~ Rapport de NCDiag v2014.4.26.45 - Copyright ©2014 - Nicolas Coolman, Tous droits réservés ~ Emplacement rapport : C:\Users\Corinne\AppData\Roaming\ZHP\NCDiag.txt ~ Lancé par Corinne (27/04/2014 - 12:16:06) ~ Adresse du Site Web : http://nicolascoolman.webs.com ~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/ ~ Etat de la version : OK ~ Liste blanche : Désactivée par le programme ~ User Account Control (UAC): Activé par l'utilisateur ~ Elévation des Privilèges : OK ---\\ Navigateurs Internet MSIE: Internet Explorer v11.0.9600.17041 GCIE: Google Chrome v33.0.1750.154 MFIE: Mozilla Firefox 28.0 (x86 fr) (Default) ---\\ Informations sur les produits Windows ~ Langage: Français Microsoft Windows 7 Professional Edition Service Pack 1 (build 7601), 32-bit Windows Server License Manager Script : OK ~ Windows Operating System - Windows(R) 7, OEM_SLP channel Windows ID Activation : OK ~ Windows Partial Key : 733WD Windows License : OK ~ Windows Remaining Initializations Number : 4 Software Protection Service (Protection logicielle) : OK Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ Informations sur le système ~ Operating System: 32 Bits ~ Boot Mode: Normal (Normal boot) System Restore: Activé (Enable) Total RAM: 3036 MB (74% free) ---\\ Mode de connexion au système ~ Nom d'Ordinateur: CORINNE-PC ~ Nom d'utilisateur: Corinne ~ Nom des utilisateurs: Corinne,Public, ~ Connecté en administrateur ---\\ Enumération des unités disques C: Hard drive, Flash drive, Thumb drive (System) ( Free 173 Go of 218 Go) ---\\ Logiciels de protection du système Windows Defender W7 ---\\ Variables d'environnement ~ %SYSTEMDRIVE% = C: ~ %USERPROFILE% = C:\Users\Corinne ~ %APPDATA% = C:\Users\Corinne\AppData\Roaming ~ %DESKTOP% = C:\Users\Corinne\Desktop ~ %FAVORITES% = C:\Users\Corinne\Favorites ~ %LOCALAPPDATA% = C:\Users\Corinne\AppData\Local ~ %STARTMENU% = C:\Users\Corinne\AppData\Roaming\Microsoft\Windows\Start Menu ~ %WINDIR% = C:\Windows ~ %SYSTEM% = C:\Windows\System32 ~ %PROGRAMFILES% = C:\Program Files ---\\ Etat du Centre de Sécurité Windows |HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System| EnableLUA: OK |HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System| DisableTaskMgr: OK |HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System| DisableRegistryTools: OK |HKLM\SOFTWARE\Microsoft\Security Center\svc| AntiSpywareOverride: OK |HKLM\SOFTWARE\Microsoft\Security Center\svc| AntiVirusOverride: OK |HKLM\SOFTWARE\Microsoft\Security Center\svc| FirewallOverride: OK |HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced| Start_ShowMyGames: Modified |HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL| CheckedValue: OK |HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN| CheckedValue: OK |HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations| Application: OK |HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp| Type: OK ---\\ Recherche particulière de fichiers génériques [MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [2616320] [MD5.51138BEEA3E2C21EC44D0932C71762A8] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [44544] [MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [96256] [MD5.E4E829EE073E046B0EB19B5FECB19B8C] - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [1789440] [MD5.6D13E1406F50C66E2A95D97F22C47560] - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [286720] [MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [193536] [MD5.129F80D7868E30DF3E3DE33A1D3132B4] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] [MD5.F81BB7E487EDCEAB630A7EE66CF23913] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [338944] [MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [21584] [MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [70656] [MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [108544] [MD5.F024449C97EC1E464AAFFDA18593DB88] - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [78336] [MD5.9036377B8A6C15DC2EEC53E489D159B5] - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [108544] [MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [80896] [MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [101888] [MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [123904] [MD5.280122DDCF04B378EDD1AD54D71C1E54] - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [187904] [MD5.C8DFF8D07755A66C7A4A738930F0FEAC] - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1212352] [MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [79360] [MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [78848] [MD5.B973FCFC50DC1434E1970A146F7E3885] - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [133632] [MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [71168] [MD5.B459575348C20E8121D6039DA063C704] - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [74752] [MD5.F497F67932C6FA693D7DE2780631CFE7] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [245632] ---\\ Processus lancés [MD5.506708142BC63DABA64F2D3AD1DCD5BF] - (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Corinne\AppData\Local\Google\Update\GoogleUpdate.exe [116648] [MD5.C111FFD56FF6F5E15266A55057487102] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\DellTPad\Apoint.exe [233472] [MD5.B9FBE2C4DE9A72E8997697C8D5CAD009] - (.TOSHIBA CORPORATION - IT Security Manager for Toshiba Stack.) -- C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe [83336] [MD5.8F653D52379DA611170BB6DE32BACB72] - (.Dell Inc. - Dell Wireless WLAN Card Wireless Network Tr.) -- C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.exe [4562944] [MD5.76BF13E24442B4A3314379ABEAD51C99] - (.CyberLink Corp. - CyberLink PowerDVD Resident Program.) -- C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe [140520] [MD5.80B62FF105908EC9E4B072AFB1CFC824] - (.Creative Technology Ltd - WebcamDell2.exe.) -- C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [409744] [MD5.76792DE2D69C1503C05739F91E464592] - (.Microsoft - DbrmTrayicon.) -- C:\Dell\DBRM\Reminder\DbrmTrayIcon.exe [203776] [MD5.048EA4B978851788E9F5E8E4F081DF7A] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904] [MD5.2C1B1E9174D94E9F6EE3CF373ABAB7DD] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe [137752] [MD5.87D78CF6365BDDACBE9D34B60FE0E23B] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe [171032] [MD5.89D3DE5E2C77DCD99C56F0E46310AEA0] - (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe [172568] [MD5.4D83DC461F8F4370274CF6E9AC9A34F4] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [49208] [MD5.5B6E8E09BE6401A7E022F52FDFCB2FF8] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336] [MD5.D0804290B30C58652724344365C89D12] - (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe [280576] [MD5.D0804290B30C58652724344365C89D12] - (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe [280576] [MD5.B362181ED3771DC03B4141927C80F801] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [65432] [MD5.E87213F37A13E2B54391E40934F071D0] - (.Microsoft Corporation - .NET Runtime Optimization Service.) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [105144] [MD5.506708142BC63DABA64F2D3AD1DCD5BF] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files\Google\Update\GoogleUpdate.exe [116648] [MD5.50D9949020E02B847CD48F1243FCB895] - (.Skype Technologies - Skype Updater Service.) -- C:\Program Files\Skype\Updater\Updater.exe [172192] [MD5.00000000000000000000000000000000] - (...) - C:\Program Files\Software\Update\SoftwareUpdate.exe [0] =>Adware.Boxore [MD5.8F9D8732840C374D1C5EAF9E1645F4AC] - (.Taiwan Shui Mu Chih Ching Technology Limited. - dsk service.) -- C:\Program Files\WinZipper\winzipersvc.exe [425104] [MD5.3FE10E8516DB3F29817B03C5A446A3DA] - (.Cherished Technololgy LIMITED - WPM Service.) -- C:\ProgramData\WPM\wprotectmanager.exe [501904] =>PUP.WpManager ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\Windows\explorer.exe F2 - REG:system.ini: VMApplet=C:\Windows\System32\systempropertiesperformance.exe ~ 3 Internet Explorer Management found in 0 second(s) ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Users\Corinne\AppData\Local\Google\Chrome\User Data\Default\Preferences G0 - GCSP: Preference [User Data\Default][HomePage] http://www.google.com G1 - GCS: Preference [User Data\Default] http://www.bing.com G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] GoogleÂStore v.0.2 ( Désactivé ) G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Documents Google v.0.5 ( Activé ) =>.© G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] GoogleÂDrive v.6.3 ( Activé ) G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.6 ( Activé ) G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v.0.0.0.20 ( Activé ) =>.© G2 - GCE: Preference [User Data\Default] [eckmjheijoffjbjmkgggoclppgdlajfa] Browser Utility v.0.1, ( Activé ) G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 ( Désactivé ) =>.© G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 ( Désactivé ) G2 - GCE: Preference [User Data\Default] [gfdkimpbcpahaombhbimeihdjnejgicl] Feedback v.1.0 ( Désactivé ) =>.© G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] avast! Online Security v.9.0.2018.95, ( Activé ) =>.© G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 ( Désactivé ) =>.© G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 ( Désactivé ) =>.© G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 ( Désactivé ) =>.© G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] GoogleWallet v.0.0.6.1 ( Activé ) =>.© G2 - GCE: Preference [User Data\Default] [ogfjmhfnldnajmfaofeiaepghjenbgjo] Extended Protection v.1.4.1 ( Activé ) =>PUP.ExtendedProtection ~ 18 Google Chrome Management found in 0 second(s) ---\\ Liste des dossiers d'extension Google Chrome G2 - EXT: C:\Users\Corinne\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\aohghmighlieiainnegkcijnfilokake [Documents Google] G2 - EXT: C:\Users\Corinne\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\apdfllckaahabafndbhieahigkjlhalf [GoogleÂDrive] G2 - EXT: C:\Users\Corinne\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\blpcfgokakmgnkcojhhkbfbldkacnbeo [YouTube] G2 - EXT: C:\Users\Corinne\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\coobgpohoikkiipiblmjeljniedjpjpf [Recherche Google] G2 - EXT: C:\Users\Corinne\AppData\Local\Google\Chrome\User Data\Default\Extensions\eckmjheijoffjbjmkgggoclppgdlajfa\eckmjheijoffjbjmkgggoclppgdlajfa [Browser Utility] G2 - EXT: C:\Users\Corinne\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\gomekmidlodglbbmalcneegieacbdmki [avast! Online Security] G2 - EXT: C:\Users\Corinne\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\nmmhkkegccagdldgiimedpiccmgmieda [GoogleWallet] G2 - EXT: C:\Users\Corinne\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogfjmhfnldnajmfaofeiaepghjenbgjo\ogfjmhfnldnajmfaofeiaepghjenbgjo [Extended Protection] =>PUP.ExtendedProtection ~ 8 Google Chrome Extension Folfers found in 0 second(s) ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) M0 - MFSP: prefs.js [Corinne - jdozr1qs.default] http://www.delta-homes.com =>Toolbar.DeltaSearch M3 - MFPP: Plugins - [Corinne] -- C:\Users\Corinne\AppData\Roaming\Mozilla\Firefox\Profiles\gjk2jh05.default-1397078799074\adblockplus =>.© M3 - MFPP: Plugins - [Corinne] -- C:\Users\Corinne\AppData\Roaming\Mozilla\Firefox\Profiles\gjk2jh05.default-1397078799074\data =>.© M3 - MFPP: Plugins - [Corinne] -- C:\Users\Corinne\AppData\Roaming\Mozilla\Firefox\Profiles\gjk2jh05.default-1397078799074\igraal =>.© M3 - MFPP: Plugins - [Corinne] -- C:\Users\Corinne\AppData\Roaming\Mozilla\Firefox\Profiles\gjk2jh05.default-1397078799074\nspdl =>.© M3 - MFPP: Plugins - [Corinne] -- C:\Users\Corinne\AppData\Roaming\Mozilla\Firefox\Profiles\gjk2jh05.default-1397078799074\searchplugins =>.© M3 - MFPP: Plugins - [Corinne] -- C:\Users\Corinne\AppData\Roaming\Mozilla\Firefox\Profiles\gjk2jh05.default-1397078799074\weave =>.© M3 - MFPP: Plugins - [Corinne] -- C:\Users\Corinne\AppData\Roaming\Mozilla\Firefox\Profiles\jdozr1qs.default\adblockplus =>.© M3 - MFPP: Plugins - [Corinne] -- C:\Users\Corinne\AppData\Roaming\Mozilla\Firefox\Profiles\jdozr1qs.default\searchplugins =>.© P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (Adobe® Flash® Player 12.0.0.77 Plugin) -- C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.55.2] - (Java™ Deployment Toolkit) -- C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.55.2] - (Oracle® Java™ Plug-In) -- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (Ag Player) -- c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8081.0709] - (Windows Live Photo Gallery) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (Google Update) -- C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (Google Update) -- C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll P2 - FPN: [HKLM] [@tools.Software.com/Software Update;version=3] - (Software Update) -- C:\Program Files\Software\Update\1.3.25.0\npSoftwareUpdate3.dll =>Adware.Boxore P2 - FPN: [HKLM] [@tools.Software.com/Software Update;version=9] - (Software Update) -- C:\Program Files\Software\Update\1.3.25.0\npSoftwareUpdate3.dll =>Adware.Boxore P2 - FPN: [HKLM] [Adobe Reader] - (Adobe Reader Plugin for Firefox) -- C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll P2 - FPN: [HKCU] [@Google.com/GoogleEarthPlugin] - (Google Earth Plug-in) -- C:\Users\Corinne\AppData\Local\Google\Google Earth\plugin\npgeplugin.dll P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (Google Update) -- C:\Users\Corinne\AppData\Local\Google\Update\1.3.23.9\npGoogleUpdate3.dll P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (Google Update) -- C:\Users\Corinne\AppData\Local\Google\Update\1.3.23.9\npGoogleUpdate3.dll ~ 22 Mozilla Firefox Preference found in 0 second(s) ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com =>.© Google Inc. R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com =>.© Google Inc. R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.awesomehp.com =>PUP.Awesomehp R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com =>.© Google Inc. R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.awesomehp.com =>PUP.Awesomehp R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com =>.© Google Inc. R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com =>.© Google Inc. R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.delta-homes.com =>Toolbar.DeltaSearch R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = www.bing.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (...) - C:\Windows\System32\ieframe.dll R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1 R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 0 R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 0 ~ 16 Internet Explorer Management found in 1 second(s) ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 ~ 4 Proxy Management found in 0 second(s) ---\\ Hosts file redirection (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Hosts File Scanned in 0 seconds ~ Nombre de lignes malwares (Malware Number Lines) : 0/21 ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: mysearchdial Helper Object - {EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} . (...) -- C:\Program Files\Mysearchdial\1.8.21.0\bh\mysearchdial.dll =>Adware.MyWebSearch ~ 1 Browser Helper Objects found in 0 second(s) ---\\ Autres liens utilisateurs (O4) O4 - GS\Programs [Corinne]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://www.delta-homes.com =>Toolbar.DeltaSearch O4 - GS\Startup [Corinne]: OneNote 2007 - Capture d'écran et lancement.lnk . (.Microsoft Corporation - Microsoft Office OneNote Quick Launcher.) -- C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O4 - GS\TaskBar [Corinne]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://www.delta-homes.com =>Toolbar.DeltaSearch O4 - GS\TaskBar [Corinne]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe http://www.delta-homes.com =>Toolbar.DeltaSearch O4 - GS\SystemTools [Corinne]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://www.delta-homes.com =>Toolbar.DeltaSearch O4 - GS\SendTo [Corinne]: Transfert de fichiers Bluetooth.LNK . (...) -- C:\Windows\System32\fsquirt.exe O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://www.delta-homes.com =>Toolbar.DeltaSearch O4 - GS\Startup [Public]: OneNote 2007 - Capture d'écran et lancement.lnk . (.Microsoft Corporation - Microsoft Office OneNote Quick Launcher.) -- C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O4 - GS\TaskBar [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://www.delta-homes.com =>Toolbar.DeltaSearch O4 - GS\TaskBar [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe http://www.delta-homes.com =>Toolbar.DeltaSearch O4 - GS\SystemTools [Public]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe http://www.delta-homes.com =>Toolbar.DeltaSearch O4 - GS\SendTo [Public]: Transfert de fichiers Bluetooth.LNK . (...) -- C:\Windows\System32\fsquirt.exe O4 - GS\Programs [Public]: Documentation d'aide de Dell.lnk . (.Dell Inc. - Dell Document Viewer.) -- C:\Program Files\Dell Inc\Dell Edoc Viewer\EDocs.exe O4 - GS\Programs [Public]: Enregistrement OCR I.R.I.S..lnk . (.I.R.I.S. Image Recognition Integarted Systems - Registration Wizard.) -- C:\Program Files\HP\IrisOCR_12.3.4\regipe.exe O4 - GS\Startup [Public]: Bluetooth Manager.lnk . (.TOSHIBA CORPORATION. - Bluetooth Manager.) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe O4 - GS\Desktop [Public]: Achat de consommables - HP Officejet 6500 E710a-f.lnk . (.Hewlett-Packard Co. - DesktopSureSupply.) -- C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\hpqDTSS.exe O4 - GS\Desktop [Public]: Google Earth.lnk . (.Google - Google Earth.) -- C:\Users\Corinne\AppData\Local\Google\Google Earth\client\googleearth.exe O4 - GS\Desktop [Public]: HP ePrintCenter - HP Officejet 6500 E710a-f.lnk . (...) -- C:\Program Files\HP\HP Officejet 6500 E710a-f\ePrintCenterShortcut.url O4 - GS\Desktop [Public]: HP Officejet 6500 E710a-f Scan.lnk . (.Hewlett-Packard Co. - HPScan.) -- C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HPScan.exe O4 - GS\Desktop [Public]: HP Officejet 6500 E710a-f.lnk . (.Hewlett-Packard Co. - HP Printer Software.) -- C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HP Officejet 6500 E710a-f.exe O4 - GS\Accessories [Public]: Bluetooth File Transfer Wizard.lnk . (...) -- C:\Windows\System32\fsquirt.exe O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\Windows\system32\mspaint.exe ~ 22 Browser Shortcut Redirection found in 0 second(s) ---\\ Applications lancées au démarrage du sytème (O4) O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Corinne\AppData\Local\Google\Update\GoogleUpdate.exe O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\DellTPad\Apoint.exe O4 - HKLM\..\Run: [ITSecMng] . (.TOSHIBA CORPORATION - IT Security Manager for Toshiba Stack.) -- C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] . (.Dell Inc. - Dell Wireless WLAN Card Wireless Network Tr.) -- C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.exe O4 - HKLM\..\Run: [PDVDDXSrv] . (.CyberLink Corp. - CyberLink PowerDVD Resident Program.) -- C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe O4 - HKLM\..\Run: [Dell Webcam Central] . (.Creative Technology Ltd - WebcamDell2.exe.) -- C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell2.exe O4 - HKLM\..\Run: [DBRMTray] . (.Microsoft - DbrmTrayicon.) -- C:\Dell\DBRM\Reminder\DbrmTrayIcon.exe O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-19\..\Run: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe O4 - HKUS\S-1-5-21-177024662-927064119-1537792423-1000\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Corinne\AppData\Local\Google\Update\GoogleUpdate.exe ~ 18 Running Process found in 0 second(s) ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de m.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provid.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provid.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Micro.) -- C:\Windows\System32\mswsock.dll O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\System32\winrnr.dll ~ 9 Winsock hijacker scanned in 0 second(s) ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\SYSTEM\CCS\Services\Tcpip\..\{C7F71EA4-86FB-4A18-8A1F-28EDA0D1F0CF}: DhcpNameServer = 192.168.1.1 =>.Private Ip Address Lan O17 - HKLM\SYSTEM\CS1\Services\Tcpip\..\{C7F71EA4-86FB-4A18-8A1F-28EDA0D1F0CF}: DhcpNameServer = 192.168.1.1 =>.Private Ip Address Lan O17 - HKLM\SYSTEM\CS2\Services\Tcpip\..\{C7F71EA4-86FB-4A18-8A1F-28EDA0D1F0CF}: DhcpNameServer = 192.168.1.1 =>.Private Ip Address Lan O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 =>.Private Ip Address Lan ~ 4 DNS scanned in 0 second(s) ---\\ Protocole additionnel et piratage de protocole (O18) O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.© Microsoft Corporation O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll =>.© Microsoft Corporation O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll =>.© Microsoft Corporation O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll =>.© Microsoft Corporation O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll =>.© Microsoft Corporation O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll =>.© Microsoft Corporation O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll =>.© Microsoft Corporation O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.© Microsoft Corporation O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.© Microsoft Corporation O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.dll =>.© Microsoft Corporation O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll =>.© Microsoft Corporation O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.© Microsoft Corporation O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll =>.© Microsoft Corporation O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll =>.© Microsoft Corporation O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll =>.© Microsoft Corporation O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.© Microsoft Corporation O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.dll =>.© Microsoft Corporation O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.© Microsoft Corporation O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL =>.© Skype Technologies O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll =>.© Microsoft Corporation O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.© Microsoft Corporation O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll =>.© Microsoft Corporation O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.© Microsoft Corporation O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.© Microsoft Corporation O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.© Microsoft Corporation O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL =>.© Microsoft Corporation ~ 26 Protocols scanned in 0 second(s) ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll ~ 1 AppInit_DLLs & Winlogon Notify scanned in 0 second(s) ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.... -- Clé orphelineWebCheck Contrôleur de site Web =>.WebCheck Contrôleur de site Web O21 - SSO: Bluetooth Authentication Agent SSO - {F08C5AC2-E722-4116-ADB7-CE41B527994B} . (.Microsoft Corporation - Applet Panneau de configuration Bluetooth.) -- C:\Windows\System32\bthprops.cpl =>.Bluetooth Authentication O21 - SSO: HomeGroup SSO - {ff363bfe-4941-4179-a81c-f3f1ca72d820} . (.Microsoft Corporation - Panneau de configuration HomeGroup.) -- C:\Windows\System32\hgcpl.dll =>.HomeGroup ShellServiceObject ~ 3 SSODL/SSO scanned in 0 second(s) ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) -- C:\Program Files\Skype\Updater\Updater.exe O23 - Service: Service Software Update (Software_update) (Software_update) . (...) - C:\Program Files\Software\Update\SoftwareUpdate.exe (.not file.) =>Adware.Boxore O23 - Service: WinZiper service (winzipersvc) . (.Taiwan Shui Mu Chih Ching Technology Limited. - dsk service.) -- C:\Program Files\WinZipper\winzipersvc.exe O23 - Service: Wpm Service (Wpm) . (.Cherished Technololgy LIMITED - WPM Service.) -- C:\ProgramData\WPM\wprotectmanager.exe =>PUP.WpManager ~ 6 Services found in 0 second(s) ---\\ Clés Session Manager (AppCertDlls,KnownDLLs) (O36) O36 - KnownDLLs: (clbcatq) . (.Microsoft Corporation - COM+ Configuration Catalog.) -- C:\Windows\System32\clbcatq.dll =>.© Microsoft Corporation O36 - KnownDLLs: (ole32) . (.Microsoft Corporation - Microsoft OLE pour Windows.) -- C:\Windows\System32\ole32.dll =>.© Microsoft Corporation O36 - KnownDLLs: (advapi32) . (.Microsoft Corporation - API avancées Windows 32.) -- C:\Windows\System32\advapi32.dll =>.© Microsoft Corporation O36 - KnownDLLs: (COMDLG32) . (.Microsoft Corporation - DLL commune de boîtes de dialogues.) -- C:\Windows\System32\COMDLG32.dll =>.© Microsoft Corporation O36 - KnownDLLs: (gdi32) . (.Microsoft Corporation - GDI Client DLL.) -- C:\Windows\System32\gdi32.dll =>.© Microsoft Corporation O36 - KnownDLLs: (IERTUTIL) . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\System32\IERTUTIL.dll =>.© Microsoft Corporation O36 - KnownDLLs: (IMAGEHLP) . (.Microsoft Corporation - Windows NT Image Helper.) -- C:\Windows\System32\IMAGEHLP.dll =>.© Microsoft Corporation O36 - KnownDLLs: (IMM32) . (.Microsoft Corporation - Multi-User Windows IMM32 API Client DLL.) -- C:\Windows\System32\IMM32.dll =>.© Microsoft Corporation O36 - KnownDLLs: (kernel32) . (.Microsoft Corporation - DLL du client API BASE Windows NT.) -- C:\Windows\System32\kernel32.dll =>.© Microsoft Corporation O36 - KnownDLLs: (LPK) . (.Microsoft Corporation - Language Pack.) -- C:\Windows\System32\LPK.dll =>.© Microsoft Corporation O36 - KnownDLLs: (MSCTF) . (.Microsoft Corporation - DLL de MSCTF Server.) -- C:\Windows\System32\MSCTF.dll =>.© Microsoft Corporation O36 - KnownDLLs: (MSVCRT) . (.Microsoft Corporation - Windows NT CRT DLL.) -- C:\Windows\System32\MSVCRT.dll =>.© Microsoft Corporation O36 - KnownDLLs: (NORMALIZ) . (.Microsoft Corporation - Unicode Normalization DLL.) -- C:\Windows\System32\NORMALIZ.dll =>.© Microsoft Corporation O36 - KnownDLLs: (NSI) . (.Microsoft Corporation - NSI User-mode interface DLL.) -- C:\Windows\System32\NSI.dll =>.© Microsoft Corporation O36 - KnownDLLs: (OLEAUT32) . (...) -- C:\Windows\System32\OLEAUT32.dll =>.© Microsoft Corporation O36 - KnownDLLs: (rpcrt4) . (.Microsoft Corporation - Runtime d’appel de procédure distante.) -- C:\Windows\System32\rpcrt4.dll =>.© Microsoft Corporation O36 - KnownDLLs: (sechost) . (.Microsoft Corporation - Host for SCM/SDDL/LSA Lookup APIs.) -- C:\Windows\System32\sechost.dll =>.© Microsoft Corporation O36 - KnownDLLs: (Setupapi) . (.Microsoft Corporation - Installation de L’API Windows.) -- C:\Windows\System32\Setupapi.dll =>.© Microsoft Corporation O36 - KnownDLLs: (SHELL32) . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\SHELL32.dll =>.© Microsoft Corporation O36 - KnownDLLs: (SHLWAPI) . (.Microsoft Corporation - Bibliothèque d’utilitaires légers du Shell.) -- C:\Windows\System32\SHLWAPI.dll =>.© Microsoft Corporation O36 - KnownDLLs: (URLMON) . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\URLMON.dll =>.© Microsoft Corporation O36 - KnownDLLs: (user32) . (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\user32.dll =>.© Microsoft Corporation O36 - KnownDLLs: (USP10) . (.Microsoft Corporation - Uniscribe Unicode script processor.) -- C:\Windows\System32\USP10.dll =>.© Microsoft Corporation O36 - KnownDLLs: (WININET) . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\WININET.dll =>.© Microsoft Corporation O36 - KnownDLLs: (WLDAP32) . (.Microsoft Corporation - DLL API LDAP Win32.) -- C:\Windows\System32\WLDAP32.dll =>.© Microsoft Corporation O36 - KnownDLLs: (WS2_32) . (.Microsoft Corporation - Windows Socket 2.0 32-Bit DLL.) -- C:\Windows\System32\WS2_32.dll =>.© Microsoft Corporation O36 - KnownDLLs: (DifxApi) . (.Microsoft Corporation - Driver Install Frameworks for API library m.) -- C:\Windows\System32\difxapi.dll =>.© Microsoft Corporation ~ 27 Session Manager Keys scanned in 0 second(s) ---\\ Tâches planifiées en automatique (O39) [MD5.C2CE3311D2477B1B24CFB67020AD49B6] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated - Adobe® Flash® Player Update Service 13.0 r0.) -- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [257712] =>.Adobe Systems Inc. [MD5.E7CDBC01674477840A64965E784374DE] [APT] [CCleanerSkipUAC] (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe [4370712] [MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files\Google\Update\GoogleUpdate.exe [116648] =>.Google Inc [MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files\Google\Update\GoogleUpdate.exe [116648] =>.Google Inc [MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-177024662-927064119-1537792423-1000Core] (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Corinne\AppData\Local\Google\Update\GoogleUpdate.exe [116648] =>.Google Inc [MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-177024662-927064119-1537792423-1000UA] (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Corinne\AppData\Local\Google\Update\GoogleUpdate.exe [116648] =>.Google Inc [MD5.EFB437D5DEB333C698E85D4912B7872D] [APT] [HPCustParticipation HP Officejet 6500 E710a-f] (.Hewlett-Packard Co. - HP Customer Participation..) -- C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HPCustPartic.exe [2485096] [MD5.00000000000000000000000000000000] [APT] [SoftwareUpdateTaskMachineCore] (...) -- C:\Program Files\Software\Update\SoftwareUpdate.exe [0] =>Adware.Boxore [MD5.00000000000000000000000000000000] [APT] [SoftwareUpdateTaskMachineUA] (...) -- C:\Program Files\Software\Update\SoftwareUpdate.exe [0] =>Adware.Boxore [MD5.8F653D52379DA611170BB6DE32BACB72] [APT] [DB4S5ZL1\Administrator - Start WLAN Tray Applet] (.Dell Inc. - Dell Wireless WLAN Card Wireless Network Tr.) -- C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE [4562944] O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated - Adobe® Flash® Player Update Service 13.0 r0.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc. - Programme d'installation de Google.) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1054] O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc. - Programme d'installation de Google.) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1058] O39 - APT: GoogleUpdateTaskUserS-1-5-21-177024662-927064119-1537792423-1000Core - (.Google Inc. - Programme d'installation de Google.) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-177024662-927064119-1537792423-1000Core.job [1034] O39 - APT: GoogleUpdateTaskUserS-1-5-21-177024662-927064119-1537792423-1000UA - (.Google Inc. - Programme d'installation de Google.) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-177024662-927064119-1537792423-1000UA.job [1086] O39 - APT: SoftwareUpdateTaskMachineCore - (...) -- C:\Program Files\Software\Update\SoftwareUpdate.exe [0] =>Adware.Boxore.) -- C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job [904] O39 - APT: SoftwareUpdateTaskMachineUA - (...) -- C:\Program Files\Software\Update\SoftwareUpdate.exe [0] =>Adware.Boxore.) -- C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job [908] ~ 17 Scheduled Tasks found in 1 second(s) ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\system32\wmploc.dll =>.© Microsoft Corporation O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\system32\themeui.dll =>.© Microsoft Corporation O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\system32\wmploc.dll =>.© Microsoft Corporation O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\system32\shell32.dll =>.© Microsoft Corporation O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.© Microsoft Corporation ~ 5 ActiveSetup scanned in 0 second(s) ---\\ Pilotes lancés au démarrage du système (O41) O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys =>.© Microsoft O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys =>.© Microsoft O41 - Driver: Pilote de CD-ROM (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys =>.© Microsoft O41 - Driver: C:\Windows\system32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\system32\drivers\csc.sys O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys =>.© Microsoft O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\system32\drivers\discache.sys =>.© Microsoft O41 - Driver: Link-Layer Topology Discovery Mapper I/O Driver (lltdio) . (.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - C:\Windows\system32\DRIVERS\lltdio.sys =>.© Microsoft O41 - Driver: C:\Windows\system32\drivers\luafv.sys (luafv) . (.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - C:\Windows\system32\drivers\luafv.sys =>.© Microsoft O41 - Driver: (mdmxsdk) . (.Conexant - Diagnostic Interface x86 Driver.) - C:\Windows\system32\DRIVERS\mdmxsdk.sys O41 - Driver: Pilote BIOS de gestion de systèmes Microsoft (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys =>.© Microsoft O41 - Driver: NetBIOS Interface (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys =>.© Microsoft O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys =>.© Microsoft O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys =>.© Microsoft O41 - Driver: (Parvdm) . (.Microsoft Corporation - Pilote parallèle VDM.) - C:\Windows\system32\DRIVERS\parvdm.sys O41 - Driver: PEAUTH (PEAUTH) . (.Microsoft Corporation - Protected Environment Authentication and Au.) - C:\Windows\system32\drivers\peauth.sys =>.© Microsoft O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys =>.© Microsoft O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\system32\DRIVERS\rdbss.sys =>.© Microsoft O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys =>.© Microsoft O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys =>.© Microsoft O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\system32\drivers\rdprefmp.sys =>.© Microsoft O41 - Driver: (rimspci) . (.REDC - RICOH MS Driver.) - C:\Windows\system32\DRIVERS\rimspe86.sys O41 - Driver: (risdpcie) . (.REDC - RICOH SD/MMC Driver.) - C:\Windows\system32\DRIVERS\risdpe86.sys O41 - Driver: Link-Layer Topology Discovery Responder (rspndr) . (.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - C:\Windows\system32\DRIVERS\rspndr.sys =>.© Microsoft O41 - Driver: TCP/IP Registry Compatibility (tcpipreg) . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - C:\Windows\system32\drivers\tcpipreg.sys =>.© Microsoft O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys =>.© Microsoft O41 - Driver: Pilote de périphérique terminal (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys =>.© Microsoft O41 - Driver: Bluetooth RFCOMM (Tosrfcom) . (.TOSHIBA Corporation - Bluetooth RFCOMM Driver.) - C:\Windows\system32\Drivers\tosrfcom.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\System32\drivers\vga.sys =>.© Microsoft O41 - Driver: Virtual WiFi Filter Driver (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys =>.© Microsoft O41 - Driver: WFP Lightweight Filter (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\system32\DRIVERS\wfplwf.sys =>.© Microsoft O41 - Driver: (XAudio) . (.Conexant Systems, Inc. - Modem Audio Device Driver.) - C:\Windows\system32\DRIVERS\XAudio32.sys ~ 32 Running Drivers scanned in 0 second(s) ---\\ Logiciels installés (O42) O42 - Logiciel: Adobe Flash Player 12 Plugin - (.Adobe Systems Incorporated.) [HKLM]-- Adobe Flash Player Plugin =>.© Adobe Systems Incorporated O42 - Logiciel: Advanced Audio FX Engine - (.Creative Technology Ltd.) [HKLM]-- Advanced Audio FX Engine O42 - Logiciel: CCleaner - (.Piriform.) [HKLM]-- CCleaner =>.© Piriform O42 - Logiciel: Conexant HD Audio - (.Conexant.) [HKLM]-- CNXT_AUDIO_HDA O42 - Logiciel: HDAUDIO Soft Data Fax Modem with SmartCP - (.Conexant Systems.) [HKLM]-- CNXT_MODEM_HDA_HSF O42 - Logiciel: Dell Webcam Central - (.Creative Technology Ltd.) [HKLM]-- Dell Webcam Central O42 - Logiciel: Dell Wireless WLAN Card Utility - (.Dell Inc..) [HKLM]-- Dell Wireless WLAN Card Utility O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM]-- Google Chrome =>.© Google Inc. O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM]-- HDMI =>.© Intel Corporation O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM]-- HOMESTUDENTR =>.© Microsoft Corporation O42 - Logiciel: K-Lite Codec Pack 6.0.4 (Basic) - (...) [HKLM]-- KLiteCodecPack_is1 O42 - Logiciel: Mozilla Firefox 28.0 (x86 fr) - (.Mozilla.) [HKLM]-- Mozilla Firefox 28.0 (x86 fr) =>.© Mozilla O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM]-- MozillaMaintenanceService =>.© Mozilla O42 - Logiciel: Intel(R) TV Wizard - (.Intel Corporation.) [HKLM]-- TVWiz =>.© Intel Corporation O42 - Logiciel: WinZipper - (.Taiwan Shui Mu Chih Ching Technology Limited..) [HKLM]-- WinZipper O42 - Logiciel: Roxio Creator Data - (.Roxio.) [HKLM]-- {08E81ABD-79F7-49C2-881F-FD6CB0975693} O42 - Logiciel: Roxio Creator DE 10.3 - (.Roxio.) [HKLM]-- {09760D42-E223-42AD-8C3E-55B47D0DDAC3} O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM]-- {0B0F231F-CE6A-483D-AA23-77B364F75917} =>.© Microsoft Corporation O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM]-- {18455581-E099-4BA8-BC6B-F34B2F06600C} =>.© Google Inc. O42 - Logiciel: Roxio Creator Tools - (.Roxio.) [HKLM]-- {1F54DAFA-9261-4A62-B59D-6C9F26B48FE4} O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM]-- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} =>.© Microsoft Corporation O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM]-- {200FEC62-3C34-4D60-9CE8-EC372E01C08F} =>.© Microsoft Corporation O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM]-- {205C6BDD-7B73-42DE-8505-9A093F35A238} =>.© Microsoft Corporation O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM]-- {2075CB0A-D26F-4DAA-B424-5079296B43BA} =>.© Microsoft Corporation O42 - Logiciel: Windows Live Remote Service - (.Microsoft Corporation.) [HKLM]-- {227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0} =>.© Microsoft Corporation O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM]-- {2318C2B1-4965-11d4-9B18-009027A5CD4F} =>.© Google Inc. O42 - Logiciel: Logiciel de base du périphérique HP Officejet 6500 E710a-f - (.Hewlett-Packard Co..) [HKLM]-- {24139861-F90F-4BC5-A4AB-D7B3BE950F49} =>.© Hewlett-Packard Co. O42 - Logiciel: Java 7 Update 55 - (.Oracle.) [HKLM]-- {26A24AE4-039D-4CA4-87B4-2F83217055FF} =>.© Oracle O42 - Logiciel: Roxio Update Manager - (.Roxio.) [HKLM]-- {30465B6C-B53F-49A1-9EBA-A3F187AD502E} O42 - Logiciel: Dell Edoc Viewer - (.Dell Inc.) [HKLM]-- {3138EAD3-700B-4A10-B617-B3F8096EE30D} O42 - Logiciel: YouTube Song Downloader - (.Abelssoft.) [HKLM]-- {4281435C-AD1D-4C8A-B9C0-3961C11EF142}_is1 O42 - Logiciel: Microsoft .NET Framework 4.5.1 - (.Microsoft Corporation.) [HKLM]-- {4903D172-DCCB-392F-93A3-34CA9D47FE3D} =>.© Microsoft Corporation O42 - Logiciel: Java Auto Updater - (.Sun Microsystems, Inc..) [HKLM]-- {4A03706F-666A-4037-7777-5F2748764D10} =>.© Sun Microsystems, Inc. O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM]-- {4CBABDFD-49F8-47FD-BE7D-ECDE7270525A} =>.© Microsoft Corporation O42 - Logiciel: Google Earth - (.Google.) [HKLM]-- {4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E} =>.© Google O42 - Logiciel: Cisco LEAP Module - (.Cisco Systems, Inc..) [HKLM]-- {51C7AD07-C3F6-4635-8E8A-231306D810FE} O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM]-- {53B20C18-D8D4-4588-8737-9BBFE303C354} =>.© Microsoft Corporation O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM]-- {61AD15B2-50DB-4686-A739-14FE180D4429} =>.© Microsoft Corporation O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM]-- {64BF0187-F3D2-498B-99EA-163AF9AE6EC9} O42 - Logiciel: Live! Cam Avatar Creator - (.Creative Technology Ltd.) [HKLM]-- {65D0C510-D7B6-4438-9FC8-E6B91115AB0D} O42 - Logiciel: Roxio Express Labeler 3 - (.Roxio.) [HKLM]-- {6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA} O42 - Logiciel: PowerDVD DX - (.CyberLink Corp..) [HKLM]-- {6811CAA0-BF12-11D4-9EA1-0050BAE317E1} =>.© CyberLink Corp. O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM]-- {682B3E4F-696A-42DE-A41C-4C07EA1678B4} =>.© Microsoft Corporation O42 - Logiciel: Microsoft_VC100_CRT_x86 - (.Microsoft.) [HKLM]-- {6FDDB201-2CA0-42BD-973F-7B2C4A61EA3F} =>.© Microsoft O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM]-- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2} =>.© Microsoft Corporation O42 - Logiciel: Roxio Creator Audio - (.Roxio.) [HKLM]-- {73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83} O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM]-- {787D1A33-A97B-4245-87C0-7174609A540C} =>.© Hewlett-Packard O42 - Logiciel: Skype™ 6.13 - (.Skype Technologies S.A..) [HKLM]-- {7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7} =>.© Skype Technologies S.A. O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM]-- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} =>.© Microsoft Corporation O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM]-- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} =>.© Microsoft O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]-- {90120000-0016-040C-0000-0000000FF1CE} =>.© Microsoft Corporation O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM]-- {90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8} =>.© Microsoft O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]-- {90120000-0018-040C-0000-0000000FF1CE} =>.© Microsoft Corporation O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM]-- {90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8} =>.© Microsoft O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]-- {90120000-001B-040C-0000-0000000FF1CE} =>.© Microsoft Corporation O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM]-- {90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8} =>.© Microsoft O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM]-- {90120000-001F-0401-0000-0000000FF1CE} =>.© Microsoft Corporation O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM]-- {90120000-001F-0401-0000-0000000FF1CE}_HOMESTUDENTR_{3E8EA473-ECCE-405F-A9CA-59446AEADD3A} =>.© Microsoft O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM]-- {90120000-001F-0407-0000-0000000FF1CE} =>.© Microsoft Corporation O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM]-- {90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{928D7B99-2BEA-49F9-83B8-20FA57860643} =>.© Microsoft O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM]-- {90120000-001F-0409-0000-0000000FF1CE} =>.© Microsoft Corporation O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM]-- {90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F} =>.© Microsoft O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM]-- {90120000-001F-040C-0000-0000000FF1CE} =>.© Microsoft Corporation O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM]-- {90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{71F055E8-E2C6-4214-BB3D-BFE03561B89E} =>.© Microsoft O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM]-- {90120000-001F-0413-0000-0000000FF1CE} =>.© Microsoft Corporation O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM]-- {90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{2C95E7EE-FEA7-4B3A-A6E5-DF90A88B816A} =>.© Microsoft O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM]-- {90120000-001F-0C0A-0000-0000000FF1CE} =>.© Microsoft Corporation O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM]-- {90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC} =>.© Microsoft O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM]-- {90120000-002C-040C-0000-0000000FF1CE} =>.© Microsoft Corporation O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]-- {90120000-006E-040C-0000-0000000FF1CE} =>.© Microsoft Corporation O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM]-- {90120000-006E-040C-0000-0000000FF1CE}_HOMESTUDENTR_{8283FD64-6A3B-4104-9E12-7CA25EF29A1A} =>.© Microsoft O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]-- {90120000-00A1-040C-0000-0000000FF1CE} =>.© Microsoft Corporation O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM]-- {90120000-00A1-040C-0000-0000000FF1CE}_HOMESTUDENTR_{CF3C20A6-47B7-48DA-95C1-6FBB5A439AF8} =>.© Microsoft O42 - Logiciel: Microsoft Office File Validation Add-In - (.Microsoft Corporation.) [HKLM]-- {90140000-2005-0000-0000-0000000FF1CE} =>.© Microsoft Corporation O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM]-- {91120000-002F-0000-0000-0000000FF1CE} =>.© Microsoft Corporation O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM]-- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93} =>.© Microsoft O42 - Logiciel: Microsoft .NET Framework 4.5.1 - (.Microsoft Corporation.) [HKLM]-- {92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033 =>.© Microsoft Corporation O42 - Logiciel: Microsoft .NET Framework 4.5.1 (Français) - (.Microsoft Corporation.) [HKLM]-- {92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036 =>.© Microsoft Corporation O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM]-- {95120000-00B9-0409-0000-0000000FF1CE} =>.© Microsoft Corporation O42 - Logiciel: HP Officejet 6500 E710a-f Aide - (.Hewlett Packard.) [HKLM]-- {958B08B0-C784-4A77-8D2B-C0A58F1E14B5} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM]-- {9A25302D-30C0-39D9-BD6F-21E6EC160475} =>.© Microsoft Corporation O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM]-- {9BE518E6-ECC6-35A9-88E4-87755C07200F} =>.© Microsoft Corporation O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM]-- {9D56775A-93F3-44A3-8092-840E3826DE30} =>.© Microsoft Corporation O42 - Logiciel: Dell Touchpad - (.ALPS ELECTRIC CO., LTD..) [HKLM]-- {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD} =>.© ALPS ELECTRIC CO., LTD. O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM]-- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>.© Google Inc. O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM]-- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3} =>.© Microsoft Corporation O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM]-- {AAAFC670-569B-4A2F-82B4-42945E0DE3EF} =>.© Microsoft Corporation O42 - Logiciel: Adobe Reader XI (11.0.06) - Français - (.Adobe Systems Incorporated.) [HKLM]-- {AC76BA86-7AD7-1036-7B44-AB0000000001} =>.© Adobe Systems Incorporated O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM]-- {AF844339-2F8A-4593-81B3-9F4C54038C4E} =>.© Microsoft Corporation O42 - Logiciel: Roxio Creator Copy - (.Roxio.) [HKLM]-- {B6A26DE5-F2B5-4D58-9570-4FC760E00FCD} O42 - Logiciel: HP Officejet 6500 E710a-f - Enquête sur l'amélioration du produit - (.Hewlett-Packard Co..) [HKLM]-- {C2003A3C-D814-420E-BE39-679993323C10} =>.© Hewlett-Packard Co. O42 - Logiciel: Microsoft .NET Framework 4.5.1 (FRA) - (.Microsoft Corporation.) [HKLM]-- {C507986C-A83D-3F09-9099-5E1AF20BE648} =>.© Microsoft Corporation O42 - Logiciel: I.R.I.S. OCR - (.HP.) [HKLM]-- {CA6BCA2F-EDEB-408F-850B-31404BE16A61} O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM]-- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2} =>.© Microsoft Corporation O42 - Logiciel: Bluetooth Stack for Windows by Toshiba - (.TOSHIBA CORPORATION.) [HKLM]-- {CEBB6BFB-D708-4F99-A633-BC2600E01EF6} =>.© TOSHIBA CORPORATION O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM]-- {D45240D3-B6B3-4FF9-B243-54ECE3E10066} =>.© Microsoft Corporation O42 - Logiciel: Dell Backup and Recovery Manager - (.Dell Inc..) [HKLM]-- {DC0EE5A9-AB37-4663-BEA1-C12078D5DCB0} O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM]-- {E09C4DB7-630C-4F06-A631-8EA7239923AF} =>.© Microsoft O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM]-- {EB4DF488-AAEF-406F-A341-CB2AAA315B90} =>.© Microsoft Corporation O42 - Logiciel: Roxio Creator DE 10.3 - (.Roxio.) [HKLM]-- {ED439A64-F018-4DD4-8BA5-328D85AB09AB} O42 - Logiciel: Cisco PEAP Module - (.Cisco Systems, Inc..) [HKLM]-- {ED5776D5-59B4-46B7-AF81-5F2D94D7C640} O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM]-- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} =>.© Microsoft Corporation O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM]-- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570} =>.© Microsoft Corporation O42 - Logiciel: Raccourcis Marketsplash - (.Hewlett-Packard.) [HKLM]-- {FB0C267C-8B4F-4867-8161-A6A3B66D42C1} =>.© Hewlett-Packard ~ 104 Softwares scanned in 0 second(s) ---\\ Clés de registre software HKCU & HKLM HKLM\SOFTWARE\Adobe =>.© Adobe HKLM\SOFTWARE\Alps HKLM\SOFTWARE\ATI Technologies =>.© ATI Technologies HKLM\SOFTWARE\BcmSetup HKLM\SOFTWARE\Boxore =>Adware.Boxore HKLM\SOFTWARE\Broadcom HKLM\SOFTWARE\CDDB HKLM\SOFTWARE\Conexant HKLM\SOFTWARE\Conexant Systems HKLM\SOFTWARE\Creative HKLM\SOFTWARE\Creative Tech HKLM\SOFTWARE\CXT HKLM\SOFTWARE\CyberLink =>.© CyberLink HKLM\SOFTWARE\Dell HKLM\SOFTWARE\Dell Computer Corporation HKLM\SOFTWARE\dotNetInstaller HKLM\SOFTWARE\GNU HKLM\SOFTWARE\Google =>.© Google HKLM\SOFTWARE\hdcode HKLM\SOFTWARE\Hewlett-Packard =>.© Hewlett-Packard HKLM\SOFTWARE\HP HKLM\SOFTWARE\IM Providers HKLM\SOFTWARE\InstalledOptions HKLM\SOFTWARE\Intel =>.© Intel HKLM\SOFTWARE\JavaSoft =>.© JavaSoft HKLM\SOFTWARE\JreMetrics HKLM\SOFTWARE\KLCodecPack HKLM\SOFTWARE\Macromedia =>.© Macromedia HKLM\SOFTWARE\Microsoft =>.© Microsoft HKLM\SOFTWARE\MicroVision HKLM\SOFTWARE\Mozilla =>.© Mozilla HKLM\SOFTWARE\mozilla.org =>.© mozilla.org HKLM\SOFTWARE\MozillaPlugins =>.© MozillaPlugins HKLM\SOFTWARE\ODBC HKLM\SOFTWARE\Piriform =>.© Piriform HKLM\SOFTWARE\Roxio HKLM\SOFTWARE\Skype =>.© Skype HKLM\SOFTWARE\Sonic HKLM\SOFTWARE\supTab =>PUP.SupTab HKLM\SOFTWARE\supWPM =>PUP.WpManager HKLM\SOFTWARE\Toshiba =>.© Toshiba HKLM\SOFTWARE\V9 HKLM\SOFTWARE\Windows HKLM\SOFTWARE\winzipersvc HKLM\SOFTWARE\Wpm =>PUP.WpManager HKLM\SOFTWARE\Wow6432Node\Google =>.© Google HKLM\SOFTWARE\Wow6432Node\Microsoft =>.© Microsoft HKLM\SOFTWARE\Wow6432Node\Mozilla =>.© Mozilla HKCU\Software\Adobe =>.© Adobe HKCU\Software\Alps HKCU\Software\BitTorrent =>P2P.BitTorrent HKCU\Software\Boxore =>Adware.Boxore HKCU\Software\Broadcom HKCU\Software\Creative Tech HKCU\Software\Cyberlink =>.© Cyberlink HKCU\Software\GNU HKCU\Software\Google =>.© Google HKCU\Software\HP HKCU\Software\IM Providers HKCU\Software\IminentToolbar =>Adware.IMBooster HKCU\Software\IncrediMail HKCU\Software\Intel =>.© Intel HKCU\Software\JavaSoft =>.© JavaSoft HKCU\Software\Local AppWizard-Generated Applications HKCU\Software\Macromedia =>.© Macromedia HKCU\Software\Microsoft =>.© Microsoft HKCU\Software\Mozilla =>.© Mozilla HKCU\Software\MozillaPlugins =>.© MozillaPlugins HKCU\Software\Netscape =>.© Netscape HKCU\Software\ODBC HKCU\Software\Piriform =>.© Piriform HKCU\Software\Roxio HKCU\Software\Skype =>.© Skype HKCU\Software\TeleCharger HKCU\Software\Toshiba =>.© Toshiba HKCU\Software\Trolltech HKCU\Software\AppDataLow\Software\JavaSoft =>.© JavaSoft HKCU\Software\AppDataLow\Software\Microsoft =>.© Microsoft ~ 78 Software Keys scanned in 0 second(s) ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 07/01/2014 - 15:44:08 - [] ----D- C:\Program Files\Adobe =>.© O43 - CFD: 25/04/2014 - 20:11:42 - [] ----D- C:\Program Files\AVAST Software =>.© O43 - CFD: 07/01/2014 - 16:11:48 - [] ----D- C:\Program Files\CCleaner O43 - CFD: 10/04/2010 - 21:41:19 - [] ----D- C:\Program Files\Cisco =>.© O43 - CFD: 14/07/2009 - 04:37:05 - [] ----D- C:\Program Files\Common Files O43 - CFD: 10/04/2010 - 14:29:41 - [] ----D- C:\Program Files\CONEXANT O43 - CFD: 10/04/2010 - 21:51:06 - [] ----D- C:\Program Files\Creative =>.© O43 - CFD: 10/04/2010 - 21:50:31 - [] ----D- C:\Program Files\Creative Live! Cam =>.© O43 - CFD: 10/04/2010 - 21:50:00 - [] ----D- C:\Program Files\CyberLink =>.© O43 - CFD: 10/04/2010 - 21:37:43 - [] ----D- C:\Program Files\Dell O43 - CFD: 10/04/2010 - 21:36:28 - [] ----D- C:\Program Files\Dell Inc O43 - CFD: 10/04/2010 - 21:50:37 - [] ----D- C:\Program Files\Dell Webcam O43 - CFD: 11/04/2010 - 00:22:25 - [] ----D- C:\Program Files\DellTPad O43 - CFD: 14/07/2009 - 06:52:30 - [] ----D- C:\Program Files\DVD Maker =>.© O43 - CFD: 07/01/2014 - 10:40:27 - [?] -SH-D- C:\Program Files\Fichiers communs O43 - CFD: 07/01/2014 - 10:50:38 - [] ----D- C:\Program Files\Google O43 - CFD: 03/03/2014 - 14:37:12 - [] ----D- C:\Program Files\Hewlett-Packard =>.© O43 - CFD: 03/03/2014 - 14:34:41 - [] ----D- C:\Program Files\HP O43 - CFD: 10/04/2010 - 21:50:00 - [] --H-D- C:\Program Files\InstallShield Installation Information =>.© O43 - CFD: 10/04/2010 - 21:35:51 - [] ----D- C:\Program Files\Intel O43 - CFD: 14/07/2009 - 04:37:05 - [] ----D- C:\Program Files\Internet Explorer =>.© O43 - CFD: 07/01/2014 - 13:23:12 - [] ----D- C:\Program Files\Java O43 - CFD: 06/02/2014 - 08:39:25 - [] ----D- C:\Program Files\K-Lite Codec Pack O43 - CFD: 10/04/2010 - 21:46:37 - [] ----D- C:\Program Files\Microsoft =>.© Microsoft O43 - CFD: 10/01/2014 - 14:32:23 - [] ----D- C:\Program Files\Microsoft Office =>.© Microsoft O43 - CFD: 10/04/2010 - 21:49:29 - [] ----D- C:\Program Files\Microsoft Silverlight =>.© Microsoft O43 - CFD: 10/04/2010 - 21:47:54 - [] ----D- C:\Program Files\Microsoft SQL Server Compact Edition =>.© Microsoft O43 - CFD: 10/01/2014 - 14:35:24 - [] ----D- C:\Program Files\Microsoft Works =>.© Microsoft O43 - CFD: 30/03/2014 - 09:38:16 - [] ----D- C:\Program Files\Mozilla Firefox =>.© O43 - CFD: 07/01/2014 - 16:07:12 - [] ----D- C:\Program Files\Mozilla Maintenance Service =>.© O43 - CFD: 14/07/2009 - 06:52:30 - [] ----D- C:\Program Files\MSBuild =>.© O43 - CFD: 14/07/2009 - 06:52:30 - [] ----D- C:\Program Files\Reference Assemblies =>.© O43 - CFD: 10/04/2010 - 21:42:22 - [] ----D- C:\Program Files\Roxio =>.© O43 - CFD: 16/04/2014 - 14:00:01 - [] ----D- C:\Program Files\RrFilter =>PUP.SupraSavings O43 - CFD: 23/01/2014 - 14:43:29 - [] R---D- C:\Program Files\Skype =>.© O43 - CFD: 30/01/2014 - 13:11:38 - [] ----D- C:\Program Files\SupTab =>PUP.SupTab O43 - CFD: 10/04/2010 - 21:37:47 - [] ----D- C:\Program Files\Toshiba =>.© O43 - CFD: 14/07/2009 - 06:53:23 - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 14/07/2009 - 06:52:30 - [] ----D- C:\Program Files\Windows Defender =>.© O43 - CFD: 14/07/2009 - 11:01:38 - [] ----D- C:\Program Files\Windows Journal O43 - CFD: 10/04/2010 - 21:45:54 - [] ----D- C:\Program Files\Windows Live =>.© O43 - CFD: 10/04/2010 - 21:46:15 - [] ----D- C:\Program Files\Windows Live SkyDrive =>.© O43 - CFD: 14/07/2009 - 04:37:05 - [] ----D- C:\Program Files\Windows Mail =>.© O43 - CFD: 14/07/2009 - 06:52:30 - [] ----D- C:\Program Files\Windows Media Player =>.© O43 - CFD: 14/07/2009 - 04:37:05 - [] ----D- C:\Program Files\Windows NT O43 - CFD: 14/07/2009 - 06:52:30 - [] ----D- C:\Program Files\Windows Photo Viewer =>.© O43 - CFD: 14/07/2009 - 06:52:30 - [] ----D- C:\Program Files\Windows Portable Devices =>.© O43 - CFD: 14/07/2009 - 06:52:30 - [] ----D- C:\Program Files\Windows Sidebar =>.© O43 - CFD: 27/02/2014 - 08:02:03 - [] ----D- C:\Program Files\WinZipper =>.© O43 - CFD: 06/02/2014 - 08:52:30 - [] ----D- C:\Program Files\YouTube Song Downloader O43 - CFD: 26/04/2014 - 10:48:51 - [] ----D- C:\Program Files\ZHPDiag =>.© O43 - CFD: 07/01/2014 - 15:44:08 - [] ----D- C:\Program Files\Common Files\Adobe =>.© O43 - CFD: 10/01/2014 - 14:35:09 - [] ----D- C:\Program Files\Common Files\DESIGNER =>.© O43 - CFD: 10/04/2010 - 21:42:22 - [] ----D- C:\Program Files\Common Files\InstallShield =>.© O43 - CFD: 07/01/2014 - 13:23:31 - [] ----D- C:\Program Files\Common Files\Java O43 - CFD: 14/07/2009 - 04:37:05 - [] ----D- C:\Program Files\Common Files\microsoft shared =>.© O43 - CFD: 10/04/2010 - 21:42:36 - [] ----D- C:\Program Files\Common Files\PX Storage Engine O43 - CFD: 10/04/2010 - 21:51:27 - [] ----D- C:\Program Files\Common Files\Reallusion O43 - CFD: 10/04/2010 - 21:42:26 - [] ----D- C:\Program Files\Common Files\Roxio Shared =>.© O43 - CFD: 14/07/2009 - 04:37:05 - [] ----D- C:\Program Files\Common Files\Services O43 - CFD: 23/01/2014 - 14:43:30 - [] ----D- C:\Program Files\Common Files\Skype =>.© O43 - CFD: 10/04/2010 - 21:42:36 - [] ----D- C:\Program Files\Common Files\Sonic Shared =>.© O43 - CFD: 14/07/2009 - 04:37:05 - [] ----D- C:\Program Files\Common Files\SpeechEngines =>.© O43 - CFD: 10/04/2010 - 21:42:56 - [] ----D- C:\Program Files\Common Files\SureThing Shared O43 - CFD: 14/07/2009 - 04:37:05 - [] ----D- C:\Program Files\Common Files\System O43 - CFD: 10/04/2010 - 21:43:06 - [] ----D- C:\Program Files\Common Files\Windows Live =>.© O43 - CFD: 14/07/2009 - 04:37:05 - [] R---D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 14/07/2009 - 06:52:30 - [] R---D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.© O43 - CFD: 10/04/2010 - 21:37:58 - [] R---D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bluetooth O43 - CFD: 07/01/2014 - 16:11:50 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner O43 - CFD: 10/04/2010 - 21:37:44 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell O43 - CFD: 10/04/2010 - 21:51:06 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Webcam O43 - CFD: 10/04/2010 - 21:39:56 - [] R---D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Wireless O43 - CFD: 14/07/2009 - 06:52:30 - [] R---D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 07/01/2014 - 10:52:26 - [0] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome =>.© O43 - CFD: 17/02/2014 - 19:01:45 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth O43 - CFD: 03/03/2014 - 14:36:01 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP O43 - CFD: 27/04/2014 - 09:03:49 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java O43 - CFD: 14/07/2009 - 04:37:05 - [] R---D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 10/01/2014 - 14:36:18 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office =>.© Microsoft O43 - CFD: 07/01/2014 - 14:20:20 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight =>.© Microsoft O43 - CFD: 10/04/2010 - 21:42:38 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roxio Creator DE =>.© O43 - CFD: 23/01/2014 - 14:43:30 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype =>.© O43 - CFD: 14/07/2009 - 04:37:05 - [] R---D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 14/07/2009 - 11:00:41 - [0] R-H-D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC O43 - CFD: 07/01/2014 - 14:31:38 - [] R---D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live =>.© O43 - CFD: 27/02/2014 - 08:02:04 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper =>.© O43 - CFD: 06/02/2014 - 09:26:46 - [] ----D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Song Downloader O43 - CFD: 07/01/2014 - 15:43:46 - [] ----D- C:\ProgramData\Adobe =>.© O43 - CFD: 14/07/2009 - 06:53:55 - [?] -SH-D- C:\ProgramData\Application Data =>.© O43 - CFD: 07/01/2014 - 10:49:41 - [] ----D- C:\ProgramData\AVAST Software =>.© O43 - CFD: 07/01/2014 - 12:54:51 - [] ----D- C:\ProgramData\BoxUpdChk =>Adware.Boxore O43 - CFD: 07/01/2014 - 10:40:27 - [?] -SH-D- C:\ProgramData\Bureau =>.© O43 - CFD: 29/01/2014 - 16:26:45 - [] ----D- C:\ProgramData\Creative =>.© O43 - CFD: 10/04/2010 - 21:50:12 - [] ----D- C:\ProgramData\Dell O43 - CFD: 14/07/2009 - 06:53:55 - [?] -SH-D- C:\ProgramData\Desktop =>.© O43 - CFD: 14/07/2009 - 06:53:55 - [?] -SH-D- C:\ProgramData\Documents =>.© O43 - CFD: 07/01/2014 - 10:40:27 - [?] -SH-D- C:\ProgramData\Favoris =>.© O43 - CFD: 14/07/2009 - 06:53:55 - [?] -SH-D- C:\ProgramData\Favorites =>.© O43 - CFD: 07/01/2014 - 10:52:51 - [] ----D- C:\ProgramData\Google O43 - CFD: 03/03/2014 - 14:35:25 - [] ----D- C:\ProgramData\HP O43 - CFD: 30/01/2014 - 13:11:42 - [] ----D- C:\ProgramData\IePluginService =>Trojan.SProtector O43 - CFD: 10/04/2010 - 21:42:24 - [] ----D- C:\ProgramData\InstallShield =>.© O43 - CFD: 07/01/2014 - 10:40:27 - [?] -SH-D- C:\ProgramData\Menu Démarrer =>.© O43 - CFD: 14/07/2009 - 04:37:05 - [] -S--D- C:\ProgramData\Microsoft =>.© Microsoft O43 - CFD: 10/01/2014 - 14:32:23 - [] ----D- C:\ProgramData\Microsoft Help =>.© Microsoft O43 - CFD: 07/01/2014 - 10:40:27 - [?] -SH-D- C:\ProgramData\Modèles =>.© O43 - CFD: 07/01/2014 - 16:07:15 - [] ----D- C:\ProgramData\Mozilla =>.© O43 - CFD: 07/01/2014 - 13:24:36 - [0] ----D- C:\ProgramData\Oracle =>.© O43 - CFD: 23/01/2014 - 14:43:24 - [] ----D- C:\ProgramData\Skype =>.© O43 - CFD: 10/04/2010 - 21:42:40 - [] ----D- C:\ProgramData\Sonic =>.© O43 - CFD: 14/07/2009 - 06:53:55 - [?] -SH-D- C:\ProgramData\Start Menu O43 - CFD: 07/01/2014 - 13:23:32 - [] ----D- C:\ProgramData\Sun O43 - CFD: 16/04/2014 - 14:24:46 - [0] ----D- C:\ProgramData\TEMP O43 - CFD: 14/07/2009 - 06:53:55 - [?] -SH-D- C:\ProgramData\Templates =>.© O43 - CFD: 10/04/2010 - 21:59:43 - [] ----D- C:\ProgramData\TOSHIBA =>.© O43 - CFD: 10/04/2010 - 21:42:08 - [] ----D- C:\ProgramData\Trend Micro O43 - CFD: 10/04/2010 - 21:42:57 - [] ----D- C:\ProgramData\Uninstall O43 - CFD: 30/01/2014 - 13:11:33 - [] ----D- C:\ProgramData\WPM =>PUP.WpManager O43 - CFD: 07/01/2014 - 10:40:27 - [?] -SH-D- C:\ProgramData\Microsoft\Windows\Start Menu\Programmes O43 - CFD: 14/07/2009 - 04:37:05 - [] R---D- C:\ProgramData\Microsoft\Windows\Start Menu\Programs =>.© O43 - CFD: 16/04/2014 - 14:15:54 - [] ----D- C:\Users\Corinne\AppData\Local\41 O43 - CFD: 06/02/2014 - 08:39:38 - [] ----D- C:\Users\Corinne\AppData\Local\Abelssoft O43 - CFD: 07/01/2014 - 15:35:39 - [] ----D- C:\Users\Corinne\AppData\Local\Adobe =>.© O43 - CFD: 07/01/2014 - 10:40:39 - [?] -SH-D- C:\Users\Corinne\AppData\Local\Application Data =>.© O43 - CFD: 29/01/2014 - 17:06:06 - [] ----D- C:\Users\Corinne\AppData\Local\Diagnostics O43 - CFD: 22/04/2014 - 04:42:23 - [?] -SH-D- C:\Users\Corinne\AppData\Local\EmieSiteList O43 - CFD: 22/04/2014 - 04:42:23 - [?] -SH-D- C:\Users\Corinne\AppData\Local\EmieUserList O43 - CFD: 07/01/2014 - 10:50:38 - [] ----D- C:\Users\Corinne\AppData\Local\Google O43 - CFD: 07/01/2014 - 10:40:39 - [?] -SH-D- C:\Users\Corinne\AppData\Local\Historique =>.© O43 - CFD: 03/03/2014 - 14:34:09 - [] ----D- C:\Users\Corinne\AppData\Local\HP O43 - CFD: 07/01/2014 - 16:09:55 - [] ----D- C:\Users\Corinne\AppData\Local\Macromedia =>.© O43 - CFD: 07/01/2014 - 10:40:39 - [] ----D- C:\Users\Corinne\AppData\Local\Microsoft =>.© Microsoft O43 - CFD: 10/01/2014 - 14:32:28 - [] ----D- C:\Users\Corinne\AppData\Local\Microsoft Help =>.© Microsoft O43 - CFD: 07/01/2014 - 16:07:24 - [] ----D- C:\Users\Corinne\AppData\Local\Mozilla =>.© O43 - CFD: 06/02/2014 - 08:39:13 - [] ----D- C:\Users\Corinne\AppData\Local\Programs =>.© O43 - CFD: 23/01/2014 - 14:43:56 - [] ----D- C:\Users\Corinne\AppData\Local\Skype =>.© O43 - CFD: 07/01/2014 - 10:40:39 - [] ----D- C:\Users\Corinne\AppData\Local\Temp O43 - CFD: 07/01/2014 - 10:40:39 - [?] -SH-D- C:\Users\Corinne\AppData\Local\Temporary Internet Files =>.© O43 - CFD: 07/01/2014 - 10:41:50 - [] ----D- C:\Users\Corinne\AppData\Local\Toshiba =>.© O43 - CFD: 07/01/2014 - 10:40:41 - [0] ----D- C:\Users\Corinne\AppData\Local\VirtualStore =>.© O43 - CFD: 07/01/2014 - 14:27:01 - [] ----D- C:\Users\Corinne\AppData\Local\Windows Live =>.© O43 - CFD: 07/01/2014 - 10:48:13 - [] ----D- C:\Users\Corinne\AppData\Local\WindowsUpdate ~ 143 Folders found in 1 second(s) ---\\ Scan Additionnel (O88 ) Database Version : 13036 (30/03/2014) Clés trouvées (Keys found) : 7 Dossiers trouvés (Folders found) : 5 Fichiers trouvés (Files found) : 7 HKLM\SOFTWARE\Boxore =>Adware.Boxore HKLM\SOFTWARE\supTab =>PUP.SupTab HKLM\SOFTWARE\supWPM =>PUP.WpManager HKLM\SOFTWARE\Wpm =>PUP.WpManager HKCU\Software\BitTorrent =>P2P.BitTorrent HKCU\Software\Boxore =>Adware.Boxore HKCU\Software\IminentToolbar =>Adware.IMBooster C:\Program Files\RrFilter =>PUP.SupraSavings C:\Program Files\SupTab =>PUP.SupTab C:\ProgramData\BoxUpdChk =>Adware.Boxore C:\ProgramData\IePluginService =>Trojan.SProtector C:\ProgramData\WPM =>PUP.WpManager C:\ProgramData\WPM\wprotectmanager.exe =>PUP.WpManager C:\Program Files\Software\Update\SoftwareUpdate.exe =>Adware.Boxore C:\Program Files\Software\Update\SoftwareUpdate.exe =>Adware.Boxore C:\Program Files\Software\Update\SoftwareUpdate.exe =>Adware.Boxore C:\Windows\Prefetch\BOXORE.EXE-77015CEB.pf =>Adware.Boxore C:\Windows\Prefetch\UMBRELLA.EXE-1E9FAE5B.pf =>Adware.IMBooster C:\Windows\Prefetch\WEBPLAYER.EXE-8D204639.pf =>Adware.SocialSkinz ~ Additionnal Scan: 123278 Items scanned in 4 seconds ---\ Récapitulatif des détections trouvées sur votre station ~ http://nicolascoolman.webs.com/apps/blog/show/41817737-pup-extendedprotection =>PUP.ExtendedProtection ~ http://nicolascoolman.webs.com/apps/blog/show/27875657-toolbar-deltasearch =>toolbar.DeltaSearch ~ http://nicolascoolman.webs.com/apps/blog/show/26626977-adware-boxore =>Adware.Boxore ~ http://nicolascoolman.webs.com/apps/blog/show/41011964-pup-awesomehp =>PUP.Awesomehp ~ http://nicolascoolman.webs.com/apps/blog/show/27146838-adware-mywebsearch =>Adware.MyWebSearch ~ http://nicolascoolman.webs.com/apps/blog/show/38737316-pup-wpmanager =>PUP.WpManager ~ http://nicolascoolman.webs.com/apps/blog/show/41133513-pup-suptab =>PUP.SupTab ~ http://nicolascoolman.webs.com/apps/blog/show/26684723-adware-imbooster =>Adware.IMBooster ~ http://nicolascoolman.webs.com/apps/blog/show/42067481-pup-suprasaving =>PUP.SupraSavings ~ http://nicolascoolman.webs.com/apps/blog/show/40789592-trojan-sprotector =>Trojan.SProtector ~ http://nicolascoolman.webs.com/apps/blog/show/27480243-adware-socialskinz =>Adware.SocialSkinz ~ http://nicolascoolman.webs.com/apps/blog/show/35120459-adware-airinstaller =>Adware.AirInstaller ~ http://nicolascoolman.webs.com/apps/blog/show/40869827-pup-maucampo =>PUP.Maucampo ~ MSI: 13 link(s) detected ~ End of the scan (0/1018 lines) in 20 seconds)---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.36C73BBC60D769D10067ED66DC6266AB] - 23/04/2014 - 10:58:54 ---A-- . (.Microsoft Corporation - Mise à jour des données de compatibilité de.) -- C:\Windows\System32\aepdu.dll [361984] =>.© Microsoft O44 - LFC:[MD5.00000000000000000000000000000000] - ----D- . (...) -- C:\Windows\System32\appmgmt [0] O44 - LFC:[MD5.00000000000000000000000000000000] - -S--D- . (...) -- C:\Windows\System32\CompatTel [0] O44 - LFC:[MD5.7E9FE7DB43BC204E44F159F843E35C15] - 25/04/2014 - 18:50:17 ---A-- . (.Microsoft Corporation - DirectX Media -- Image DirectX Transforms.) -- C:\Windows\System32\dxtmsft.dll [367616] =>.© Microsoft O44 - LFC:[MD5.34FC79C948EE2C5FD0CD699E7D7F91B7] - 25/04/2014 - 18:50:17 ---A-- . (.Microsoft Corporation - DirectX Media -- DirectX Transform Core.) -- C:\Windows\System32\dxtrans.dll [244224] =>.© Microsoft O44 - LFC:[MD5.E5E97E94DD9D69D8EE90CFA96156CD8A] - 25/04/2014 - 18:50:16 ---A-- . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe [575488] =>.© Microsoft O44 - LFC:[MD5.BB185D4A9362AA17CBCEC0768CDBF249] - 25/04/2014 - 18:50:19 ---A-- . (.Microsoft Corporation - Microsoft SmartScreen Filter.) -- C:\Windows\System32\ieapfltr.dll [704512] =>.© Microsoft O44 - LFC:[MD5.2101D94DED769CE86A3DE1152F4FCDF5] - 25/04/2014 - 18:50:15 ---A-- . (.Microsoft Corporation - IE ETW Collector Service.) -- C:\Windows\System32\ieetwcollector.exe [108032] =>.© Microsoft O44 - LFC:[MD5.116632CE6DF92EA78C2B849E1279B1FA] - 25/04/2014 - 18:50:19 ---A-- . (.Microsoft Corporation - IE ETW Collector Service Resources.) -- C:\Windows\System32\ieetwcollectorres.dll [4096] =>.© Microsoft O44 - LFC:[MD5.6557B48D53D653CFCCE3CB1CFA53A8E1] - 25/04/2014 - 18:50:15 ---A-- . (.Microsoft Corporation - IE ETW Collector Proxy Stub Resources.) -- C:\Windows\System32\ieetwproxystub.dll [51200] =>.© Microsoft O44 - LFC:[MD5.2AFBB91BBD2378933B26E6D68C140D1B] - 25/04/2014 - 18:50:10 ---A-- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll [11745792] =>.© Microsoft O44 - LFC:[MD5.0FDC1A576A3F40420882C0F7C4A66EAD] - 25/04/2014 - 18:50:16 ---A-- . (.Microsoft Corporation - Traitement de RunOnce complet avec interfac.) -- C:\Windows\System32\iernonce.dll [32768] =>.© Microsoft O44 - LFC:[MD5.05BD47136DE62FAFE9F95B40E4100144] - 25/04/2014 - 18:50:12 ---A-- . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\System32\iertutil.dll [2178048] =>.© Microsoft O44 - LFC:[MD5.82287FCFFA4A2D60FD744E3FEB3192C5] - 25/04/2014 - 18:50:16 ---A-- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\System32\iesetup.dll [61952] =>.© Microsoft O44 - LFC:[MD5.AA12D7A960DB78DD9690AB5B5DAE6586] - 25/04/2014 - 18:50:21 ---A-- . (.Microsoft Corporation - Moteur de l’interface utilisateur d’Interne.) -- C:\Windows\System32\ieui.dll [440832] =>.© Microsoft O44 - LFC:[MD5.21BF6759685FD193715B483F2B3F21B1] - 25/04/2014 - 18:50:16 ---A-- . (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) -- C:\Windows\System32\ieUnatt.exe [112128] =>.© Microsoft O44 - LFC:[MD5.C4A383FD50FBD7E274DD41CF571DF898] - 25/04/2014 - 18:50:11 ---A-- . (.Microsoft Corporation - Panneau de configuration Internet.) -- C:\Windows\System32\inetcpl.cpl [1967104] =>.© Microsoft O44 - LFC:[MD5.8229618C90801E957BADC332CE32A6C5] - 25/04/2014 - 17:44:24 ---A-- . (.Microsoft Corporation - DLL de journalisation des E/S.) -- C:\Windows\System32\iologmsg.dll [2048] =>.© Microsoft O44 - LFC:[MD5.9533FE0A942E00114047140B42DF8E3D] - 27/04/2014 - 09:03:49 ---A-- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\System32\java.exe [175016] O44 - LFC:[MD5.C9CA9803299EB6AFA34CB520BAAB083D] - 25/04/2014 - 18:50:16 ---A-- . (.Microsoft Corporation - JavaScript Performance Collection Agent.) -- C:\Windows\System32\JavaScriptCollectionAgent.dll [32256] =>.© Microsoft O44 - LFC:[MD5.37C15684482B4D596316735DCEEE939A] - 27/04/2014 - 09:03:49 ---A-- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\System32\javaw.exe [175528] O44 - LFC:[MD5.6EA69D2312F3571F6F8BEADD224165E8] - 27/04/2014 - 09:03:58 ---A-- . (.Oracle Corporation - Java(TM) Web Start Launcher.) -- C:\Windows\System32\javaws.exe [264616] O44 - LFC:[MD5.8C46360D6EF9D4C563FE834C4F287DA3] - 25/04/2014 - 18:50:09 ---A-- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript9.dll [4254720] =>.© Microsoft O44 - LFC:[MD5.0F4A295516781897FFB09B4CCF2E8798] - 25/04/2014 - 18:50:15 ---A-- . (.Microsoft Corporation - Microsoft ® JScript Diagnostics.) -- C:\Windows\System32\jscript9diag.dll [592896] =>.© Microsoft O44 - LFC:[MD5.31385A6CAA31BE9D07B0B32E5AA99ABB] - 25/04/2014 - 18:50:18 ---A-- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll [43008] =>.© Microsoft O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - ---A-- . (...) -- C:\Windows\System32\jupdate-1.7.0_55-b14.log [0] O44 - LFC:[MD5.F74FFA7654702F81884BDB41EB80DAC2] - 25/04/2014 - 17:42:34 ---A-- . (.Microsoft Corporation - DLL du client API BASE Windows NT.) -- C:\Windows\System32\kernel32.dll [868352] =>.© Microsoft O44 - LFC:[MD5.EBC35FE64056910A84485BEEB6DCCAC6] - 25/04/2014 - 18:50:18 ---A-- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll [524288] =>.© Microsoft O44 - LFC:[MD5.EA85144F35EDE6EE25C484D4242FF2C8] - 25/04/2014 - 18:50:09 ---A-- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [17387008] =>.© Microsoft O44 - LFC:[MD5.A127D17C354B473B0F4C6265538F5A2C] - 25/04/2014 - 18:50:20 ---A-- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb [2724864] =>.© Microsoft O44 - LFC:[MD5.EDACA6C44D9CE200F899B7DB0F201DFF] - 25/04/2014 - 18:50:18 ---A-- . (.Microsoft Corporation - DLL de gestion d'utilisateur local et de co.) -- C:\Windows\System32\msrating.dll [164864] =>.© Microsoft O44 - LFC:[MD5.BECAA526B8A1823A36A1BA123B8C41A9] - 25/04/2014 - 18:50:15 ---A-- . (.Microsoft Corporation - Microsoft Spell Checking Facility.) -- C:\Windows\System32\MsSpellCheckingFacility.exe [646144] =>.© Microsoft O44 - LFC:[MD5.76F58DB8F85C125E0D6B3AA42F3BF1D0] - 25/04/2014 - 18:50:12 ---A-- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [1143808] =>.© Microsoft O44 - LFC:[MD5.CE6921D33682C6C3DB8A45853CC69402] - 25/04/2014 - 18:50:22 ---A-- . (.Microsoft Corporation - Microsoft ® VBScript.) -- C:\Windows\System32\vbscript.dll [455168] =>.© Microsoft O44 - LFC:[MD5.B42338F92D3BDADA79B6BE553E72587C] - ---A-- . (...) -- C:\Windows\System32\WindowsAccessBridge.dll [94632] O44 - LFC:[MD5.E4E829EE073E046B0EB19B5FECB19B8C] - 25/04/2014 - 18:50:12 ---A-- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [1789440] =>.© Microsoft O44 - LFC:[MD5.5FB4F271032B6435F3B2252F577A4815] - 25/04/2014 - 17:44:24 ---A-- . (.Microsoft Corporation - Crash Dump Disk Driver.) -- C:\Windows\System32\drivers\Diskdump.sys [27072] =>.© Microsoft O44 - LFC:[MD5.EB34CE31FABD4DC4343FD2AD16D2CAF9] - 25/04/2014 - 17:44:25 ---A-- . (.Microsoft Corporation - Microsoft iSCSI Initiator Driver.) -- C:\Windows\System32\drivers\msiscsi.sys [234432] =>.© Microsoft O44 - LFC:[MD5.C8DFF8D07755A66C7A4A738930F0FEAC] - 25/04/2014 - 17:44:19 ---A-- . (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1212352] =>.© Microsoft O44 - LFC:[MD5.F1A449D762657230629D8BFC107ABC14] - 25/04/2014 - 17:44:25 ---A-- . (.Microsoft Corporation - Microsoft Storage Port Driver.) -- C:\Windows\System32\drivers\storport.sys [149440] =>.© Microsoft O44 - LFC:[MD5.00000000000000000000000000000000] - ----D- . (...) -- C:\Windows\ERUNT [0] O44 - LFC:[MD5.8C312185578BFEDF7ADE33A6A0B073DF] - ---A-- . (...) -- C:\Windows\PFRO.log [330618] ~ 42 Last Acceded System File scanned in 1 second(s) ---\\ Derniers fichiers créés dans Windows Prefetcher (O45) O45 - LFCP: 13/02/2014 - 21:18:33 ---A-- - C:\Windows\Prefetch\BOXORE.EXE-77015CEB.pf =>Adware.Boxore O45 - LFCP: 17/02/2014 - 17:01:11 ---A-- - C:\Windows\Prefetch\UMBRELLA.EXE-1E9FAE5B.pf =>Adware.IMBooster O45 - LFCP: 13/02/2014 - 00:50:23 ---A-- - C:\Windows\Prefetch\WEBPLAYER.EXE-8D204639.pf =>Adware.SocialSkinz ~ 3 Malware Prefetcher Files found in 1 second(s) ---\\ Déni du service (Local Security Authority) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll =>.© Microsoft O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configurat.) -- C:\Windows\System32\scecli.dll =>.© Microsoft O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll =>.© Microsoft O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll =>.© Microsoft O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll =>.© Microsoft O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll =>.© Microsoft O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll =>.© Microsoft O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll =>.© Microsoft O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll =>.© Microsoft ~ 9 Local Security Authority found in 0 second(s) ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\drivers\sermouse.sys =>.© Microsoft O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\drivers\vga.sys =>.© Microsoft O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\drivers\vgasave.sys (.not file.) =>.© O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\drivers\volmgr.sys =>.© Microsoft O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volum.) -- C:\Windows\System32\drivers\volmgrx.sys =>.© Microsoft O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\Wdf01000.sys . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) -- C:\Windows\System32\drivers\Wdf01000.sys =>.© Microsoft O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\ipnat.sys =>.© Microsoft O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\drivers\nsiproxy.sys =>.© Microsoft O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\drivers\rdpencdd.sys =>.© Microsoft O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\drivers\sermouse.sys =>.© Microsoft O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\drivers\vga.sys =>.© Microsoft O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\drivers\vgasave.sys (.not file.) =>.© O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\drivers\volmgr.sys =>.© Microsoft O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volum.) -- C:\Windows\System32\drivers\volmgrx.sys =>.© Microsoft O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\Wdf01000.sys . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) -- C:\Windows\System32\drivers\Wdf01000.sys =>.© Microsoft ~ 15 Safe Boot Control scanned in 0 second(s) ---\\ Microsoft Control Security Providers (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll =>.© Microsoft ~ 1 Control Security Providers scanned in 0 second(s) ---\\ Liste des pilotes démarrés par le système (SDL) (O58) O58 - SDL:[MD5.F81BB7E487EDCEAB630A7EE66CF23913] - 09/01/2014-08:41:51 . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\system32\drivers\afd.sys [338944] =>.© Microsoft O58 - SDL:[MD5.2287078ED48FCFC477B05B20CF38F36F] - 14/07/2009-01:23:04 . (.Microsoft Corporation - BLB Drive Driver.) -- C:\Windows\system32\DRIVERS\blbdrive.sys [35328] =>.© Microsoft O58 - SDL:[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - 08/01/2014-09:30:51 . (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\system32\drivers\cdrom.sys [108544] =>.© Microsoft O58 - SDL:[MD5.3C2177A897B4CA2788C6FB0C3FD81D4B] - 08/01/2014-09:32:11 . (.Microsoft Corporation - Windows Client Side Caching Driver.) -- C:\Windows\system32\drivers\csc.sys [388096] =>.© Microsoft O58 - SDL:[MD5.F024449C97EC1E464AAFFDA18593DB88] - 08/01/2014-09:30:50 . (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\system32\Drivers\dfsc.sys [78336] =>.© Microsoft O58 - SDL:[MD5.1A050B0274BFB3890703D490F330C0DA] - 14/07/2009-01:24:05 . (.Microsoft Corporation - System Indexer/Cache Driver.) -- C:\Windows\system32\drivers\discache.sys [32256] =>.© Microsoft O58 - SDL:[MD5.F7611EC07349979DA9B0AE1F18CCC7A6] - 14/07/2009-01:53:18 . (.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) -- C:\Windows\system32\DRIVERS\lltdio.sys [48128] =>.© Microsoft O58 - SDL:[MD5.6703E366CC18D3B6E534F5CF7DF39CEE] - 14/07/2009-01:15:45 . (.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) -- C:\Windows\system32\drivers\luafv.sys [86528] =>.© Microsoft O58 - SDL:[MD5.0CEA2D0D3FA284B85ED5B68365114F76] - 26/02/2010-00:21:48 . (.Conexant - Diagnostic Interface x86 Driver.) -- C:\Windows\system32\DRIVERS\mdmxsdk.sys [12672] O58 - SDL:[MD5.FC6B9FF600CC585EA38B12589BD4E246] - 14/07/2009-01:19:26 . (.Microsoft Corporation - System Management BIOS Driver.) -- C:\Windows\system32\drivers\mssmbios.sys [28240] =>.© Microsoft O58 - SDL:[MD5.80B275B1CE3B0E79909DB7B39AF74D51] - 14/07/2009-01:53:54 . (.Microsoft Corporation - NetBIOS interface driver.) -- C:\Windows\system32\DRIVERS\netbios.sys [36352] =>.© Microsoft O58 - SDL:[MD5.280122DDCF04B378EDD1AD54D71C1E54] - 08/01/2014-09:31:40 . (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\system32\DRIVERS\netbt.sys [187904] =>.© Microsoft O58 - SDL:[MD5.E9A0A4D07E53D8FEA2BB8387A3293C58] - 14/07/2009-01:12:08 . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\system32\drivers\nsiproxy.sys [16896] =>.© Microsoft O58 - SDL:[MD5.EB0A59F29C19B86479D36B35983DAADC] - 14/07/2009-01:45:29 . (.Microsoft Corporation - Pilote parallèle VDM.) -- C:\Windows\system32\DRIVERS\parvdm.sys [8704] =>.© Microsoft O58 - SDL:[MD5.9E0104BA49F4E6973749A02BF41344ED] - 14/07/2009-01:35:01 . (.Microsoft Corporation - Protected Environment Authentication and Au.) -- C:\Windows\system32\drivers\peauth.sys [586752] =>.© Microsoft O58 - SDL:[MD5.6270CCAE2A86DE6D146529FE55B3246A] - 14/07/2009-01:53:58 . (.Microsoft Corporation - Planificateur de paquets QoS.) -- C:\Windows\system32\DRIVERS\pacer.sys [104448] =>.© Microsoft O58 - SDL:[MD5.D528BC58A489409BA40334EBF96A311B] - 08/01/2014-09:31:56 . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) -- C:\Windows\system32\DRIVERS\rdbss.sys [242688] =>.© Microsoft O58 - SDL:[MD5.23DAE03F29D253AE74C44F99E515F9A1] - 08/01/2014-09:30:44 . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\system32\DRIVERS\RDPCDD.sys [6656] =>.© Microsoft O58 - SDL:[MD5.5A53CA1598DD4156D44196D200C94B8A] - 14/07/2009-02:01:39 . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\system32\drivers\rdpencdd.sys [6656] =>.© Microsoft O58 - SDL:[MD5.44B0A53CD4F27D50ED461DAE0C0B4E1F] - 14/07/2009-02:01:41 . (.Microsoft Corporation - RDP Reflector Driver Miniport.) -- C:\Windows\system32\drivers\rdprefmp.sys [7168] =>.© Microsoft O58 - SDL:[MD5.AF213955C4D952C914620E8DB0CD0CF7] - 26/02/2010-00:21:47 . (.REDC - RICOH MS Driver.) -- C:\Windows\system32\DRIVERS\rimspe86.sys [47104] O58 - SDL:[MD5.6978DECC2C38C5CE10A8B0F2B12F4451] - 26/02/2010-00:21:47 . (.REDC - RICOH SD/MMC Driver.) -- C:\Windows\system32\DRIVERS\risdpe86.sys [49152] O58 - SDL:[MD5.032B0D36AD92B582D869879F5AF5B928] - 14/07/2009-01:53:20 . (.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) -- C:\Windows\system32\DRIVERS\rspndr.sys [60928] =>.© Microsoft O58 - SDL:[MD5.3EEBD3BD93DA46A26E89893C7AB2FF3B] - 09/01/2014-08:39:56 . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) -- C:\Windows\system32\drivers\tcpipreg.sys [35328] =>.© Microsoft O58 - SDL:[MD5.B459575348C20E8121D6039DA063C704] - 08/01/2014-09:31:20 . (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\system32\DRIVERS\tdx.sys [74752] =>.© Microsoft O58 - SDL:[MD5.04DBF4B01EA4BF25A9A3E84AFFAC9B20] - 08/01/2014-09:31:51 . (.Microsoft Corporation - Remote Desktop Server Driver.) -- C:\Windows\system32\drivers\termdd.sys [53120] =>.© Microsoft O58 - SDL:[MD5.1AD9EB1B5ABD0AEEE4084C8153476F1E] - 10/04/2010-21:37:50 . (.TOSHIBA Corporation - Bluetooth RFCOMM Driver.) -- C:\Windows\system32\Drivers\tosrfcom.sys [69480] =>.© O58 - SDL:[MD5.8E38096AD5C8570A6F1570A61E251561] - 14/07/2009-01:25:51 . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\drivers\vga.sys [25088] =>.© Microsoft O58 - SDL:[MD5.7090D3436EEB4E7DA3373090A23448F7] - 14/07/2009-01:52:04 . (.Microsoft Corporation - Virtual WiFi Filter Driver.) -- C:\Windows\system32\DRIVERS\vwififlt.sys [48128] =>.© Microsoft O58 - SDL:[MD5.3C3C78515F5AB448B022BDF5B8FFDD2E] - 08/01/2014-09:30:45 . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) -- C:\Windows\system32\DRIVERS\wanarp.sys [63488] =>.© Microsoft O58 - SDL:[MD5.8B9A943F3B53861F2BFAF6C186168F79] - 14/07/2009-01:53:51 . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) -- C:\Windows\system32\DRIVERS\wfplwf.sys [9728] =>.© Microsoft O58 - SDL:[MD5.894F963BE999BA9DB5AAC3AED55B115D] - 26/02/2010-00:21:48 . (.Conexant Systems, Inc. - Modem Audio Device Driver.) -- C:\Windows\system32\DRIVERS\XAudio32.sys [8704] ~ 32 System Drivers scanned in 0 second(s) ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC: 16/04/2014 - 16:37:37 ---A-- . (...) -- C:\Users\Corinne\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_iagcajndpnfncplednpbnkahadegklfa_0.localstorage [7168] O61 - LFC: 25/04/2014 - 20:05:00 ---A-- . (.AVAST Software - avast! Antivirus Installer.) -- C:\Users\Corinne\Downloads\avast_internet_security_setup.exe [127588448] O61 - LFC: 25/04/2014 - 20:05:26 ---A-- . (.AVAST Software - avast! Antivirus Installer.) -- C:\Users\Corinne\Downloads\avast_internet_security_setup_online.exe [4768536] O61 - LFC: 01/04/2014 - 08:29:30 ---A-- . (...) -- C:\Users\Corinne\Downloads\Calendrier des épreuves facultatives du baccalauréat 2014.pdf [56808] O61 - LFC: 01/04/2014 - 08:25:51 ---A-- . (...) -- C:\Users\Corinne\Downloads\Calendrier épreuves baccalauréat 2014.pdf [83715] O61 - LFC: 22/04/2014 - 13:05:53 ---A-- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Users\Corinne\Downloads\jxpiinstall.exe [921512] O61 - LFC: 25/04/2014 - 20:10:45 ---A-- . (...) -- C:\Users\Corinne\Downloads\License.avastlic [2513] O61 - LFC: 23/04/2014 - 10:48:37 ---A-- . (...) -- C:\Users\Corinne\Downloads\rapport_SX.txt [966] O61 - LFC: 22/04/2014 - 23:09:21 ---A-- . (.AirInstaller - HD Player .) -- C:\Users\Corinne\Downloads\setup.exe [770464] =>Adware.AirInstaller ~ 9 Last File Acceded scanned in 0 second(s) ---\\ Liste les services legacy du registre (LALS) (O64) O64 - Services: CurCS - C:\Windows\system32\drivers\BCM42RLY.sys (BCM42RLY) .(.Broadcom Corporation - Broadcom iLine10(tm) PCI Network Adapter Pr.) -- LEGACY_BCM42RLY O64 - Services: CurCS - Beep (Beep) .(.Microsoft Corporation - Beep Driver.) -- LEGACY_BEEP =>.© Microsoft Corporation O64 - Services: CurCS - exFAT File System Driver (exfat) .(...) - LEGACY_EXFAT O64 - Services: CurCS - FAT12/16/32 File System Driver (fastfat) .(...) - LEGACY_FASTFAT O64 - Services: CurCS - Security Driver (secdrv) .(...) - LEGACY_SECDRV O64 - Services: CurCS - Security Processor Loader Driver (spldr) .(...) - LEGACY_SPLDR O64 - Services: CurCS - C:\Windows\system32\DRIVERS\XAudio32.sys (XAudio) .(.Conexant Systems, Inc. - Modem Audio Device Driver.) -- LEGACY_XAUDIO ~ 7 Legacy Keys found in 0 second(s) ---\\ Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\system32\eventvwr.exe O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (...) -- C:\Windows\System32\regedit.exe O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S ~ 10 File Association Shell Spawning scanned in 0 second(s) ---\\ Menu de démarrage Internet (SMI) (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe =>.© Mozilla O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.© Google Inc. O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] . (...) -- C:\Program Files\Internet Explorer\iexplore.exe http://www.awesomehp.com =>PUP.Awesomehp O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] . (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc. O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] . (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc. O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] . (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc. O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation ~ 12 Start Menu Internet found in 0 second(s) ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com ~ 1 Search Browser Infection scanned in 0 second(s) ---\\ Liste des exceptions du parefeu (FirewallRules) (O87) O87 - FAEL: "{301AACE0-C621-4907-803D-4DD1EA3748EF}" | In - Public - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Corinne\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent O87 - FAEL: "{7CC7AC35-7C9F-480A-A3BA-87412C5E57C0}" | In - Public - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Corinne\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent O87 - FAEL: "TCP Query User{11DC9D52-F709-40E3-9F5E-B991F83F8AEA}C:\users\corinne\desktop\utorrent.exe" | In - Private - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\users\corinne\desktop\utorrent.exe =>P2P.BitTorrent O87 - FAEL: "UDP Query User{B526AFC4-4897-472D-999C-7600F100F132}C:\users\corinne\desktop\utorrent.exe" | In - Private - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\users\corinne\desktop\utorrent.exe =>P2P.BitTorrent ~ 4 Firewall Active Exception Files found in 1.39859e+009 second(s) ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 15/01/2014-16:47:54 65432 || Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe SS - | Demand 07/01/2014-15:51:13 257712 || Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe SS - | Demand 09/01/2014-08:40:52 22016 || @%SystemRoot%\system32\efssvc.dll,-100 (EFS) . (.Microsoft Corporation.) - C:\Windows\System32\lsass.exe SS - | Demand 08/01/2014-09:31:53 523264 || @%systemroot%\system32\fxsresm.dll,-118 (Fax) . (.Microsoft Corporation.) - C:\Windows\system32\fxssvc.exe SS - | Auto 07/01/2014-10:50:39 116648 || Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SS - | Demand 07/01/2014-10:50:39 116648 || Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SS - | Demand 07/01/2014-10:52:56 194032 || Google Software Updater (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe SS - | Demand 07/01/2014-16:07:12 119408 || Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe SS - | Auto 23/01/2014-14:43:30 172192 || Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe SS - | Auto 01/01/1601-02:07:09 0 || Service Software Update (Software_update) (Software_update) . (...) - C:\Program Files\Software\Update\SoftwareUpdate.exe (.not file.) =>Adware.Boxore SS - | Demand 01/01/1601-02:07:09 0 || Service Software Update (Software_update_m) (Software_update_m) . (...) - C:\Program Files\Software\Update\SoftwareUpdate.exe (.not file.) =>Adware.Boxore SS - | Demand 10/04/2010-21:42:56 74392 || stllssvr (stllssvr) . (.MicroVision Development, Inc..) - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe SR - | Demand 10/04/2010-21:37:53 144752 || TOSHIBA Bluetooth Service (TOSHIBA Bluetooth Service) . (.TOSHIBA CORPORATION.) - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe SS - | Demand 07/01/2014-15:00:53 1343400 || @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) . (.Microsoft Corporation.) - C:\Windows\system32\Wat\WatAdminSvc.exe SR - | Auto 27/02/2014-08:02:03 425104 || WinZiper service (winzipersvc) . (.Taiwan Shui Mu Chih Ching Technology Limited..) - C:\Program Files\WinZipper\winzipersvc.exe SR - | Auto 26/02/2014-11:25:35 501904 || Wpm Service (Wpm) . (.Cherished Technololgy LIMITED.) - C:\ProgramData\WPM\wprotectmanager.exe =>PUP.WpManager ~ 16 Services scanned in 0 second(s) ---\\ Recherche de clés de registre tracing (O100) HKLM\SOFTWARE\Microsoft\Tracing\googletoolbarinstaller_en_signed_RASAPI32 =>Toolbar.Google HKLM\SOFTWARE\Microsoft\Tracing\googletoolbarinstaller_en_signed_RASMANCS =>Toolbar.Google HKLM\SOFTWARE\Microsoft\Tracing\GoogleToolbarNotifier_RASAPI32 =>Toolbar.Google HKLM\SOFTWARE\Microsoft\Tracing\GoogleToolbarNotifier_RASMANCS =>Toolbar.Google HKLM\SOFTWARE\Microsoft\Tracing\GoogleToolbarUser_32_RASAPI32 =>Toolbar.Google HKLM\SOFTWARE\Microsoft\Tracing\GoogleToolbarUser_32_RASMANCS =>Toolbar.Google HKLM\SOFTWARE\Microsoft\Tracing\iminenttoolbar_RASAPI32 =>Adware.IMBooster HKLM\SOFTWARE\Microsoft\Tracing\iminenttoolbar_RASMANCS =>Adware.IMBooster HKLM\SOFTWARE\Microsoft\Tracing\MySearchDial_RASAPI32 =>Adware.MyWebSearch HKLM\SOFTWARE\Microsoft\Tracing\MySearchDial_RASMANCS =>Adware.MyWebSearch HKLM\SOFTWARE\Microsoft\Tracing\MYSEAR~1_RASAPI32 =>Adware.MyWebSearch HKLM\SOFTWARE\Microsoft\Tracing\MYSEAR~1_RASMANCS =>Adware.MyWebSearch HKLM\SOFTWARE\Microsoft\Tracing\updatemaucampo_RASAPI32 =>PUP.Maucampo HKLM\SOFTWARE\Microsoft\Tracing\updatemaucampo_RASMANCS =>PUP.Maucampo HKLM\SOFTWARE\Microsoft\Tracing\utilmaucampo_RASAPI32 =>PUP.Maucampo HKLM\SOFTWARE\Microsoft\Tracing\utilmaucampo_RASMANCS =>PUP.Maucampo HKLM\SOFTWARE\Microsoft\Tracing\utorrent (1)_RASAPI32 =>P2P.µTorrent HKLM\SOFTWARE\Microsoft\Tracing\utorrent (1)_RASMANCS =>P2P.µTorrent HKLM\SOFTWARE\Microsoft\Tracing\uTorrent_RASAPI32 =>P2P.µTorrent HKLM\SOFTWARE\Microsoft\Tracing\uTorrent_RASMANCS =>P2P.µTorrent ~ 20 Search Tracing Keys scanned in 0 second(s) ---\\ Recherche de clés de registre CLSID (O101) [HKCR\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}] (Google Toolbar) =>Toolbar.Google [HKCR\CLSID\{37B05236-FFB5-4D42-B0C8-4A36CBF1BE62}] (Office 12 Microsoft Update Opt-In) =>Adware.Boxore [HKCR\CLSID\{572D5281-4E8C-4F82-A8E1-26E786B6B5B3}] (Office 12 Microsoft Update Opt-In) =>Adware.Boxore [HKCR\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}] (Google Toolbar Helper) =>Toolbar.Google [HKCR\CLSID\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD}] (mysearchdial Helper Object) =>Adware.MyWebSearch ~ 5 Search CLSID Keys scanned in 4 second(s) ---\\ Scan Additionnel (O88 ) Database Version : 13036 (30/03/2014) Clés trouvées (Keys found) : 7 Dossiers trouvés (Folders found) : 5 Fichiers trouvés (Files found) : 7 HKLM\SOFTWARE\Boxore =>Adware.Boxore HKLM\SOFTWARE\supTab =>PUP.SupTab HKLM\SOFTWARE\supWPM =>PUP.WpManager HKLM\SOFTWARE\Wpm =>PUP.WpManager HKCU\Software\BitTorrent =>P2P.BitTorrent HKCU\Software\Boxore =>Adware.Boxore HKCU\Software\IminentToolbar =>Adware.IMBooster C:\Program Files\RrFilter =>PUP.SupraSavings C:\Program Files\SupTab =>PUP.SupTab C:\ProgramData\BoxUpdChk =>Adware.Boxore C:\ProgramData\IePluginService =>Trojan.SProtector C:\ProgramData\WPM =>PUP.WpManager C:\ProgramData\WPM\wprotectmanager.exe =>PUP.WpManager C:\Program Files\Software\Update\SoftwareUpdate.exe =>Adware.Boxore C:\Program Files\Software\Update\SoftwareUpdate.exe =>Adware.Boxore C:\Program Files\Software\Update\SoftwareUpdate.exe =>Adware.Boxore C:\Windows\Prefetch\BOXORE.EXE-77015CEB.pf =>Adware.Boxore C:\Windows\Prefetch\UMBRELLA.EXE-1E9FAE5B.pf =>Adware.IMBooster C:\Windows\Prefetch\WEBPLAYER.EXE-8D204639.pf =>Adware.SocialSkinz ~ Additionnal Scan: 123278 Items scanned in 3 seconds ---\ Récapitulatif des détections trouvées sur votre station ~ http://nicolascoolman.webs.com/apps/blog/show/41817737-pup-extendedprotection =>PUP.ExtendedProtection ~ http://nicolascoolman.webs.com/apps/blog/show/27875657-toolbar-deltasearch =>toolbar.DeltaSearch ~ http://nicolascoolman.webs.com/apps/blog/show/26626977-adware-boxore =>Adware.Boxore ~ http://nicolascoolman.webs.com/apps/blog/show/41011964-pup-awesomehp =>PUP.Awesomehp ~ http://nicolascoolman.webs.com/apps/blog/show/27146838-adware-mywebsearch =>Adware.MyWebSearch ~ http://nicolascoolman.webs.com/apps/blog/show/38737316-pup-wpmanager =>PUP.WpManager ~ http://nicolascoolman.webs.com/apps/blog/show/41133513-pup-suptab =>PUP.SupTab ~ http://nicolascoolman.webs.com/apps/blog/show/26684723-adware-imbooster =>Adware.IMBooster ~ http://nicolascoolman.webs.com/apps/blog/show/42067481-pup-suprasaving =>PUP.SupraSavings ~ http://nicolascoolman.webs.com/apps/blog/show/40789592-trojan-sprotector =>Trojan.SProtector ~ http://nicolascoolman.webs.com/apps/blog/show/27480243-adware-socialskinz =>Adware.SocialSkinz ~ http://nicolascoolman.webs.com/apps/blog/show/35120459-adware-airinstaller =>Adware.AirInstaller ~ http://nicolascoolman.webs.com/apps/blog/show/40869827-pup-maucampo =>PUP.Maucampo ~ MSI: 13 link(s) detected ~ End of the scan (0/1018 lines) in 12 seconds)