MSWorks.exe 
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Media Center.lnk . (.Microsoft Corporation.)  -- C:\WINDOWS\ehome\ehshell.exe 
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Office PowerPoint Viewer 2003.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Microsoft Office\PowerPoint Viewer\PPTVIEW.EXE 
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\QuickPlay.lnk . (.CyberLink Corp..)  -- C:\Program Files\HP\QuickPlay\QP.exe 
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Media Connect.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Windows Media Connect 2\WMCCFG.exe 
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Messenger.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Messenger\msmsgs.exe 
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Movie Maker\moviemk.exe 
O4 - Global Startup: C:\Documents And Settings\Richard\Menu Démarrer\Programmes\Assistance à distance.lnk . (...)  -- C:\WINDOWS\system32\rcimlby.exe -LaunchRA (.not file.)
O4 - Global Startup: C:\Documents And Settings\Richard\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Internet Explorer\iexplore.exe 
O4 - Global Startup: C:\Documents And Settings\Richard\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Outlook Express\msimn.exe 
O4 - Global Startup: C:\Documents And Settings\Richard\Menu Démarrer\Programmes\Windows Media Player.lnk . (...)  -- C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 (.not file.)
O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\Assistance à distance.lnk . (...)  -- C:\WINDOWS\system32\rcimlby.exe -LaunchRA (.not file.)
O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Internet Explorer\IEXPLORE.EXE 
O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Outlook Express\msimn.exe 
~ Scan Global Startup in 00mn 01s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -- Clé orpheline
O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} . (...) -- C:\Program Files\WIDCOMM\Logiciel Bluetooth\bt_hot_icon.ico
O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} -- Clé orpheline
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
~ Scan IE Extra Buttons in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
~ Scan Winsock in 00mn 00s



---\\ Piratage de l'Option 'Rétablir les paramètres Web' (O14)
O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL=http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=FR_FR&c=64&bd=pavilion&pf=laptop
~ Scan IE Paramètres WEB in 00mn 00s



---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} ((no name)) - http://gfx2.hotmail.com/mail/w3/resources/MSNPUpld.cab
O16 - DPF: {5D80A6D1-B500-47DA-82B8-EB9875F85B4D} ((no name)) - http://dl.google.com/dl/desktop/nv/GoogleGadgetPluginIEWin.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} ((no name)) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1361632816625
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} ((no name)) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
~ Scan Objets ActiveX in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{2BA6205E-A292-42AF-9DCF-F972A8CA86E2}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{2BA6205E-A292-42AF-9DCF-F972A8CA86E2}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS3\Services\Tcpip\..\{2BA6205E-A292-42AF-9DCF-F972A8CA86E2}: DhcpNameServer = 192.168.0.254
~ Scan Domain in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll
O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
~ Scan Protocole Additionnel in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\WINDOWS\system32\cscdll.dll
O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\system32\dimsntfy.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\WINDOWS\system32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
~ Scan Winlogon in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.Discordia, LTD - Data Manager.) - C:\Program Files\wi9130~1\datamngr\datamngr.dll
~ Scan AppInit DLL in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll
O21 - SSODL: UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} . (.Microsoft Corporation - Moniteur et dossier UPNP Tray.) -- C:\WINDOWS\system32\upnpui.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll
~ Scan SSODL in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Bluetooth Service (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
O23 - Service: DefaultTabUpdate (DefaultTabUpdate) . (...) - C:\Documents and Settings\Richard\Application Data\DefaultTab\DefaultTab\DTUpdate.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) . (.F-Secure Corporation - F-Secure Anti-Virus Scanning Service.) - C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
O23 - Service: FSMA (FSMA) . (.F-Secure Corporation - F-Secure Management Agent.) - C:\Program Files\AntivirusFirewall\Common\FSMA32.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: hpqwmiex (hpqwmiex) . (.Hewlett-Packard Development Company, L.P. - hpqwmiex Module.) - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extende (IJPLMSVC) . (.Pas de propriétaire - Inkjet Printer/Scanner/Fax Extended Survey.) - C:\Program Files\Canon\IJPLM\IJPLMSVC.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Oracle Corporation - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling  (LightScribeService) . (.Hewlett-Packard Company - Pas de description.) - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 86.02.) - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: {22D78859-9CE9-4b77-BF18-AC83E81A9263} ({22D78859-9CE9-4b77-BF18-AC83E81A9263}) . (.Cyberlink Corp. - FCL Driver.) - C:\Program Files\HP\QuickPlay\000.fcl
~ Scan Services in 00mn 30s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
O24 - Desktop General: BackupWallPaper - .(...) - C:\Documents and Settings\Richard\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop General: WallPaper - .(...) - C:\Documents and Settings\Richard\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
~ Scan Desktop Component in 00mn 00s



---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (sdnclean.exe) - File not found
~ Scan Keys in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\WINDOWS\Tasks\Connexion facile à Internet.job
O39 - APT:Automatic Planified Task  - C:\WINDOWS\Tasks\DealPlyUpdate.job
O39 - APT:Automatic Planified Task  - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task  - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task  - C:\WINDOWS\Tasks\Scheduled scanning task.job
O39 - APT:Automatic Planified Task  - C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job
O39 - APT:Automatic Planified Task  - C:\WINDOWS\Tasks\SoftwareUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task  - C:\WINDOWS\Tasks\SoftwareUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task  - C:\WINDOWS\Tasks\User_Feed_Synchronization-{6D26CF06-BED5-4BF1-A670-A446299C2D66}.job
[MD5.4ABDA5D1C401E28FA50B69E8870C6FDE] [APT] [Connexion facile … Internet] (.Hewlett-Packard.) -- C:\Program Files\Hewlett-Packard\SDP\HPSdpApp.exe
[MD5.00000000000000000000000000000000] [APT] [DealPlyUpdate] (...) -- C:\Program Files\DealPly\DealPlyUpdate.exe (.not file.)
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.25679C23DC638D0BF0C6C8796E0ABE61] [APT] [Scheduled scanning task] (...) -- C:\Program Files\ANTIVI~1\ANTI-V~1\fsav.exe
[MD5.0E4D145F0B0612957D0E4959B1CC88AD] [APT] [Scheduled Update for Ask Toolbar] (...) -- C:\Program Files\Ask.com\UpdateTask.exe
[MD5.00000000000000000000000000000000] [APT] [SoftwareUpdateTaskMachineCore] (...) -- C:\Program Files\Software\Update\SoftwareUpdate.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [SoftwareUpdateTaskMachineUA] (...) -- C:\Program Files\Software\Update\SoftwareUpdate.exe (.not file.)
~ Scan Scheduled Task in 00mn 01s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Mise à jour de la version d’Internet Explorer - <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} . (.Microsoft Corporation - IE Per User Active Setup Uninstall Utility.) -- C:\WINDOWS\system32\ieudinit.exe
O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Utilitaire d'installation du Lecteur Windows Media de Microsoft.) -- C:\WINDOWS\inf\unregmp2.exe
O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\WINDOWS\system32\ie4uinit.exe.mui
O40 - ASIC: Outlook Express - >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} . (.Microsoft Corporation - Windows NT User Data Migration Tool.) -- C:\WINDOWS\system32\shmgrate.exe
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.6.0_07\bin\regutils.dll
O40 - ASIC: Microsoft NetShow Player - {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\WINDOWS\system32\wmpdxm.dll
O40 - ASIC: Microsoft Windows Media Player 6.4 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\WINDOWS\system32\wmpdxm.dll
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\WINDOWS\system32\themeui.dll
O40 - ASIC: Microsoft Outlook Express 6 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Bibliothèque d'installation Outlook Express.) -- C:\Program Files\Outlook Express\setup50.exe
O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (...) -- C:\WINDOWS\INF\msnetmtg.inf
O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (...) -- C:\WINDOWS\INF\msmsgs.inf
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\WINDOWS\system32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (...) -- C:\WINDOWS\INF\wmp11.inf
O40 - ASIC: Carnet d'adresses 6 - {7790769C-0471-11d2-AF11-00C04FA35D02} . (.Microsoft Corporation - Bibliothèque d'installation Outlook Express.) -- C:\Program Files\Outlook Express\setup50.exe
O40 - ASIC: Mise à jour du Bureau Windows - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll
O40 - ASIC: Internet Explorer - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\WINDOWS\system32\ie4uinit.exe.mui
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\WINDOWS\system32\mscories.dll
O40 - ASIC: Google Chrome - {8A69D345-D564-463c-AFF1-A69D9E530F96} . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\24.0.1312.57\Installer\chrmstp.exe
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 11.1 r102.) -- C:\WINDOWS\system32\Macromed\Flash\Flash11e.ocx
O40 - ASIC: Installed Component - S-1-5-21-984214576-4009147149-1232128222-1005 - <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} -- Not Hexadécimal CLSID
~ Scan Active Setup in 00mn 00s



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver:  (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys
O41 - Driver:  (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\system32\DRIVERS\cdrom.sys
O41 - Driver: (eabfiltr) . (.Hewlett-Packard Development Company, L.P. - QLB PS/2 Keyboard filter driver.) - C:\WINDOWS\system32\DRIVERS\eabfiltr.sys
O41 - Driver:  (F-Secure HIPS) . (.F-Secure Corporation - HIPS 32-bit kernel module.) - C:\Program Files\AntivirusFirewall\HIPS\drivers\fshs.sys
O41 - Driver:  (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\WINDOWS\system32\DRIVERS\i8042prt.sys
O41 - Driver:  (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\WINDOWS\system32\DRIVERS\imapi.sys
O41 - Driver:  (intelppm) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\WINDOWS\system32\DRIVERS\intelppm.sys
O41 - Driver:  (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\WINDOWS\system32\DRIVERS\ipsec.sys
O41 - Driver:  (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\WINDOWS\system32\DRIVERS\kbdclass.sys
O41 - Driver:  (kbdhid) . (.Microsoft Corporation - Pilote de filtre souris HID.) - C:\WINDOWS\system32\DRIVERS\kbdhid.sys
O41 - Driver:  (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\WINDOWS\system32\DRIVERS\mouclass.sys
O41 - Driver:  (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
O41 - Driver:  (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\WINDOWS\system32\DRIVERS\netbios.sys
O41 - Driver:  (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\WINDOWS\system32\DRIVERS\netbt.sys
O41 - Driver:  (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\WINDOWS\system32\DRIVERS\rasacd.sys
O41 - Driver:  (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\WINDOWS\system32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
O41 - Driver:  (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\WINDOWS\system32\DRIVERS\redbook.sys
O41 - Driver:  (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\WINDOWS\system32\DRIVERS\tcpip.sys
O41 - Driver:  (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\WINDOWS\system32\DRIVERS\termdd.sys
O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
O41 - Driver:  (WmiAcpi) . (.Microsoft Corporation - Windows Management Interface for ACPI.) - C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
~ Scan Drivers in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: ABBYY FineReader 6.0 Sprint - (.ABBYY Software House.) [HKLM] -- {ACF60000-22B9-4CE9-98D6-2CCF359BAC07}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Reader 7.0.5 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A70500000002}
O42 - Logiciel: Amélioration de nos services - (.Hewlett-Packard.) [HKLM] -- InstallShield_{23012310-3E05-46A5-88A9-C6CBCABCAC79}
O42 - Logiciel: Anti-virus firewall - (.Pas de propriétaire.) [HKLM] -- F-Secure Product 440
O42 - Logiciel: Ask Toolbar - (.Ask.com.) [HKLM] -- {86D4B82A-ABED-442A-BE86-96357B70F4FE}
O42 - Logiciel: Ask Toolbar Updater - (.Ask.com.) [HKCU] -- {79A765E1-C399-405B-85AF-466F52E918B0}
O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM] -- {9BF8BEF9-4DC6-45FC-9AA5-4B1311392CAD}
O42 - Logiciel: CCScore - (.EASTMAN KODAK Company.) [HKLM] -- {B4B44FE7-41FF-4DAD-8C0A-E406DDA72992}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Canon Easy-PhotoPrint EX - (.Pas de propriétaire.) [HKLM] -- Easy-PhotoPrint EX
O42 - Logiciel: Canon Easy-WebPrint EX - (.Pas de propriétaire.) [HKLM] -- Easy-WebPrint EX
O42 - Logiciel: Canon IJ Network Scanner Selector EX - (.Pas de propriétaire.) [HKLM] -- Canon_IJ_Network_Scanner_Selector_EX
O42 - Logiciel: Canon IJ Network Tool - (.Pas de propriétaire.) [HKLM] -- Canon_IJ_Network_UTILITY
O42 - Logiciel: Canon Inkjet Printer/Scanner/Fax Extended Survey Program - (.Pas de propriétaire.) [HKLM] -- CANONIJPLM100
O42 - Logiciel: Canon MP Navigator EX 5.1 - (.Pas de propriétaire.) [HKLM] -- MP Navigator EX 5.1
O42 - Logiciel: Canon MX510 series MP Drivers - (.Pas de propriétaire.) [HKLM] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX510_series
O42 - Logiciel: Canon MX510 series On-screen Manual - (.Pas de propriétaire.) [HKLM] -- Canon MX510 series On-screen Manual
O42 - Logiciel: Canon My Printer - (.Pas de propriétaire.) [HKLM] -- CanonMyPrinter
O42 - Logiciel: Canon Solution Menu EX - (.Pas de propriétaire.) [HKLM] -- CanonSolutionMenuEX
O42 - Logiciel: Canon Utilitaire de numérotation rapide - (.Pas de propriétaire.) [HKLM] -- Speed Dial Utility
O42 - Logiciel: Conexant HD Audio - (.Pas de propriétaire.) [HKLM] -- CNXT_HDAUDIO
O42 - Logiciel: Connexion Facile à Internet - (.Hewlett-Packard.) [HKLM] -- InstallShield_{8105684D-8CA6-440D-8F58-7E5FD67A499D}
O42 - Logiciel: DefaultTab - (.Search Results, LLC.) [HKLM] -- DefaultTab
O42 - Logiciel: Delta Chrome Toolbar - (.DeltaInstaller.) [HKLM] -- {177586E7-E42E-4F38-83D1-D15B4AF5B714}
O42 - Logiciel: Delta toolbar   - (.Delta.) [HKLM] -- delta
O42 - Logiciel: Driver Pro v3.0 - (.PC Utilities Pro.) [HKLM] -- Driver Pro_is1
O42 - Logiciel: EPSON Copy Utility 3 - (.Pas de propriétaire.) [HKLM] -- {67EDD823-135A-4D59-87BD-950616D6E857}
O42 - Logiciel: EPSON Easy Photo Print - (.Pas de propriétaire.) [HKLM] -- {BC69DDB8-4840-4D9B-BB31-0D4DB2BA1312}
O42 - Logiciel: EPSON File Manager - (.Pas de propriétaire.) [HKLM] -- {E86BC406-944E-41F6-ADE6-2C136734C96B}
O42 - Logiciel: EPSON Scan - (.Pas de propriétaire.) [HKLM] -- EPSON Scanner
O42 - Logiciel: EPSON Scan Assistant - (.Pas de propriétaire.) [HKLM] -- {2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}
O42 - Logiciel: EPSON Web-To-Page - (.Pas de propriétaire.) [HKLM] -- {7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}
O42 - Logiciel: ESDX5000_CX4900 Guide d’utilisation - (.Pas de propriétaire.) [HKLM] -- ESDX5000_CX4900 Guide d’utilisation
O42 - Logiciel: ESSBrwr - (.EASTMAN KODAK Company.) [HKLM] -- {643EAE81-920C-4931-9F0B-4B343B225CA6}
O42 - Logiciel: ESSCDBK - (.EASTMAN KODAK Company.) [HKLM] -- {AE1FA02D-E6A4-4EA0-8E58-6483CAC016DD}
O42 - Logiciel: ESSPCD - (.EASTMAN KODAK Company.) [HKLM] -- {14D4ED84-6A9A-45A0-96F6-1753768C3CB5}
O42 - Logiciel: ESSPDock - (.Nom de votre société.) [HKLM] -- {FCDB1C92-03C6-4C76-8625-371224256091}
O42 - Logiciel: ESSSONIC - (.EASTMAN KODAK Company.) [HKLM] -- {073F22CE-9A5B-4A40-A604-C7270AC6BF34}
O42 - Logiciel: ESSTOOLS - (.EASTMAN KODAK Company.) [HKLM] -- {8A502E38-29C9-49FA-BCFA-D727CA062589}
O42 - Logiciel: ESScore - (.Nom de votre société.) [HKLM] -- {42938595-0D83-404D-9F73-F8177FDD531A}
O42 - Logiciel: ESSgui - (.EASTMAN KODAK Company.) [HKLM] -- {91517631-A9F3-4B7C-B482-43E0068FD55A}
O42 - Logiciel: ESSini - (.Nom de votre société.) [HKLM] -- {8E92D746-CD9F-4B90-9668-42B74C14F765}
O42 - Logiciel: Enregistrement utilisateur de Canon MX510 series - (.Pas de propriétaire.) [HKLM] -- Enregistrement utilisateur de Canon MX510 series
O42 - Logiciel: F-Secure PSC Prerequisites - (.F-Secure Corporation.) [HKLM] -- {B3F1E526-180B-4480-9FEC-3E2DCB8EA9CE}
O42 - Logiciel: GemMaster Mystic - (.Pas de propriétaire.) [HKLM] -- 99A88D57-2C93-491B-87B8-E41A870FB6BE
O42 - Logiciel: Giant Savings Extension - (.215 Apps.) [HKLM] -- Giant Savings Extension
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HP Help and Support - (.HPQ.) [HKLM] -- {A93C4E94-1005-489D-BEAA-B873C1AA6CFC}
O42 - Logiciel: HP Imaging Device Functions 6.0 - (.HP.) [HKLM] -- HP Imaging Device Functions
O42 - Logiciel: HP Integrated Module with Bluetooth wireless technology - (.HP.) [HKLM] -- {3F4EC965-28EF-45C3-B063-04B25D4E9679}
O42 - Logiciel: HP Photosmart Premier Software 6.0 - (.HP.) [HKLM] -- HP Photo & Imaging
O42 - Logiciel: HP Quick Launch Buttons 6.10 A2 - (.Hewlett-Packard Company.) [HKLM] -- {34D2AB40-150D-475D-AE32-BD23FB5EE355}
O42 - Logiciel: HP QuickPlay 2.3 - (.Pas de propriétaire.) [HKLM] -- {45D707E9-F3C4-11D9-A373-0050BAE317E1}
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {FE57DE70-95DE-4B64-9266-84DA811053DB}
O42 - Logiciel: HP User Guides 0036 - (.Hewlett-Packard.) [HKLM] -- {C4180B60-0239-48DE-89EF-2CE4C3650A71}
O42 - Logiciel: HP Wireless Assistant 2.00 G2 - (.Hewlett-Packard Company.) [HKLM] -- {4302B2DD-D958-40E3-BAF3-B07FFE1978CE}
O42 - Logiciel: Hoolapp For Android - (.Pas de propriétaire.) [HKCU] -- Hoolapp For Android
O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399
O42 - Logiciel: Hotfix for Windows Media Player 10 (KB903157) - (.Microsoft Corporation.) [HKLM] -- KB903157
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5
O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5
O42 - Logiciel: Intel(R) PRO Network Connections Drivers - (.Pas de propriétaire.) [HKLM] -- PROSet
O42 - Logiciel: Internet Turbo - (.ReSoft Ltd..) [HKLM] -- {40C04E79-97F7-497E-B5AF-8D98CFEC6408}
O42 - Logiciel: Internet Turbo Engine - (.ReSoft Ltd..) [HKCU] -- {0c737b6d-523f-408d-aa6f-74c750ed26b6}
O42 - Logiciel: J2SE Runtime Environment 5.0 Update 6 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0150060}
O42 - Logiciel: Java 7 Update 15 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217015FF}
O42 - Logiciel: Java(TM) 6 Update 3 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160030}
O42 - Logiciel: Java(TM) 6 Update 5 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160050}
O42 - Logiciel: Java(TM) 6 Update 7 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160070}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {8E5233E1-7495-44FB-8DEB-4BE906D59619}
O42 - Logiciel: La France à la loupe - (.BSD Concept.) [HKLM] -- {E3F2269F-EC1F-494D-B700-E543EB509EFC}
O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) [HKLM] -- Windows Media Player
O42 - Logiciel: Logiciel Kodak EasyShare - (.Eastman Kodak Company.) [HKLM] -- {D32470A1-B10C-4059-BA53-CF0486F68EBC}
O42 - Logiciel: MSN - (.Microsoft Corporation.) [HKLM] -- MSNINST
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 4.0 SP2 (KB927978) - (.Microsoft Corporation.) [HKLM] -- {37477865-A3F1-4772-AD43-AAFC6BCFF99F}
O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.) [HKLM] -- {C04E32E0-0416-434D-AFB9-6969D703A9EF}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Macromedia Flash Player 8 - (.Macromedia.) [HKLM] -- {6815FCDD-401D-481E-BA88-31B4754C2B46}
O42 - Logiciel: Macromedia Shockwave Player - (.Macromedia, Inc..) [HKLM] -- {838A1BC9-95CA-4880-9BE3-2A7D23600A2B}
O42 - Logiciel: Malwarebytes Anti-Malware version 1.70.0.1100 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Messenger Packages - (.Pas de propriétaire.) [HKCU] -- Messenger Packages
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1
O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.) [HKLM] -- IDNMitigationAPIs
O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.) [HKLM] -- NLSDownlevelMapping
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5}
O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {A059DE09-1B49-4450-B340-7AE097EC3F04}
O42 - Logiciel: Mozilla Firefox 4.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 4.0.1 (x86 fr)
O42 - Logiciel: NVIDIA Drivers - (.Pas de propriétaire.) [HKLM] -- NVIDIA Drivers
O42 - Logiciel: NetWaiting - (.BVRP Software, Inc.) [HKLM] -- {3F92ABBB-6BBF-11D5-B229-002078017FBF}
O42 - Logiciel: OfotoXMI - (.EASTMAN KODAK Company.) [HKLM] -- {B162D0A6-9A1D-4B7C-91A5-88FB48113C45}
O42 - Logiciel: Orange   - (.France Telecom SCR.) [HKLM] -- {80CA15EA-C0A5-7CAF-B9E9-B8B2A87EFE11}
O42 - Logiciel: Orange Les offres Internet - (.France Telecom SCR.) [HKLM] -- {90CA15EA-C0A5-7CAF-B9E9-B8B2A87EFE11}
O42 - Logiciel: Otto - (.Pas de propriétaire.) [HKLM] -- 0D20D36D-A11C-444c-9AF7-70CBFED42ECF
O42 - Logiciel: Outil de notification de cadeaux MSN - (.Microsoft Corporation.) [HKCU] -- {CAD9C0EB-457D-49BB-A6AD-389304C38B2A}
O42 - Logiciel: PIF DESIGNER - (.Pas de propriétaire.) [HKLM] -- {B90450DF-E781-46FD-B1F1-0C86DA40E443}
O42 - Logiciel: PaperPort Image Printer - (.Nuance Communications, Inc..) [HKLM] -- {2BC2781A-F7F6-452E-95EB-018A522F1B2C}
O42 - Logiciel: QuickTime - (.Apple Computer, Inc..) [HKLM] -- {F07B861C-72B9-40A4-8B1A-AAED4C06A7E8}
O42 - Logiciel: SFR - (.Eastman Kodak Company.) [HKLM] -- {DB02F716-6275-42E9-B8D2-83BA2BF5100B}
O42 - Logiciel: SHASTA - (.EASTMAN KODAK Company.) [HKLM] -- {605A4E39-613C-4A12-B56F-DEFBE6757237}
O42 - Logiciel: SKINXSDK - (.EASTMAN KODAK Company.) [HKLM] -- {F4A2E7CC-60CA-4AFA-B67F-AD5E58173C3F}
O42 - Logiciel: ScanSoft PaperPort 11 - (.Nuance Communications, Inc..) [HKLM] -- {02570AE0-BEE0-4A6C-BE3F-D806E9F2EA17}
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
O42 - Logiciel: Skype™ 6.1 - (.Skype Technologies S.A..) [HKLM] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: Soft Data Fax Modem with SmartCP - (.Pas de propriétaire.) [HKLM] -- CNXT_MODEM_PCI_VEN_14F1&DEV_5045_at8ven5m
O42 - Logiciel: Sonic Audio Module - (.Sonic Solutions.) [HKLM] -- {AB708C9B-97C8-4AC9-899B-DBF226AC9382}
O42 - Logiciel: Sonic Copy Module - (.Sonic Solutions.) [HKLM] -- {B12665F4-4E93-4AB4-B7FC-37053B524629}
O42 - Logiciel: Sonic Data Module - (.Sonic Solutions.) [HKLM] -- {075473F5-846A-448B-BCB3-104AA1760205}
O42 - Logiciel: Sonic Express Labeler - (.Sonic Solutions.) [HKLM] -- {6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
O42 - Logiciel: Sonic MyDVD Plus - (.Sonic Solutions.) [HKLM] -- {21657574-BD54-48A2-9450-EB03B2C7FC29}
O42 - Logiciel: Sonic Update Manager - (.Sonic Solutions.) [HKLM] -- {30465B6C-B53F-49A1-9EBA-A3F187AD502E}
O42 - Logiciel: SonicAC3Encoder - (.Sonic Solutions.) [HKLM] -- {52FBAE98-D389-4281-8C14-21B4046CCB4E}
O42 - Logiciel: SonicMPEGEncoder - (.Sonic Solutions.) [HKLM] -- {B16AF568-A644-483C-A6DA-5028CD019C8C}
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics.) [HKLM] -- SynTPDeinstKey
O42 - Logiciel: TomTom HOME Visual Studio Merge Modules - (.TomTom International B.V..) [HKLM] -- {8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}
O42 - Logiciel: VPRINTOL - (.EASTMAN KODAK Company.) [HKLM] -- {999D43F4-9709-4887-9B1A-83EBB15A8370}
O42 - Logiciel: WIRELESS - (.EASTMAN KODAK Company.) [HKLM] -- {F9593CFB-D836-49BC-BFF1-0E669A411D9F}
O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.) [HKLM] -- KB892130
O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.) [HKLM] -- WGA
O42 - Logiciel: Windows Internet Explorer 7 - (.Microsoft Corporation.) [HKLM] -- ie7
O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8
O42 - Logiciel: Windows Media Connect - (.Microsoft Corporation.) [HKLM] -- WMCSetup
O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- WMFDist11
O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime
O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.) [HKLM] -- wmp11
O42 - Logiciel: Windows Searchqu Toolbar - (.Bandoo Media Inc.) [HKLM] -- Searchqu 101 MediaBar
O42 - Logiciel: Windows XP Media Center Edition 2005 KB2502898 - (.Microsoft Corporation.) [HKLM] -- KB2502898
O42 - Logiciel: Windows XP Media Center Edition 2005 KB2619340 - (.Microsoft Corporation.) [HKLM] -- KB2619340
O42 - Logiciel: Windows XP Media Center Edition 2005 KB2628259 - (.Microsoft Corporation.) [HKLM] -- KB2628259
O42 - Logiciel: Windows XP Media Center Edition 2005 KB925766 - (.Microsoft Corporation.) [HKLM] -- KB925766
O42 - Logiciel: Windows XP Media Center Edition 2005 KB973768 - (.Microsoft Corporation.) [HKLM] -- KB973768
O42 - Logiciel: Windows XP Service Pack 3 - (.Microsoft Corporation.) [HKLM] -- Windows XP Service
O42 - Logiciel: Yontoo 1.12.02 - (.Yontoo LLC.) [HKLM] -- {889DF117-14D1-44EE-9F31-C5FB5D47F68B}
O42 - Logiciel: essvatgt - (.EASTMAN KODAK Company.) [HKLM] -- {2D03B6F8-DF36-4980-B7B6-5B93D5BA3A8F}
O42 - Logiciel: fflink - (.EASTMAN KODAK Company.) [HKLM] -- {608D2A3C-6889-4C11-9B54-A42F45ACBFDB}
O42 - Logiciel: kgcbaby - (.EASTMAN KODAK Company.) [HKLM] -- {E18B549C-5D15-45DA-8D8F-8FD2BD946344}
O42 - Logiciel: kgcbase - (.EASTMAN KODAK Company.) [HKLM] -- {F22C222C-3CE2-4A4B-A83F-AF4681371ABE}
O42 - Logiciel: kgchday - (.EASTMAN KODAK Company.) [HKLM] -- {11F3F858-4131-4FFA-A560-3FE282933B6E}
O42 - Logiciel: kgchlwn - (.EASTMAN KODAK Company.) [HKLM] -- {03EDED24-8375-407D-A721-4643D9768BE1}
O42 - Logiciel: kgcinvt - (.EASTMAN KODAK Company.) [HKLM] -- {9BD54685-1496-46A5-AB62-357CD140ED8B}
O42 - Logiciel: kgckids - (.EASTMAN KODAK Company.) [HKLM] -- {693C08A7-9E76-43FF-B11E-9A58175474C4}
O42 - Logiciel: kgcmove - (.EASTMAN KODAK Company.) [HKLM] -- {A1588373-1D86-4D44-86C9-78ABD190F9CC}
O42 - Logiciel: kgcvday - (.EASTMAN KODAK Company.) [HKLM] -- {8A8664E1-84C8-4936-891C-BC1F07797549}
O42 - Logiciel: netbrdg - (.EASTMAN KODAK Company.) [HKLM] -- {4537EA4B-F603-4181-89FB-2953FC695AB1}
O42 - Logiciel: skin0001 - (.EASTMAN KODAK Company.) [HKLM] -- {5316DFC9-CE99-4458-9AB3-E8726EDE0210}
O42 - Logiciel: staticcr - (.EASTMAN KODAK Company.) [HKLM] -- {8943CE61-53BD-475E-90E1-A580869E98A2}
O42 - Logiciel: tooltips - (.EASTMAN KODAK Company.) [HKLM] -- {E79987F0-0E34-42CC-B8FF-6C860AEEB26A}

---\\ HKCU & HKLM Software Keys
[HKCU\Software\ABBYY]
[HKCU\Software\APN]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\DefaultTab]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Ask.com]
[HKCU\Software\AskToolbar]
[HKCU\Software\BackWeb]
[HKCU\Software\Brother]
[HKCU\Software\Bsd Concept]
[HKCU\Software\Canon]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Cr_Installer]
[HKCU\Software\Crossrider]
[HKCU\Software\Cyberlink]
[HKCU\Software\DataMngr]
[HKCU\Software\DataMngr_Toolbar]
[HKCU\Software\DealPly]
[HKCU\Software\Default Tab]
[HKCU\Software\DefaultTab]
[HKCU\Software\Delta]
[HKCU\Software\DivXNetworks]
[HKCU\Software\Driver Pro]
[HKCU\Software\EPSON]
[HKCU\Software\F-Secure]
[HKCU\Software\Giant Savings Extension]
[HKCU\Software\Google]
[HKCU\Software\HPQ]
[HKCU\Software\HP]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\HookNetwork]
[HKCU\Software\Hoolapp]
[HKCU\Software\IM Providers]
[HKCU\Software\IncrediMail]
[HKCU\Software\InstallCore]
[HKCU\Software\InstallShield]
[HKCU\Software\InstalledBrowserExtensions]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Kodak]
[HKCU\Software\Lake]
[HKCU\Software\Leadertech]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Netscape]
[HKCU\Software\Nuance]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\SEIKO EPSON]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\ScanSoft]
[HKCU\Software\Skype]
[HKCU\Software\SmartbarBackup]
[HKCU\Software\SmartbarLog]
[HKCU\Software\Smartbar]
[HKCU\Software\Softthinks]
[HKCU\Software\Sonic]
[HKCU\Software\Synaptics]
[HKCU\Software\TomTom]
[HKCU\Software\Trolltech]
[HKCU\Software\Visioneer]
[HKCU\Software\Widcomm]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\Wow6432Node]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\lollipop]
[HKCU\Software\nuevos-programas.com]
[HKCU\Software\searchqutoolbar]
[HKLM\Software\ABBYY]
[HKLM\Software\APN]
[HKLM\Software\Adobe]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\AskToolbar]
[HKLM\Software\BVRP Software, Inc]
[HKLM\Software\Babylon]
[HKLM\Software\BackWeb]
[HKLM\Software\Bandoo]
[HKLM\Software\Brother]
[HKLM\Software\BrowserChoice]
[HKLM\Software\C07ft5Y]
[HKLM\Software\CXT]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Conexant]
[HKLM\Software\CyberLink]
[HKLM\Software\Data Fellows]
[HKLM\Software\DataMngr]
[HKLM\Software\DealPly]
[HKLM\Software\Debug]
[HKLM\Software\Default Tab]
[HKLM\Software\Delta]
[HKLM\Software\EPSON]
[HKLM\Software\FRANCE TELECOM]
[HKLM\Software\Gemplus]
[HKLM\Software\Google]
[HKLM\Software\HPQ]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IM Providers]
[HKLM\Software\Iminent]
[HKLM\Software\InstallShield]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Kodak]
[HKLM\Software\LEAD Technologies, Inc.]
[HKLM\Software\Lake]
[HKLM\Software\Licenses]
[HKLM\Software\LightScribe]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MicroVision]
[HKLM\Software\Microgistix]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nuance]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Program Groups]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\ScanSoft]
[HKLM\Software\Schlumberger]
[HKLM\Software\SearchquMediabarTb]
[HKLM\Software\Secure]
[HKLM\Software\Skype]
[HKLM\Software\SoftThinks]
[HKLM\Software\Software]
[HKLM\Software\Sonic]
[HKLM\Software\Symantec]
[HKLM\Software\Synaptics]
[HKLM\Software\Tarma Installer]
[HKLM\Software\Thomson]
[HKLM\Software\TomTom]
[HKLM\Software\Trolltech]
[HKLM\Software\UIU]
[HKLM\Software\Uniblue]
[HKLM\Software\Visioneer]
[HKLM\Software\Widcomm]
[HKLM\Software\Windows 3.1 Migration Status]
[HKLM\Software\Windows]
[HKLM\Software\Wow6432Node]
[HKLM\Software\Yuan High-Tech]
[HKLM\Software\ZEON]
[HKLM\Software\environment]
[HKLM\Software\mozilla.org]
~ Scan Softwares in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 20/04/2009 - 09:07:02 - [118,722] ----D C:\Program Files\ABBYY FineReader 6.0 Sprint
O43 - CFD: 13/09/2006 - 20:48:29 - [111,634] ----D C:\Program Files\Adobe
O43 - CFD: 12/09/2011 - 10:14:44 - [1087,330] ----D C:\Program Files\AntivirusFirewall
O43 - CFD: 23/02/2013 - 19:54:15 - [3,514] ----D C:\Program Files\Ask.com
O43 - CFD: 06/09/2012 - 17:38:44 - [2,140] ----D C:\Program Files\Bandoo
O43 - CFD: 23/02/2013 - 19:54:21 - [0] ----D C:\Program Files\Boxore
O43 - CFD: 06/09/2012 - 17:41:06 - [0,839] ----D C:\Program Files\Brother
O43 - CFD: 06/09/2012 - 18:26:08 - [416,414] ----D C:\Program Files\Canon
O43 - CFD: 06/09/2012 - 18:13:47 - [14,954] --H-D C:\Program Files\CanonBJ
O43 - CFD: 23/02/2013 - 19:54:00 - [5,070] ----D C:\Program Files\CCleaner
O43 - CFD: 14/09/2006 - 04:14:27 - [0] ----D C:\Program Files\ComPlus Applications
O43 - CFD: 13/09/2006 - 20:54:49 - [1,231] ----D C:\Program Files\CONEXANT
O43 - CFD: 03/02/2013 - 14:15:23 - [2,767] ----D C:\Program Files\Delta
O43 - CFD: 03/02/2013 - 15:56:45 - [19,444] ----D C:\Program Files\Driver Pro
O43 - CFD: 09/11/2012 - 14:57:53 - [133,450] ----D C:\Program Files\epson
O43 - CFD: 02/02/2013 - 14:45:53 - [233,679] ----D C:\Program Files\Fichiers communs
O43 - CFD: 19/11/2010 - 11:59:32 - [12,766] ----D C:\Program Files\FrenchOtto
O43 - CFD: 19/11/2010 - 11:59:29 - [4,915] ----D C:\Program Files\GemMasterFrench
O43 - CFD: 04/02/2013 - 16:46:01 - [5,742] ----D C:\Program Files\Giant Savings Extension
O43 - CFD: 19/11/2012 - 12:17:23 - [269,371] ----D C:\Program Files\Google
O43 - CFD: 26/05/2011 - 14:12:49 - [65,618] ----D C:\Program Files\Hewlett-Packard
O43 - CFD: 13/09/2006 - 20:52:20 - [208,530] ----D C:\Program Files\HP
O43 - CFD: 15/01/2007 - 20:17:10 - [2,088] ----D C:\Program Files\HPQ
O43 - CFD: 04/02/2013 - 16:15:38 - [50,832] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 23/02/2013 - 19:53:30 - [5,306] ----D C:\Program Files\Internet Explorer
O43 - CFD: 29/01/2007 - 14:55:48 - [0] ----D C:\Program Files\Inventel
O43 - CFD: 23/02/2013 - 19:54:06 - [402,727] ----D C:\Program Files\Java
O43 - CFD: 14/04/2008 - 14:48:28 - [87,548] ----D C:\Program Files\Kodak
O43 - CFD: 17/10/2007 - 12:42:29 - [17,101] ----D C:\Program Files\La France à la loupe
O43 - CFD: 23/02/2013 - 19:54:17 - [12,157] ----D C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 19/11/2010 - 11:59:32 - [2,058] ----D C:\Program Files\Messenger
O43 - CFD: 06/09/2012 - 17:40:15 - [0,304] ----D C:\Program Files\Microsoft
O43 - CFD: 21/04/2008 - 09:46:15 - [0,764] ----D C:\Program Files\Microsoft CAPICOM 2.1.0.2
O43 - CFD: 14/09/2006 - 04:14:29 - [0] ----D C:\Program Files\microsoft frontpage
O43 - CFD: 13/09/2006 - 20:45:24 - [4,052] ----D C:\Program Files\Microsoft Office
O43 - CFD: 29/05/2012 - 09:37:16 - [36,641] ----D C:\Program Files\Microsoft Silverlight
O43 - CFD: 11/06/2009 - 11:51:33 - [1,745] ----D C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 11/06/2009 - 11:52:31 - [2,087] ----D C:\Program Files\Microsoft Sync Framework
O43 - CFD: 19/11/2010 - 11:59:33 - [142,733] ----D C:\Program Files\Microsoft Works
O43 - CFD: 12/08/2010 - 14:37:33 - [10,442] ----D C:\Program Files\Movie Maker
O43 - CFD: 04/02/2013 - 16:45:19 - [31,874] ----D C:\Program Files\Mozilla Firefox
O43 - CFD: 23/08/2009 - 14:51:26 - [0,025] ----D C:\Program Files\MSBuild
O43 - CFD: 05/02/2007 - 15:55:01 - [21,082] ----D C:\Program Files\MSN
O43 - CFD: 14/09/2006 - 04:14:29 - [8,341] ----D C:\Program Files\MSN Gaming Zone
O43 - CFD: 05/02/2007 - 18:43:18 - [0] ----D C:\Program Files\MSXML 4.0
O43 - CFD: 13/10/2008 - 14:40:25 - [3,133] ----D C:\Program Files\NetMeeting
O43 - CFD: 19/11/2010 - 11:59:34 - [4,608] ----D C:\Program Files\NetWaiting
O43 - CFD: 05/07/2012 - 12:59:18 - [0,512] ----D C:\Program Files\Nuance
O43 - CFD: 14/09/2006 - 04:14:29 - [0,002] ----D C:\Program Files\Online Services
O43 - CFD: 19/03/2007 - 09:56:25 - [6,642] ----D C:\Program Files\Orange
O43 - CFD: 22/12/2010 - 11:27:12 - [4,176] ----D C:\Program Files\Outlook Express
O43 - CFD: 19/11/2010 - 11:59:40 - [69,051] ----D C:\Program Files\QuickTime
O43 - CFD: 23/08/2009 - 14:51:15 - [34,730] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 05/07/2012 - 12:57:37 - [136,388] ----D C:\Program Files\ScanSoft
O43 - CFD: 13/09/2006 - 20:54:20 - [78,323] ----D C:\Program Files\Services en ligne
O43 - CFD: 02/02/2013 - 14:45:53 - [18,093] R---D C:\Program Files\Skype
O43 - CFD: 03/02/2013 - 14:14:50 - [2,858] ----D C:\Program Files\Software
O43 - CFD: 14/09/2006 - 04:14:29 - [295,813] ----D C:\Program Files\Sonic
O43 - CFD: 23/02/2013 - 19:54:21 - [1,294] ----D C:\Program Files\Spybot - Search & Destroy 2
O43 - CFD: 13/09/2006 - 20:46:31 - [26,672] ----D C:\Program Files\Synaptics
O43 - CFD: 11/09/2007 - 13:08:10 - [0] ----D C:\Program Files\TomTom DesktopSuite
O43 - CFD: 12/09/2007 - 07:37:31 - [31,429] ----D C:\Program Files\TomTom HOME
O43 - CFD: 05/01/2010 - 10:36:43 - [0,021] ----D C:\Program Files\TomTom International B.V
O43 - CFD: 14/09/2006 - 04:14:29 - [0] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 15/01/2007 - 20:32:32 - [13,561] ----D C:\Program Files\WIDCOMM
O43 - CFD: 02/02/2013 - 14:46:35 - [91,899] ----D C:\Program Files\Windows Live
O43 - CFD: 11/06/2009 - 11:49:39 - [0,234] ----D C:\Program Files\Windows Live SkyDrive
O43 - CFD: 19/11/2010 - 11:59:41 - [3,420] ----D C:\Program Files\Windows Media Connect 2
O43 - CFD: 29/10/2007 - 11:59:22 - [10,227] ----D C:\Program Files\Windows Media Player
O43 - CFD: 13/10/2008 - 14:40:21 - [3,760] ----D C:\Program Files\Windows NT
O43 - CFD: 14/09/2006 - 04:14:29 - [39,153] ----D C:\Program Files\Windows Plus
O43 - CFD: 30/05/2011 - 09:21:47 - [6,528] ----D C:\Program Files\Windows Searchqu Toolbar
O43 - CFD: 14/09/2006 - 04:14:30 - [0] --H-D C:\Program Files\WindowsUpdate
O43 - CFD: 14/09/2006 - 04:14:30 - [0] ----D C:\Program Files\xerox
O43 - CFD: 23/02/2013 - 20:20:22 - [15,564] ----D C:\Program Files\ZHPDiag
O43 - CFD: 13/09/2006 - 20:48:59 - [0,282] ----D C:\Program Files\Fichiers communs\Adobe
O43 - CFD: 06/09/2012 - 18:20:12 - [0,001] ----D C:\Program Files\Fichiers communs\CANON
O43 - CFD: 14/09/2006 - 04:14:27 - [3,653] ----D C:\Program Files\Fichiers communs\HP
O43 - CFD: 13/09/2006 - 20:37:28 - [19,798] ----D C:\Program Files\Fichiers communs\InstallShield
O43 - CFD: 23/02/2013 - 19:54:14 - [68,882] ----D C:\Program Files\Fichiers communs\Java
O43 - CFD: 14/04/2008 - 14:47:49 - [0,652] ----D C:\Program Files\Fichiers communs\Kodak
O43 - CFD: 13/09/2006 - 21:05:11 - [6,689] ----D C:\Program Files\Fichiers communs\LightScribe
O43 - CFD: 06/07/2012 - 16:08:42 - [63,100] ----D C:\Program Files\Fichiers communs\Microsoft Shared
O43 - CFD: 14/09/2006 - 04:14:27 - [0,893] ----D C:\Program Files\Fichiers communs\MSSoap
O43 - CFD: 14/09/2006 - 04:14:27 - [0] ----D C:\Program Files\Fichiers communs\ODBC
O43 - CFD: 05/07/2012 - 12:57:58 - [3,552] ----D C:\Program Files\Fichiers communs\ScanSoft Shared
O43 - CFD: 14/09/2006 - 04:14:27 - [0,008] ----D C:\Program Files\Fichiers communs\Services
O43 - CFD: 02/02/2013 - 14:45:53 - [2,056] ----D C:\Program Files\Fichiers communs\Skype
O43 - CFD: 14/09/2006 - 04:14:27 - [15,776] ----D C:\Program Files\Fichiers communs\Sonic Shared
O43 - CFD: 14/09/2006 - 04:14:27 - [3,612] ----D C:\Program Files\Fichiers communs\SpeechEngines
O43 - CFD: 14/09/2006 - 04:14:27 - [0,453] ----D C:\Program Files\Fichiers communs\SureThing Shared
O43 - CFD: 29/01/2007 - 14:29:05 - [0,430] ----D C:\Program Files\Fichiers communs\Symantec Shared
O43 - CFD: 13/10/2008 - 14:40:18 - [6,496] ----D C:\Program Files\Fichiers communs\System
O43 - CFD: 14/09/2006 - 04:14:27 - [0,339] ----D C:\Program Files\Fichiers communs\TiVo Shared
O43 - CFD: 08/06/2009 - 11:53:12 - [0] ----D C:\Program Files\Fichiers communs\Windows Live
O43 - CFD: 14/04/2008 - 14:25:55 - [37,008] -SH-D C:\Program Files\Fichiers communs\WindowsLiveInstaller
O43 - CFD: 23/02/2013 - 19:54:05 - [170,265] R-H-D C:\Documents and Settings\All Users\Application Data
O43 - CFD: 23/02/2013 - 20:19:01 - [0,004] ----D C:\Documents and Settings\All Users\Bureau
O43 - CFD: 05/02/2013 - 16:05:02 - [0,190] R---D C:\Documents and Settings\All Users\Documents
O43 - CFD: 10/02/2013 - 16:48:29 - [4,379] -SH-D C:\Documents and Settings\All Users\DRM
O43 - CFD: 14/09/2006 - 04:14:27 - [0] ----D C:\Documents and Settings\All Users\Favoris
O43 - CFD: 13/10/2008 - 14:43:43 - [0,246] R---D C:\Documents and Settings\All Users\Menu Démarrer
O43 - CFD: 16/09/2007 - 07:23:35 - [0,147] --H-D C:\Documents and Settings\All Users\Modèles
O43 - CFD: 04/02/2013 - 17:06:52 - [1,063] ----D C:\Documents and Settings\Richard\Application Data\0A1Q1B1P1T1C1R1M1P1B
O43 - CFD: 04/02/2008 - 13:29:22 - [5,184] ----D C:\Documents and Settings\Richard\Application Data\Adobe
O43 - CFD: 11/07/2007 - 12:22:30 - [0] ----D C:\Documents and Settings\Richard\Application Data\AdobeUM
O43 - CFD: 21/04/2008 - 15:14:36 - [0] ----D C:\Documents and Settings\Richard\Application Data\Apple Computer
O43 - CFD: 02/08/2012 - 11:17:26 - [0] R---D C:\Documents and Settings\Richard\Application Data\Brother
O43 - CFD: 06/09/2012 - 18:28:12 - [0,040] ----D C:\Documents and Settings\Richard\Application Data\Canon
O43 - CFD: 06/09/2012 - 18:20:58 - [0] ----D C:\Documents and Settings\Richard\Application Data\Canon Easy-WebPrint EX
O43 - CFD: 15/01/2007 - 22:07:58 - [0] ----D C:\Documents and Settings\Richard\Application Data\CyberLink
O43 - CFD: 04/02/2013 - 16:45:29 - [0,087] ----D C:\Documents and Settings\Richard\Application Data\DealPly
O43 - CFD: 03/02/2013 - 14:15:13 - [1,876] ----D C:\Documents and Settings\Richard\Application Data\DefaultTab
O43 - CFD: 03/02/2013 - 14:21:07 - [0,276] ----D C:\Documents and Settings\Richard\Application Data\Delta
O43 - CFD: 03/02/2013 - 15:56:52 - [83,804] ----D C:\Documents and Settings\Richard\Application Data\Driver Pro
O43 - CFD: 11/09/2011 - 11:15:50 - [0,002] ----D C:\Documents and Settings\Richard\Application Data\EPSON
O43 - CFD: 29/01/2007 - 18:32:36 - [0,005] ----D C:\Documents and Settings\Richard\Application Data\F-Secure
O43 - CFD: 05/02/2007 - 16:56:17 - [0] ----D C:\Documents and Settings\Richard\Application Data\Google
O43 - CFD: 05/11/2009 - 15:45:34 - [0] ----D C:\Documents and Settings\Richard\Application Data\Help
O43 - CFD: 04/02/2013 - 16:45:08 - [1,250] ----D C:\Documents and Settings\Richard\Application Data\HoolappForAndroid
O43 - CFD: 15/01/2007 - 21:59:33 - [0,007] ----D C:\Documents and Settings\Richard\Application Data\HP
O43 - CFD: 14/09/2006 - 04:14:27 - [0] ----D C:\Documents and Settings\Richard\Application Data\Identities
O43 - CFD: 11/09/2007 - 12:48:44 - [0] ----D C:\Documents and Settings\Richard\Application Data\InstallShield
O43 - CFD: 29/01/2007 - 17:34:18 - [0,000] ----D C:\Documents and Settings\Richard\Application Data\ispnews
O43 - CFD: 13/04/2008 - 18:04:56 - [0,000] ----D C:\Documents and Settings\Richard\Application Data\Leadertech
O43 - CFD: 13/09/2006 - 20:46:12 - [0,184] ----D C:\Documents and Settings\Richard\Application Data\Macromedia
O43 - CFD: 23/02/2013 - 16:36:35 - [2,114] ----D C:\Documents and Settings\Richard\Application Data\Malwarebytes
O43 - CFD: 11/02/2013 - 16:51:08 - [5,519] -S--D C:\Documents and Settings\Richard\Application Data\Microsoft
O43 - CFD: 25/05/2011 - 09:36:26 - [22,390] ----D C:\Documents and Settings\Richard\Application Data\Mozilla
O43 - CFD: 12/02/2013 - 15:41:02 - [0,025] ----D C:\Documents and Settings\Richard\Application Data\MSNInstaller
O43 - CFD: 02/08/2012 - 17:59:40 - [0,005] ----D C:\Documents and Settings\Richard\Application Data\ScanSoft
O43 - CFD: 30/05/2011 - 09:30:21 - [0] ----D C:\Documents and Settings\Richard\Application Data\searchquband
O43 - CFD: 31/05/2011 - 11:14:02 - [2,623] ----D C:\Documents and Settings\Richard\Application Data\searchqutoolbar
O43 - CFD: 23/02/2013 - 19:50:46 - [3,968] ----D C:\Documents and Settings\Richard\Application Data\Skype
O43 - CFD: 13/04/2008 - 18:05:29 - [0] ----D C:\Documents and Settings\Richard\Application Data\Sonic
O43 - CFD: 22/05/2007 - 15:21:07 - [90,060] ----D C:\Documents and Settings\Richard\Application Data\Sun
O43 - CFD: 05/02/2007 - 14:53:34 - [0,008] ----D C:\Documents and Settings\Richard\Application Data\Template
O43 - CFD: 05/01/2010 - 10:36:51 - [0,355] ----D C:\Documents and Settings\Richard\Application Data\TomTom
O43 - CFD: 02/08/2012 - 17:59:58 - [0,002] ----D C:\Documents and Settings\Richard\Application Data\Zeon
O43 - CFD: 20/04/2009 - 09:08:14 - [0,030] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\ABBYY
O43 - CFD: 19/03/2007 - 15:14:30 - [0,019] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\Adobe
O43 - CFD: 22/02/2013 - 12:10:16 - [0,166] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\APN
O43 - CFD: 21/04/2008 - 15:12:46 - [0] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\Apple Computer
O43 - CFD: 23/02/2013 - 20:00:28 - [0,044] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\ApplicationHistory
O43 - CFD: 22/02/2013 - 12:10:26 - [0,434] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\AskToolbar
O43 - CFD: 13/09/2006 - 20:54:49 - [0,001] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\BVRP Software
O43 - CFD: 06/09/2012 - 18:32:49 - [0,031] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\Canon Easy-PhotoPrint EX
O43 - CFD: 01/06/2011 - 10:03:01 - [299,343] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\Google
O43 - CFD: 05/11/2009 - 15:45:34 - [0] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\Help
O43 - CFD: 13/09/2006 - 20:21:15 - [0,234] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\HP
O43 - CFD: 05/02/2007 - 17:05:42 - [44,523] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\Identities
O43 - CFD: 23/12/2009 - 09:24:50 - [10,718] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\IM
O43 - CFD: 13/09/2006 - 20:21:21 - [0,001] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\IsolatedStorage
O43 - CFD: 13/04/2008 - 17:30:03 - [0] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\KodakGallery
O43 - CFD: 06/09/2012 - 17:40:14 - [479,308] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\Microsoft
O43 - CFD: 25/05/2011 - 09:36:26 - [42,946] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\Mozilla
O43 - CFD: 09/09/2007 - 07:32:03 - [0,125] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\QuickPlay
O43 - CFD: 05/07/2012 - 13:15:13 - [0] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\Scansoft
O43 - CFD: 03/02/2013 - 15:57:52 - [17,475] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\Smartbar
O43 - CFD: 03/02/2013 - 14:14:50 - [0] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\Software
O43 - CFD: 23/02/2013 - 16:57:15 - [0,004] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\Sun
O43 - CFD: 03/02/2013 - 14:20:25 - [0] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\Temp
O43 - CFD: 05/01/2010 - 10:36:51 - [1,498] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\TomTom
O43 - CFD: 04/02/2013 - 16:45:49 - [0,197] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\Updater21810
O43 - CFD: 05/02/2011 - 16:30:42 - [0] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\WMTools Downloaded Files
O43 - CFD: 14/09/2006 - 04:14:27 - [11,617] ----D C:\Documents and Settings\Richard\Local Settings\Application Data\{3248F0A6-6813-11D6-A77B-00B0D0150060}
O43 - CFD: 05/02/2007 - 18:56:13 - [0,015] R---D C:\Documents and Settings\Richard\Menu Démarrer\Programmes\Accessoires
O43 - CFD: 03/08/2012 - 13:29:21 - [0,001] R---D C:\Documents and Settings\Richard\Menu Démarrer\Programmes\Démarrage
O43 - CFD: 04/02/2013 - 16:45:08 - [0,001] ----D C:\Documents and Settings\Richard\Menu Démarrer\Programmes\Hoolapp for Android
O43 - CFD: 17/10/2007 - 12:42:12 - [0,005] ----D C:\Documents and Settings\Richard\Menu Démarrer\Programmes\La France à la loupe
O43 - CFD: 13/09/2006 - 20:51:40 - [0,002] ----D C:\Documents and Settings\Richard\Menu Démarrer\Programmes\Services en ligne
~ Scan Program Folder in 00mn 59s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.B9A5A2436B93B41FD589FC4D499BDC94] - 23/02/2013 - 20:02:03 ---A- . (...) -- C:\logfile   [117706]
O44 - LFC:[MD5.4299244F244C99A52F6419300ECD8AB5] - 23/02/2013 - 19:59:56 ---A- . (...) -- C:\WINDOWS\ModemLog_HDAUDIO Soft Data Fax Modem with SmartCP.txt   [4522]
O44 - LFC:[MD5.1690E194A4663CAA917B72F9E32B0AE9] - 23/02/2013 - 19:59:28 -SHA- . (...) -- C:\hpqp.ini   [1443]
O44 - LFC:[MD5.15D7878344B9099226785D8A007880E0] - 23/02/2013 - 19:59:18 ---A- . (...) -- C:\XP_TV.ini   [44]
O44 - LFC:[MD5.6AB0FD4BEE15FA1C35F74DFAFC09A68A] - 23/02/2013 - 19:59:07 ---A- . (...) -- C:\WINDOWS\system32\nvapps.xml   [51048]
O44 - LFC:[MD5.AE45D4C96339202FBF404AFAC230FDE3] - 23/02/2013 - 19:57:08 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log   [1364021]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 23/02/2013 - 19:56:57 ---A- . (...) -- C:\WINDOWS\0.log   [0]
O44 - LFC:[MD5.DBB8A8530F0790271E5F5C50BD52D139] - 23/02/2013 - 19:55:52 ---A- . (...) -- C:\WINDOWS\wiadebug.log   [159]
O44 - LFC:[MD5.984A6C5E41B70EEE70566C84EF898066] - 23/02/2013 - 19:55:51 ---A- . (...) -- C:\WINDOWS\wiaservc.log   [50]
O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 23/02/2013 - 19:55:31 -S-A- . (...) -- C:\WINDOWS\bootstat.dat   [2048]
O44 - LFC:[MD5.174652D0EA59C29F21E5A3E88E452656] - 23/02/2013 - 19:49:35 ---A- . (...) -- C:\WINDOWS\SchedLgU.Txt   [13608]
O44 - LFC:[MD5.5EFA578F6A4435F792DFA6B129340FA3] - 23/02/2013 - 18:17:22 ---A- . (...) -- C:\WINDOWS\WININIT.INI   [251]
O44 - LFC:[MD5.629CABB0421668C9D3D402A3C3D77E14] - 23/02/2013 - 16:36:12 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\system32\Drivers\mbam.sys   [21104]
O44 - LFC:[MD5.7CFD0217E3585530555A0EE700457B6B] - 23/02/2013 - 16:24:00 ---A- . (...) -- C:\WINDOWS\system32\wpa.dbl   [1158]
O44 - LFC:[MD5.674F852FAE7E686F74EF11A4FE44ED21] - 22/02/2013 - 11:57:54 ---A- . (.Oracle Corporation - Pas de description.) -- C:\WINDOWS\system32\WindowsAccessBridge.dll   [94112]
O44 - LFC:[MD5.79AB1ADFDC951DD19A3234C469CFF2CD] - 22/02/2013 - 11:57:51 ---A- . (.Oracle Corporation - Java(TM) Control Panel.) -- C:\WINDOWS\system32\javacpl.cpl   [143872]
O44 - LFC:[MD5.441104963F07A84A64DE3C3244909388] - 22/02/2013 - 11:57:51 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\WINDOWS\system32\deployJava1.dll   [782240]
O44 - LFC:[MD5.D06B12E04934D268822F52C17EDDE7A8] - 22/02/2013 - 11:57:51 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\WINDOWS\system32\java.exe   [174496]
O44 - LFC:[MD5.959063AAAC7E288B1AF52F94D9C22188] - 22/02/2013 - 11:57:51 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\WINDOWS\system32\javaw.exe   [174496]
O44 - LFC:[MD5.0BB7DBD90C9124CF45299513FE16D082] - 22/02/2013 - 11:57:51 ---A- . (.Oracle Corporation - Java(TM) Web Start Launcher.) -- C:\WINDOWS\system32\javaws.exe   [262560]
O44 - LFC:[MD5.1B197A0ED28DB310AB67591567C3787A] - 22/02/2013 - 11:57:51 ---A- . (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(T.) -- C:\WINDOWS\system32\npdeployJava1.dll   [861088]
O44 - LFC:[MD5.7A28D193508CBEF9A8EAC4CD56496452] - 13/02/2013 - 18:43:44 ---A- . (...) -- C:\WINDOWS\system32\FNTCACHE.DAT   [186608]
O44 - LFC:[MD5.49CD9C78D85333752981862BB66FC0B5] - 13/02/2013 - 17:16:59 ---A- . (...) -- C:\WINDOWS\system32\PerfStringBackup.INI   [1131862]
O44 - LFC:[MD5.93B18D2155DC913B5B72909ED9DF8F4E] - 13/02/2013 - 17:16:59 ---A- . (...) -- C:\WINDOWS\system32\perfc009.dat   [78376]
O44 - LFC:[MD5.63F9F2423B08947176994EAB3EE7A45E] - 13/02/2013 - 17:16:59 ---A- . (...) -- C:\WINDOWS\system32\perfc00C.dat   [92494]
O44 - LFC:[MD5.EF676E054F1E5758488BF4716A710478] - 13/02/2013 - 17:16:59 ---A- . (...) -- C:\WINDOWS\system32\perfh009.dat   [460086]
O44 - LFC:[MD5.CC5939A3D4DA0CD7A61F1D0DC6BBC884] - 13/02/2013 - 17:16:59 ---A- . (...) -- C:\WINDOWS\system32\perfh00C.dat   [530626]
O44 - LFC:[MD5.5458FEBF45F779ED7A1E2E8873E97231] - 12/02/2013 - 15:40:59 ---A- . (...) -- C:\WINDOWS\setupapi.log.2.old   [1027972]
O44 - LFC:[MD5.EC4462175BD41B1140AE527CD9F27CF8] - 10/02/2013 - 16:47:08 -SHA- . (...) -- C:\WINDOWS\Thumbs.db   [8192]
O44 - LFC:[MD5.FA2596A61329461A8F3CA70CABCDF66F] - 03/02/2013 - 13:57:01 ---A- . (...) -- C:\WINDOWS\system32\d3d9caps.dat   [664]
O44 - LFC:[MD5.6DA76330A1900BE1B83E97F50CD821F6] - 02/02/2013 - 13:51:33 ---A- . (...) -- C:\WINDOWS\system32\jupdate-1.6.0_39-b04.log   [3600]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 27/01/2013 - 16:42:47 ---A- . (...) -- C:\Diagnostics.txt   [0]
~ Scan Files in 01mn 36s



---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll
~ Scan ShellExecuteHooks in 00mn 00s



---\\ Export de clé d'application autorisée (O47)
O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe
O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\mqsvc.exe" [Enabled] .(.Microsoft Corporation - Message Queuing Service.) -- C:\WINDOWS\system32\mqsvc.exe
O47 - AAKE:Key Export SP - "C:\Program Files\AOL 9.0\waol.exe" [Disabled] .(...) -- C:\Program Files\AOL 9.0\waol.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Messenger\msmsgs.exe" [Enabled] .(.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe" [Enabled] .(.Eastman Kodak Company - Kodak EasyShare Software.) -- C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O47 - AAKE:Key Export SP - "C:\Program Files\IncrediMail\Bin\IncMail.exe" [Enabled] .(...) -- C:\Program Files\IncrediMail\Bin\IncMail.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\IncrediMail\Bin\ImApp.exe" [Enabled] .(...) -- C:\Program Files\IncrediMail\Bin\ImApp.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\IncrediMail\Bin\ImpCnt.exe" [Enabled] .(...) -- C:\Program Files\IncrediMail\Bin\ImpCnt.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(...) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" [Enabled] .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Windows Searchqu Toolbar\ToolBar\dtUser.exe" [Enabled] .(.Visicom Media Inc. - DTX broker.) -- C:\Program Files\Windows Searchqu Toolbar\ToolBar\dtUser.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Skype\Phone\Skype.exe" [Enabled] .(.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe
O47 - AAKE:Key Export DP - "C:\WINDOWS\system32\mqsvc.exe" [Enabled] .(.Microsoft Corporation - Message Queuing Service.) -- C:\WINDOWS\system32\mqsvc.exe
O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(...) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe (.not file.)
O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" [Enabled] .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe
~ Scan Keys in 00mn 00s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\system32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l'Éditeur de configuration de sécurité Windows.) -- C:\WINDOWS\system32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Kerberos Security Package.) -- C:\WINDOWS\system32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\system32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\WINDOWS\system32\wdigest.dll
~ Scan Keys in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\system32\Drivers\dmboot.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\system32\Drivers\dmio.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\system32\Drivers\dmload.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (...) -- C:\WINDOWS\system32\Drivers\sermouse.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sr.sys . (.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du système.) -- C:\WINDOWS\system32\Drivers\sr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\WINDOWS\system32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\system32\Drivers\dmboot.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\system32\Drivers\dmio.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\system32\Drivers\dmload.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ip6fw.sys . (.Microsoft Corporation - IPv6 Windows Firewall Driver.) -- C:\WINDOWS\system32\Drivers\ip6fw.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\system32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpcdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\WINDOWS\system32\Drivers\rdpcdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpdd.sys . (...) -- C:\WINDOWS\system32\Drivers\rdpdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpwd.sys . (.Microsoft Corporation - RDP Terminal Stack Driver (US/Canada Only, Not for Export).) -- C:\WINDOWS\system32\Drivers\rdpwd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (...) -- C:\WINDOWS\system32\Drivers\sermouse.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sr.sys . (.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du système.) -- C:\WINDOWS\system32\Drivers\sr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdpipe.sys . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\WINDOWS\system32\Drivers\tdpipe.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdtcp.sys . (.Microsoft Corporation - TCP Transport Driver.) -- C:\WINDOWS\system32\Drivers\tdtcp.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\WINDOWS\system32\Drivers\vgasave.sys (.not file.)
~ Scan CSB in 00mn 00s



---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - (no data)
~ Scan IFEO in 00mn 00s



---\\ MountPoints2 Shell Key (O51)
O51 - MPSK:{2d9b663a-605d-11dc-8f7c-0016369dcc42}\AutoRun\command. (...) -- G:\InstallTomTomHOME.exe (.not file.)
~ Scan Keys in 00mn 00s



---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech(TM) DSP Group pour MSACM V3.50.) -- C:\WINDOWS\system32\tssoft32.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\system32\iccvid.dll
O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (...) -- C:\WINDOWS\system32\ir32_32.dll
O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (...) -- C:\WINDOWS\system32\ir32_32.dll
O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\system32\ir41_32.ax
O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\system32\sl_anet.acm
O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax
O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\system32\ir50_32.dll
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm
O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\system32\sl_anet.acm
O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax
O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm
~ Scan Keys in 00mn 00s



---\\ ShareTools MSconfig StartupReg (O53) (None)

---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "InstallVisualStyle"=1
O55 - MWPS:[HKLM\...\Policies\System] - "InstallTheme"=1
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoCDBurning"=0
~ Scan Keys in 00mn 00s



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.1140AB9938809700B46BB88E46D72A96] - 18/08/2001 - 04:51:56 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\WINDOWS\system32\Drivers\aliide.sys   [5248]
O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 25/03/2006 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys   [9037]
~ Scan Drivers in 00mn 00s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.3.5 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s



---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 17/08/2011 - C:\WINDOWS\system32\drivers\afd.sys (AFD)  .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - 18/08/2001 - C:\WINDOWS\system32\DRIVERS\aliide.sys (AliIde)  .(.Acer Laboratories Inc. - ALi mini IDE Driver.) - LEGACY_ALIIDE
O64 - Services: CurCS - 13/04/2008 - C:\WINDOWS\system32\DRIVERS\arp1394.sys (Arp1394)  .(.Microsoft Corporation - IP/1394 Arp Client.) - LEGACY_ARP1394
O64 - Services: CurCS - 12/05/2006 - C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe (btwdins)  .(.Broadcom Corporation. - Bluetooth Support Server.) - LEGACY_BTWDINS
O64 - Services: CurCS - 25/07/2008 - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (clr_optimization_v2.0.50727_32)  .(.Microsoft Corporation - .NET Runtime Optimization Service.) - LEGACY_CLR_OPTIMIZATION_V2.0.50727_32
O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\system32\dllhost.exe (COMSysApp)  .(.Microsoft Corporation - COM Surrogate.) - LEGACY_COMSYSAPP
O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\system32\svchost.exe (CryptSvc)  .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_CRYPTSVC
O64 - Services: CurCS - ??\??\???? -  (DcomLaunch)  .(. - .) - LEGACY_DCOMLAUNCH
O64 - Services: CurCS - 03/02/2013 - C:\Documents and Settings\Richard\Application Data\DefaultTab\DefaultTab\DTUpdate.exe - DefaultTabUpdate (DefaultTabUpdate)  .(...) - LEGACY_DEFAULTTABUPDATE
O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\system32\dmadmin.exe (dmadmin)  .(.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - LEGACY_DMADMIN
O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\system32\drivers\dmboot.sys (dmboot)  .(.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) - LEGACY_DMBOOT
O64 - Services: CurCS - 25/03/2006 - C:\WINDOWS\system32\drivers\dmload.sys (dmload)  .(.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) - LEGACY_DMLOAD
O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\system32\svchost.exe (Dnscache)  .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_DNSCACHE
O64 - Services: CurCS - 19/09/2005 - C:\WINDOWS\system32\DRIVERS\eabfiltr.sys (eabfiltr)  .(.Hewlett-Packard Development Company, L.P. - QLB PS/2 Keyboard filter driver.) - LEGACY_EABFILTR
O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\system32\svchost.exe (EventSystem)  .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_EVENTSYSTEM
O64 - Services: CurCS - 08/01/2013 - C:\Program Files\AntivirusFirewall\Anti-Virus\minifilter\fsgk.sys - F-Secure Gatekeeper (F-Secure Gatekeeper)  .(...) - LEGACY_F-SECURE_GATEKEEPER
O64 - Services: CurCS - 18/11/2009 - C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe (F-Secure Gatekeeper Handler Starter)  .(.F-Secure Corporation - F-Secure Anti-Virus Scanning Service.) - LEGACY_F-SECURE_GATEKEEPER_HANDLER_STARTER
O64 - Services: CurCS - 18/11/2009 - C:\Program Files\AntivirusFirewall\HIPS\drivers\fshs.sys (F-Secure HIPS)  .(.F-Secure Corporation - HIPS 32-bit kernel module.) - LEGACY_F-SECURE_HIPS
O64 - Services: CurCS - 29/07/2008 - C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe (FontCache3.0.0.0)  .(.Microsoft Corporation - PresentationFontCache.exe.) - LEGACY_FONTCACHE3.0.0.0
O64 - Services: CurCS - 16/08/2012 - C:\WINDOWS\system32\Drivers\fsbts.sys - fsbts (fsbts)  .(...) - LEGACY_FSBTS
O64 - Services: CurCS - 18/11/2009 - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe (FSDFWD)  .(.F-Secure Corporation - F-Secure Internet Shield daemon.) - LEGACY_FSDFWD
O64 - Services: CurCS - 18/11/2009 - C:\WINDOWS\system32\drivers\fsdfw.sys (FSFW)  .(.F-Secure Corporation - F-Secure Internet Shield Driver.) - LEGACY_FSFW
O64 - Services: CurCS - 18/11/2009 - C:\Program Files\AntivirusFirewall\Common\FSMA32.exe (FSMA)  .(.F-Secure Corporation - F-Secure Management Agent.) - LEGACY_FSMA
O64 - Services: CurCS - 23/05/2011 - C:\Program Files\AntivirusFirewall\ORSP Client\fsorsp.exe (FSORSPClient)  .(.F-Secure Corporation - F-Secure ORSP Service.) - LEGACY_FSORSPCLIENT
O64 - Services: CurCS - 11/02/2010 - C:\Program Files\Google\Update\GoogleUpdate.exe (gupdate)  .(.Google Inc. - Programme d'installation de Google.) - LEGACY_GUPDATE
O64 - Services: CurCS - 11/02/2010 - C:\Program Files\Google\Update\GoogleUpdate.exe (gupdatem)  .(.Google Inc. - Programme d'installation de Google.) - LEGACY_GUPDATEM
O64 - Services: CurCS - 22/08/2012 - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (gusvc)  .(.Google - gusvc.) - LEGACY_GUSVC
O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\system32\svchost.exe (helpsvc)  .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_HELPSVC
O64 - Services: CurCS - 02/05/2006 - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe (hpqwmiex)  .(.Hewlett-Packard Development Company, L.P. - hpqwmiex Module.) - LEGACY_HPQWMIEX
O64 - Services: CurCS - 22/10/2004 - c:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe (IDriverT)  .(.Macrovision Corporation - IDriverT Module.) - LEGACY_IDRIVERT
O64 - Services: CurCS - 06/09/2011 - C:\Program Files\Canon\IJPLM\IJPLMSVC.exe (IJPLMSVC)  .(.Pas de propriétaire - Inkjet Printer/Scanner/Fax Extended Survey.) - LEGACY_IJPLMSVC
O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\system32\imapi.exe (ImapiService)  .(.Microsoft Corporation - API Image Mastering.) - LEGACY_IMAPISERVICE
O64 - Services: CurCS - 22/02/2013 - C:\Program Files\Java\jre7\bin\jqs.exe (JavaQuickStarterService)  .(.Oracle Corporation - Java(TM) Quick Starter Service.) - LEGACY_JAVAQUICKSTARTERSERVICE
O64 - Services: CurCS - 18/05/2006 - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe (LightScribeService)  .(.Hewlett-Packard Company - Pas de description.) - LEGACY_LIGHTSCRIBESERVICE
O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\system32\svchost.exe (LmHosts)  .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_LMHOSTS
O64 - Services: CurCS - 13/04/2008 - C:\WINDOWS\system32\drivers\mqac.sys (MQAC)  .(.Microsoft Corporation - Windows NT MQ Access Control Device Driver.) - LEGACY_MQAC
O64 - Services: CurCS - 21/04/2011 - C:\WINDOWS\system32\Drivers\Mup.sys (Mup)  .(.Microsoft Corporation - Multiple UNC Provider driver.) - LEGACY_MUP
O64 - Services: CurCS - 20/07/2006 - C:\WINDOWS\system32\nvsvc32.exe (NVSvc)  .(.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 86.02.) - LEGACY_NVSVC
O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\system32\DRIVERS\pcmcia.sys (Pcmcia)  .(.Microsoft Corporation - Pilote de bus PCMCIA.) - LEGACY_PCMCIA
O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\system32\lsass.exe (ProtectedStorage)  .(.Microsoft Corporation - LSA Shell (Export Version).) - LEGACY_PROTECTEDSTORAGE
O64 - Services: CurCS - ??\??\???? -  (RpcSs)  .(. - .) - LEGACY_RPCSS
O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\system32\lsass.exe (SamSs)  .(.Microsoft Corporation - LSA Shell (Export Version).) - LEGACY_SAMSS
O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\system32\svchost.exe (ShellHWDetection)  .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SHELLHWDETECTION
O64 - Services: CurCS - 08/01/2013 - C:\Program Files\Skype\Updater\Updater.exe (SkypeUpdate)  .(.Skype Technologies - Skype Updater Service.) - LEGACY_SKYPEUPDATE
O64 - Services: CurCS - ??\??\???? -  (TermService)  .(. - .) - LEGACY_TERMSERVICE
O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\system32\svchost.exe (Themes)  .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_THEMES
O64 - Services: CurCS - 13/04/2008 - C:\WINDOWS\system32\drivers\vga.sys (VgaSave)  .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - 19/07/2006 - C:\Program Files\HP\QuickPlay\000.fcl ({22D78859-9CE9-4b77-BF18-AC83E81A9263})  .(.Cyberlink Corp. - FCL Driver.) - LEGACY_{22D78859-9CE9-4B77-BF18-AC83E81A9263}
~ Scan Services in 00mn 00s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <ChromeHTML>[HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\system32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe
O67 - Shell Spawning: <.html> <htmlfile>[HKCU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKCR\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\system32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe
~ Scan Keys in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <chrome.exe> <>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Scan Keys in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: C:\Documents and Settings\Richard\Application Data\Mozilla\Firefox\Profiles\axg77knl.default\searchplugins\askcom.xml
O69 - SBI: prefs.js [Richard - axg77knl.default] user_pref("extensions.crossriderapp21810.adsOldValue", -1);
O69 - SBI: prefs.js [Richard - axg77knl.default] user_pref("extensions.asktb.ff-original-keyword-url", "http://feed.snap.do/?publisher=InternetTurboYB&dpid=InternetTurboYB&co=FR&u[...]
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {6AC63E17-B56A-4A89-A130-EEFF78EBCE4D} [DefaultScope] - (Customized Search) - http://search.mywebs.pro
O69 - SBI: SearchScopes [HKCU] {EB7F7416-D392-4037-9092-96693BE15003} - (Ask Search) - http://websearch.ask.com
O69 - SBI: SearchScopes [HKCU] {F19718EC-69CC-4236-A75C-09AF031338FA} - (Search Here) - http://www.mysearchresults.com
~ Scan Keys in 00mn 00s



---\\ Recherche des services démarrés par Svchost (O83)
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\WINDOWS\system32\appmgmts.dll   [176640]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\WINDOWS\system32\audiosrv.dll   [42496]
O83 - Search Svchost Services: Browser (Browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\system32\browser.dll   [78336]
O83 - Search Svchost Services: CryptSvc (CryptSvc) . (.Microsoft Corporation - Cryptographic Services.) -- C:\WINDOWS\system32\cryptsvc.dll   [62464]
O83 - Search Svchost Services: DMServer (DMServer) . (.Microsoft Corp. - DLL Service gestionnaire de disque logique.) -- C:\WINDOWS\system32\dmserver.dll   [24576]
O83 - Search Svchost Services: DHCP (DHCP) . (.Microsoft Corporation - Service client DHCP.) -- C:\WINDOWS\system32\dhcpcsvc.dll   [127488]
O83 - Search Svchost Services: ERSvc (ERSvc) . (.Microsoft Corporation - Windows Error Reporting Service.) -- C:\WINDOWS\system32\ersvc.dll   [23040]
O83 - Search Svchost Services: EventSystem (EventSystem) . (.Microsoft Corporation - Pas de description.) -- C:\WINDOWS\system32\es.dll   [253952]
O83 - Search Svchost Services: FastUserSwitchingCompatibility (FastUserSwitchingCompatibility) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll   [135680]
O83 - Search Svchost Services: HidServ (HidServ) . (...) -- C:\WINDOWS\system32\hidserv.dll   [0]
O83 - Search Svchost Services: LanmanServer (LanmanServer) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll   [99840]
O83 - Search Svchost Services: LanmanWorkstation (LanmanWorkstation) . (.Microsoft Corporation - Workstation Service DLL.) -- C:\WINDOWS\system32\wkssvc.dll   [132096]
O83 - Search Svchost Services: Messenger (Messenger) . (.Microsoft Corporation - NT Messenger Service.) -- C:\WINDOWS\system32\msgsvc.dll   [33792]
O83 - Search Svchost Services: Netman (Netman) . (.Microsoft Corporation - Gestionnaire de connexions réseau.) -- C:\WINDOWS\system32\netman.dll   [198144]
O83 - Search Svchost Services: Nla (Nla) . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll   [247808]
O83 - Search Svchost Services: Ntmssvc (Ntmssvc) . (.Microsoft Corporation - Gestionnaire de stockage amovible.) -- C:\WINDOWS\system32\ntmssvc.dll   [438272]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\system32\rasauto.dll   [88576]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\system32\rasmans.dll   [186368]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\system32\mprdim.dll   [53248]
O83 - Search Svchost Services: Schedule (Schedule) . (.Microsoft Corporation - Moteur du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll   [194560]
O83 - Search Svchost Services: Seclogon (Seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secondaire.) -- C:\WINDOWS\system32\seclogon.dll   [18944]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\system32\sens.dll   [39424]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à Microsoft NAT.) -- C:\WINDOWS\system32\ipnathlp.dll   [332800]
O83 - Search Svchost Services: SRService (SRService) . (.Microsoft Corporation - Service de restauration du système.) -- C:\WINDOWS\system32\srsvc.dll   [171520]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\WINDOWS\system32\tapisrv.dll   [249856]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll   [135680]
O83 - Search Svchost Services: TrkWks (TrkWks) . (.Microsoft Corporation - Distributed Link Tracking Client.) -- C:\WINDOWS\system32\trkwks.dll   [90112]
O83 - Search Svchost Services: W32Time (W32Time) . (.Microsoft Corporation - Service de temps Windows.) -- C:\WINDOWS\system32\w32time.dll   [178176]
O83 - Search Svchost Services: WZCSVC (WZCSVC) . (.Microsoft Corporation - Service configuration automatique sans fil.) -- C:\WINDOWS\system32\wzcsvc.dll   [483840]
O83 - Search Svchost Services: Wmi (Wmi) . (.Microsoft Corporation - API avancées Windows 32.) -- C:\WINDOWS\system32\advapi32.dll   [685568]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll   [145408]
O83 - Search Svchost Services: wscsvc (wscsvc) . (.Microsoft Corporation - Windows Security Center Service.) -- C:\WINDOWS\system32\wscsvc.dll   [80896]
O83 - Search Svchost Services: xmlprov (xmlprov) . (.Microsoft Corporation - Network Provisioning Service.) -- C:\WINDOWS\system32\xmlprov.dll   [129024]
O83 - Search Svchost Services: MHN (MHN) . (.Microsoft Corporation - Windows NT.) -- C:\WINDOWS\system32\mhn.dll   [85504]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\WINDOWS\system32\qmgr.dll   [409088]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update AutoUpdate Service.) -- C:\WINDOWS\system32\wuauserv.dll   [6656]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll   [135680]
O83 - Search Svchost Services: helpsvc (helpsvc) . (.Microsoft Corporation - Microsoft PCHealth Service Holder.) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll   [38400]
O83 - Search Svchost Services: WmdmPmSN (WmdmPmSN) . (.Microsoft Corporation - Microsoft Media Device Service Provider.) -- C:\WINDOWS\system32\MsPMSNSv.dll   [27136]
O83 - Search Svchost Services: napagent (napagent) . (.Microsoft Corporation - Exécution du service Agent de quarantaine.) -- C:\WINDOWS\system32\qagentrt.dll   [293376]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\WINDOWS\system32\kmsvc.dll   [61440]
~ Scan Services in 00mn 00s



---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.4EE043D94533B184DC2A7245474F8E66] [SPRF][15/01/2007] (...) -- C:\Documents and Settings\Richard\Local Settings\Application Data\fusioncache.dat   [130]
[MD5.00C95052CE4787112F40CAE01C1B2A02] [SPRF][15/10/2007] (...) -- C:\Documents and Settings\Richard\Application Data\wklnhst.dat   [132]
[MD5.452D6EDE7B26CEC04A73CC1B11BD7ED6] [SPRF][03/02/2013] (...) -- C:\Documents and Settings\Richard\Bureau\windows-live-messenger.exe   [423672]
[MD5.3FEA9D2EDF23B0283C7A66C8DEA380BD] [SPRF][26/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player Module.) -- C:\WINDOWS\Downloaded Program Files\dwusplay.dll   [24576]
[MD5.CDBE35EA59BC9223E4F800BD1DB82D27] [SPRF][26/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player.) -- C:\WINDOWS\Downloaded Program Files\dwusplay.exe   [196608]
[MD5.0396721D078FF0BB0C0B224C7C550554] [SPRF][08/09/2008] (...) -- C:\WINDOWS\Downloaded Program Files\GoogleGadgetPluginIEWin.dll   [364032]
[MD5.3F4413DCD8D3BBABF08F68F25E6D60E1] [SPRF][16/02/2005] (.InstallShield Software Corporation - InstallShield Update Service Web Agent.) -- C:\WINDOWS\Downloaded Program Files\isusweb.dll   [401408]
[MD5.D2FB109C3F0DAAAA4A73E5921656DB3E] [SPRF][20/06/2006] (.Microsoft® Corporation - MSN Photo Upload Tool.) -- C:\WINDOWS\Downloaded Program Files\MsnPUpld.dll   [379704]
[MD5.F06A42348DAFD569A82DF4A61F57B8E4] [SPRF][20/06/2006] (.Microsoft® Corporation - MSN Photo Upload Tool.) -- C:\WINDOWS\Downloaded Program Files\PURen-us.dll   [117560]
[MD5.732CACA8E848F6E721B093E51FC50B1D] [SPRF][09/01/2007] (.Microsoft® Corporation - Outil MSN Téléchargement de photos.) -- C:\WINDOWS\Downloaded Program Files\PURfr-fr.dll   [110592]
~ Scan Files in 00mn 00s



---\\ Scan Additionnel (O88)
Database Version : v2.10854 - (23/02/2013)
Clés trouvées (Keys found) : 201
Valeurs trouvées (Values found) : 3
Dossiers trouvés  (Folders found) : 17
Fichiers trouvés  (Files found) : 0

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}]   =>Toolbar.AskTBar
[HKLM\Software\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}]   =>Toolbar.AskTBar
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}]   =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}]   =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{06DE5702-44CF-4B79-B4EF-3DDF653358F5}]   =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{092A2C6B-43EE-4F9F-8F8E-14ED5E11C14B}]   =>Adware.Agent
[HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}]   =>Toolbar.Babylon
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{177586E7-E42E-4F38-83D1-D15B4AF5B714}]   =>Toolbar.DeltaSearch
[HKLM\Software\Classes\AppID\{1301a8a5-3dfb-4731-a162-b357d00c9644}]   =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}]   =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{257A6158-1416-4B31-9BF8-29FF49F3814F}]   =>Adware.Agent
[HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]   =>Adware.AskSBAR
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}]   =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}]   =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}]   =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}]   =>Toolbar.Agent
[HKLM\Software\Classes\AppID\{32451DFC-C23B-4E12-866C-FC7982238504}]   =>Toolbar.Babylon
[HKLM\Software\Classes\CLSID\{32451DFC-C23B-4E12-866C-FC7982238504}]   =>Toolbar.Babylon
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{424624f4-c5dd-4e1d-bdd0-1e9c9b7799cc}]   =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{42AEFAF9-09D6-4185-87AE-DEDF6E955CB4}]   =>Toolbar.Conduit
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{42AEFAF9-09D6-4185-87AE-DEDF6E955CB4}]   =>Toolbar.Conduit
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{42AEFAF9-09D6-4185-87AE-DEDF6E955CB4}]   =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{477f210a-2a86-4666-9c4b-1189634d2c84}]   =>Adware.Bandoo
[HKLM\Software\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}]   =>Toolbar.Babylon
[HKLM\Software\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}]   =>Toolbar.Babylon
[HKLM\Software\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}]   =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}]   =>Toolbar.Ask
[HKLM\Software\Classes\Interface\{6e4c89cf-3061-4ee4-b22a-b7a8aaea5cb3}]   =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{736EF78E-5A04-46F9-893E-EDEC6EA5DF45}]   =>Adware.Agent
[HKLM\Software\Classes\CLSID\{761f6a83-f007-49e4-8eac-cdb6808ef06f}]   =>PUP.Eorezo
[HKLM\Software\Classes\Interface\{7A1BCE27-099C-4628-B63A-AEC00C6376B3}]   =>Adware.Agent
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7f000001-db8e-f89c-2fec-49bf726f8c12}]   =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7F6AFBF1-E065-4627-A2FD-810366367D01}]   =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7F6AFBF1-E065-4627-A2FD-810366367D01}]   =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{7F6AFBF1-E065-4627-A2FD-810366367D01}]   =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01}]   =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F6AFBF1-E065-4627-A2FD-810366367D01}]   =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{80922ee0-8a76-46ae-95d5-bd3c3fe0708d}]   =>Adware.Yontoo
[HKLM\Software\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}]   =>Adware.Yontoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}]   =>Adware.Yontoo
[HKLM\Software\Classes\TypeLib\{8F5F1CB6-EA9E-40AF-A5CA-C7FD63CC1971}]   =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}]   =>Toolbar.Ask
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}]   =>Toolbar.Agent
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96BD48DD-741B-41AE-AC4A-AFF96BA00F7E}]   =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}]   =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{99079A25-328F-4BD4-BE04-00955ACAA0A7}]   =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}]   =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99079A25-328F-4BD4-BE04-00955ACAA0A7}]   =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079A25-328F-4BD4-BE04-00955ACAA0A7}]   =>Adware.Bandoo
[HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}]   =>Adware.AskSBAR
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9c8a3ca5-889e-4554-beec-ec0876e4e96a}]   =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A40DC6C5-79D0-4ca8-A185-8FF989AF1115}]   =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A40DC6C5-79D0-4ca8-A185-8FF989AF1115}]   =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{A40DC6C5-79D0-4ca8-A185-8FF989AF1115}]   =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A40DC6C5-79D0-4ca8-A185-8FF989AF1115}]   =>Adware.Bandoo
[HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}]   =>Adware.AskSBAR
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}]   =>Adware.AskSBAR
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}]   =>PUP.DealPly
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}]   =>PUP.DealPly
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}]   =>PUP.DealPly
[HKLM\Software\Classes\CLSID\{AC5C4189-A8A0-4C9D-8910-C9CEF8360077}]   =>Adware.Agent
[HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}]   =>Toolbar.Ask
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ae07101b-46d4-4a98-af68-0333ea26e113}]   =>Adware.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ae07101b-46d4-4a98-af68-0333ea26e113}]   =>Adware.Agent
[HKLM\Software\Classes\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113}]   =>Adware.Agent
[HKLM\Software\Classes\Interface\{AF3AFF7C-B9E9-48DD-9002-212B6DEAAC02}]   =>Adware.Agent
[HKLM\Software\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}]   =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}]   =>Adware.AskSBAR
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}]   =>Adware.AskSBAR
[HKLM\Software\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}]   =>Adware.AskSBAR
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]   =>Adware.AskSBAR
[HKLM\Software\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}]   =>Toolbar.Babylon
[HKLM\Software\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}]   =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{DBE82879-914A-422F-BAE9-2ECC80BE536F}]   =>Adware.Agent
[HKLM\Software\Classes\Interface\{E12D7149-73EF-45E4-A1E9-99FD7DAE62D3}]   =>Adware.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EB5CEE80-030A-4ED8-8E20-454E9C68380F}]   =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EB5CEE80-030A-4ED8-8E20-454E9C68380F}]   =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{F2B184F1-547C-4EE9-BFC4-AC489C7077D9}]   =>Adware.Agent
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{f9189560-573a-4fde-b055-ae7b0f4cf080}]   =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{ff871e51-2655-4d06-aed5-745962a96b32}]   =>Adware.Bandoo
[HKLM\Software\Classes\AppID\bandoocore.exe]   =>Adware.Bandoo
[HKLM\Software\Classes\AppID\escort.dll]   =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\escortapp.dll]   =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\escorteng.dll]   =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\esrv.EXE]   =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\GenericAskToolbar.DLL]   =>Adware.AskSBAR
[HKLM\Software\Classes\escort.escortIEPane]   =>PUP.Funmoods
[HKLM\Software\Classes\escort.escortIEPane.1]   =>PUP.Funmoods
[HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd]   =>Adware.AskSBAR
[HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd.1]   =>Adware.AskSBAR
[HKLM\Software\Classes\SearchQUIEHelper.DNSGuard]   =>Adware.Bandoo
[HKLM\Software\Classes\SearchQUIEHelper.DNSGuard.1]   =>Adware.Bandoo
[HKLM\Software\Classes\Software.OneClickCtrl.8]   =>Adware.Agent
[HKLM\Software\Google\Chrome\Extensions\gaiilaahiahdejapggenmdmafpmbipje]   =>PUP.DealPly
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\1C875DDE39636004CA8CDAEC335B4160]   =>Adware.PredictAd
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED]   =>Toolbar.Ask
[HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF]   =>Toolbar.AVGSearch
[HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF]   =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF]   =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\BA086F2D38A8E1A47912955A68B3AD24]   =>Adware.PredictAd
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9]   =>Adware.MyWebSearch
[HKCU\Software\APN]   =>Toolbar.Ask
[HKLM\Software\APN]   =>Toolbar.Ask
[HKCU\Software\Ask.com]   =>Toolbar.AskBar
[HKCU\Software\AskToolbar]   =>Toolbar.AskTBar
[HKLM\Software\AskToolbar]   =>Toolbar.AskTBar
[HKLM\Software\Bandoo]   =>Adware.Bandoo
[HKCU\Software\Cr_Installer]   =>Adware.VidSaver
[HKCU\Software\DataMngr]   =>Adware.Bandoo
[HKLM\Software\DataMngr]   =>Adware.Bandoo
[HKCU\Software\DataMngr_Toolbar]   =>Toolbar.Agent
[HKCU\Software\default tab]   =>Adware.IMBooster
[HKLM\Software\default tab]   =>Adware.IMBooster
[HKCU\Software\defaulttab]   =>Adware.IMBooster
[HKCU\Software\AppDataLow\Software\defaulttab]   =>Adware.IMBooster
[HKCU\Software\Giant Savings Extension]   =>Adware.VidSaver
[HKCU\Software\lollipop]   =>Adware.Lollipop
[HKLM\Software\Iminent]   =>Adware.IMBooster
[HKLM\Software\SearchquMediabarTb]   =>Adware.Bandoo
[HKCU\Software\searchqutoolbar]   =>Adware.Bandoo
[HKCU\Software\SmartbarBackup]   =>Hijacker.SmartBar
[HKCU\Software\SmartbarLog]   =>Hijacker.SmartBar
[HKLM\Software\Tarma Installer]   =>Toolbar.Agent
[HKCU\Software\DealPly]   =>PUP.DealPly
[HKLM\Software\DealPly]   =>PUP.DealPly
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}]   =>Toolbar.AskBar
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\DefaultTab]   =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Giant Savings Extension]   =>Adware.VidSaver
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}]   =>Toolbar.DeltaSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}]   =>Toolbar.DeltaSearch
[HKLM\Software\Classes\CLSID\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}]   =>Toolbar.DeltaSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}]   =>Toolbar.DeltaSearch
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21111111-1111-1111-1111-110211181110}]   =>Adware.VidSaver
[HKCU\Software\InstalledBrowserExtensions\215 Apps]   =>PUP.SpecialSavings
[HKLM\Software\Classes\Installer\Features\7E685771E24E83F4381D1DB5A45F7B41]   =>Toolbar.DeltaSearch
[HKLM\Software\Classes\Installer\Products\7E685771E24E83F4381D1DB5A45F7B41]   =>Toolbar.DeltaSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\7E685771E24E83F4381D1DB5A45F7B41]   =>Toolbar.DeltaSearch
[HKLM\Software\Classes\Prod.cap]   =>Adware.Bandoo
[HKLM\Software\Classes\Installer\Features\64A6E60055D801F4BB8AC269354B72B8]   =>Adware.Boxore
[HKLM\Software\Classes\Installer\Products\64A6E60055D801F4BB8AC269354B72B8]   =>Adware.Boxore
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\64A6E60055D801F4BB8AC269354B72B8]   =>Adware.Boxore
[HKLM\Software\Classes\Installer\Features\9FEB8FB96CD4CF54A95AB4311193C2DA]   =>Adware.Boxore
[HKLM\Software\Classes\Installer\Products\9FEB8FB96CD4CF54A95AB4311193C2DA]   =>Adware.Boxore
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9FEB8FB96CD4CF54A95AB4311193C2DA]   =>Adware.Boxore
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{9BF8BEF9-4DC6-45FC-9AA5-4B1311392CAD}]   =>Adware.Boxore
[HKCU\Software\InstallCore]   =>Adware.InstallCore
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C8A3CA5-889E-4554-BEEC-EC0876E4E96A}]   =>Toolbar.Babylon
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7F000001-DB8E-F89C-2FEC-49BF726F8C12}]   =>Toolbar.Babylon
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F9189560-573A-4FDE-B055-AE7B0F4CF080}]   =>Toolbar.Babylon
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{424624F4-C5DD-4E1D-BDD0-1E9C9B7799CC}]   =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{FF871E51-2655-4D06-AED5-745962A96B32}]   =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{477F210A-2A86-4666-9C4B-1189634D2C84}]   =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}]   =>Toolbar.DeltaSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}]   =>Toolbar.DeltaSearch
[HKLM\Software\Classes\CLSID\{82E1477C-B154-48D3-9891-33D83C26BCD3}]   =>Toolbar.DeltaSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\DefaultTab]   =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Delta]   =>Toolbar.DeltaSearch
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]   =>Toolbar.Bing
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]   =>Toolbar.Bing
[HKLM\Software\Classes\BandooCore.BandooCore]   =>Adware.Bandoo
[HKLM\Software\Classes\BandooCore.BandooCore.1]   =>Adware.Bandoo
[HKLM\Software\Classes\BandooCore.ResourcesMngr]   =>Adware.Bandoo
[HKLM\Software\Classes\BandooCore.ResourcesMngr.1]   =>Adware.Bandoo
[HKLM\Software\Classes\BandooCore.SettingsMngr]   =>Adware.Bandoo
[HKLM\Software\Classes\BandooCore.SettingsMngr.1]   =>Adware.Bandoo
[HKLM\Software\Classes\BandooCore.StatisticMngr]   =>Adware.Bandoo
[HKLM\Software\Classes\BandooCore.StatisticMngr.1]   =>Adware.Bandoo
[HKLM\Software\Classes\CrossriderApp0021810.BHO]   =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0021810.BHO.1]   =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0021810.Sandbox]   =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0021810.Sandbox.1]   =>PUP.CrossRider
[HKLM\Software\Classes\AppID\BandooCore.EXE]   =>Adware.Bandoo
[HKLM\Software\Classes\AppID\escort.DLL]   =>PUP.Funmoods
[HKLM\Software\Classes\AppID\escortApp.DLL]   =>PUP.Funmoods
[HKLM\Software\Classes\AppID\escortEng.DLL]   =>PUP.Funmoods
[HKLM\Software\Classes\AppID\escorTlbr.DLL]   =>PUP.Funmoods
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\Arpcache\Searchqu 101 MediaBar]   =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Searchqu 101 MediaBar]   =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\38D5CDD0A851B3940A43CC50ABBA251C]   =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BA71D41F6CC0B6247B05D473850A8AEA]   =>Adware.Boxore^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC]   =>Adware.Boxore^
[HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks]:{00000000-6E41-4FD3-8538-502F5495E5FC}   =>Adware.ShopperReports
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{99079A25-328F-4BD4-BE04-00955ACAA0A7}   =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Run]:ApnUpdater   =>Adware.GameSpyArcade
C:\Program Files\Ask.com   =>Toolbar.AskBar
C:\Program Files\Bandoo   =>Adware.Bandoo
C:\Program Files\Boxore   =>Adware.Boxore
C:\Program Files\Giant Savings Extension   =>Adware.VidSaver
C:\Program Files\Software   =>Adware.Boxore
C:\Program Files\Windows Searchqu Toolbar   =>Adware.Bandoo
C:\Documents and Settings\Richard\Application Data\DealPly   =>PUP.DealPly
C:\Documents and Settings\Richard\Application Data\defaulttab   =>Adware.IMBooster
C:\Documents and Settings\Richard\Application Data\searchquband   =>Adware.Bandoo
C:\Documents and Settings\Richard\Application Data\searchqutoolbar   =>Adware.Bandoo
C:\Documents and Settings\Richard\Local Settings\Application Data\AskToolbar   =>Toolbar.AskTBar
C:\Documents and Settings\Richard\Local Settings\Application Data\Smartbar   =>Hijacker.SmartBar
C:\Documents and Settings\Richard\Local Settings\Application Data\Software   =>Adware.Boxore
C:\Documents and Settings\Richard\Local Settings\Application Data\Updater21810   =>Adware.VidSaver
C:\Documents and Settings\Richard\Application Data\Mozilla\Firefox\Profiles\axg77knl.default\searchqutoolbar   =>Adware.Bandoo
C:\Documents and Settings\Richard\Application Data\Mozilla\Firefox\Profiles\axg77knl.default\Extensions\toolbar@ask.com   =>Toolbar.AskTBar
C:\Documents and Settings\Richard\Application Data\Mozilla\Firefox\Profiles\axg77knl.default\Extensions\extension21810@extension21810.com   =>Adware.VidSaver
~ Scan Additionnel in 00mn 17s



---\\ Product Upgrade Codes (O90)
O90 - PUC: "00006FCA9B229EC4896DC2FC53B9CA70" . (.ABBYY FineReader 6.0 Sprint.) -- C:\WINDOWS\Installer\{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}\ARPPRODUCTICON.exe
O90 - PUC: "0132103250E35A64889A6CBCACCBCA97" . (.Customer Experience Enhancement.) -- C:\WINDOWS\Installer\{23012310-3E05-46A5-88A9-C6CBCABCAC79}\ARPPRODUCTICON.exe
O90 - PUC: "0EA075200EEBC6A4EBF38D609E2FAE71" . (.ScanSoft PaperPort 11.) -- C:\WINDOWS\Installer\{02570AE0-BEE0-4A6C-BE3F-D806E9F2EA17}\ARPPRODUCTICON.exe
O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\WINDOWS\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
O90 - PUC: "243493A986A4ABE4586A555B954F7E00" . (.Microsoft .NET Framework 1.1 French Language Pack.) -- c:\WINDOWS\Installer\{9A394342-4A68-4EBA-85A6-55B559F4E700}\ndpsetup.ico
O90 - PUC: "4757561245DB2A844905BE302B7CCF92" . (.Sonic MyDVD Plus.) -- C:\WINDOWS\Installer\{21657574-BD54-48A2-9450-EB03B2C7FC29}\MyDVDRel60.exe
O90 - PUC: "569CE4F3FE823C540B36402BD5E46997" . (.HP Integrated Module with Bluetooth wireless technology.) -- C:\WINDOWS\Installer\{3F4EC965-28EF-45C3-B063-04B25D4E9679}\ARPPRODUCTICON.exe
O90 - PUC: "68267DD57EB949849A099E509EA18C81" . (.Windows Live Mail.) -- C:\WINDOWS\Installer\{5DD76286-9BE7-4894-A990-E905E91AC818}\wlmail.exe
O90 - PUC: "68AB67CA7DA76301B7447A5000000020" . (.Adobe Reader 7.0.5 - Français.) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A70500000002}\SC_Reader.exe
O90 - PUC: "7CC6113DCD423AC4C91E32EF8D639E2F" . (.Assistant de connexion Windows Live.) -- C:\WINDOWS\Installer\{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}\prodicon.ico
O90 - PUC: "7E685771E24E83F4381D1DB5A45F7B41" . (.Delta Chrome Toolbar.) -- C:\WINDOWS\Installer\{177586E7-E42E-4F38-83D1-D15B4AF5B714}\Delta.ico
O90 - PUC: "7FDF9FF9A48F99F44BBB60B6F6593FD3" . (.Windows Live Contrôle parental.) -- C:\WINDOWS\Installer\{9FF9FDF7-F84A-4F99-B4BB-066B6F95F33D}\fssicon.ico
O90 - PUC: "907018673D7AD86419761A87C0E167C6" . (.Windows Live FolderShare.) -- C:\WINDOWS\Installer\{76810709-A7D3-468D-9167-A1780C1E766C}\FolderShare48x48.ico
O90 - PUC: "90ED950A94B105443B04A70E79CEF340" . (.Microsoft Works.) -- C:\WINDOWS\Installer\{A059DE09-1B49-4450-B340-7AE097EC3F04}\Win2Kico.exe
O90 - PUC: "96740EE14C1960A4297BCFFA6EABDB9D" . (.Galerie de photos Windows Live.) -- C:\WINDOWS\Installer\{1EE04769-91C4-4A06-92B7-FCAFE6BABDD9}\WLXPhotoGalleryIcon.exe
O90 - PUC: "9F2FDFE0D6387BE43AD230B83D1FBFA2" . (.Security Update for CAPICOM (KB931906).) -- C:\WINDOWS\Installer\{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}\folder.ico
O90 - PUC: "9FEB8FB96CD4CF54A95AB4311193C2DA" . (.Boxore Client.) -- C:\WINDOWS\Installer\{9BF8BEF9-4DC6-45FC-9AA5-4B1311392CAD}\boxore.ico
O90 - PUC: "A12B436470CC693498C0B2188666F1AE" . (.Windows Live Writer.) -- C:\WINDOWS\Installer\{4634B21A-CC07-4396-890C-2B8168661FEA}\ApplicationIcon.ico
O90 - PUC: "A1872CB26F7FE25459BE10A825F2B1C2" . (.PaperPort Image Printer.) -- C:\WINDOWS\Installer\{2BC2781A-F7F6-452E-95EB-018A522F1B2C}\ARPPRODUCTICON.exe
O90 - PUC: "A28B4D68DEBAA244EB686953B7074FEF" . (.Ask Toolbar.) -- C:\WINDOWS\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\ARPPRODUCTICON.exe
O90 - PUC: "C168B70F9B274A04B8A1AADEC4607A8E" . (.QuickTime.) -- C:\WINDOWS\Installer\{F07B861C-72B9-40A4-8B1A-AAED4C06A7E8}\Installer.ico
O90 - PUC: "D381B5441F4F8C549BBD1F3155AC56B7" . (.Windows Live Messenger.) -- C:\WINDOWS\Installer\{445B183D-F4F1-45C8-B9DB-F11355CA657B}\MsblIco.Exe
O90 - PUC: "D48650186AC8D044F885E7F56DA794D9" . (.easy Internet sign-up.) -- C:\WINDOWS\Installer\{8105684D-8CA6-440D-8F58-7E5FD67A499D}\ARPPRODUCTICON.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\WINDOWS\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "DDB6C50237B7ED245850A990F3532A83" . (.Outil de téléchargement Windows Live.) -- C:\WINDOWS\Installer\{205C6BDD-7B73-42DE-8505-9A093F35A238}\RichUpload.ico
O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype™ 6.1.) -- C:\WINDOWS\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
~ Scan Files in 00mn 00s



---\\ MyComputer Name Space (O92)
O92 - MNS: Favoris Bluetooth - {6af09eca-b429-11d4-a1fb-0090960218cb}
~ Scan MNS in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 12/06/2006 126976 |  (AddFiltr) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
SR - | Auto 12/05/2006 258103 |  (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
SR - | Auto  107520 |  (DefaultTabUpdate) . (...) - C:\Documents and Settings\Richard\Application Data\DefaultTab\DefaultTab\DTUpdate.exe
SS - | Demand 14/04/2008 225280 |  (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\system32\dmadmin.exe
SR - | Auto 18/11/2009 221608 |  (F-Secure Gatekeeper Handler Starter) . (.F-Secure Corporation.) - C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
SR - | Demand 18/11/2009 524712 |  (FSDFWD) . (.F-Secure Corporation.) - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
SR - | Auto 18/11/2009 188840 |  (FSMA) . (.F-Secure Corporation.) - C:\Program Files\AntivirusFirewall\Common\FSMA32.exe
SR - | Demand 23/05/2011 61088 |  (FSORSPClient) . (.F-Secure Corporation.) - C:\Program Files\AntivirusFirewall\ORSP Client\fsorsp.exe
SS - | Auto 11/02/2010 135664 |  (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 11/02/2010 135664 |  (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 22/08/2012 194032 |  (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
SR - | Auto 02/05/2006 135168 |  (hpqwmiex) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
SS - | Demand 22/10/2004 73728 |  (IDriverT) . (.Macrovision Corporation.) - c:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
SR - | Auto  140456 |  (IJPLMSVC) . (...) - C:\Program Files\Canon\IJPLM\IJPLMSVC.exe
SR - | Auto 22/02/2013 170912 |  (JavaQuickStarterService) . (.Oracle Corporation.) - C:\Program Files\Java\jre7\bin\jqs.exe
SR - | Auto 18/05/2006 49152 |  (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
SR - | Auto 20/07/2006 143426 |  (NVSvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvsvc32.exe
SS - | Auto 08/01/2013 161536 |  (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe
SR - | Auto 19/07/2006 6656 |  ({22D78859-9CE9-4b77-BF18-AC83E81A9263}) . (.Cyberlink Corp..) - C:\Program Files\HP\QuickPlay\000.fcl
~ Scan Services in 00mn 00s



End of the scan (1649 lines in 03mn 50s)(0)