cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Rapport de ZHPDiag v1.34.68 par Nicolas Coolman, Update du 2013-01-29
Run by Stephane at 2013-01-31 17:50:24
State :
UAC : Deactivate by program


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421 (Defaut)
MFIE: Mozilla Firefox v3.6.3 (fr)

---\\ Windows Product Information
~ Langage: Fran�ais
Windows 7 Business Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_COA_NSLP channel
Windows ID Activation : OK
~ Windows Partial Key : H4J7X
Windows License : OK
~ Windows Remaining Initializations Number : 4
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: AMD64 Family 16 Model 10 Stepping 0, AuthenticAMD
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4095 MB (63% free)
System Restore: Activ� (Enable)
System drive C: has 36 GB (15%) free of 233 GB

---\\ Logged in mode
~ Computer Name: STEPHANE-PC
~ User Name: Stephane
~ All Users Names: Stephane, Isabelle, HomeGroupUser$, Anne-Marie, Administrateur, a-m,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Stephane\AppData\Roaming\
~ %Desktop% : C:\Users\Stephane\Desktop\
~ %Favorites% : C:\Users\Stephane\Favorites\
~ %LocalAppData% : C:\Users\Stephane\AppData\Local\
~ %StartMenu% : C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 36 Go of 233 Go)
D:\ CD-ROM drive (Not Inserted)
E:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Hard drive, Flash drive, Thumb drive (Free 443 Go of 1863 Go)
J:\ Hard drive, Flash drive, Thumb drive (Free 736 Go of 1863 Go)
K:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
L:\ CD-ROM drive (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
~ Scan Security Center in 00mn 00s



---\\ Search Generic System Files
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.2011-02-25 - 01:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.2009-07-13 - 20:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.A19DB004D954BBC9C4EC125711E1D1C2] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.2012-10-08 - 06:23:52.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.2010-11-20 - 08:25:30.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Biblioth�que de licences.) (.2010-11-20 - 08:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.2011-12-27 - 22:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.2009-07-13 - 20:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.2009-07-13 - 18:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.2010-11-20 - 04:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.2010-11-20 - 04:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.2010-11-20 - 05:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.2009-07-13 - 18:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.2009-07-13 - 19:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.2011-04-26 - 21:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.2010-11-20 - 04:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.E453ACF4E7D44E5530B5D5F2B9CA8563] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.2012-08-31 - 13:19:35.) -- C:\Windows\system32\Drivers\ntfs.sys [1659760]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parall�le.) (.2009-07-13 - 19:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.2010-11-20 - 05:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.1B6163C503398B23FF8B939C67747683] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.2010-11-20 - 06:06:41.) -- C:\Windows\system32\Drivers\rdpdr.sys [165888]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.2009-07-13 - 19:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.2010-11-20 - 04:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.2010-11-20 - 08:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Scan Generic Processes in 00mn 00s



---\\ Hidden files state (Hidden/Total)
~ Mes images (My Pictures) : 2/166
~ Mes musiques (My Musics) : 1/2
Mes Videos (My Videos) : 2/2 (Modified)
~ Mes Favoris (My Favorites) : 1/480
~ Mes Documents (My Documents) : 2/446
~ Mon Bureau (My Desktop) : 4/10313
~ Menu demarrer (Programs) : 1/40
~ Scan Hidden Files in 00mn 20s



---\\ Running Processes
[MD5.9B8BBF96B67046D2CBB39AD220CB267D].(.BitTorrent, Inc..�Torrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe [395640] [PID.2704]
[MD5.9C1F90D2334816DCD46F26E8496D0606].(.Logiciels13.Agenda Informatique.) -- C:\Program Files (x86)\Pense-bete\pb8.exe [1923584] [PID.1472]
[MD5.1A0D9ECF0DCC26D285A4267831E88D58].(...) -- C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe [77824] [PID.2456]
[MD5.761DA04492C935EE31FB848B7505FA6C].(.Logitech, Inc..Logitech Updater.) -- C:\Program Files\Logitech\SetPoint\LU\LULnchr.exe [191752] [PID.3852]
[MD5.EA7D1523A20F774FCFB32F92953651C6].(.Logitech, Inc..Logitech Updater.) -- C:\Program Files\Logitech\SetPoint\LU\LogitechUpdate.exe [787208] [PID.3936]
[MD5.270A1342BD5AF95CA25A586B4C2F1522].(.Microsoft Corporation.Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe [748704] [PID.3964]
[MD5.BAD663957F682F95B22C4E83AB49CB52].(.Google Inc..Google Toolbar Broker.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe [308368] [PID.3924]
[MD5.5D673EBF455EFA227C66EA0D8CE33B52].(.Adobe Systems Incorporated.Adobe� Flash� Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_146_ActiveX.exe [699400] [PID.1344]
[MD5.DFB71D057E0F2AB6BAC4BC6154DA9FD9].(.Nicolas Coolman.ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [5632512] [PID.2488]
~ Scan Processes Running in 00mn 00s



---\\ Google Chrome, Start,Search,Extensions (G0,G1,G2)
C:\Users\Stephane\AppData\Local\Google\Chrome\User Data\Default\Preferences
~ Scan Google Browser in 00mn 00s



---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (P2,M0,M1,M2,M3)
C:\Users\Stephane\AppData\Roaming\Mozilla\Firefox\Profiles\v693fkiy.default\prefs.js
M3 - MFPP: Plugins - [Stephane] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Stephane] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Stephane] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Stephane] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Stephane] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Stephane] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml
M2 - MFEP: prefs.js [Stephane - v693fkiy.default\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] [] Free YouTube Download (Free Studio) Menu v (.DVDVideoSoft Ltd..)
P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npnul32.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\NPOFF12.DLL
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\NPOFFICE.DLL
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.3.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN:Firefox Plugin Navigator . (.Nullsoft, Inc. - Winamp Application Detector.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npwachk.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_146.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_24 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.10411.0.) -- C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
P2 - FPN: [HKCU] [@talk.google.com/GoogleTalkPlugin] - (.Google - Version 3.13.1.11376.) -- C:\Users\Stephane\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
P2 - FPN: [HKCU] [@talk.google.com/O3DPlugin] - (. - Google Talk Plugin Video Accelerator version:0.1.44.23.) -- C:\Users\Stephane\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\Stephane\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\Stephane\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll
~ Scan Firefox Browser in 00mn 00s



---\\ Internet Explorer Extensions, Start, Search (R4,R3,R0,R1)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://radiocanada.ca
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com
R3 - URLSearchHook: (no name) [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s



---\\ Line Analysis F0, F1, F2, F3 - IniFiles, Auto loading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 1



---\\ Browser Helper Objects (O2)
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper [64Bits] - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft� Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\
O2 - BHO: Windows Live Messenger Companion Helper [64Bits] - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} . (.Microsoft Corporation - Windows Live Messenger Companion Core.) -- C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Lexmark [64Bits] - {D2C5E510-BE6D-42CC-9F61-E4F939078474} . (...) -- C:\Program Files\Lexmark Printable Web\bho.dll
~ Scan BHO in 00mn 00s



---\\ Internet Explorer toolbars (O3)
O3 - Toolbar: Google Toolbar [64Bits] - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
~ Scan Toolbar in 00mn 00s



---\\ Auto loading programs from Registry and folders (O4)
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] . (.Logitech, Inc. - Logitech KHAL Main Process.) -- C:\Windows\KHALMNPR.exe
O4 - HKLM\..\Run: [itype] . (.Microsoft Corporation - IType.exe.) -- C:\Program Files\Microsoft IntelliType Pro\itype.exe
O4 - HKLM\..\Run: [egui] . (.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent, Inc. - �Torrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
O4 - HKLM\..\Wow6432Node\Run: [HDAudDeck] . (.VIA - VIA HD Audio CPL.) -- C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
O4 - HKLM\..\Wow6432Node\Run: [EM_EXEC] . (.Logitech Inc. - Control Center.) -- C:\Program Files (x86)\Logitech\MouseWare\system\EM_exeC.exe
O4 - HKUS\S-1-5-21-2588412615-2661135439-1951118577-1000\..\Run: [uTorrent] . (.BitTorrent, Inc. - �Torrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
~ Scan Application in 00mn 00s



---\\ Other User Links (O4)
O4 - Global Startup: C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Stephane\Desktop\abgx360 GUI.lnk . (...) -- C:\Program Files (x86)\abgx360\abgx360gui.exe
O4 - Global Startup: C:\Users\Stephane\Desktop\audacity.exe - Raccourci.lnk . (...) -- C:\Users\Stephane\Desktop\divers programmes\Audacity\audacity.exe
O4 - Global Startup: C:\Users\Stephane\Desktop\bloc notes - Raccourci.lnk . (...) -- I:\ancien disque ( C )\Documents and Settings\Administrateur\Bureau\bloc notes
O4 - Global Startup: C:\Users\Stephane\Desktop\Camtasia Studio.lnk . (...) -- C:\Windows\Installer\{784E6B0F-00EC-4950-95A2-BBA64F44EC48}\IconEF5C4888.exe
O4 - Global Startup: C:\Users\Stephane\Desktop\CDisplay.lnk . (.David Ayton.) -- C:\Program Files (x86)\CDisplay\CDisplay.exe
O4 - Global Startup: C:\Users\Stephane\Desktop\convertir vid�os.lnk . (.Free Time.) -- C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe
O4 - Global Startup: C:\Users\Stephane\Desktop\DVD Architect Pro 5.0.lnk . (.Sony Creative Software Inc..) -- C:\Program Files (x86)\Sony\DVD Architect Pro 4.5\dvdarch50.exe
O4 - Global Startup: C:\Users\Stephane\Desktop\DVD Shrink 3.2.exe - Raccourci.lnk . (.DVD Shrink.) -- C:\Users\Stephane\Desktop\divers programmes\DVD Shrink\DVD Shrink 3.2.exe
O4 - Global Startup: C:\Users\Stephane\Desktop\KaraFun Player.lnk . (.RECISIO.) -- C:\Program Files (x86)\KaraFun Player\KaraFunPlayer.exe
O4 - Global Startup: C:\Users\Stephane\Desktop\Microsoft Publisher.lnk . (...) -- C:\Windows\Installer\{0004040C-78E1-11D2-B60F-006097C998E7}\pubs.exe
O4 - Global Startup: C:\Users\Stephane\Desktop\Notepad.lnk . (.Microsoft Corporation.) -- C:\Windows\system32\notepad.exe
O4 - Global Startup: C:\Users\Stephane\Desktop\Photo unique - Raccourci.lnk -
O4 - Global Startup: C:\Users\Stephane\Desktop\PhotoFiltre Studio X.lnk . (.Antonio Da Cruz.) -- C:\Program Files (x86)\PhotoFiltre Studio X\pfstudiox.exe
O4 - Global Startup: C:\Users\Stephane\Desktop\PhotoFiltre.exe - Raccourci.lnk . (.Antonio Da Cruz.) -- C:\Users\Stephane\Desktop\divers programmes\PhotoFiltre\PhotoFiltre.exe
O4 - Global Startup: C:\Users\Stephane\Desktop\Photoshp.exe - Raccourci.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files (x86)\Adobe\Photoshop 6.0\Photoshp.exe
O4 - Global Startup: C:\Users\Stephane\Desktop\Vegas Pro 12.0 (64-bit).lnk . (...) -- C:\Program Files (x86)\Sony\Vegas Pro 12.0\vegas120.exe (.not file.)
O4 - Global Startup: C:\Users\Stephane\Desktop\WBFS Manager 3.0.lnk . (...) -- C:\Program Files (x86)\WBFS\WBFS Manager 3.0\WBFSManager.exe (.not file.)
O4 - Global Startup: C:\Users\Stephane\Desktop\Web Acappella 4.lnk . (...) -- C:\Program Files (x86)\Intuisphere\Web Acappella 4\WebAcappella4.exe
O4 - Global Startup: C:\Users\Stephane\Desktop\WinAVI Video Converter .lnk . (...) -- C:\Program Files (x86)\WinAVI Video Converter\WinAVI.exe
O4 - Global Startup: C:\Users\Stephane\Desktop\WinAVIVideoConverter.lnk . (...) -- C:\Program Files (x86)\WinAVIVideoConverter\WinAVI.exe
O4 - Global Startup: C:\Users\Stephane\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Data2 (J) - Raccourci.lnk -
O4 - Global Startup: C:\Users\Stephane\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\GetSmile.lnk . (.Sofrayt.) -- C:\Program Files (x86)\GetSmile\getsmile.exe
O4 - Global Startup: C:\Users\Stephane\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Stephane\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Outlook.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE
O4 - Global Startup: C:\Users\Stephane\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\Stephane\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart.lnk . (.Nero AG.) -- C:\Program Files (x86)\Nero\Nero 7\Nero StartSmart\NeroStartSmart.exe
O4 - Global Startup: C:\Users\Stephane\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\PUBLISHER - Raccourci.lnk . (...) -- C:\Users\Stephane\Desktop\PUBLISHER
O4 - Global Startup: C:\Users\Stephane\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Vegas 7.0.lnk . (.Madison Media Software, Inc..) -- C:\Program Files (x86)\Sony\Vegas 7.0\vegas70.exe
O4 - Global Startup: C:\Users\Isabelle\Desktop\00156 - Raccourci.lnk . (...) -- E:\AVCHD\BDMV\STREAM\00156.MTS
O4 - Global Startup: C:\Users\Isabelle\Desktop\00157 - Raccourci.lnk . (...) -- E:\AVCHD\BDMV\STREAM\00157.MTS
O4 - Global Startup: C:\Users\Isabelle\Desktop\03-Ave_Maria - Raccourci.lnk . (...) -- I:\Ancien Disk (F)\MUSIQUE\03-Ave_Maria.mp3
O4 - Global Startup: C:\Users\Isabelle\Desktop\CDisplay.lnk . (.David Ayton.) -- C:\Program Files (x86)\CDisplay\CDisplay.exe
O4 - Global Startup: C:\Users\Isabelle\Desktop\Classical - Vivaldi - Four Seasons(complete) - Raccourci.lnk . (...) -- I:\Ancien Disk (F)\MUSIQUE\Classical - Vivaldi - Four Seasons(complete).mp3
O4 - Global Startup: C:\Users\Isabelle\Desktop\Convert XLS.lnk . (.www.SoftInterface.COM.) -- C:\Program Files (x86)\Softinterface, Inc\Convert XLS\ConvertXls.Admin.exe
O4 - Global Startup: C:\Users\Isabelle\Desktop\Ennio Moricone - Chi Mai - Raccourci.lnk . (...) -- I:\Ancien Disk (F)\MUSIQUE\Ennio Moricone - Chi Mai.mp3
O4 - Global Startup: C:\Users\Isabelle\Desktop\FileHunter.lnk . (...) -- C:\Users\Stephane\AppData\Roaming\FileHunter\FileHunter.exe (.not file.)
O4 - Global Startup: C:\Users\Isabelle\Desktop\FontView.lnk . (...) -- C:\Program Files (x86)\Max2k\FontView\FontView.exe
O4 - Global Startup: C:\Users\Isabelle\Desktop\Mozart - Marriage of Figaro Overture - Raccourci.lnk . (...) -- I:\Ancien Disk (F)\MUSIQUE\Mozart - Marriage of Figaro Overture.mp3
O4 - Global Startup: C:\Users\Isabelle\Desktop\Mozart - Pachabel Canon in D - Raccourci.lnk . (...) -- I:\Ancien Disk (F)\MUSIQUE\Mozart - Pachabel Canon in D.mp3
O4 - Global Startup: C:\Users\Isabelle\Desktop\Mozart - Violin Romance - Raccourci.lnk . (...) -- I:\Ancien Disk (F)\MUSIQUE\Mozart - Violin Romance.mp3
O4 - Global Startup: C:\Users\Isabelle\Desktop\PhotoFiltre Studio X.lnk . (.Antonio Da Cruz.) -- C:\Program Files (x86)\PhotoFiltre Studio X\pfstudiox.exe
O4 - Global Startup: C:\Users\Isabelle\Desktop\RegCleaner.lnk . (...) -- C:\Program Files (x86)\RegCleaner\RegCleanr.exe
O4 - Global Startup: C:\Users\Isabelle\Desktop\Voice Changer 6.0 Diamond.lnk . (...) -- C:\Program Files (x86)\AV Vcs 6.0 DIAMOND\Vcs6Core.exe (.not file.)
O4 - Global Startup: C:\Users\Isabelle\Desktop\WinAVIVideoConverter.lnk . (...) -- C:\Program Files (x86)\WinAVIVideoConverter\WinAVI.exe
O4 - Global Startup: C:\Users\Isabelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Celtx.lnk . (.Greyfirst Corporation.) -- C:\Program Files (x86)\Celtx\celtx.exe
O4 - Global Startup: C:\Users\Isabelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Anne-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Anne-Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Anne-Marie\Desktop\CDisplay.lnk . (.David Ayton.) -- C:\Program Files (x86)\CDisplay\CDisplay.exe
O4 - Global Startup: C:\Users\Anne-Marie\Desktop\Convert XLS.lnk . (.www.SoftInterface.COM.) -- C:\Program Files (x86)\Softinterface, Inc\Convert XLS\ConvertXls.Admin.exe
O4 - Global Startup: C:\Users\Anne-Marie\Desktop\DVD Shrink 3.2 - Raccourci.lnk . (.DVD Shrink.) -- I:\ancien disque ( C )\Documents and Settings\Administrateur\Bureau\divers programmes\DVD Shrink\DVD Shrink 3.2.exe
O4 - Global Startup: C:\Users\Anne-Marie\Desktop\FileHunter.lnk . (...) -- C:\Users\Stephane\AppData\Roaming\FileHunter\FileHunter.exe (.not file.)
O4 - Global Startup: C:\Users\Anne-Marie\Desktop\FontView.lnk . (...) -- C:\Program Files (x86)\Max2k\FontView\FontView.exe
O4 - Global Startup: C:\Users\Anne-Marie\Desktop\PhotoFiltre - Raccourci.lnk . (.Antonio Da Cruz.) -- I:\ancien disque ( C )\Documents and Settings\Administrateur\Bureau\divers programmes\PhotoFiltre\PhotoFiltre.exe
O4 - Global Startup: C:\Users\Anne-Marie\Desktop\PhotoFiltre Studio X.lnk . (.Antonio Da Cruz.) -- C:\Program Files (x86)\PhotoFiltre Studio X\pfstudiox.exe
O4 - Global Startup: C:\Users\Anne-Marie\Desktop\RegCleaner.lnk . (...) -- C:\Program Files (x86)\RegCleaner\RegCleanr.exe
O4 - Global Startup: C:\Users\Anne-Marie\Desktop\scanneur.lnk -
O4 - Global Startup: C:\Users\Anne-Marie\Desktop\WinAVIVideoConverter.lnk . (...) -- C:\Program Files (x86)\WinAVIVideoConverter\WinAVI.exe
O4 - Global Startup: C:\Users\Anne-Marie\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Celtx.lnk . (.Greyfirst Corporation.) -- C:\Program Files (x86)\Celtx\celtx.exe
O4 - Global Startup: C:\Users\Anne-Marie\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\a-m\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\a-m\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\a-m\Desktop\Convert XLS.lnk . (.www.SoftInterface.COM.) -- C:\Program Files (x86)\Softinterface, Inc\Convert XLS\ConvertXls.Admin.exe
O4 - Global Startup: C:\Users\a-m\Desktop\KaraFun Player.lnk . (.RECISIO.) -- C:\Program Files (x86)\KaraFun Player\KaraFunPlayer.exe
O4 - Global Startup: C:\Users\a-m\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Scan Global Startup in 00mn 08s



---\\ IE Options icon not visible in Control Panel (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s



---\\ Extra buttons on main IE button toolbar, or extra items in IE 'Tools' menu (O9)
O9 - Extra button: (no name) [64Bits] - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} -- c:\program files (x86)\skype\toolbars\internet explorer x64\icon.ico (.not file.)
~ Scan IE Extra Buttons in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d�affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft� Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft� Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
~ Scan Winsock in 00mn 00s



---\\ Site in Trusted Zone (O15)
O15 - Trusted Zone: [HKCU\...\Domains] http.microclick-quebec.ca
O15 - Trusted Zone: [HKCU\...\Domains\www] http.microclick-quebec.ca
~ Scan IE Zone Confiance in 00mn 00s



---\\ Lop.com/Domain Hijackers (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{3803A9FE-99EB-4802-9760-A993BDD22E3B}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{3803A9FE-99EB-4802-9760-A993BDD22E3B}: DhcpDomain = lan
O17 - HKLM\System\CS1\Services\Tcpip\..\{3803A9FE-99EB-4802-9760-A993BDD22E3B}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{3803A9FE-99EB-4802-9760-A993BDD22E3B}: DhcpDomain = lan
O17 - HKLM\System\CS2\Services\Tcpip\..\{3803A9FE-99EB-4802-9760-A993BDD22E3B}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{3803A9FE-99EB-4802-9760-A993BDD22E3B}: DhcpDomain = lan
~ Scan Domain in 00mn 00s



---\\ Extra protocols (O18)
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contr�le ActiveX pour le flux vid�o.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: grooveLocalGWS [64Bits] - {88FED34C-F0CA-4636-A375-3CB6248B04CD} . (.Microsoft Corporation - GrooveSystemServices Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft� InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft� Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft� InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: ms-itss [64Bits] - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft� InfoTech Storage System Library.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\MSITSS.dll
O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: mso-offdap [64Bits] - {3D9F03FA-7A94-11D3-BE81-0050048385D1} . (.Microsoft Corporation - Microsoft Office XP Web Components.) -- C:\Program Files (x86)\Common Files\microsoft shared\Web Components\10\OWC10.dll
O18 - Handler: mso-offdap11 [64Bits] - {32505114-5902-49B2-880A-1F7738E5A384} . (.Microsoft Corporation - Microsoft Office Web Components 2003.) -- C:\Program Files (x86)\Common Files\microsoft shared\Web Components\11\OWC11.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: skype4com [64Bits] - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contr�le ActiveX pour le flux vid�o.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: text/xml [64Bits] - {807553E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn 00s



---\\ AppInit_DLLs Registry value Autorun (O20)
O20 - Winlogon Notify: klogon . (.Kaspersky Lab ZAO - Logon Visualizer.) -- C:\Windows\System32\klogon.dll
O20 - Winlogon Notify: LBTWlgn . (.Logitech, Inc. - Logitech Bluetooth Service.) -- c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
~ Scan Winlogon in 00mn 00s



---\\ ShellServiceObjectDelayLoad (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s



---\\ non Microsoft non disabled Windows XP/NT/2000 Services (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HitmanPro Scheduler (HitmanProScheduler) . (.SurfRight B.V. - HitmanPro Scheduler.) - C:\Program Files\HitmanPro\hmpsched.exe
O23 - Service: Internet Lock Service (INETLOCKSVC) . (.TopLang Software - Internet Lock service component.) - C:\Program Files\Internet Lock\ILSvc.exe
O23 - Service: lxecCATSCustConnectService (lxecCATSCustConnectService) . (.Lexmark International, Inc. - Lexmark Connect Service Executable.) - C:\Windows\system32\spool\DRIVERS\x64\3\lxecserv.exe
O23 - Service: lxec_device (lxec_device) . (. - Printer Communication System.) - C:\Windows\system32\lxeccoms.exe
O23 - Service: MAGIX StartUp Analyze Service (MAGIX StartUp Analyze Service) . (.MAGIX AG - Anwendung MXSAS.) - C:\Program Files (x86)\MAGIX\PC_Check_Tuning_2012_Version_a_telecharger\MXSAS.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: The Cleaner 2011 Helper Service (moohelp) . (.MooSoft Development LLC - MooSoft Helper Service.) - C:\Program Files (x86)\The Cleaner\mhelper.exe
O23 - Service: Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) . (.Nero AG - Nero BackItUp.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) . (.StarWind Software - StarWind iSCSI Target (Alcohol Edition).) - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) . (.TuneUp Software - TuneUp Utilities Service.) - C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
O23 - Service: (vToolbarUpdater13.2.0) . (. - ToolbarU Application.) - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
~ Scan Services in 00mn 00s



---\\ Windows Active Desktop Components & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s



---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s



---\\ Task Planned Automatically(039)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Reader and Acrobat Manager MAGIX PCCT.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Google Update MAGIX PCCT.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2588412615-2661135439-1951118577-1000Core.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2588412615-2661135439-1951118577-1000UA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\MxTray.job
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [Google Updater and Installer] (.Google Inc..) -- C:\Users\Stephane\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-2588412615-2661135439-1951118577-1000Core] (.Google Inc..) -- C:\Users\Stephane\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-2588412615-2661135439-1951118577-1000UA] (.Google Inc..) -- C:\Users\Stephane\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.38C68F4CBDFB0191112F82F3662ED0C2] [APT] [MxTray] (.MAGIX AG.) -- C:\Program Files (x86)\MAGIX\PC_Live\MxTray.exe
[MD5.3CB07566302BCEEB898DE270A0BEC175] [APT] [Programme de mise � jour en ligne de Adobe] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[MD5.9B116AE26385DD2CBC9C9842E18867E2] [APT] [TuneUpUtilities_Task_BkGndMaintenance2011] (.TuneUp Software.) -- C:\Program Files (x86)\TuneUp Utilities 2011\OneClick.exe
[MD5.B6CE88C0F0CBE20E725F6D05280D6B8D] [APT] [{0948B14D-8D18-4535-87B5-BAC4DAC71BF6}] (...) -- C:\dossier de new blue fx\newblue fx\NewBlueArtEffects10d.exe
[MD5.00000000000000000000000000000000] [APT] [{0C7B62DA-C815-4EFB-B366-0E8C46FC7E44}] (...) -- C:\Program Files (x86)\AV Vcs 6.0 DIAMOND\Vcs6Core.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{0E036C85-DA84-423C-9144-557120CCCB81}] (...) -- C:\Program Files (x86)\AV Vcs 6.0 DIAMOND\Vcs6Core.exe (.not file.)
[MD5.25651FC514F71C51E48394D16333A1DE] [APT] [{100751FA-8F10-4792-AEBB-8E31F1A66BCF}] (...) -- C:\dossier de new blue fx\newblue fx\NewBlue FX\Art blends.exe
[MD5.D00ADE091C56566CC6DB8997BDBA9718] [APT] [{1055EBB2-A93F-4451-9B48-A0656F7C3AE0}] (.Freemake.) -- C:\Program Files (x86)\Freemake\Freemake Video Converter\FreemakeVideoConverter.exe
[MD5.80691FD5F2C679292C3115DDA02C6778] [APT] [{19E92E6F-ABE4-4C9F-B20F-59C2E09ED4C7}] (...) -- C:\dossier de new blue fx\newblue fx\newbleu illusion\NewBlueFilmEffectsVegasSetup10.exe
[MD5.00000000000000000000000000000000] [APT] [{1A51108B-986A-42FF-BACC-8E19010D278E}] (...) -- I:\ancien disque (E)\torrens\Kaspersky.Internet.Security.2011.v11.0.0.232.Final.French.Incl.Trial.Reset-BOX\Setup\kis11.0.0.232fr.exe (.not file.)
[MD5.80691FD5F2C679292C3115DDA02C6778] [APT] [{1D6C9BD8-43A6-4618-8B4E-9D7263FA2F3C}] (...) -- C:\dossier de new blue fx\newblue fx\NewBlue FX\Filme effects.exe
[MD5.00000000000000000000000000000000] [APT] [{1D90B109-21C6-44BF-B845-36E0F7A8F78C}] (...) -- D:\OUTLOOK.FR-FR\OUTLOOKMUI.MSI" (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{21F8CA54-A1C5-4622-8113-4DE96F54CC40}] (...) -- I:\ancien disque (E)\torrens\Kaspersky.Internet.Security.2011.v11.0.0.232.Final.French.Incl.Trial.Reset-BOX\Setup\kis11.0.0.232fr.exe (.not file.)
[MD5.FFA8D40056115FE4CC1D7189E74D4993] [APT] [{26A96168-DFD4-4B00-8CF3-628041DBA33B}] (.Avnex Ltd.) -- C:\Program Files (x86)\AV Vcs 7.0 GOLD\VcsCore.exe
[MD5.879930C8134727D6942BE475F3C4D83D] [APT] [{2FE2029D-8C43-469B-886E-185DB23C6747}] (.KL.) -- C:\Program Files (x86)\quicktimealt147.exe
[MD5.C8EF6B2EF1B4719F8EE965565F844053] [APT] [{30831128-F545-4C1E-9100-EE1C1E9E6AC1}] (...) -- C:\dossier de new blue fx\newblue fx\newbleu illusion\NewBlueMotionEffectsVegasSetup20.exe
[MD5.2C6DFC761F1DAE61940C7EAE97EBDB19] [APT] [{366900F6-AAED-4F94-8F26-7A0E8BE2DAAB}] (.Skype Technologies S.A..) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
[MD5.437D5AD291BF3FD750AFD7D23B3FC40D] [APT] [{392AE33D-1C0A-4E92-B964-AB206F82F0C4}] (...) -- C:\dossier de new blue fx\newblue fx\NewBlue FX\NewBlueMotionEffects10d.exe
[MD5.D00ADE091C56566CC6DB8997BDBA9718] [APT] [{3BD06C7B-CC9B-4B6F-B773-4D3E2BBCAA98}] (.Freemake.) -- C:\Program Files (x86)\Freemake\Freemake Video Converter\FreemakeVideoConverter.exe
[MD5.25651FC514F71C51E48394D16333A1DE] [APT] [{3E8094C4-CFB6-406A-B487-1CC15D43A22B}] (...) -- C:\dossier de new blue fx\newblue fx\newbleu illusion\NewBlueArtBlendsVegasSetup20.exe
[MD5.1FF033E93713C97593280B3B9537318D] [APT] [{418506B7-6692-4856-AC3D-AEA3530454D8}] (...) -- C:\Users\Stephane\Desktop\divers programmes\RegCleaner.exe
[MD5.62D0EE9F46E1C52FA771FCAD464A5249] [APT] [{42197199-6C47-4C28-8923-0D6C3B018645}] (...) -- I:\ancien disque (E)\torrens\new bleu FX\NewBlue Plugins Multikeygen v1.0 Repack\NewBlue Video Essentials\NewBlueVideoEssentialsForWindowsSetup10.exe
[MD5.00000000000000000000000000000000] [APT] [{437FF10D-5070-478E-98A2-4E41DE0B8E09}] (...) -- D:\Eset Nod32\ESET Smart Security v3.0.645.0.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{45AC6548-74D6-43BD-92F1-9A61D8F15F97}] (...) -- I:\ancien disque (E)\torrens\new bleu FX\NewBlue Plugins Multikeygen v1.0 Repack\NewBlue 3D Explosions\NewBlue3DExplosionsVegasSetup10.exe (.not file.)
[MD5.27B54C41124DEBD4328637E850A8BD30] [APT] [{45B3EECD-4223-40F9-A701-453D433D6C43}] (.Sony Creative Software Inc..) -- I:\ancien disque (E)\serie vegas9...9 platinum...dvdarchitec 5\Sony DVD Architect Pro 5.0\Sony DVD Architect Pro 5.0.exe
[MD5.FFA8D40056115FE4CC1D7189E74D4993] [APT] [{47169A59-7B81-4A87-A03F-85147ECCA547}] (.Avnex Ltd.) -- C:\Program Files (x86)\AV Vcs 7.0 GOLD\VcsCore.exe
[MD5.00000000000000000000000000000000] [APT] [{4747C846-8482-47C3-8919-243425717937}] (...) -- I:\ancien disque (E)\torrens\new bleu FX\NewBlue Plugins Multikeygen v1.0 Repack\NewBlue Film Effects\Liquid_NewBlueFilmEffectsLiquidSetup10.exe (.not file.)
[MD5.C14F481CAD322E1D49BC81EE98B1093B] [APT] [{49D057C8-0341-42AA-9772-AFD91DD01D02}] (...) -- C:\dossier de new blue fx\newblue fx\newbleu illusion\NewBlue3DExplosionsVegasSetup10.exe
[MD5.E168A195BC5983885631283DEAB106FC] [APT] [{4A9FDB8F-5DCC-4C25-A781-4110E04F6E2F}] (...) -- C:\dossier de new blue fx\newblue fx\NewBlue FX\Art effects.exe
[MD5.64F7FF0059F5A8015D097CD8796ADFE3] [APT] [{5825F248-663D-4910-8324-73F4A3F1A066}] (.TechSmith Corporation.) -- C:\Program Files (x86)\TechSmith\Camtasia Studio 5\CamtasiaStudio.exe
[MD5.C14F481CAD322E1D49BC81EE98B1093B] [APT] [{5B90FD4A-354E-4CCB-BB29-50A7B69B484E}] (...) -- C:\dossier de new blue fx\newblue fx\newbleu illusion\NewBlue3DExplosionsVegasSetup10.exe
[MD5.00000000000000000000000000000000] [APT] [{5CA08897-93E2-460E-A654-7B8126C1D047}] (...) -- I:\ancien disque (E)\torrens\new bleu FX\NewBlue Plugins Multikeygen v1.0 Repack\NewBlue Motion Blends\NewBlueMotionBlendsPremiereSetup20.exe (.not file.)
[MD5.2B6829B0ED91BF3A4A06C1A66A092881] [APT] [{5F45FC9E-5B71-47BD-B57E-744B8832B994}] (...) -- I:\ancien disque (E)\torrens\new bleu FX\NewBlue Plugins Multikeygen v1.0 Repack\NewBlue 3D Transformations\NewBlue3DTransformationsVegasSetup10.exe
[MD5.84B3C0476D17C9A44DB4C9256A7E2844] [APT] [{606328AD-A86B-4932-A67D-B278F007C8F4}] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
[MD5.00000000000000000000000000000000] [APT] [{60CEDEF5-ABCC-4A98-AAE6-50274DFCAA86}] (...) -- C:\Program Files (x86)\AV Vcs 6.0 DIAMOND\Vcs6Core.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{65987F74-7837-4BFA-AF7E-6645566F6AAC}] (...) -- I:\ancien disque (E)\torrens\new bleu FX\NewBlue Plugins Multikeygen v1.0 Repack\NewBlue Motion Effects\Avid_NewBlueMotionEffectsAvidSetup20.exe (.not file.)
[MD5.2B6829B0ED91BF3A4A06C1A66A092881] [APT] [{6607AF70-0015-4266-9A9B-22B851C5C720}] (...) -- C:\dossier de new blue fx\newblue fx\Nouveau dossier\NewBlue_FX_pack_for_Vegas\NewBlue3DTransformationsVegasSetup10.exe
[MD5.4EE851071A9C9910B734DF7524720D18] [APT] [{6633669E-7FC6-4A9B-9CCF-6F617CFF0704}] (...) -- I:\ancien disque (E)\torrens\new bleu FX\NewBlue Plugins Multikeygen v1.0 Repack\NewBlue 3D Transformations\Ulead_NewBlue3DTransformationsUleadSetup10.exe
[MD5.FFA8D40056115FE4CC1D7189E74D4993] [APT] [{68AB0A91-9BB5-4319-B446-8B4B311377AB}] (.Avnex Ltd.) -- C:\Program Files (x86)\AV Vcs 7.0 GOLD\VcsCore.exe
[MD5.00000000000000000000000000000000] [APT] [{6A749248-9927-42EA-A724-A4C00074E8EE}] (...) -- I:\ancien disque (E)\torrens\0 AUTRES NOUVEAU\Games Chicken Invaders 1�2�3�4 Collection Setup\ARXIGUPS.exe (.not file.)
[MD5.84B3C0476D17C9A44DB4C9256A7E2844] [APT] [{702168FB-B480-4D37-9E3B-2D1EE6B89F47}] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
[MD5.FFA8D40056115FE4CC1D7189E74D4993] [APT] [{74D893C9-B4E5-47A6-8CC0-C6236F32A9D6}] (.Avnex Ltd.) -- C:\Program Files (x86)\AV Vcs 7.0 GOLD\VcsCore.exe
[MD5.00000000000000000000000000000000] [APT] [{751D0C2A-F22D-4E00-ADCC-19280F00CFFB}] (...) -- I:\ancien disque (E)\torrens\0 AUTRES NOUVEAU\Ardamax.Keylogger 3.0\Ardamax.Keylogger.Setup.exe (.not file.)
[MD5.84B3C0476D17C9A44DB4C9256A7E2844] [APT] [{76DE649E-0E8F-4AC1-A10E-BA1094EE0493}] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
[MD5.00000000000000000000000000000000] [APT] [{7D14C5D0-8190-47F4-BCA6-2A699FBCF32D}] (...) -- C:\Program Files (x86)\AV Vcs 6.0 DIAMOND\Vcs6Core.exe (.not file.)
[MD5.E168A195BC5983885631283DEAB106FC] [APT] [{80728B35-3615-4043-AA50-592DCE720B98}] (...) -- C:\dossier de new blue fx\newblue fx\newbleu illusion\NewBlueArtEffectsVegasSetup20.exe
[MD5.00000000000000000000000000000000] [APT] [{82C832AA-F09F-49FF-BBD8-35BF98776F30}] (...) -- E:\Program Files\Outlook Express\msimn.exe (.not file.)
[MD5.FFA8D40056115FE4CC1D7189E74D4993] [APT] [{89413428-69F4-4F27-9EF5-9937FA91EB93}] (.Avnex Ltd.) -- C:\Program Files (x86)\AV Vcs 7.0 GOLD\VcsCore.exe
[MD5.4397D3C71D797A0D624A47783938C3FF] [APT] [{8BFD5738-0DD3-4FA1-AE53-D825058807C7}] (.Avnex Ltd.) -- C:\Program Files (x86)\AV Vcs 7.0 DIAMOND\VcsCore.exe
[MD5.FFA8D40056115FE4CC1D7189E74D4993] [APT] [{8CF725A0-E7F7-4667-B4CC-C670E0DADCEA}] (.Avnex Ltd.) -- C:\Program Files (x86)\AV Vcs 7.0 GOLD\VcsCore.exe
[MD5.4397D3C71D797A0D624A47783938C3FF] [APT] [{8D329D6F-3DEF-4309-945D-1ACB15C9BBFF}] (.Avnex Ltd.) -- C:\Program Files (x86)\AV Vcs 7.0 DIAMOND\VcsCore.exe
[MD5.FFA8D40056115FE4CC1D7189E74D4993] [APT] [{8FC06EE5-0674-45C3-8F11-1CEE39DA8FA6}] (.Avnex Ltd.) -- C:\Program Files (x86)\AV Vcs 7.0 GOLD\VcsCore.exe
[MD5.FFA8D40056115FE4CC1D7189E74D4993] [APT] [{92C7DB3D-AB41-4A75-90AA-75A97C737622}] (.Avnex Ltd.) -- C:\Program Files (x86)\AV Vcs 7.0 GOLD\VcsCore.exe
[MD5.25651FC514F71C51E48394D16333A1DE] [APT] [{94C6D542-7928-4A18-9C0F-4A65B30AF0F7}] (...) -- C:\dossier de new blue fx\newblue fx\Nouveau dossier\NewBlue_FX_pack_for_Vegas\NewBlueArtBlendsVegasSetup20.exe
[MD5.C14F481CAD322E1D49BC81EE98B1093B] [APT] [{9675063F-6D6A-4035-8434-40F682A257DC}] (...) -- C:\dossier de new blue fx\newblue fx\newbleu illusion\NewBlue3DExplosionsVegasSetup10.exe
[MD5.FFA8D40056115FE4CC1D7189E74D4993] [APT] [{9B96AC52-FE8D-4823-88A6-E9E1022214AA}] (.Avnex Ltd.) -- C:\Program Files (x86)\AV Vcs 7.0 GOLD\VcsCore.exe
[MD5.FFA8D40056115FE4CC1D7189E74D4993] [APT] [{A0A74529-8EB3-4A54-A7E8-B30DD773AD6C}] (.Avnex Ltd.) -- C:\Program Files (x86)\AV Vcs 7.0 GOLD\VcsCore.exe
[MD5.00000000000000000000000000000000] [APT] [{A337170B-8C25-4FC4-B2D8-1AA4550B31B8}] (...) -- I:\ancien disque (E)\torrens\new bleu FX\NewBlue Plugins Multikeygen v1.0 Repack\NewBlue Film Effects\NewBlueFilmEffectsVegasSetup10.exe (.not file.)
[MD5.C14F481CAD322E1D49BC81EE98B1093B] [APT] [{A5421CC2-3907-460E-86DA-C85CBD0A3102}] (...) -- C:\dossier de new blue fx\newblue fx\NewBlue FX\Explosions.exe
[MD5.C14F481CAD322E1D49BC81EE98B1093B] [APT] [{A5BF2072-3C8D-48F9-AC7A-0886CF0EC31C}] (...) -- C:\dossier de new blue fx\newblue fx\Nouveau dossier\NewBlue_FX_pack_for_Vegas\NewBlue3DExplosionsVegasSetup10.exe
[MD5.00000000000000000000000000000000] [APT] [{A704D1D1-CD59-4308-94AB-44ED07F13021}] (...) -- I:\ancien disque (E)\torrens\new bleu FX\NewBlue Plugins Multikeygen v1.0 Repack\NewBlue Film Effects\Edius_NewBlueFilmEffectsEdiusSetup10.exe (.not file.)
[MD5.C8EF6B2EF1B4719F8EE965565F844053] [APT] [{A7DD2149-E31A-4ED4-822A-ECAED3F709C3}] (...) -- C:\dossier de new blue fx\newblue fx\NewBlue FX\Motion effects.exe
[MD5.00000000000000000000000000000000] [APT] [{A894B936-F462-44B2-A3DD-733ED1B45697}] (...) -- I:\ancien disque (E)\torrens\new bleu FX\NewBlue Plugins Multikeygen v1.0 Repack\NewBlue Motion Blends\Studio_NewBlueMotionBlendsStudioSetup20.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{A992AB03-9A11-49AF-9290-76153430FA99}] (...) -- I:\ancien disque (E)\torrens\new bleu FX\NewBlue Plugins Multikeygen v1.0 Repack\NewBlue Art Blends\Ulead_NewBlueArtBlendsUleadSetup20.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{ABE99DE0-02E7-4E8F-A593-2CD449E1F919}] (...) -- I:\ancien disque (E)\torrens\0 AUTRES NOUVEAU\Audio4Fun AV Voice Changer Diamond 7.0.29 + Crack [RH]\Audio4Fun AV Voice Changer Diamond 7.0.29\VCS_Diamond.7.0.
[MD5.00000000000000000000000000000000] [APT] [{AD290532-9BCD-4A96-BBD9-6C062A211D27}] (...) -- I:\ancien disque (E)\torrens\new bleu FX\NewBlue Plugins Multikeygen v1.0 Repack\NewBlue Film Effects\NewBlueFilmEffectsPremiereSetup10.exe (.not file.)
[MD5.2B6829B0ED91BF3A4A06C1A66A092881] [APT] [{BD79FAF0-F240-4078-A6AD-CDD6C4706B1F}] (...) -- C:\dossier de new blue fx\newblue fx\newbleu illusion\NewBlue3DTransformationsVegasSetup10.exe
[MD5.64F7FF0059F5A8015D097CD8796ADFE3] [APT] [{C0136DEC-4198-4B70-B20C-426CE75374B4}] (.TechSmith Corporation.) -- C:\Program Files (x86)\TechSmith\Camtasia Studio 5\CamtasiaStudio.exe
[MD5.00000000000000000000000000000000] [APT] [{C1B22F23-CD59-4CCB-A895-425A9C8F4440}] (...) -- C:\Program Files (x86)\AV Vcs 6.0 DIAMOND\Vcs6Core.exe (.not file.)
[MD5.437D5AD291BF3FD750AFD7D23B3FC40D] [APT] [{CC48A188-83E3-4B9E-82E7-90A616D6B89F}] (...) -- C:\dossier de new blue fx\newblue fx\NewBlueMotionEffects10d.exe
[MD5.FFA8D40056115FE4CC1D7189E74D4993] [APT] [{CD011CC8-73E3-4CA0-9EEC-CD8F100E4437}] (.Avnex Ltd.) -- C:\Program Files (x86)\AV Vcs 7.0 GOLD\VcsCore.exe
[MD5.2B6829B0ED91BF3A4A06C1A66A092881] [APT] [{CE0D3F85-BFBB-48C8-BE97-380806CA595C}] (...) -- C:\dossier de new blue fx\newblue fx\NewBlue FX\Transformations.exe
[MD5.00000000000000000000000000000000] [APT] [{D26CC7FA-C123-48CE-B509-22CF6C888BB0}] (...) -- I:\ancien disque (E)\torrens\new bleu FX\NewBlue Plugins Multikeygen v1.0 Repack\NewBlue Film Effects\Avid_NewBlueFilmEffectsAvidSetup10.exe (.not file.)
[MD5.037627EBFC561BBD1185DA9E8099BA14] [APT] [{E0B11F66-DB24-451B-A074-405B9DDFFE2F}] (...) -- I:\ancien disque (E)\torrens\new bleu FX\NewBlue Plugins Multikeygen v1.0 Repack\NewBlue 3D Explosions\Ulead_NewBlue3DExplosionsUleadSetup10.exe
[MD5.595879C4B1CC1FC7D52C4CE9D36BCD31] [APT] [{E0B78E79-3C12-4C04-BE32-DB0932990324}] (.VS Revo Group.) -- C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe
[MD5.00000000000000000000000000000000] [APT] [{E45EC42F-C452-4BBB-A072-B1BF0A17A61A}] (...) -- I:\ancien disque (E)\torrens\new bleu FX\NewBlue Plugins Multikeygen v1.0 Repack\NewBlue Motion Blends\Liquid_NewBlueMotionBlendsLiquidSetup20.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{E54452B3-94B8-44FE-ACEC-95C2B18506C5}] (...) -- I:\ancien disque (E)\torrens\new bleu FX\NewBlue Plugins Multikeygen v1.0 Repack\NewBlue Film Effects\Studio_NewBlueFilmEffectsStudioSetup10.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{EA26D170-CED9-46FC-B4B3-128DD722FE42}] (...) -- I:\ancien disque (E)\torrens\new bleu FX\NewBlue Plugins Multikeygen v1.0 Repack\NewBlue Art Blends\NewBlueArtBlendsVegasSetup20.exe (.not file.)
[MD5.C1B9E4138BFE18E44A2849F1D17E45AD] [APT] [{EDDF7FA9-5605-4528-94B0-C6E4056462C1}] (...) -- C:\dossier de new blue fx\newblue fx\NewBlueCartoonrVegasSetup10.exe
[MD5.00000000000000000000000000000000] [APT] [{F09DB5C0-2ACF-474E-9F85-8CA179FEFB19}] (...) -- I:\ancien disque (E)\torrens\new bleu FX\NewBlue Plugins Multikeygen v1.0 Repack\NewBlue Motion Blends\Edius_NewBlueMotionBlendsEdiusSetup20.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{F3D308EF-E583-4AA0-9E08-FB610F329931}] (...) -- I:\ancien disque (E)\torrens\Sony\Dvd architect\dvdarchitectpro50a.exe (.not file.)
[MD5.FFA8D40056115FE4CC1D7189E74D4993] [APT] [{F8CD59C2-99CF-4D99-9000-B71C85F10373}] (.Avnex Ltd.) -- C:\Program Files (x86)\AV Vcs 7.0 GOLD\VcsCore.exe
[MD5.FFA8D40056115FE4CC1D7189E74D4993] [APT] [{FFDAD273-0B77-435A-8127-D6981FB13903}] (.Avnex Ltd.) -- C:\Program Files (x86)\AV Vcs 7.0 GOLD\VcsCore.exe
[MD5.2252A0D8EB1D73FDBA7454FF7D395825] [APT] [ASUS SIX Engine] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe
~ Scan Scheduled Task in 00mn 09s



---\\ ActiveSetup Installed Components (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d�IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Java (Sun) [64Bits] - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn 00s



---\\ Drivers launched at startup (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (AsIO) . (...) - C:\Windows\Syswow64\drivers\AsIO.sys
O41 - Driver: (avgtp) . (.AVG Technologies - .) - C:\Windows\system32\drivers\avgtpx64.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (ehdrv) . (.ESET - ESET Helper driver.) - C:\Windows\System32\DRIVERS\ehdrv.sys
O41 - Driver: (ISODrive) . (.EZB Systems, Inc. - ISO DVD/CD-ROM Device Driver.) - C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys
O41 - Driver: (KLIF) . (.Kaspersky Lab - Klif Mini-Filter [fre_wlh_AMD64].) - C:\Windows\System32\DRIVERS\klif.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-syst�me de mise en m�moire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de p�riph�rique s�rie.) - C:\Windows\System32\DRIVERS\serial.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
O41 - Driver: C:\Windows\System32\drivers\ws2ifsl.sys (ws2ifsl) . (.Microsoft Corporation - Couche IFS Winsock2.) - C:\Windows\system32\drivers\ws2ifsl.sys
~ Scan Drivers in 00mn 00s



---\\ Software installed (O42)
O42 - Logiciel: ABBYY FineReader 6.0 Sprint - (.ABBYY Software House.) [HKLM][64Bits] -- {ACF60000-22B9-4CE9-98D6-2CCF359BAC07}
O42 - Logiciel: ABest Video to MOV MPEG Converter 4.52 - (.Abest Corporation.) [HKLM][64Bits] -- ABest Video to MOV MPEG Converter_is1
O42 - Logiciel: AMD Drag and Drop Transcoding - (.ATI Technologies Inc..) [HKLM][64Bits] -- {503640E5-B2ED-3173-D109-D4D03153471A}
O42 - Logiciel: ATI Catalyst Install Manager - (.ATI Technologies, Inc..) [HKLM][64Bits] -- {3DDACE1F-3B1E-D6AB-CD3D-B6E987511945}
O42 - Logiciel: ATI Catalyst Registration - (.ATI Technologies Inc..) [HKLM][64Bits] -- {11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}
O42 - Logiciel: AV Voice Changer Software DIAMOND 7.0 - (.Avnex Ltd..) [HKLM][64Bits] -- AV Voice Changer Software DIAMOND 7.0
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Photoshop 6.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Photoshop 6.0
O42 - Logiciel: Adobe Photoshop CS5 Portable - (.Adobe.) [HKLM][64Bits] -- {61172A5D-60AA-43BE-958F-90451024E768}_is1
O42 - Logiciel: Adobe Photoshop Lightroom 4 64-bit - (.Adobe.) [HKLM][64Bits] -- {669A82E0-43E2-4645-8A2E-1A3DE78F8312}
O42 - Logiciel: Adobe Reader X (10.1.3) - Fran�ais - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: Adobe SVG Viewer - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe SVG Viewer
O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM][64Bits] -- {b2ec4a38-b545-4a00-8214-13fe0e915e6d}
O42 - Logiciel: Any Video Converter Professional 3.3.3 - (.Any-Video-Converter.com.) [HKLM][64Bits] -- Any Video Converter Professional_is1
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {A83279FD-CA4B-4206-9535-90974DE76654}
O42 - Logiciel: Archiveur WinRAR - (..) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Audacity 1.3.12 (Unicode) - (.Audacity Team.) [HKLM][64Bits] -- Audacity 1.3 Beta (Unicode)_is1
O42 - Logiciel: Auto Hide IP - (..) [HKLM][64Bits] -- AutoHideIP
O42 - Logiciel: Avidemux 2.5 - (..) [HKLM][64Bits] -- Avidemux 2.5
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM][64Bits] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1
O42 - Logiciel: CDDRV_Installer - (.Logitech.) [HKLM][64Bits] -- {0C826C5B-B131-423A-A229-C71B3CACCD6A}
O42 - Logiciel: CDisplay 1.8 - (.dvd8n.) [HKLM][64Bits] -- CDisplay_is1
O42 - Logiciel: Camtasia Studio 5 - (.TechSmith Corporation.) [HKLM][64Bits] -- {784E6B0F-00EC-4950-95A2-BBA64F44EC48}
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {DDA34038-89BD-4804-B0B8-DC48D5DFB463}
O42 - Logiciel: Compl�ment Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}
O42 - Logiciel: Convert XLS - (.Softinterface, Inc..) [HKLM][64Bits] -- Convert XLS_is1
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DVD Architect Pro 5.0 - (.Sony.) [HKLM][64Bits] -- {A32BAC41-30A0-40D1-B4BC-0FB3304CA780}
O42 - Logiciel: DVDFab 7.0.6.2 (20/05/2010) - (.Fengtao Software Inc..) [HKLM][64Bits] -- DVDFab 7_is1
O42 - Logiciel: DVDFab Gold 3.2.1.0 - (.Fengtao Software Inc..) [HKLM][64Bits] -- DVDFab Gold_is1
O42 - Logiciel: DeepBurner Pro v1.9.0.228 - (..) [HKLM][64Bits] -- {1AD22277-7A1E-71EC-B27D-EB7A22BED143}
O42 - Logiciel: DolbyFiles - (.Nero AG.) [HKLM][64Bits] -- {b1adf008-e898-4fe2-8a1f-690d9a06acaf}
O42 - Logiciel: D�tection de l'application Winamp - (.Nullsoft, Inc.) [HKCU][64Bits] -- Winamp Detect
O42 - Logiciel: EPU-4 Engine - (..) [HKLM][64Bits] -- {8F66047B-1AF3-40D9-80D7-106E2EDC2C2A}
O42 - Logiciel: Final Effects Complete 6.0.0 32Bit - (.Boris Fx, Inc..) [HKLM][64Bits] -- {1D5DE157-8964-46FD-BED3-22FC05ED3170}
O42 - Logiciel: FontView (remove only) - (..) [HKLM][64Bits] -- FontView
O42 - Logiciel: FormatFactory 2.60 - (.Free Time.) [HKLM][64Bits] -- FormatFactory
O42 - Logiciel: Free Audio Editor 2009 v6.0.1 - (.FreeAudioStudio Inc..) [HKLM][64Bits] -- Free Audio Editor_is1
O42 - Logiciel: Free YouTube Download version 3.1.30.627 - (.DVDVideoSoft Ltd..) [HKLM][64Bits] -- Free YouTube Download_is1
O42 - Logiciel: Freemake Video Converter version 2.1.1 - (.Ellora Assets Corporation.) [HKLM][64Bits] -- Freemake Video Converter_is1
O42 - Logiciel: Funny Chewer v1.72 - (..) [HKLM][64Bits] -- Funny Chewer_is1
O42 - Logiciel: GetSmile v1.952 - (.Sofrayt LLC.) [HKLM][64Bits] -- GetSmile0903_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU][64Bits] -- Google Chrome
O42 - Logiciel: Google Earth Plug-in - (.Google.) [HKLM][64Bits] -- {2934DCB0-F8EE-11E0-A4A5-B8AC6F97B88E}
O42 - Logiciel: Google Talk Plugin - (.Google.) [HKLM][64Bits] -- {53646626-11D9-33C6-8BB1-472536192DC4}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HitmanPro�3.7 - (.SurfRight B.V..) [HKLM][64Bits] -- HitmanPro37
O42 - Logiciel: ImgBurn - (.LIGHTNING UK!.) [HKLM][64Bits] -- ImgBurn
O42 - Logiciel: Internet Lock 5.3 - (.TopLang software.) [HKLM][64Bits] -- TopLang Internet Lock
O42 - Logiciel: J2SE Runtime Environment 5.0 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {3248F0A8-6813-11D6-A77B-00B0D0150000}
O42 - Logiciel: Java(TM) 6 Update 24 (64-bit) - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86416024FF}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: KaraFun Player - (.Recisio.) [HKLM][64Bits] -- KaraFun Player_is1
O42 - Logiciel: Kaspersky Anti-Virus 2011 - (.Kaspersky Lab.) [HKLM][64Bits] -- {66F1F013-008F-4875-B283-5A814B820347}
O42 - Logiciel: KhalInstallWrapper - (.Logitech.) [HKLM][64Bits] -- {F3F18612-7B5D-4C05-86C9-AB50F6F71727}
O42 - Logiciel: LAME v3.98.2 for Audacity - (..) [HKLM][64Bits] -- LAME for Audacity_is1
O42 - Logiciel: Lexmark - (..) [HKLM][64Bits] -- {D2C5E510-BE6D-42CC-9F61-E4F939078474}
O42 - Logiciel: Lexmark Pro800-Pro900 Series - (.Lexmark International, Inc..) [HKLM][64Bits] -- Lexmark Pro800-Pro900 Series
O42 - Logiciel: Logitech MouseWare 8.50 - (..) [HKLM][64Bits] -- Logitech MouseWare
O42 - Logiciel: Logitech SetPoint - (.Logitech.) [HKLM][64Bits] -- {F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}
O42 - Logiciel: MAGIX PC Check & Tuning 2012 Version � t�l�charger - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_MSI_PC_Check_Tuning_2012
O42 - Logiciel: MAGIX PC Check & Tuning 2012 Version � t�l�charger - (.MAGIX AG.) [HKLM][64Bits] -- {29751288-BEF1-4231-8CA4-D5D9D96FF331}
O42 - Logiciel: MAGIX PC Live - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_MSI_PC_Live
O42 - Logiciel: MAGIX PC Live - (.MAGIX AG.) [HKLM][64Bits] -- {C13495A9-DA0D-4A9B-A84D-42A7E1EE0FBB}
O42 - Logiciel: MAGIX Screenshare - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_MSI_PCVisit
O42 - Logiciel: MAGIX Screenshare - (.MAGIX AG.) [HKLM][64Bits] -- {7D9B958D-BB60-4135-8CB1-F20964F500ED}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {AB085680-FE98-11E1-A232-F04DA23A5C58}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2721691) - (.Microsoft Corporation.) [HKLM][64Bits] -- {355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94}
O42 - Logiciel: Malwarebytes Anti-Malware version 1.65.1.1000 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: MediaCoder 0.7.5.4799 - (.Broad Intelligence.) [HKLM][64Bits] -- MediaCoder
O42 - Logiciel: Menu Templates - Starter Kit - (.Nero AG.) [HKLM][64Bits] -- {b78120a0-cf84-4366-a393-4d0a59bc546c}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Movie Templates - Starter Kit - (.Nero AG.) [HKLM][64Bits] -- {e498385e-1c51-459a-b45f-1721e37aa1a0}
O42 - Logiciel: Mozilla Firefox (3.6.3) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox (3.6.3)
O42 - Logiciel: Need4 Software Launcher 7.1 - (.Need4Video.) [HKLM][64Bits] -- Need4 Software Launcher
O42 - Logiciel: Need4 Video Converter 8 - (.Need4Video.) [HKLM][64Bits] -- Need4 Video Converter 8
O42 - Logiciel: Nero 7 Ultra Edition - (.Nero AG.) [HKLM][64Bits] -- {CF097717-F174-4144-954A-FBC4BF301033}
O42 - Logiciel: Nero 9 - (.Nero AG.) [HKLM][64Bits] -- {8659b784-0945-4141-b838-eca9b0d790a2}
O42 - Logiciel: Nero 9 Trial - (.Nero AG.) [HKLM][64Bits] -- {0a137175-d6a9-4983-a3c4-9de58e7f49b2}
O42 - Logiciel: Nero BurnRights - (.Nero AG.) [HKLM][64Bits] -- {7829db6f-a066-4e40-8912-cb07887c20bb}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {bd5ca0da-71ad-43da-b19e-6eee0c9adc9a}
O42 - Logiciel: Nero CoverDesigner - (.Nero AG.) [HKLM][64Bits] -- {62ac81f6-bdd3-4110-9d36-3e9eaab40999}
O42 - Logiciel: Nero DiscSpeed - (.Nero AG.) [HKLM][64Bits] -- {869200db-287a-4dc0-b02b-2b6787fbcd4c}
O42 - Logiciel: Nero DriveSpeed - (.Nero AG.) [HKLM][64Bits] -- {33cf58f5-48d8-4575-83d6-96f574e4d83a}
O42 - Logiciel: Nero InfoTool - (.Nero AG.) [HKLM][64Bits] -- {fbcdfd61-7dcf-4e71-9226-873ba0053139}
O42 - Logiciel: Nero Installer - (.Nero AG.) [HKLM][64Bits] -- {e8a80433-302b-4ff1-815d-fcc8eac482ff}
O42 - Logiciel: Nero Live - (.Nero AG.) [HKLM][64Bits] -- {df6a95f5-adc1-406a-bdc6-2aa7cc0182aa}
O42 - Logiciel: Nero PhotoSnap - (.Nero AG.) [HKLM][64Bits] -- {9e82b934-9a25-445b-b8df-8012808074ac}
O42 - Logiciel: Nero Recode - (.Nero AG.) [HKLM][64Bits] -- {359cfc0a-beb1-440d-95ba-cf63a86da34f}
O42 - Logiciel: Nero Rescue Agent - (.Nero AG.) [HKLM][64Bits] -- {368ba326-73ad-4351-84ed-3c0a7a52cc53}
O42 - Logiciel: Nero ShowTime - (.Nero AG.) [HKLM][64Bits] -- {d9dcf92e-72eb-412d-ac71-3b01276e5f8b}
O42 - Logiciel: Nero StartSmart - (.Nero AG.) [HKLM][64Bits] -- {7748ac8c-18e3-43bb-959b-088faea16fb2}
O42 - Logiciel: Nero Vision - (.Nero AG.) [HKLM][64Bits] -- {43e39830-1826-415d-8bae-86845787b54b}
O42 - Logiciel: Nero WaveEditor - (.Nero AG.) [HKLM][64Bits] -- {a209525b-3377-43f4-b886-32f6b6e7356f}
O42 - Logiciel: NeroBurningROM - (.Nero AG.) [HKLM][64Bits] -- {d025a639-b9c9-417d-8531-208859000af8}
O42 - Logiciel: NeroExpress - (.Nero AG.) [HKLM][64Bits] -- {595a3116-40bb-4e0f-a2e8-d7951da56270}
O42 - Logiciel: NeroLiveGadget - (.Nero AG.) [HKLM][64Bits] -- {9e9fdde6-2c26-492a-85a0-05646b3f2795}
O42 - Logiciel: NewBlue 3D Explosions for Avid - (..) [HKLM][64Bits] -- NewBlue 3D Explosions for Avid
O42 - Logiciel: NewBlue 3D Explosions for Edius - (..) [HKLM][64Bits] -- NewBlue 3D Explosions for Edius
O42 - Logiciel: NewBlue 3D Explosions for Liquid - (..) [HKLM][64Bits] -- NewBlue 3D Explosions for Liquid
O42 - Logiciel: NewBlue 3D Explosions for Premiere - (..) [HKLM][64Bits] -- NewBlue 3D Explosions for Premiere
O42 - Logiciel: NewBlue 3D Explosions for Studio - (..) [HKLM][64Bits] -- NewBlue 3D Explosions for Studio
O42 - Logiciel: NewBlue 3D Explosions for Vegas - (..) [HKLM][64Bits] -- NewBlue 3D Explosions for Vegas
O42 - Logiciel: NewBlue 3D Transformations for Avid - (..) [HKLM][64Bits] -- NewBlue 3D Transformations for Avid
O42 - Logiciel: NewBlue 3D Transformations for Edius - (..) [HKLM][64Bits] -- NewBlue 3D Transformations for Edius
O42 - Logiciel: NewBlue 3D Transformations for Liquid - (..) [HKLM][64Bits] -- NewBlue 3D Transformations for Liquid
O42 - Logiciel: NewBlue 3D Transformations for Premiere - (..) [HKLM][64Bits] -- NewBlue 3D Transformations for Premiere
O42 - Logiciel: NewBlue 3D Transformations for Studio - (..) [HKLM][64Bits] -- NewBlue 3D Transformations for Studio
O42 - Logiciel: NewBlue 3D Transformations for Vegas - (..) [HKLM][64Bits] -- NewBlue 3D Transformations for Vegas
O42 - Logiciel: NewBlue Art Blends - (..) [HKLM][64Bits] -- NewBlue Art Blends
O42 - Logiciel: NewBlue Art Blends 2.0 for Avid - (..) [HKLM][64Bits] -- NewBlue Art Blends 2.0 for Avid
O42 - Logiciel: NewBlue Art Blends 2.0 for Edius - (..) [HKLM][64Bits] -- NewBlue Art Blends 2.0 for Edius
O42 - Logiciel: NewBlue Art Blends 2.0 for Premiere - (..) [HKLM][64Bits] -- NewBlue Art Blends 2.0 for Premiere
O42 - Logiciel: NewBlue Art Blends 2.0 for Vegas - (..) [HKLM][64Bits] -- NewBlue Art Blends 2.0 for Vegas
O42 - Logiciel: NewBlue Art Effects - (..) [HKLM][64Bits] -- NewBlue Art Effects
O42 - Logiciel: NewBlue Art Effects 2.0 for Avid - (..) [HKLM][64Bits] -- NewBlue Art Effects 2.0 for Avid
O42 - Logiciel: NewBlue Art Effects 2.0 for Edius - (..) [HKLM][64Bits] -- NewBlue Art Effects 2.0 for Edius
O42 - Logiciel: NewBlue Art Effects 2.0 for Liquid - (..) [HKLM][64Bits] -- NewBlue Art Effects 2.0 for Liquid
O42 - Logiciel: NewBlue Art Effects 2.0 for Premiere - (..) [HKLM][64Bits] -- NewBlue Art Effects 2.0 for Premiere
O42 - Logiciel: NewBlue Art Effects 2.0 for Studio - (..) [HKLM][64Bits] -- NewBlue Art Effects 2.0 for Studio
O42 - Logiciel: NewBlue Art Effects 2.0 for Vegas - (..) [HKLM][64Bits] -- NewBlue Art Effects 2.0 for Vegas
O42 - Logiciel: NewBlue Cartoonr for Vegas - (..) [HKLM][64Bits] -- NewBlue Cartoonr for Vegas
O42 - Logiciel: NewBlue Film Effects for Vegas - (..) [HKLM][64Bits] -- NewBlue Film Effects for Vegas
O42 - Logiciel: NewBlue Motion Blends - (..) [HKLM][64Bits] -- NewBlue Motion Blends
O42 - Logiciel: NewBlue Motion Effects - (..) [HKLM][64Bits] -- NewBlue Motion Effects
O42 - Logiciel: NewBlue Motion Effects 2.0 for Edius - (..) [HKLM][64Bits] -- NewBlue Motion Effects 2.0 for Edius
O42 - Logiciel: NewBlue Motion Effects 2.0 for Liquid - (..) [HKLM][64Bits] -- NewBlue Motion Effects 2.0 for Liquid
O42 - Logiciel: NewBlue Motion Effects 2.0 for Premiere - (..) [HKLM][64Bits] -- NewBlue Motion Effects 2.0 for Premiere
O42 - Logiciel: NewBlue Motion Effects 2.0 for Vegas - (..) [HKLM][64Bits] -- NewBlue Motion Effects 2.0 for Vegas
O42 - Logiciel: NewBlue Video Essentials 1.0 for Windows - (..) [HKLM][64Bits] -- NewBlue Video Essentials 1.0 for Windows
O42 - Logiciel: Pense-Bete 8.0 - (..) [HKLM][64Bits] -- Pense-B�te 8.0_is1
O42 - Logiciel: PhotoFiltre Studio X - (..) [HKCU][64Bits] -- PhotoFiltre Studio X
O42 - Logiciel: PowerISO - (.Power Software Ltd.) [HKLM][64Bits] -- PowerISO
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {7BE15435-2D3E-4B58-867F-9C75BED0208C}
O42 - Logiciel: Realtek Ethernet Controller Driver For Windows 7 - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Skype� 6.0 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {EA17F4FC-FDBF-4CF8-A529-2D983132D053}
O42 - Logiciel: Sony DVD Architect 4.0 - (.Sony.) [HKLM][64Bits] -- {219CB444-F2B6-4A17-8A76-BB7847F3DB26}
O42 - Logiciel: Sony Media Manager 2.2 - (.Sony.) [HKLM][64Bits] -- {71A41426-C7A4-4DCF-A9ED-C5B4B105ED1D}
O42 - Logiciel: Sony Vegas 7.0 - (.Sony.) [HKLM][64Bits] -- {251C3815-7A55-4607-A82D-C3B98F0FBAB8}
O42 - Logiciel: SoundTrax - (.Nero AG.) [HKLM][64Bits] -- {c5a7cb6c-e76d-408f-ba0e-85605420fe9d}
O42 - Logiciel: Switch Sound File Converter - (.NCH Software.) [HKLM][64Bits] -- Switch
O42 - Logiciel: Text to Speech Maker version 2.0.1 - (..) [HKLM][64Bits] -- Text to Speech Maker_is1
O42 - Logiciel: TextMaker Viewer - (.SoftMaker Software GmbH.) [HKLM][64Bits] -- TextMaker Viewer
O42 - Logiciel: The Cleaner 2012 Upgrade - (.MooSoft Development LLC.) [HKLM][64Bits] -- The Cleaner_is1
O42 - Logiciel: Trojan Remover 6.8.2 - (.Simply Super Software.) [HKLM][64Bits] -- Trojan Remover_is1
O42 - Logiciel: TuneUp Utilities 2011 - (.TuneUp Software.) [HKLM][64Bits] -- TuneUp Utilities 2011
O42 - Logiciel: UltraISO Premium V9.53 - (..) [HKLM][64Bits] -- UltraISO_is1
O42 - Logiciel: Uninstall 1.0.0.1 - (..) [HKLM][64Bits] -- Uninstall_is1
O42 - Logiciel: VIA Le gestionnaire du dispositif de plate-forme - (.VIA Technologies, Inc..) [HKLM][64Bits] -- InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}
O42 - Logiciel: VLC media player 1.1.4 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Vegas Pro 12.0 (64-bit) - (.Sony.) [HKLM][64Bits] -- {A782B230-FE98-11E1-9A1E-F04DA23A5C58}
O42 - Logiciel: Video Download Capture V2.3.7 - (.Apowersoft.) [HKLM][64Bits] -- {3C9D008D-3716-4C3F-90CD-38ED57568FAB}_is1
O42 - Logiciel: Visionneuse Microsoft PowerPoint - (.Microsoft Corporation.) [HKLM][64Bits] -- {95140000-00AF-040C-0000-0000000FF1CE}
O42 - Logiciel: WBFS Manager 3.0 - (.AlexDP.) [HKLM][64Bits] -- WBFS Manager 3.0
O42 - Logiciel: Web Acappella 4 - (.Intuisphere.) [HKLM][64Bits] -- Web Acappella 4_is1
O42 - Logiciel: WinAVI Video Converter - (.ZJ Computing, Inc..) [HKLM][64Bits] -- WinAVI Video Converter_is1
O42 - Logiciel: WinAVIVideoConverter - (.ZJ Computing, Inc..) [HKLM][64Bits] -- WinAVIVideoConverter_is1
O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM][64Bits] -- Winamp
O42 - Logiciel: Windows Internet Explorer Platform Preview - (.Microsoft Corporation.) [HKLM][64Bits] -- {E3E30FF7-5EAE-4E0E-B394-78214222D60C}
O42 - Logiciel: X-Fonter 7.1 - (.Blacksun Software.) [HKLM][64Bits] -- X-Fonter_is1
O42 - Logiciel: XPVoice2 - (.USTC.) [HKLM][64Bits] -- {ABDE52CC-1FB3-472C-BFF6-383F20164F26}
O42 - Logiciel: XviD MPEG-4 Codec - (..) [HKLM][64Bits] -- XviD
O42 - Logiciel: abgx360 v1.0.6 - (..) [HKLM][64Bits] -- abgx360
O42 - Logiciel: erLT - (.Logitech, Inc..) [HKLM][64Bits] -- {3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}
O42 - Logiciel: jZip - (.Discordia Limited..) [HKLM][64Bits] -- jZip
O42 - Logiciel: vanBasco's Karaoke Player - (..) [HKLM][64Bits] -- VMidi
O42 - Logiciel: �Torrent - (..) [HKLM][64Bits] -- uTorrent

---\\ HKCU & HKLM Software Keys
[HKCU\Software\ABBYY]
[HKCU\Software\AMD]
[HKCU\Software\ASProtect]
[HKCU\Software\ASUS]
[HKCU\Software\ATI]
[HKCU\Software\Adobe Lightroom]
[HKCU\Software\Adobe]
[HKCU\Software\Ahead]
[HKCU\Software\Alcohol Soft]
[HKCU\Software\AnvSoft]
[HKCU\Software\AppDataLow\Google]
[HKCU\Software\AppDataLow\LastScanTime]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\Yahoo]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Astonsoft]
[HKCU\Software\Audacity]
[HKCU\Software\BitTorrent]
[HKCU\Software\CDDB]
[HKCU\Software\CDisplay]
[HKCU\Software\Canneverbe Limited]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CoreAAC]
[HKCU\Software\CoreFLAC]
[HKCU\Software\DVD Shrink]
[HKCU\Software\DVDFab]
[HKCU\Software\DVDVideoSoft]
[HKCU\Software\Digital River]
[HKCU\Software\DirectShow]
[HKCU\Software\Dx6.2]
[HKCU\Software\ESET]
[HKCU\Software\EasyBoot Systems]
[HKCU\Software\EasyDownloads]
[HKCU\Software\FreeTime]
[HKCU\Software\Freemake]
[HKCU\Software\GNU]
[HKCU\Software\Gabest]
[HKCU\Software\Google]
[HKCU\Software\Haali]
[HKCU\Software\IM Providers]
[HKCU\Software\ImgBurn]
[HKCU\Software\Intel]
[HKCU\Software\Intuisphere]
[HKCU\Software\JavaSoft]
[HKCU\Software\KasperskyLab]
[HKCU\Software\Lavalys]
[HKCU\Software\Leadertech]
[HKCU\Software\Lexmark Pro800-Pro900 Series]
[HKCU\Software\LexmarkInkjet]
[HKCU\Software\LexmarkPhoto]
[HKCU\Software\Lexmark]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Logitech]
[HKCU\Software\Macromedia]
[HKCU\Software\Magix]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Max2k]
[HKCU\Software\MooSoft Development]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\NCH Software]
[HKCU\Software\NCH Swift Sound]
[HKCU\Software\Need4Video]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\New FBI]
[HKCU\Software\NewBlue]
[HKCU\Software\ODBC]
[HKCU\Software\PTP]
[HKCU\Software\Pense-bete]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\PowerISO]
[HKCU\Software\RECISIO]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\Simply Super Software]
[HKCU\Software\SkypeRS]
[HKCU\Software\Skype]
[HKCU\Software\Sofrayt]
[HKCU\Software\Sony Creative Software]
[HKCU\Software\Sony Media Software]
[HKCU\Software\Sysinternals]
[HKCU\Software\TechSmith]
[HKCU\Software\TeleCharger]
[HKCU\Software\Text to Speech Maker]
[HKCU\Software\TopLang]
[HKCU\Software\Trend Micro]
[HKCU\Software\Trolltech]
[HKCU\Software\TuneUp]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\VSO]
[HKCU\Software\VSRevoGroup]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Winamp]
[HKCU\Software\Wow6432Node]
[HKCU\Software\XviD MPEG4 Codec]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\Yahoo]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\ZjSoft]
[HKCU\Software\Zyrax Software]
[HKCU\Software\abgx360gui]
[HKCU\Software\eSellerate]
[HKCU\Software\vanBasco]
[HKLM\Software\]
[HKLM\Software\AMD]
[HKLM\Software\ASUS]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\Audible]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\DivX]
[HKLM\Software\ESET]
[HKLM\Software\EnigmaSoftwareGroup]
[HKLM\Software\HitmanPro]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\LexmarkInkjet]
[HKLM\Software\Logitech]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NewBlue]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\QSound Labs, Inc.]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Sonic]
[HKLM\Software\Sony Creative Software]
[HKLM\Software\TuneUp]
[HKLM\Software\Wow6432Node\781]
[HKLM\Software\Wow6432Node\ABBYY]
[HKLM\Software\Wow6432Node\AMD]
[HKLM\Software\Wow6432Node\ASUS]
[HKLM\Software\Wow6432Node\ATI Technologies]
[HKLM\Software\Wow6432Node\ATI]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Ahead]
[HKLM\Software\Wow6432Node\Alcohol Soft]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\Audible]
[HKLM\Software\Wow6432Node\Avg]
[HKLM\Software\Wow6432Node\AviSynth]
[HKLM\Software\Wow6432Node\Avnex]
[HKLM\Software\Wow6432Node\Boris FX, Inc.]
[HKLM\Software\Wow6432Node\CDDB]
[HKLM\Software\Wow6432Node\Canneverbe Limited]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\DIOC]
[HKLM\Software\Wow6432Node\DVDFab]
[HKLM\Software\Wow6432Node\DVDVideoSoft]
[HKLM\Software\Wow6432Node\ESET]
[HKLM\Software\Wow6432Node\EasyBoot Systems]
[HKLM\Software\Wow6432Node\Freemake]
[HKLM\Software\Wow6432Node\GNU]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Greyfirst]
[HKLM\Software\Wow6432Node\HaaliMkx]
[HKLM\Software\Wow6432Node\HighCriteria]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\InterVideo]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\KasperskyLab]
[HKLM\Software\Wow6432Node\Lame for Audacity]
[HKLM\Software\Wow6432Node\LexmarkInkjet]
[HKLM\Software\Wow6432Node\Lexmark]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\Logitech]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Magix]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NCH Software]
[HKLM\Software\Wow6432Node\Need4Video]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\NewBlue]
[HKLM\Software\Wow6432Node\Nullsoft]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\QuEnc]
[HKLM\Software\Wow6432Node\RECISIO]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Simply Super Software]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Sony Corporation]
[HKLM\Software\Wow6432Node\Sony Creative Software]
[HKLM\Software\Wow6432Node\Sony Media Software]
[HKLM\Software\Wow6432Node\Swearware]
[HKLM\Software\Wow6432Node\TechSmith]
[HKLM\Software\Wow6432Node\TopLang]
[HKLM\Software\Wow6432Node\TrendMicro]
[HKLM\Software\Wow6432Node\TuneUp]
[HKLM\Software\Wow6432Node\Uniblue]
[HKLM\Software\Wow6432Node\VIA Technologies, Inc]
[HKLM\Software\Wow6432Node\VSO]
[HKLM\Software\Wow6432Node\VST]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\Wow6432Node]
[HKLM\Software\Wow6432Node\Yahoo]
[HKLM\Software\Wow6432Node\eSellerate]
[HKLM\Software\Wow6432Node\instinno]
[HKLM\Software\Wow6432Node\intuisphere]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
~ Scan Softwares in 00mn 00s



---\\ Contents of the Common Files folders (O43)
O43 - CFD: 2010-10-02 - 14:43:09 - [115,537] ----D C:\Program Files (x86)\Abbyy FineReader 6.0 Sprint
O43 - CFD: 2012-02-25 - 15:12:33 - [10,078] ----D C:\Program Files (x86)\Abest
O43 - CFD: 2012-09-11 - 15:48:54 - [15,683] ----D C:\Program Files (x86)\abgx360
O43 - CFD: 2011-08-29 - 19:20:04 - [106,316] ----D C:\Program Files (x86)\Ad-Remover
O43 - CFD: 2011-08-22 - 17:33:41 - [636,791] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 2011-07-20 - 17:02:00 - [11,910] ----D C:\Program Files (x86)\Alcohol Soft
O43 - CFD: 2012-02-25 - 16:10:41 - [100,175] ----D C:\Program Files (x86)\AnvSoft
O43 - CFD: 2010-09-28 - 18:42:10 - [40,468] ----D C:\Program Files (x86)\Apowersoft
O43 - CFD: 2011-07-01 - 15:29:25 - [16,164] ----D C:\Program Files (x86)\Astonsoft
O43 - CFD: 2010-09-25 - 15:22:10 - [7,476] ----D C:\Program Files (x86)\ASUS
O43 - CFD: 2010-09-25 - 15:31:31 - [0,525] ----D C:\Program Files (x86)\ATI
O43 - CFD: 2010-09-25 - 15:30:54 - [55,915] ----D C:\Program Files (x86)\ATI Technologies
O43 - CFD: 2010-12-18 - 18:57:28 - [64,216] ----D C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)
O43 - CFD: 2011-03-01 - 00:34:59 - [7,966] ----D C:\Program Files (x86)\AutoHideIP
O43 - CFD: 2011-03-10 - 19:06:36 - [31,141] ----D C:\Program Files (x86)\AV Vcs 7.0 DIAMOND
O43 - CFD: 2011-03-10 - 18:35:31 - [11,296] ----D C:\Program Files (x86)\AV Vcs 7.0 GOLD
O43 - CFD: 2010-11-16 - 16:26:09 - [39,411] ----D C:\Program Files (x86)\Avidemux 2.5
O43 - CFD: 2012-09-19 - 17:52:14 - [17,705] ----D C:\Program Files (x86)\Boris Fx, Inc
O43 - CFD: 2012-09-11 - 13:49:02 - [17,583] ----D C:\Program Files (x86)\CDBurnerXP
O43 - CFD: 2012-01-29 - 18:19:54 - [1,957] ----D C:\Program Files (x86)\CDisplay
O43 - CFD: 2010-09-28 - 18:37:34 - [31,528] ----D C:\Program Files (x86)\Celtx
O43 - CFD: 2011-04-02 - 11:37:07 - [21,474] ----D C:\Program Files (x86)\Chicken Invaders 1,2,3,4 Collection
O43 - CFD: 2013-01-24 - 20:12:37 - [1053,153] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 2012-12-25 - 16:25:23 - [32,182] ----D C:\Program Files (x86)\DVDFab 7
O43 - CFD: 2011-03-29 - 15:35:47 - [7,954] ----D C:\Program Files (x86)\DVDFab Gold 3
O43 - CFD: 2010-10-23 - 18:44:33 - [16,666] ----D C:\Program Files (x86)\DVDVideoSoft
O43 - CFD: 2013-01-04 - 23:43:36 - [0,974] ----D C:\Program Files (x86)\Enigma Software Group
O43 - CFD: 2013-01-27 - 16:14:36 - [13,066] ----D C:\Program Files (x86)\ESET
O43 - CFD: 2012-12-17 - 15:57:33 - [18,024] ----D C:\Program Files (x86)\Free Audio Editor
O43 - CFD: 2012-02-11 - 19:37:07 - [0,116] ----D C:\Program Files (x86)\Free FLV Converter
O43 - CFD: 2012-03-03 - 21:06:40 - [0,048] ----D C:\Program Files (x86)\Free mp3 Wma Converter
O43 - CFD: 2011-03-29 - 17:08:08 - [40,900] ----D C:\Program Files (x86)\Freemake
O43 - CFD: 2011-03-29 - 17:16:40 - [112,601] ----D C:\Program Files (x86)\FreeTime
O43 - CFD: 2012-11-09 - 22:16:38 - [8,131] ----D C:\Program Files (x86)\Funny Chewer
O43 - CFD: 2011-03-14 - 11:42:52 - [4,458] ----D C:\Program Files (x86)\GetSmile
O43 - CFD: 2013-01-06 - 17:38:44 - [65,971] ----D C:\Program Files (x86)\Google
O43 - CFD: 2012-10-10 - 20:01:12 - [0] ----D C:\Program Files (x86)\GUMEA0A.tmp
O43 - CFD: 2012-09-11 - 14:39:37 - [2,913] ----D C:\Program Files (x86)\ImgBurn
O43 - CFD: 2010-10-01 - 10:53:50 - [12,726] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2012-11-14 - 03:31:00 - [6,169] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2011-10-07 - 19:17:15 - [41,123] ----D C:\Program Files (x86)\Internet Explorer Platform Preview
O43 - CFD: 2012-09-19 - 18:15:42 - [121,790] ----D C:\Program Files (x86)\Intuisphere
O43 - CFD: 2012-07-16 - 20:48:29 - [54,048] ----D C:\Program Files (x86)\Java
O43 - CFD: 2010-10-02 - 11:58:24 - [5,416] ----D C:\Program Files (x86)\jZip
O43 - CFD: 2012-03-18 - 18:26:54 - [13,922] ----D C:\Program Files (x86)\KaraFun Player
O43 - CFD: 2010-10-02 - 21:15:51 - [1,170] ----D C:\Program Files (x86)\Lame for Audacity
O43 - CFD: 2010-09-27 - 15:26:21 - [0,188] ----D C:\Program Files (x86)\Lexmark
O43 - CFD: 2012-02-11 - 21:12:26 - [51,675] ----D C:\Program Files (x86)\Lexmark Pro800-Pro900 Series
O43 - CFD: 2010-09-27 - 15:26:28 - [2,208] ----D C:\Program Files (x86)\Lexmark Toolbar
O43 - CFD: 2010-09-27 - 14:27:49 - [2,284] ----D C:\Program Files (x86)\Logitech
O43 - CFD: 2012-09-20 - 17:37:57 - [0,001] ----D C:\Program Files (x86)\ma-config.com
O43 - CFD: 2012-08-05 - 14:55:47 - [138,441] ----D C:\Program Files (x86)\MAGIX
O43 - CFD: 2012-12-25 - 15:19:50 - [12,731] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 2011-03-14 - 13:42:55 - [0,286] ----D C:\Program Files (x86)\Max2k
O43 - CFD: 2010-10-15 - 17:17:31 - [0,012] ----D C:\Program Files (x86)\Media Player Classic
O43 - CFD: 2011-10-16 - 11:42:27 - [92,770] ----D C:\Program Files (x86)\MediaCoder
O43 - CFD: 2011-03-10 - 18:37:54 - [0] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 2010-09-29 - 10:16:02 - [0,165] ----D C:\Program Files (x86)\Microsoft FrontPage
O43 - CFD: 2011-08-17 - 08:55:50 - [1393,822] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2012-05-14 - 02:00:39 - [40,838] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2010-09-29 - 09:29:14 - [5,638] ----D C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 2011-08-17 - 08:52:48 - [1,832] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 2011-08-18 - 02:04:22 - [5,691] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 2010-09-29 - 09:29:04 - [7,973] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2012-12-24 - 17:40:34 - [29,814] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2011-08-17 - 09:35:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 2010-12-09 - 10:56:33 - [63,464] ----D C:\Program Files (x86)\MSECache
O43 - CFD: 2012-08-05 - 14:55:27 - [0,147] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 2011-10-16 - 16:16:27 - [2,960] ----D C:\Program Files (x86)\NCH Software
O43 - CFD: 2011-04-13 - 14:51:09 - [0] ----D C:\Program Files (x86)\NCT
O43 - CFD: 2010-11-02 - 21:55:26 - [10,426] ----D C:\Program Files (x86)\Need4 Software Launcher
O43 - CFD: 2010-11-02 - 21:55:28 - [53,989] ----D C:\Program Files (x86)\Need4 Video Converter 8
O43 - CFD: 2010-10-29 - 20:50:37 - [1433,073] ----D C:\Program Files (x86)\Nero
O43 - CFD: 2010-10-02 - 17:07:04 - [90,677] ----D C:\Program Files (x86)\NewBlue
O43 - CFD: 2012-09-19 - 16:51:43 - [5,010] ----D C:\Program Files (x86)\Pense-bete
O43 - CFD: 2011-04-02 - 11:26:10 - [14,128] ----D C:\Program Files (x86)\PhotoFiltre Studio X
O43 - CFD: 2012-09-11 - 13:27:20 - [4,877] ----D C:\Program Files (x86)\PowerISO
O43 - CFD: 2012-02-25 - 15:37:10 - [72,550] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 2010-09-25 - 15:35:02 - [1,853] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 2009-07-14 - 00:32:38 - [37,349] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2010-11-16 - 16:36:56 - [1,097] ----D C:\Program Files (x86)\RegCleaner
O43 - CFD: 2012-12-16 - 01:40:59 - [17,292] R---D C:\Program Files (x86)\Skype
O43 - CFD: 2010-09-29 - 10:16:28 - [0,132] ----D C:\Program Files (x86)\Snapshot Viewer
O43 - CFD: 2012-08-31 - 11:57:34 - [5,820] ----D C:\Program Files (x86)\Softinterface, Inc
O43 - CFD: 2012-07-09 - 09:09:13 - [14,127] ----D C:\Program Files (x86)\SoftMaker Viewer
O43 - CFD: 2010-10-29 - 18:55:44 - [641,640] ----D C:\Program Files (x86)\Sony
O43 - CFD: 2010-10-27 - 17:01:25 - [268,881] ----D C:\Program Files (x86)\Sony Setup
O43 - CFD: 2010-09-28 - 18:55:45 - [55,985] ----D C:\Program Files (x86)\TechSmith
O43 - CFD: 2011-04-13 - 15:32:29 - [160,432] ----D C:\Program Files (x86)\Text to Speech Maker
O43 - CFD: 2013-01-05 - 19:05:56 - [996,394] ----D C:\Program Files (x86)\The Cleaner
O43 - CFD: 2011-03-07 - 12:59:18 - [1,749] ----D C:\Program Files (x86)\Trend Micro
O43 - CFD: 2011-06-30 - 17:40:17 - [13,627] ----D C:\Program Files (x86)\Trojan Remover
O43 - CFD: 2011-12-16 - 20:09:02 - [70,523] ----D C:\Program Files (x86)\TuneUp Utilities 2011
O43 - CFD: 2012-09-11 - 13:59:48 - [6,053] ----D C:\Program Files (x86)\UltraISO
O43 - CFD: 2010-09-27 - 19:22:53 - [0,000] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 2011-01-24 - 20:33:08 - [0,377] ----D C:\Program Files (x86)\uTorrent
O43 - CFD: 2010-12-11 - 21:46:25 - [2,043] ----D C:\Program Files (x86)\vanBasco's Karaoke Player
O43 - CFD: 2010-09-25 - 15:20:16 - [51,796] ----D C:\Program Files (x86)\VIA
O43 - CFD: 2010-10-15 - 16:28:08 - [74,936] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 2011-06-11 - 20:16:31 - [3,002] ----D C:\Program Files (x86)\VS Revo Group
O43 - CFD: 2010-09-27 - 19:30:47 - [0,000] ----D C:\Program Files (x86)\Vstplugins
O43 - CFD: 2012-03-14 - 19:18:08 - [39,122] ----D C:\Program Files (x86)\Winamp
O43 - CFD: 2012-03-14 - 19:17:31 - [0,148] ----D C:\Program Files (x86)\Winamp Detect
O43 - CFD: 2012-10-27 - 17:04:35 - [10,481] ----D C:\Program Files (x86)\WinAVI Video Converter
O43 - CFD: 2010-10-15 - 17:13:27 - [7,509] ----D C:\Program Files (x86)\WinAVIVideoConverter
O43 - CFD: 2009-07-14 - 10:24:08 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 2012-06-19 - 12:30:13 - [103,038] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 2011-06-06 - 02:47:05 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 2011-06-06 - 02:47:04 - [4,791] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2009-07-14 - 00:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 2011-06-06 - 02:47:04 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2011-06-06 - 02:47:04 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2011-06-06 - 02:47:05 - [34,661] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2012-09-11 - 17:43:08 - [3,269] ----D C:\Program Files (x86)\WinRAR
O43 - CFD: 2011-03-14 - 13:50:12 - [4,088] ----D C:\Program Files (x86)\X-Fonter
O43 - CFD: 2012-02-25 - 15:13:10 - [0,074] ----D C:\Program Files (x86)\XviD
O43 - CFD: 2010-10-12 - 18:01:44 - [0] ----D C:\Program Files (x86)\Yahoo!
O43 - CFD: 2013-01-29 - 15:30:41 - [11,892] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 2012-09-24 - 21:48:46 - [0,002] ----D C:\Program Files (x86)\ZHPFix
O43 - CFD: 2011-08-22 - 17:33:41 - [25,986] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2010-10-29 - 20:51:19 - [106,720] ----D C:\Program Files (x86)\Common Files\Ahead
O43 - CFD: 2012-09-24 - 21:48:46 - [57,367] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 2010-09-25 - 15:31:32 - [0,093] ----D C:\Program Files (x86)\Common Files\ATI Technologies
O43 - CFD: 2012-12-25 - 15:27:20 - [0,678] ----D C:\Program Files (x86)\Common Files\AVG Secure Search
O43 - CFD: 2011-08-12 - 20:14:12 - [0,095] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2012-06-28 - 09:15:06 - [74,524] ----D C:\Program Files (x86)\Common Files\DVDVideoSoft
O43 - CFD: 2012-02-25 - 15:38:34 - [0,543] ----D C:\Program Files (x86)\Common Files\eSellerate
O43 - CFD: 2012-09-11 - 13:59:48 - [0,468] ----D C:\Program Files (x86)\Common Files\EZB Systems
O43 - CFD: 2010-09-25 - 15:21:57 - [2,730] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2012-07-16 - 20:48:08 - [22,886] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2010-10-01 - 10:57:42 - [0,494] ----D C:\Program Files (x86)\Common Files\LogiShrd
O43 - CFD: 2012-08-05 - 14:55:33 - [7,147] ----D C:\Program Files (x86)\Common Files\MAGIX Services
O43 - CFD: 2012-03-29 - 02:09:29 - [474,044] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 2010-09-30 - 17:13:33 - [145,254] ----D C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 2012-03-14 - 19:17:16 - [4,559] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 2009-07-13 - 22:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2012-12-16 - 01:40:59 - [2,056] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 2009-07-13 - 22:20:08 - [46,735] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 2011-11-09 - 03:19:02 - [47,094] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 2010-09-28 - 18:55:46 - [2,504] ----D C:\Program Files (x86)\Common Files\TechSmith Shared
O43 - CFD: 2010-10-02 - 09:58:58 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2012-12-25 - 02:31:43 - [31,174] ----D C:\Program Files (x86)\Common Files\Wise Installation Wizard
O43 - CFD: 2013-01-17 - 23:47:36 - [82,997] ----D C:\ProgramData\Adobe
O43 - CFD: 2012-08-16 - 18:02:37 - [0,002] ----D C:\ProgramData\Ahead
O43 - CFD: 2012-09-24 - 21:44:28 - [19,370] ----D C:\ProgramData\Apple
O43 - CFD: 2012-02-25 - 15:36:55 - [25,578] ----D C:\ProgramData\Apple Computer
O43 - CFD: 2009-07-14 - 00:08:56 - [0] ----D C:\ProgramData\Application Data
O43 - CFD: 2010-09-25 - 15:33:19 - [0,000] ----D C:\ProgramData\ATI
O43 - CFD: 2011-03-01 - 00:32:07 - [0,012] ----D C:\ProgramData\AutoHideIP
O43 - CFD: 2011-03-10 - 19:03:48 - [7,972] ----D C:\ProgramData\Avnex
O43 - CFD: 2010-09-25 - 02:11:20 - [0] ----D C:\ProgramData\Bureau
O43 - CFD: 2012-09-11 - 13:49:29 - [0] ----D C:\ProgramData\Canneverbe Limited
O43 - CFD: 2012-09-11 - 13:25:37 - [0,000] --H-D C:\ProgramData\Common Files
O43 - CFD: 2009-07-14 - 00:08:56 - [0] ----D C:\ProgramData\Desktop
O43 - CFD: 2012-12-06 - 14:48:55 - [0,002] ----D C:\ProgramData\DivX
O43 - CFD: 2009-07-14 - 00:08:56 - [0] ----D C:\ProgramData\Documents
O43 - CFD: 2013-01-01 - 09:11:21 - [0,209] ----D C:\ProgramData\DVD Shrink
O43 - CFD: 2010-09-30 - 20:40:11 - [0,266] ----D C:\ProgramData\eSellerate
O43 - CFD: 2011-06-12 - 16:31:57 - [107,013] ----D C:\ProgramData\ESET
O43 - CFD: 2010-09-27 - 15:33:33 - [0,000] ----D C:\ProgramData\Ezprint
O43 - CFD: 2010-09-25 - 02:11:20 - [0] ----D C:\ProgramData\Favoris
O43 - CFD: 2009-07-14 - 00:08:56 - [0] ----D C:\ProgramData\Favorites
O43 - CFD: 2013-01-06 - 17:38:47 - [1,669] ----D C:\ProgramData\Google
O43 - CFD: 2012-12-25 - 16:26:24 - [7,692] ----D C:\ProgramData\HitmanPro
O43 - CFD: 2011-06-11 - 20:47:52 - [142,675] ----D C:\ProgramData\Kaspersky Lab
O43 - CFD: 2011-06-01 - 19:47:14 - [250,602] ----D C:\ProgramData\Kaspersky Lab Setup Files
O43 - CFD: 2010-10-29 - 10:30:35 - [0,438] ----D C:\ProgramData\Lexmark Pro800-Pro900 Series
O43 - CFD: 2010-10-01 - 10:53:27 - [0,000] ----D C:\ProgramData\LogiShrd
O43 - CFD: 2010-10-01 - 10:53:53 - [22,895] ----D C:\ProgramData\Logitech
O43 - CFD: 2013-01-29 - 00:11:50 - [0,365] ----D C:\ProgramData\Lx_cats
O43 - CFD: 2012-09-20 - 17:37:57 - [0,003] ----D C:\ProgramData\ma-config.com
O43 - CFD: 2012-08-05 - 15:01:26 - [3,387] ----D C:\ProgramData\MAGIX
O43 - CFD: 2010-11-29 - 12:09:34 - [6,762] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 2010-09-25 - 02:11:20 - [0] ----D C:\ProgramData\Menu D�marrer
O43 - CFD: 2013-01-17 - 23:56:09 - [37,810] ----D C:\ProgramData\MFAData
O43 - CFD: 2012-02-11 - 19:37:06 - [91,932] -S--D C:\ProgramData\Microsoft
O43 - CFD: 2012-11-14 - 03:15:32 - [0,079] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 2010-09-25 - 02:11:20 - [0] ----D C:\ProgramData\Mod�les
O43 - CFD: 2011-10-16 - 12:37:23 - [0] ----D C:\ProgramData\NCH Software
O43 - CFD: 2010-10-29 - 20:50:37 - [19,398] ----D C:\ProgramData\Nero
O43 - CFD: 2012-03-18 - 18:26:50 - [10,976] ----D C:\ProgramData\Recisio
O43 - CFD: 2010-09-29 - 10:16:30 - [8,458] ----D C:\ProgramData\SBT
O43 - CFD: 2011-06-30 - 17:38:28 - [7,171] ----D C:\ProgramData\Simply Super Software
O43 - CFD: 2012-12-16 - 01:41:10 - [94,260] ----D C:\ProgramData\Skype
O43 - CFD: 2012-10-31 - 10:32:12 - [2,972] ----D C:\ProgramData\Sony
O43 - CFD: 2013-01-28 - 20:08:32 - [0,462] ----D C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 2009-07-14 - 00:08:56 - [0] ----D C:\ProgramData\Start Menu
O43 - CFD: 2010-09-28 - 18:55:52 - [0,000] ----D C:\ProgramData\TechSmith
O43 - CFD: 2013-01-11 - 21:12:03 - [0] ---AD C:\ProgramData\TEMP
O43 - CFD: 2009-07-14 - 00:08:56 - [0] ----D C:\ProgramData\Templates
O43 - CFD: 2012-09-19 - 16:44:07 - [0] ----D C:\ProgramData\TopLang
O43 - CFD: 2011-06-11 - 20:32:29 - [32,410] ----D C:\ProgramData\TuneUp Software
O43 - CFD: 2013-01-17 - 18:08:49 - [0] ----D C:\ProgramData\Uniblue
O43 - CFD: 2010-11-16 - 18:36:24 - [0,000] ----D C:\ProgramData\vsosdk
O43 - CFD: 2012-12-12 - 15:32:14 - [0] ----D C:\ProgramData\Western Digital
O43 - CFD: 2011-03-14 - 13:50:12 - [14,664] ----D C:\ProgramData\X-Fonter
O43 - CFD: 2011-06-11 - 20:30:27 - [17,622] -SH-D C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
O43 - CFD: 2012-12-11 - 21:41:13 - [0,060] ----D C:\Users\Stephane\AppData\Roaming\abgx360
O43 - CFD: 2012-03-14 - 17:30:37 - [16,991] ----D C:\Users\Stephane\AppData\Roaming\Adobe
O43 - CFD: 2012-08-16 - 18:02:37 - [0,465] ----D C:\Users\Stephane\AppData\Roaming\Ahead
O43 - CFD: 2012-08-13 - 10:36:04 - [0,020] ----D C:\Users\Stephane\AppData\Roaming\aliasworlds
O43 - CFD: 2012-02-25 - 16:11:54 - [0,056] ----D C:\Users\Stephane\AppData\Roaming\AnvSoft
O43 - CFD: 2010-09-28 - 18:42:12 - [0,033] ----D C:\Users\Stephane\AppData\Roaming\Apowersoft
O43 - CFD: 2012-03-01 - 08:59:09 - [0,022] ----D C:\Users\Stephane\AppData\Roaming\Apple Computer
O43 - CFD: 2010-09-25 - 15:33:19 - [0] ----D C:\Users\Stephane\AppData\Roaming\ATI
O43 - CFD: 2011-05-03 - 16:12:00 - [0,002] ----D C:\Users\Stephane\AppData\Roaming\Audacity
O43 - CFD: 2011-03-01 - 00:32:07 - [0,000] ----D C:\Users\Stephane\AppData\Roaming\AutoHideIP
O43 - CFD: 2010-11-02 - 21:29:19 - [0,017] ----D C:\Users\Stephane\AppData\Roaming\avidemux
O43 - CFD: 2011-03-10 - 18:08:58 - [0,006] ----D C:\Users\Stephane\AppData\Roaming\Avnex
O43 - CFD: 2011-10-16 - 11:42:20 - [0,014] ----D C:\Users\Stephane\AppData\Roaming\Broad Intelligence
O43 - CFD: 2012-09-11 - 13:49:28 - [0,001] ----D C:\Users\Stephane\AppData\Roaming\Canneverbe Limited
O43 - CFD: 2012-08-05 - 14:56:00 - [0] ----D C:\Users\Stephane\AppData\Roaming\CrashLog
O43 - CFD: 2012-02-05 - 21:11:50 - [0,002] ----D C:\Users\Stephane\AppData\Roaming\cYo
O43 - CFD: 2011-07-01 - 15:37:56 - [0,004] ----D C:\Users\Stephane\AppData\Roaming\DeepBurner Pro
O43 - CFD: 2010-10-29 - 10:08:51 - [0,000] ----D C:\Users\Stephane\AppData\Roaming\dvdcss
O43 - CFD: 2012-06-28 - 09:15:31 - [0,146] ----D C:\Users\Stephane\AppData\Roaming\DVDVideoSoft
O43 - CFD: 2012-06-28 - 09:15:10 - [0,000] ----D C:\Users\Stephane\AppData\Roaming\DVDVideoSoftIEHelpers
O43 - CFD: 2011-03-01 - 03:37:06 - [0,000] ----D C:\Users\Stephane\AppData\Roaming\EurekaLog
O43 - CFD: 2012-12-25 - 16:25:23 - [1,582] ----D C:\Users\Stephane\AppData\Roaming\FileHunter
O43 - CFD: 2012-12-19 - 22:47:45 - [0,006] ----D C:\Users\Stephane\AppData\Roaming\Free Audio Editor
O43 - CFD: 2011-10-16 - 11:37:30 - [0,000] ----D C:\Users\Stephane\AppData\Roaming\FreeAudioPack
O43 - CFD: 2012-02-11 - 19:26:47 - [0,050] ----D C:\Users\Stephane\AppData\Roaming\FreeFLVConverter
O43 - CFD: 2010-09-27 - 14:39:32 - [0,000] ----D C:\Users\Stephane\AppData\Roaming\Google
O43 - CFD: 2012-08-23 - 18:09:48 - [8,364] ----D C:\Users\Stephane\AppData\Roaming\Greyfirst
O43 - CFD: 2011-04-02 - 11:26:32 - [0,000] ----D C:\Users\Stephane\AppData\Roaming\Identities
O43 - CFD: 2012-09-11 - 15:56:44 - [16,251] ----D C:\Users\Stephane\AppData\Roaming\ImgBurn
O43 - CFD: 2010-10-01 - 10:53:37 - [0] ----D C:\Users\Stephane\AppData\Roaming\InstallShield
O43 - CFD: 2010-11-16 - 16:37:37 - [3,549] ----D C:\Users\Stephane\AppData\Roaming\Lavasoft
O43 - CFD: 2010-10-01 - 10:57:42 - [0,000] ----D C:\Users\Stephane\AppData\Roaming\Leadertech
O43 - CFD: 2012-06-28 - 09:04:07 - [0,003] ----D C:\Users\Stephane\AppData\Roaming\Leawo
O43 - CFD: 2010-10-01 - 10:58:08 - [0,048] ----D C:\Users\Stephane\AppData\Roaming\Logitech
O43 - CFD: 2010-09-27 - 16:21:56 - [0,001] ----D C:\Users\Stephane\AppData\Roaming\Macromedia
O43 - CFD: 2012-08-05 - 14:59:01 - [0,001] ----D C:\Users\Stephane\AppData\Roaming\MAGIX
O43 - CFD: 2010-11-29 - 12:09:46 - [0,001] ----D C:\Users\Stephane\AppData\Roaming\Malwarebytes
O43 - CFD: 2009-07-14 - 10:35:18 - [0] ----D C:\Users\Stephane\AppData\Roaming\Media Center Programs
O43 - CFD: 2012-09-11 - 13:55:36 - [27,147] -S--D C:\Users\Stephane\AppData\Roaming\Microsoft
O43 - CFD: 2010-09-29 - 09:52:18 - [0] ----D C:\Users\Stephane\AppData\Roaming\Microsoft Web Folders
O43 - CFD: 2013-01-30 - 03:18:44 - [10,146] ----D C:\Users\Stephane\AppData\Roaming\Mozilla
O43 - CFD: 2011-10-16 - 16:16:19 - [0,355] ----D C:\Users\Stephane\AppData\Roaming\NCH Software
O43 - CFD: 2010-10-09 - 10:55:28 - [2,067] ----D C:\Users\Stephane\AppData\Roaming\Nero
O43 - CFD: 2011-04-02 - 11:27:17 - [0,001] ----D C:\Users\Stephane\AppData\Roaming\PhotoFiltre Studio X
O43 - CFD: 2012-09-11 - 13:29:07 - [0,000] ----D C:\Users\Stephane\AppData\Roaming\PowerISO
O43 - CFD: 2010-09-27 - 19:34:38 - [0] ----D C:\Users\Stephane\AppData\Roaming\Publish Providers
O43 - CFD: 2011-06-30 - 17:38:28 - [0,000] ----D C:\Users\Stephane\AppData\Roaming\Simply Super Software
O43 - CFD: 2013-01-28 - 13:50:39 - [5,710] ----D C:\Users\Stephane\AppData\Roaming\Skype
O43 - CFD: 2012-01-17 - 23:33:42 - [0,012] ----D C:\Users\Stephane\AppData\Roaming\skypePM
O43 - CFD: 2011-03-14 - 11:42:52 - [17,816] ----D C:\Users\Stephane\AppData\Roaming\Sofrayt
O43 - CFD: 2012-08-31 - 11:58:20 - [0,004] ----D C:\Users\Stephane\AppData\Roaming\Softinterface, Inc
O43 - CFD: 2012-07-09 - 09:11:14 - [0] ----D C:\Users\Stephane\AppData\Roaming\SoftMaker
O43 - CFD: 2012-10-31 - 10:55:49 - [34,670] ----D C:\Users\Stephane\AppData\Roaming\Sony
O43 - CFD: 2010-11-05 - 15:48:25 - [0] ----D C:\Users\Stephane\AppData\Roaming\Sony Creative Software
O43 - CFD: 2012-07-16 - 20:54:24 - [0,000] ----D C:\Users\Stephane\AppData\Roaming\Sun
O43 - CFD: 2013-01-06 - 15:32:00 - [0,320] ----D C:\Users\Stephane\AppData\Roaming\thecleaner
O43 - CFD: 2012-03-14 - 19:17:18 - [0,144] ----D C:\Users\Stephane\AppData\Roaming\Todae
O43 - CFD: 2011-07-10 - 20:35:15 - [0,117] ----D C:\Users\Stephane\AppData\Roaming\TuneUp Software
O43 - CFD: 2012-09-24 - 21:49:33 - [3,438] ----D C:\Users\Stephane\AppData\Roaming\U3
O43 - CFD: 2013-01-31 - 17:51:32 - [1374,177] ----D C:\Users\Stephane\AppData\Roaming\uTorrent
O43 - CFD: 2012-12-31 - 18:42:12 - [9,373] ----D C:\Users\Stephane\AppData\Roaming\vlc
O43 - CFD: 2011-03-29 - 15:36:55 - [0] ----D C:\Users\Stephane\AppData\Roaming\Vso
O43 - CFD: 2013-01-28 - 20:08:31 - [0,100] ----D C:\Users\Stephane\AppData\Roaming\Winamp
O43 - CFD: 2010-10-02 - 12:05:54 - [0,000] ----D C:\Users\Stephane\AppData\Roaming\Windows Live Writer
O43 - CFD: 2010-10-02 - 11:58:15 - [0] ----D C:\Users\Stephane\AppData\Roaming\Yahoo!
O43 - CFD: 2012-03-14 - 17:30:35 - [155,469] ----D C:\Users\Stephane\AppData\Local\Adobe
O43 - CFD: 2010-12-17 - 16:10:40 - [3,783] ----D C:\Users\Stephane\AppData\Local\Ahead
O43 - CFD: 2010-10-10 - 13:13:56 - [0] ----D C:\Users\Stephane\AppData\Local\Apple
O43 - CFD: 2010-09-25 - 02:11:32 - [0] ----D C:\Users\Stephane\AppData\Local\Application Data
O43 - CFD: 2012-05-02 - 10:57:49 - [0] ----D C:\Users\Stephane\AppData\Local\Apps
O43 - CFD: 2010-09-25 - 15:33:19 - [0,067] ----D C:\Users\Stephane\AppData\Local\ATI
O43 - CFD: 2013-01-10 - 19:46:16 - [0] ----D C:\Users\Stephane\AppData\Local\Avg2013
O43 - CFD: 2012-08-23 - 18:27:08 - [0,001] ----D C:\Users\Stephane\AppData\Local\ChristmasPuzzle
O43 - CFD: 2013-01-10 - 19:46:38 - [2,612] ----D C:\Users\Stephane\AppData\Local\CRE
O43 - CFD: 2012-05-02 - 10:57:52 - [0] ----D C:\Users\Stephane\AppData\Local\Deployment
O43 - CFD: 2012-12-24 - 20:37:21 - [0] ----D C:\Users\Stephane\AppData\Local\Diagnostics
O43 - CFD: 2012-12-25 - 16:11:13 - [0] ----D C:\Users\Stephane\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2011-06-12 - 16:38:42 - [-1638,659] ----D C:\Users\Stephane\AppData\Local\ESET
O43 - CFD: 2012-12-25 - 02:47:02 - [0,774] ----D C:\Users\Stephane\AppData\Local\Facebook
O43 - CFD: 2013-01-30 - 03:18:44 - [361,430] ----D C:\Users\Stephane\AppData\Local\Google
O43 - CFD: 2012-08-23 - 18:09:48 - [2,125] ----D C:\Users\Stephane\AppData\Local\Greyfirst
O43 - CFD: 2010-09-25 - 02:11:32 - [0] ----D C:\Users\Stephane\AppData\Local\Historique
O43 - CFD: 2012-09-19 - 18:56:47 - [9,026] ----D C:\Users\Stephane\AppData\Local\Intuisphere
O43 - CFD: 2010-10-02 - 12:13:08 - [0,018] ----D C:\Users\Stephane\AppData\Local\jZip
O43 - CFD: 2013-01-10 - 19:46:16 - [1,244] ----D C:\Users\Stephane\AppData\Local\MFAData
O43 - CFD: 2011-09-21 - 15:49:26 - [-1343,842] ----D C:\Users\Stephane\AppData\Local\Microsoft
O43 - CFD: 2011-08-12 - 18:56:05 - [0] ----D C:\Users\Stephane\AppData\Local\Microsoft Help
O43 - CFD: 2010-09-27 - 15:57:17 - [42,109] ----D C:\Users\Stephane\AppData\Local\Mozilla
O43 - CFD: 2013-01-31 - 17:45:43 - [0,010] ----D C:\Users\Stephane\AppData\Local\Pense-bete
O43 - CFD: 2010-11-02 - 11:24:29 - [70,659] ----D C:\Users\Stephane\AppData\Local\Sony
O43 - CFD: 2010-09-28 - 18:56:59 - [1,129] ----D C:\Users\Stephane\AppData\Local\TechSmith
O43 - CFD: 2013-01-31 - 17:49:54 - [21,095] ----D C:\Users\Stephane\AppData\Local\Temp
O43 - CFD: 2010-09-25 - 02:11:32 - [0] ----D C:\Users\Stephane\AppData\Local\Temporary Internet Files
O43 - CFD: 2012-11-29 - 16:47:05 - [4,385] ----D C:\Users\Stephane\AppData\Local\VirtualStore
O43 - CFD: 2013-01-07 - 16:49:35 - [0,003] ----D C:\Users\Stephane\AppData\Local\WBFSManager
O43 - CFD: 2012-12-10 - 12:56:55 - [0,002] ----D C:\Users\Stephane\AppData\Local\Western Digital
O43 - CFD: 2012-12-08 - 11:34:04 - [0,020] ----D C:\Users\Stephane\AppData\Local\WinAVI
O43 - CFD: 2012-08-17 - 18:31:40 - [0,129] ----D C:\Users\Stephane\AppData\Local\Windows Live
O43 - CFD: 2011-08-17 - 09:21:50 - [0,619] ----D C:\Users\Stephane\AppData\Local\Windows Live Writer
O43 - CFD: 2013-01-31 - 04:19:57 - [0] ----D C:\Users\Stephane\AppData\Local\{4867AAD2-25E2-4D96-BD25-A825B8DD0B2C}
O43 - CFD: 2013-01-30 - 16:19:46 - [0] ----D C:\Users\Stephane\AppData\Local\{6009D51C-09B1-4C09-9A36-BA1637ECF0B8}
O43 - CFD: 2013-01-29 - 16:13:47 - [0] ----D C:\Users\Stephane\AppData\Local\{6715DD1C-AE13-4CB0-9428-EB19CD46AB86}
O43 - CFD: 2013-01-31 - 16:20:08 - [0] ----D C:\Users\Stephane\AppData\Local\{85073F13-8570-44E6-9AE6-D095BF9986C4}
O43 - CFD: 2009-07-13 - 23:54:32 - [0,014] R---D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2011-08-29 - 19:19:39 - [0,002] ----D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ad-Remover
O43 - CFD: 2012-08-07 - 09:17:13 - [0,000] R---D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2012-03-14 - 19:17:31 - [0,001] ----D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\D�tection de l'application Winamp
O43 - CFD: 2011-03-29 - 17:16:48 - [0,004] ----D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
O43 - CFD: 2011-03-14 - 11:42:52 - [0,003] ----D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GetSmile
O43 - CFD: 2013-01-11 - 19:21:11 - [0,002] ----D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2011-03-07 - 12:59:18 - [0,003] ----D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
O43 - CFD: 2012-09-19 - 16:44:05 - [0] ----D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Lock
O43 - CFD: 2009-07-13 - 23:49:38 - [0,001] R---D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2012-09-19 - 16:51:43 - [0,001] ----D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pense-B�te
O43 - CFD: 2011-04-02 - 11:26:10 - [0] ----D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre Studio X
O43 - CFD: 2012-07-09 - 09:09:13 - [0] ----D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SoftMaker Viewer
O43 - CFD: 2012-12-24 - 18:55:23 - [0,001] R---D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2010-12-11 - 21:45:25 - [0,003] ----D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\vanBasco's Karaoke Player
O43 - CFD: 2013-01-07 - 16:46:16 - [0,001] ----D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WBFS Manager
O43 - CFD: 2012-09-11 - 17:42:54 - [0] ----D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2012-02-25 - 15:13:10 - [0] ----D C:\Users\Stephane\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XviD
~ Scan Program Folder in 01mn 51s



---\\ Last modified or created files under Windows and System32 (O44)
O44 - LFC:[MD5.9E05A9C264C8A908A8E79450FCBFF047] - 2000-08-30 - 19:00:00 ---A- . (...) -- C:\Windows\grep.exe [80412]
O44 - LFC:[MD5.2B657A67AEBB84AEA5632C53E61E23BF] - 2000-08-30 - 19:00:00 ---A- . (...) -- C:\Windows\sed.exe [98816]
O44 - LFC:[MD5.5E832F4FAF5F481F2EAF3B3A48F603B8] - 2000-08-30 - 19:00:00 ---A- . (...) -- C:\Windows\zip.exe [68096]
O44 - LFC:[MD5.0277C027A26428DB64EF4F64F52BB4FD] - 2010-11-07 - 12:20:24 ---A- . (...) -- C:\Windows\MBR.exe [208896]
O44 - LFC:[MD5.F042EE4C8D66248D9B86DCF52ABAE416] - 2011-06-26 - 01:45:56 ---A- . (...) -- C:\Windows\PEV.exe [256000]
O44 - LFC:[MD5.5F46FFBDFF31E6929D5D50F7542C066F] - 2013-01-02 - 20:40:20 ---A- . (...) -- C:\AdwCleaner[R5].txt [1601]
O44 - LFC:[MD5.BA789D1C22D43D53B9E14A929F153425] - 2013-01-02 - 20:40:42 ---A- . (...) -- C:\AdwCleaner[S4].txt [1632]
O44 - LFC:[MD5.A5DED83404C2BFED91CDD269A025FE53] - 2013-01-02 - 20:43:43 . (...) -- C:\Windows\System32\FNTCACHE.DAT []
O44 - LFC:[MD5.A5DED83404C2BFED91CDD269A025FE53] - 2013-01-02 - 20:43:43 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [7105440]
O44 - LFC:[MD5.51B38CA9325F6369FD0F34876E60A18D] - 2013-01-04 - 10:48:43 ---A- . (...) -- C:\TDSSKiller.2.8.15.0_03.01.2013_23.33.32_log.txt [141180]
O44 - LFC:[MD5.2AD3587B1DEA436D29DF7D3046352CB4] - 2013-01-08 - 11:43:09 ---A- . (...) -- C:\TDSSKiller.2.8.15.0_08.01.2013_11.42.38_log.txt [140204]
O44 - LFC:[MD5.5614386D4CFDF9E56F355C45BEEBC976] - 2013-01-08 - 11:56:42 . (...) -- C:\Windows\System32\bootdelete.exe []
O44 - LFC:[MD5.5614386D4CFDF9E56F355C45BEEBC976] - 2013-01-08 - 11:56:42 ---A- . (.SurfRight B.V. - Hitman Pro 3.5 BootDelete.) -- C:\Windows\SysNative\bootdelete.exe [12872]
O44 - LFC:[MD5.A70F431B50CA0E043983FC3A4B641378] - 2013-01-17 - 12:02:19 ---A- . (...) -- C:\TDSSKiller.2.8.15.0_17.01.2013_12.01.02_log.txt [143264]
O44 - LFC:[MD5.3AD92D44EDB02B4A518D1A6040D5C6C5] - 2013-01-17 - 18:10:54 ---A- . (...) -- C:\TDSSKiller.2.8.15.0_17.01.2013_18.07.52_log.txt [141808]
O44 - LFC:[MD5.753BC16326FEE4A421ACB636CCD602F4] - 2013-01-24 - 17:48:19 ---A- . (.NirSoft - NirCmd.) -- C:\Windows\NIRCMD.exe [60416]
O44 - LFC:[MD5.A46842C9B0C567A5A9584E83A163560C] - 2013-01-24 - 17:48:19 ---A- . (.SteelWerX - Freeware implementation of REG.EXE.) -- C:\Windows\SWREG.exe [518144]
O44 - LFC:[MD5.0297C72529807322B152F517FDB0A9FC] - 2013-01-24 - 17:48:19 ---A- . (.SteelWerX - Freeware implementation of SC.EXE.) -- C:\Windows\SWSC.exe [406528]
O44 - LFC:[MD5.3CF3D4A45CC2AF973DBC30EC8D33252B] - 2013-01-24 - 21:44:20 ---A- . (...) -- C:\Windows\system.ini [215]
O44 - LFC:[MD5.478F291975D8731BDC6DF75328A8BC82] - 2013-01-24 - 21:56:42 ---A- . (...) -- C:\ComboFix.txt [20995]
O44 - LFC:[MD5.6727FA6CE50C0072F438B26455D15098] - 2013-01-25 - 18:28:34 ---A- . (...) -- C:\AdwCleaner[R6].txt [5417]
O44 - LFC:[MD5.1A55BC4532E9FAB2AD95DFF95283FCBA] - 2013-01-25 - 18:30:04 ---A- . (...) -- C:\AdwCleaner[S5].txt [4951]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 2013-01-29 - 22:00:50 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.2AAB2C62A7DAF25985394DD99D7FEE7C] - 2013-01-30 - 16:13:47 . (...) -- C:\Windows\System32\Drivers\OlmarikFixer.sys []
O44 - LFC:[MD5.FE0199328C2A15A70FE31F650D0FD9E4] - 2013-01-30 - 18:16:31 . (...) -- C:\Windows\System32\perfc009.dat []
O44 - LFC:[MD5.3E2AB063D44E14CF002BF256EC411739] - 2013-01-30 - 18:16:31 . (...) -- C:\Windows\System32\perfc00C.dat []
O44 - LFC:[MD5.55E6685E6A36A7B05C9D9090D4A67BE9] - 2013-01-30 - 18:16:31 . (...) -- C:\Windows\System32\perfh009.dat []
O44 - LFC:[MD5.5F889BF1576BCDD986D101E3D2B8A63D] - 2013-01-30 - 18:16:31 . (...) -- C:\Windows\System32\perfh00C.dat []
O44 - LFC:[MD5.AA4DE9A5D1059FE889F482F74013ADE5] - 2013-01-30 - 18:16:31 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1722318]
O44 - LFC:[MD5.FE0199328C2A15A70FE31F650D0FD9E4] - 2013-01-30 - 18:16:31 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [129626]
O44 - LFC:[MD5.3E2AB063D44E14CF002BF256EC411739] - 2013-01-30 - 18:16:31 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [157364]
O44 - LFC:[MD5.55E6685E6A36A7B05C9D9090D4A67BE9] - 2013-01-30 - 18:16:31 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [672900]
O44 - LFC:[MD5.5F889BF1576BCDD986D101E3D2B8A63D] - 2013-01-30 - 18:16:31 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [765870]
O44 - LFC:[MD5.AA4DE9A5D1059FE889F482F74013ADE5] - 2013-01-30 - 18:16:31 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1722318]
O44 - LFC:[MD5.D9323ECB2B11E4E27BDC888917F7088C] - 2013-01-31 - 17:39:21 ---A- . (...) -- C:\Windows\WindowsUpdate.log [2016836]
O44 - LFC:[MD5.1079722F1A188C2F5AD3B1D93146C563] - 2013-01-31 - 17:41:33 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.D970403841ACA24A69C168D521487F00] - 2013-01-31 - 17:45:58 ---A- . (...) -- C:\Windows\setupact.log [1176]
~ Scan Files in 01mn 39s



---\\ Local Security Authority-LSA Deny (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l��diteur de configuration de s�curit� Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de s�curit� Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll
~ Scan Keys in 00mn 00s



---\\ Safe Boot Control (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\hitmanpro37.sys . (...) -- C:\Windows\System32\Drivers\hitmanpro37.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\hitmanpro37.sys . (...) -- C:\Windows\System32\Drivers\hitmanpro37.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s



---\\ MountPoints2 Shell Key (MPKS) (O51) (None)

---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ Scan Keys in 00mn 00s



---\\ ShareTools MSconfig StartupReg (SMSR) (O53) (None)

---\\ Microsoft Control Security Providers (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies System (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKCU\...\Policies\System] - "LogonHoursAction"=2
O55 - MWPS:[HKCU\...\Policies\System] - "DontDisplayLogonHoursWarnings"=1
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies Explorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDrives"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=28
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDrives"=0
~ Scan Keys in 00mn 00s



---\\ System Drivers List (SDL) (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 2009-07-13 - 20:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]
O58 - SDL:[MD5.ADAA34740E9F6AFF94CC75D5CF8ED7E2] - 2008-01-04 - 12:34:42 ---A- . (...) -- C:\Windows\SysWOW64\drivers\AsInsHelp32.sys [10216]
O58 - SDL:[MD5.4F6FA49D517EA9D19DF1C73526C9298D] - 2005-02-03 - 00:50:28 ---A- . (...) -- C:\Windows\SysWOW64\StarOpen.sys [4224]
~ Scan Drivers in 00mn 00s



---\\ List all tools cleaner (LATC) (O63)
O63 - Logiciel: ZHPDiag 1.34 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
O63 - Logiciel: HiJackThis - (.Trend Micro.) [HKLM] -- {45A66726-69BC-466B-A7A4-12FCBA4883D7}
O63 - Logiciel: Ad-Remover - (..) [HKCU] -- Ad-Remover
~ Scan ADS in 00mn 00s



---\\ List all legacy services(LALS) (O64)
O64 - Services: CurCS - 2010-08-25 - C:\Windows\System32\DRIVERS\atikmdag.sys (amdkmdag) .(.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) - LEGACY_AMDKMDAG
O64 - Services: CurCS - 2009-08-03 - C:\Windows\Syswow64\drivers\AsIO.sys - AsIO (AsIO) .(...) - LEGACY_ASIO
O64 - Services: CurCS - 2012-11-08 - C:\Windows\system32\drivers\avgtpx64.sys (avgtp) .(.AVG Technologies - .) - LEGACY_AVGTP
O64 - Services: CurCS - 2010-12-21 - C:\Windows\System32\DRIVERS\eamonm.sys (eamonm) .(.ESET - Amon monitor.) - LEGACY_EAMONM
O64 - Services: CurCS - 2010-12-21 - C:\Windows\System32\DRIVERS\ehdrv.sys (ehdrv) .(.ESET - ESET Helper driver.) - LEGACY_EHDRV
O64 - Services: CurCS - 2010-12-21 - C:\Windows\System32\DRIVERS\epfwwfpr.sys (epfwwfpr) .(.ESET - ESET Personal Firewall driver.) - LEGACY_EPFWWFPR
O64 - Services: CurCS - 2010-01-29 - C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys (ISODrive) .(.EZB Systems, Inc. - ISO DVD/CD-ROM Device Driver.) - LEGACY_ISODRIVE
O64 - Services: CurCS - 2011-06-01 - C:\Windows\System32\DRIVERS\klif.sys (KLIF) .(.Kaspersky Lab - Klif Mini-Filter [fre_wlh_AMD64].) - LEGACY_KLIF
O64 - Services: CurCS - 2012-09-29 - C:\Windows\system32\drivers\mbam.sys (MBAMProtector) .(.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - LEGACY_MBAMPROTECTOR
O64 - Services: CurCS - 1899-12-30 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 2011-02-10 - C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys (TuneUpUtilitiesDrv) .(.TuneUp Software - TuneUp Utilities Driver.) - LEGACY_TUNEUPUTILITIESDRV
~ Scan Services in 00mn 00s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.bat> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKCR\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKCR\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKCR\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
~ Scan Keys in 00mn 00s



---\\ Start Menu Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Greyfirst Corporation - Celtx.) -- C:\Program Files (x86)\Celtx\celtx.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Internet Explorer.) --
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Windows\System32\ie4uinit.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) --
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Windows\System32\ie4uinit.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) --
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Windows\System32\ie4uinit.exe (.not file.)
~ Scan Keys in 00mn 00s



---\\ Search Browser Infection (SBI) (O69)
O69 - SBI: prefs.js [Stephane - v693fkiy.default] user_pref("avg.install.cc", "CA");
O69 - SBI: prefs.js [Stephane - v693fkiy.default] user_pref("avg.install.client_js_http_src", "");
O69 - SBI: prefs.js [Stephane - v693fkiy.default] user_pref("avg.install.client_js_https_src", "");
O69 - SBI: prefs.js [Stephane - v693fkiy.default] user_pref("avg.install.currLocale", "fr");
O69 - SBI: prefs.js [Stephane - v693fkiy.default] user_pref("avg.install.date", "1356370867000");
O69 - SBI: prefs.js [Stephane - v693fkiy.default] user_pref("avg.install.finished", "13.2.0.5");
O69 - SBI: prefs.js [Stephane - v693fkiy.default] user_pref("avg.install.guardCount", 0);
O69 - SBI: prefs.js [Stephane - v693fkiy.default] user_pref("avg.install.guardKUCount", 0);
O69 - SBI: prefs.js [Stephane - v693fkiy.default] user_pref("avg.install.guardKUCountInit", 55);
O69 - SBI: prefs.js [Stephane - v693fkiy.default] user_pref("avg.install.guardSPCount", 0);
O69 - SBI: prefs.js [Stephane - v693fkiy.default] user_pref("avg.install.guardSPCountInit", 55);
O69 - SBI: prefs.js [Stephane - v693fkiy.default] user_pref("avg.install.guardSPPopupCountInit", 5);
O69 - SBI: prefs.js [Stephane - v693fkiy.default] user_pref("avg.install.guid", "{7cbec980-8970-4841-bbb4-76a3e9b13bd9}");
O69 - SBI: prefs.js [Stephane - v693fkiy.default] user_pref("avg.install.istoolbarhp", true);
O69 - SBI: prefs.js [Stephane - v693fkiy.default] user_pref("avg.install.istoolbarsearch", true);
O69 - SBI: prefs.js [Stephane - v693fkiy.default] user_pref("avg.install.lastUpdaterReq", "1356370870000");
O69 - SBI: prefs.js [Stephane - v693fkiy.default] user_pref("avg.install.laststatreq", "1356370870000");
O69 - SBI: prefs.js [Stephane - v693fkiy.default] user_pref("avg.install.newtab", true);
O69 - SBI: prefs.js [Stephane - v693fkiy.default] user_pref("avg.install.overlayVersion", "634867808258650000");
O69 - SBI: prefs.js [Stephane - v693fkiy.default] user_pref("avg.install.userHPSettings", "");
O69 - SBI: SearchScopes [HKCU] ${searchCLSID} [DefaultScope] - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com
~ Scan Keys in 00mn 00s



---\\ Search Svchost Services (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Exp�rience d�application.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de strat�gie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [853504]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [679424]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de num�rotation automatique d�acc�s distant.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d�acc�s distant.) -- C:\Windows\System32\rasmans.dll [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d�interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d��v�nements syst�me (SENS).) -- C:\Windows\System32\sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l�application d�assistance � Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de t�l�phonie Microsoft� Windows(TM).) -- C:\Windows\System32\tapisrv.dll [316928]
O83 - Search Svchost Services: UxTuneUp (UxTuneUp) . (.TuneUp Software - TuneUp Theme Extension.) -- C:\Windows\System32\uxtuneup.dll [36160]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur h�te de session Burea.) -- C:\Windows\System32\termsrv.dll [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise � jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arri�re-plan.) -- C:\Windows\System32\qmgr.dll [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivit� IPv6 sur un r�seau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d�ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d�application.) -- C:\Windows\System32\appinfo.dll [70656]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de d�couverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multim�dias.) -- C:\Windows\System32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau � distance.) -- C:\Windows\System32\sessenv.dll [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) -- C:\Windows\System32\browser.dll [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de t�ches.) -- C:\Windows\System32\schedsvc.dll [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des cl�s.) -- C:\Windows\System32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux probl�mes.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des th�mes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [193536]
~ Scan Services in 00mn 00s



---\\ Search Particular Root Folder (SPRF) (O84)
[MD5.93F1EA2B32F3A945E841257E1350E943] [SPRF][2010-09-28] (...) -- C:\ProgramData\ezsidmv.dat [56]
[MD5.0E6DD799DF1AC15CF6778983DD37FD9B] [SPRF][2013-01-29] (.GMER - GMER Driver http://www.gmer.net.) -- C:\Users\Stephane\AppData\Local\Temp\fwdcrkoc.sys [93056]
[MD5.AF7CE12C4F3DC8CB2B07685C916BBCFE] [SPRF][2011-03-29] (.VSO Software - low level access layer for CD/DVD/BD devices.) -- C:\Users\Stephane\AppData\Roaming\pcouffin.sys [82816]
[MD5.F4388ABF66EA17A8CD51FAFE4607633D] [SPRF][2013-01-17] (.Conduit - Setup.exe.) -- C:\Users\Stephane\Desktop\01net_AVG_Antivirus_Free_Edition (1).exe [1330544]
[MD5.93CC2981F03C7B4530CD6F421E8DE93F] [SPRF][2013-01-10] (.Conduit - Setup.exe.) -- C:\Users\Stephane\Desktop\01net_AVG_Antivirus_Free_Edition.exe [1229712]
[MD5.41383DF1143D830C7831B8B1ADC919DD] [SPRF][2013-01-25] (...) -- C:\Users\Stephane\Desktop\adwcleaner.exe [578255]
[MD5.251196F112EA0EE3A7A954FB9F2213F2] [SPRF][2013-01-10] (.AVG Technologies - AVG Setup Self-Extractor based on 7-Zip.) -- C:\Users\Stephane\Desktop\avg_free_stb_eu_2013_2667_free.exe [4411392]
[MD5.251196F112EA0EE3A7A954FB9F2213F2] [SPRF][2013-01-17] (.AVG Technologies - AVG Setup Self-Extractor based on 7-Zip.) -- C:\Users\Stephane\Desktop\avg_free_stb_eu_2013_2667_free1.exe [4411392]
[MD5.8CBA16AAA26876BB329D976EAF73B5AC] [SPRF][2013-01-21] (.Swearware - ComboFix NSIS Installer.) -- C:\Users\Stephane\Desktop\ComboFix.exe [5025054]
[MD5.EF4292B1FDE2CDF5D336794FA0020AB3] [SPRF][2013-01-30] (.ESET - ESET Windows OlmarikTdl4/Olmasco Remover.) -- C:\Users\Stephane\Desktop\EOlmarikTdl4Cleaner (1).exe [327704]
[MD5.EF4292B1FDE2CDF5D336794FA0020AB3] [SPRF][2013-01-30] (.ESET - ESET Windows OlmarikTdl4/Olmasco Remover.) -- C:\Users\Stephane\Desktop\EOlmarikTdl4Cleaner.exe [327704]
[MD5.6590039F952E68EA2B6E1EB10F5A8521] [SPRF][2013-01-31] (...) -- C:\Users\Stephane\Desktop\SupTDSS.reg [287]
[MD5.EBC984F0CE40E0DAF0454D806EC2A7EC] [SPRF][2012-10-31] (.Kaspersky Lab ZAO - TDSS rootkit removing tool.) -- C:\Users\Stephane\Desktop\TDSSKiller.exe [2213976]
[MD5.EC17D603F0292A42C861643691630F99] [SPRF][2012-11-09] (.MyIweb Tunisia - .) -- C:\Users\Stephane\Desktop\tg_downloader_pour_funny-chewer.exe [958064]
[MD5.A64D9D41212C73BAC017FE0D1D066D8F] [SPRF][2013-01-29] (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Stephane\Desktop\ZHPDiag2 (1).exe [3872949]
[MD5.A64D9D41212C73BAC017FE0D1D066D8F] [SPRF][2013-01-29] (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Stephane\Desktop\ZHPDiag2.exe [3872949]
[MD5.FCD31E9167248D5384EBF14A0D673204] [SPRF][2010-10-15] (...) -- C:\Program Files (x86)\AdbeRdr940_fr_FR.exe [27769936]
[MD5.7C5B2630C7B36B944F2CB181D59005E5] [SPRF][2010-10-02] (.Audacity Team - Audacity 1.3 Beta (Unicode) Setup.) -- C:\Program Files (x86)\audacity-win-unicode-1.3.12.exe [11873890]
[MD5.879930C8134727D6942BE475F3C4D83D] [SPRF][2010-10-15] (.KL - QuickTime Alternative.) -- C:\Program Files (x86)\quicktimealt147.exe [8981779]
[MD5.CBF786945E953EC1A48466ECE22A67E5] [SPRF][2010-10-10] (.Apple Inc. - QuickTime Installer.) -- C:\Program Files (x86)\QuickTimeInstaller.exe [34452784]
[MD5.48B4731B0411C91D02A9E089082093EF] [SPRF][2010-10-15] (...) -- C:\Program Files (x86)\vlc-1.1.4-win32.exe [19657194]
[MD5.64281AF23447705DAB84E1A198D920C7] [SPRF][2010-10-02] (.Microsoft Corporation - Windows Live Installer.) -- C:\Program Files (x86)\wlsetup-web.exe [1289576]
[MD5.1AF873D82D3D6E4EA80026C82AB8E5C6] [SPRF][2010-04-15] (.PhotoChannel Networks - PhotoCenter Active X control.) -- C:\Windows\Downloaded Program Files\Photochannel.dll [732296]
~ Scan Files in 00mn 03s



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{EFA98652-B437-42AA-B7D3-EFFD71ED4ECD}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{68F6992D-6E9D-4F14-88EC-3E0B8BEC7EFF}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{F7DCF881-DB9D-4779-8D1C-CCCBAC7C73FF}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{02A4D600-582A-4C14-ADFE-C125CF0CB18F}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "TCP Query User{7F5B6FEF-EECC-4CF4-BDEF-6E2820D5CC59}C:\program files (x86)\utorrent\utorrent.exe" | In - Private - P6 - TRUE | .(.BitTorrent, Inc. - �Torrent.) -- C:\program files (x86)\utorrent\utorrent.exe
O87 - FAEL: "UDP Query User{F48E2FB6-8714-4D94-8BFB-0A71DA99084B}C:\program files (x86)\utorrent\utorrent.exe" | In - Private - P17 - TRUE | .(.BitTorrent, Inc. - �Torrent.) -- C:\program files (x86)\utorrent\utorrent.exe
O87 - FAEL: "TCP Query User{E487A494-66D1-4DC3-8985-03D29043252A}C:\program files (x86)\skype\phone\skype.exe" | In - Private - P6 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files (x86)\skype\phone\skype.exe
O87 - FAEL: "UDP Query User{663587D8-0220-4A5A-ABC9-AED86087EC96}C:\program files (x86)\skype\phone\skype.exe" | In - Private - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files (x86)\skype\phone\skype.exe
~ Scan Firewall in 00mn 01s



---\\ Additionnal Scan (O88)
Database Version : v2.10390 - (2013-01-29)
Cl�s trouv�es (Keys found) : 2
Valeurs trouv�es (Values found) : 0
Dossiers trouv�s (Folders found) : 1
Fichiers trouv�s (Files found) : 4

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{151867D5-7359-40AF-8764-66E58D06283C}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Agent
C:\Program Files (x86)\Common Files\AVG Secure Search =>Toolbar.Agent
C:\Users\Stephane\Desktop\01net_AVG_Antivirus_Free_Edition (1).exe => Infection PUP (Toolbar.Conduit)
C:\Users\Stephane\Desktop\01net_AVG_Antivirus_Free_Edition.exe => Infection PUP (Toolbar.Conduit)
~ Scan Additionnel in 00mn 07s



---\\ Product Upgrade Codes (O90)
O90 - PUC: "00006FCA9B229EC4896DC2FC53B9CA70" . (.ABBYY FineReader 6.0 Sprint.) -- C:\Windows\Installer\{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}\ARPPRODUCTICON.exe
O90 - PUC: "032B287A89EF1E11A9E10FD42AA3C585" . (.Vegas Pro 12.0 (64-bit).) -- C:\Windows\Installer\{A782B230-FE98-11E1-9A1E-F04DA23A5C58}\vegas.ico
O90 - PUC: "075D485AB867D1B4889190882F947057" . (.ESET NOD32 Antivirus.) -- C:\Windows\Installer\{A584D570-768B-4B1D-8819-0988F2490775}\egui.exe
O90 - PUC: "0BCD4392EE8F0E114A5A8BCAF6798BE8" . (.Google Earth Plug-in.) -- C:\Windows\Installer\{2934DCB0-F8EE-11E0-A4A5-B8AC6F97B88E}\ARPPRODUCTICON.exe
O90 - PUC: "0E28A9662E345464A8E2A1D37EF83821" . (.Adobe Photoshop Lightroom 4 64-bit.) -- C:\Windows\Installer\{669A82E0-43E2-4645-8A2E-1A3DE78F8312}\ARPPRODUCTICON.exe
O90 - PUC: "11F12B5E3396B0E42AC597363E0CD711" . (.Windows Live Messenger.) -- C:\Windows\Installer\{E5B21F11-6933-4E0B-A25C-7963E3C07D11}\MsblIco.Exe
O90 - PUC: "1AB56D9F5C48BC4B19EF6DF870CEAB42" . (.ccc-core-static.) -- C:\Windows\Installer\{F9D65BA1-84C5-B4CB-91FE-D68F07ECBA24}\ARPPRODUCTICON.exe
O90 - PUC: "1C4235E6CF4867F4A9A36CE5708FE06E" . (.Compl�ment Messenger.) -- C:\Windows\Installer\{6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}\CompanionIcon
O90 - PUC: "21681F3FD5B750C4689CBA056F7F7172" . (.KhalInstallWrapper.) -- C:\Windows\Installer\{F3F18612-7B5D-4C05-86C9-AB50F6F71727}\ARPPRODUCTICON.exe
O90 - PUC: "2677E17F46A8CCEA9071AD15760714FC" . (.Catalyst Control Center InstallProxy.) -- C:\Windows\Installer\{F71E7762-8A64-AECC-0917-DA51677041CF}\ARPPRODUCTICON.exe
O90 - PUC: "310F1F66F80057842B38A518B4283074" . (.Kaspersky Anti-Virus 2011.) -- C:\Windows\Installer\{66F1F013-008F-4875-B283-5A814B820347}\setup2.ico
O90 - PUC: "5183C15255A770648AD23C9BF8F0AB8B" . (.Sony Vegas 7.0.) -- C:\Windows\Installer\{251C3815-7A55-4607-A82D-C3B98F0FBAB8}\vegas70.ico
O90 - PUC: "53451EB7E3D285B468F7C957EB0D02C8" . (.QuickTime.) -- C:\Windows\Installer\{7BE15435-2D3E-4B58-867F-9C75BED0208C}\Installer.ico
O90 - PUC: "5E046305DE2B37131D904D0D133574A1" . (.AMD Drag and Drop Transcoding.) -- C:\Windows\Installer\{503640E5-B2ED-3173-D109-D4D03153471A}\ARPPRODUCTICON.exe
O90 - PUC: "62414A174A7CFCD49ADE5C4B1B50DED1" . (.Sony Media Manager 2.2.) -- C:\Windows\Installer\{71A41426-C7A4-4DCF-A9ED-C5B4B105ED1D}\mediamgr.ico
O90 - PUC: "68AB67CA7DA76301B744AA0100000010" . (.Adobe Reader X (10.1.3) - Fran�ais.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico
O90 - PUC: "717790FC471F441459A4BF4CFB030133" . (.Nero 7 Ultra Edition.) -- C:\Windows\Installer\{CF097717-F174-4144-954A-FBC4BF301033}\ARPPRODUCTICON.exe
O90 - PUC: "751ED5D14698DF64EB3D22CF50DE1307" . (.Final Effects Complete 6.0.0 32Bit.) -- C:\Windows\Installer\{1D5DE157-8964-46FD-BED3-22FC05ED3170}\ARPPRODUCTICON.exe
O90 - PUC: "7FF03E3EEAE5E0E43B49871224226DC0" . (.Windows Internet Explorer Platform Preview.) -- C:\Windows\Installer\{E3E30FF7-5EAE-4E0E-B394-78214222D60C}\iepreview.ico
O90 - PUC: "83043ADDDB9840840B8BCD845DFD4B36" . (.Catalyst Control Center - Branding.) -- C:\Windows\Installer\{DDA34038-89BD-4804-B0B8-DC48D5DFB463}\ARPPRODUCTICON.exe
O90 - PUC: "95FD8C89F5EB2CE4B921DFA24529E8BD" . (.Microsoft IntelliType Pro 8.0.) -- C:\Windows\Installer\{98C8DF59-BE5F-4EC2-9B12-FD2A54928EDB}\Keyboard.ico
O90 - PUC: "9B35B8C6EE1438DA00A755EE46ED9623" . (.Catalyst Control Center Graphics Previews Common.) -- C:\Windows\Installer\{6C8B53B9-41EE-AD83-007A-55EE64DE6932}\ARPPRODUCTICON.exe
O90 - PUC: "A7C380116D0D4AD4C8A3478B83E90CB7" . (.ATI Catalyst Registration.) -- C:\Windows\Installer\{11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}\ARPPRODUCTICON.exe
O90 - PUC: "A89235DF4374BCFA7B33C47077E685E9" . (.ccc-utility64.) -- C:\Windows\Installer\{FD53298A-4734-AFCB-B733-4C07776E589E}\ARPPRODUCTICON.exe
O90 - PUC: "B5C628C0131BA3242A927CB1C3CADCA6" . (.CDDRV_Installer.) -- C:\Windows\Installer\{0C826C5B-B131-423A-A229-C71B3CACCD6A}\ARPPRODUCTICON.exe
O90 - PUC: "C040110900063D11C8EF10054038389C" . (.Microsoft Office Professional Edition 2003.) -- C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\misc.exe,6
O90 - PUC: "CF4F71AEFBDF8FC45A92D28913230D35" . (.Skype� 6.0.) -- C:\Windows\Installer\{EA17F4FC-FDBF-4CF8-A529-2D983132D053}\SkypeIcon.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "DD1ED5FC6E7FD496E128487C9C9CBABD" . (.Catalyst Control Center Graphics Previews Vista.) -- C:\Windows\Installer\{CF5DE1DD-F7E6-694D-1E82-84C7C9C9ABDB}\ARPPRODUCTICON.exe
O90 - PUC: "DF97238AB4AC602459530979D47E6645" . (.Apple Application Support.) -- C:\Windows\Installer\{A83279FD-CA4B-4206-9535-90974DE76654}\WinInstall.ico
O90 - PUC: "F1ECADD3E1B3BA6DDCD36B9E78159154" . (.ATI Catalyst Install Manager.) -- C:\Windows\Installer\{3DDACE1F-3B1E-D6AB-CD3D-B6E987511945}\ARPPRODUCTICON.exe
~ Scan Files in 00mn 00s



---\\ General States of Services not Microsoft (EGS) (SR:='Running, SS:='Stopped)
SR - | Auto 2012-01-03 63928 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SR - | Demand 2013-01-17 251400 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 2010-08-25 203264 | (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe
SR - | Demand 2011-01-12 42360 | (EhttpSrv) . (.ESET.) - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
SR - | Auto 2011-01-12 810144 | (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
SR - | Auto 2010-09-27 136176 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - | Demand 2010-09-27 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - | Demand 2013-01-06 194032 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SR - | Auto 2013-01-24 108904 | (HitmanProScheduler) . (.SurfRight B.V..) - C:\Program Files\HitmanPro\hmpsched.exe
SR - | Auto 2012-07-21 185344 | (INETLOCKSVC) . (.TopLang Software.) - C:\Program Files\Internet Lock\ILSvc.exe
SR - | Demand 2008-05-02 160272 | (LBTServ) . (.Logitech, Inc..) - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
SR - | Auto 2010-04-14 45736 | (lxecCATSCustConnectService) . (.Lexmark International, Inc..) - C:\Windows\system32\spool\DRIVERS\x64\3\lxecserv.exe
SR - | Auto 1052328 | (lxec_device) . (...) - C:\Windows\system32\lxeccoms.exe
SR - | Auto 2011-09-25 181248 | (MAGIX StartUp Analyze Service) . (.MAGIX AG.) - C:\Program Files (x86)\MAGIX\PC_Check_Tuning_2012_Version_a_telecharger\MXSAS.exe
SR - | Auto 2012-09-29 676936 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
SR - | Auto 2011-02-24 815104 | (moohelp) . (.MooSoft Development LLC.) - C:\Program Files (x86)\The Cleaner\mhelper.exe
SR - | Demand 2007-06-29 800040 | (NBService) . (.Nero AG.) - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
SR - | Auto 2009-05-15 935208 | (Nero BackItUp Scheduler 4.0) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
SR - | Demand 2007-06-27 279848 | (NMIndexingService) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
SR - | Auto 2012-11-09 160944 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - | Auto 2009-12-23 370688 | (StarWindServiceAE) . (.StarWind Software.) - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
SR - | Auto 2011-12-13 2028864 | (TuneUp.UtilitiesSvc) . (.TuneUp Software.) - C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
SR - | Auto 2009-07-13 27136 | C:\Windows\System32\uxtuneup.dll (UxTuneUp) . (.TuneUp Software.) - C:\Windows\System32\svchost.exe
SR - | Auto 711112 | (vToolbarUpdater13.2.0) . (...) - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
SR - | Auto 2009-07-13 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Demand 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 2009-07-13 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Scan Services in 00mn 01s



End of the scan (1714 lines in 04mn 37s)(0)

Publicité


Signaler le contenu de ce document

Publicité