cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ Rapport de ZHPDiag v2013.9.14.26 - Nicolas Coolman (14/09/2013)
~ Lanc� par Administrateur (15/09/2013 20:44:35)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : D�sactiv�e par l'utilisateur
~ El�vation des Privil�ges : OK
~ User Account Control (UAC): Deactivate by program


---\\ Navigateurs Internet
MSIE: Internet Explorer v10.0.9200.16660
MFIE: Mozilla Firefox 23.0.1 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Fran�ais
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 9YQTR
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection du syst�me
avast! Free Antivirus v8.0.1497.0
Malwarebytes Anti-Malware version 1.75.0.1300
Windows Defender W7

---\\ Logiciels d'optimisation du syst�me
CCleaner v4.05 =>Piriform Ltd

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 11 Plugin
Java 7 Update 40

---\\ Informations sur le syst�me
~ Processor: Intel64 Family 6 Model 30 Stepping 5, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2047 MB (47% free)
System Restore: Activ� (Enable)
System drive C: has 127 GB (72%) free of 175 GB

---\\ Mode de connexion au syst�me
~ Computer Name: ROBERT-PC
~ User Name: Administrateur
~ All Users Names: UpdatusUser, Robert, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppData% : C:\Users\Administrateur\AppData\Roaming\
~ %Desktop% : C:\Users\Administrateur\Desktop\
~ %Favorites% : C:\Users\Administrateur\Favorites\
~ %LocalAppData% : C:\Users\Administrateur\AppData\Local\
~ %StartMenu% : C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enum�ration des unit�s disques
C:\ Hard drive, Flash drive, Thumb drive (Free 127 Go of 175 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 430 Go of 502 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ Hard drive, Flash drive, Thumb drive (Free 164 Go of 349 Go)
G:\ Hard drive, Flash drive, Thumb drive (Free 145 Go of 349 Go)



---\\ Etat du Centre de S�curit� Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 37 Scanned in 00mn 00s



---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.AC155DD9BD1E6D3B740826A4D1C68AAE] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.26/07/2013 - 06:13:37.) -- C:\Windows\System32\wininet.dll [2241024]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.20/11/2010 - 14:25:30.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Biblioth�que de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.12/04/2013 - 15:45:08.) -- C:\Windows\system32\Drivers\ntfs.sys [1656680]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parall�le.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes Favoris (My Favorites) : 1/9
~ Mes Documents (My Documents) : 1/16
~ Mon Bureau (My Desktop) : 1/33
~ Menu demarrer (Programs) : 1/33
~ Hidden Files: Scanned in 00mn 00s



---\\ Processus lanc�s
[MD5.CBC7D8E5416AD30CF16DC2FD4A6AA399] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe [4858968] [PID.2124]
[MD5.5B6E8E09BE6401A7E022F52FDFCB2FF8] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336] [PID.3068]
[MD5.B4CF3FB7E9B8EA69757541DCE6CA20ED] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [276376] [PID.2312]
[MD5.D15FE044EF9776466FBA00D7FBD7B7B6] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [7953408] [PID.2008]
[MD5.C321084609422404F8DD1513C988DBEA] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [383264] [PID.928]
[MD5.9330941C8F6DF417F6DBBE998DB6687E] - (.AVAST Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [46808] [PID.1516]
[MD5.CEA3A0FBE6B86EF7A85B62EB41ED5DCB] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [1260320] [PID.3368]
~ Processes Running: Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\7tzergji.default\prefs.js
C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\w8jee8sv.default\prefs.js
M0 - MFSP: prefs.js [Administrateur - 7tzergji.default] http://www.google.fr
M0 - MFSP: prefs.js [Administrateur - w8jee8sv.default] google.fr
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.7.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Windows\system32\npDeployJava1.dll
~ Firefox Browser: 6 Scanned in 00mn 00s



---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (10.00.9200.16521 (win8_gdr_soc_ie.130216-2100)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 16 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Module compl�mentaire de navigateur pour la d�sactivation de Google�Analytics [64Bits] - {75EF13CE-B59E-41ba-8A5A-A944031BD8B4} . (.Google, Inc. - Pas de description.) -- C:\Program Files (x86)\Google\Google Analytics Opt-Out\gaoptout.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: (no name) [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} Cl� orpheline
O2 - BHO: (no name) [64Bits] - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} Cl� orpheline
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: (no name) [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Cl� orpheline
~ BHO: 9 Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: avast! Free Antivirus.lnk . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
O4 - GS\Desktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>Piriform Ltd
O4 - GS\Desktop [Public]: Defraggler.lnk . (.Piriform Ltd - Defraggler.) -- C:\Program Files\Defraggler\Defraggler64.exe
O4 - GS\Desktop [Public]: ImgBurn.lnk . (.LIGHTNING UK! - ImgBurn - The Ultimate Image Burner!.) -- C:\Program Files (x86)\ImgBurn\ImgBurn.exe
O4 - GS\Desktop [Public]: Ma-Config.com - D�marrer la d�tection.lnk . (...) -- C:\Program Files (x86)\ma-config.com\MCDetection.exe (.not file.)
O4 - GS\Desktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
O4 - GS\Desktop [Public]: Microsoft Baseline Security Analyzer 2.2.lnk . (...) -- C:\Program Files (x86)\Microsoft Baseline Security Analyzer 2\mbsa.exe (.not file.)
O4 - GS\Desktop [Public]: Polar ProTrainer.lnk . (.Polar Electro Oy - Polar 32.) -- C:\Program Files (x86)\Polar\Polar ProTrainer\Polar 32.exe
O4 - GS\Desktop [Public]: Samsung Kies (Lite).lnk . (...) -- C:\Program Files (x86)\Samsung\Kies\KiesAgent.exe
O4 - GS\Desktop [Public]: Samsung Kies.lnk . (...) -- C:\Program Files (x86)\Samsung\Kies\KiesAgent.exe
O4 - GS\Desktop [Public]: SMPlayer.lnk . (.Ricardo Villalba - SMPlayer.) -- C:\Program Files\SMPlayer\smplayer.exe
O4 - GS\Desktop [Public]: STDU Viewer.lnk . (...) -- C:\Program Files (x86)\STDU Viewer\STDUViewerApp.exe
O4 - GS\Desktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player 2.0.8.) -- C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
O4 - GS\Desktop [Public]: Wise Registry Cleaner.lnk . (.WiseCleaner.com - Wise Registry Cleaner.) -- C:\Program Files (x86)\Wise\Wise Registry Cleaner\WiseRegCleaner.exe
O4 - GS\Desktop [Public]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe
O4 - GS\Desktop [Public]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe
O4 - GS\Program [Public]: ImgBurn.lnk . (.LIGHTNING UK! - ImgBurn - The Ultimate Image Burner!.) -- C:\Program Files (x86)\ImgBurn\ImgBurn.exe
O4 - GS\Program [Public]: Microsoft Baseline Security Analyzer 2.2.lnk . (...) -- C:\Program Files (x86)\Microsoft Baseline Security Analyzer 2\mbsa.exe (.not file.)
O4 - GS\Program [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\Program [Public]: Polar ProTrainer.lnk . (.Polar Electro Oy - Polar 32.) -- C:\Program Files (x86)\Polar\Polar ProTrainer\Polar 32.exe
O4 - GS\Program [Public]: Sidebar.lnk . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe
O4 - GS\Program [Public]: Windows Anytime Upgrade.lnk . (.Microsoft Corporation - Interface utilisateur de Mise � niveau expr.) -- C:\Windows\system32\WindowsAnytimeUpgradeUI.exe
O4 - GS\Program [Public]: Windows DVD Maker.lnk . (...) -- C:\Program Files (x86)\DVD Maker\DVDMaker.exe (.not file.)
O4 - GS\Program [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe
O4 - GS\Program [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) -- C:\Windows\system32\xpsrchvw.exe
O4 - GS\Accessories [Public]: Bluetooth File Transfer Wizard.lnk . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\fsquirt.exe
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\Windows\system32\calc.exe
O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.) -- C:\Windows\system32\displayswitch.exe
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilit� Windows.) -- C:\Windows\system32\mblctr.exe
O4 - GS\Accessories [Public]: mspaint.exe - Raccourci.lnk . (.Microsoft Corporation - Paint.) -- C:\Windows\System32\mspaint.exe
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau � distance.) -- C:\Windows\system32\mstsc.exe
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) -- C:\Windows\system32\SnippingTool.exe
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magn�tophone Windows.) -- C:\Windows\system32\SoundRecorder.exe
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-b�te.) -- C:\Windows\system32\StikyNot.exe
O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) -- C:\Windows\System32\mobsync.exe
O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Mise en route.) -- C:\Windows\system32\OobeFldr.dll
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) -- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caract�res.) -- C:\Windows\system32\charmap.exe
O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - D�fragmenteur de disque Microsoft�.) -- C:\Windows\system32\dfrgui.exe
O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) -- C:\Windows\system32\cleanmgr.exe
O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Moniteur de ressources et de performances.) -- C:\Windows\system32\perfmon.exe
O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations syst�me.) -- C:\Windows\system32\msinfo32.exe
O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du syst�me de Microsoft� Windo.) -- C:\Windows\system32\rstrui.exe
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) -- C:\Windows\system32\taskschd.msc
O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Application post-migration de transfert de.) -- C:\Windows\system32\migwiz\postmig.exe
O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Application Transfert de fichiers et param�.) -- C:\Windows\system32\migwiz\migwiz.exe
O4 - GS\QuickLaunch [Robert]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch [Robert]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar [Robert]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\Windows\system32\calc.exe
O4 - GS\TaskBar [Robert]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar [Robert]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe
O4 - GS\TaskBar [Robert]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar [Robert]: XnView.lnk . (.XnView, http://www.xnview.com - XnView for Windows.) -- C:\Program Files (x86)\XnView\xnview.exe
O4 - GS\Program [Robert]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Program [Robert]: mail.google.com.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://mail.google.com
O4 - GS\Accessories [Robert]: Command Prompt.lnk . (.Microsoft Corporation - Interpr�teur de commandes Windows.) -- C:\Windows\system32\cmd.exe
O4 - GS\Accessories [Robert]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe
O4 - GS\Accessories [Robert]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\SystemTools [Robert]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SystemTools [Robert]: Private Character Editor.lnk . (.Microsoft Corporation - �diteur de caract�res priv�s.) -- C:\Windows\system32\eudcedit.exe
O4 - GS\SendTo [Robert]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\fsquirt.exe
O4 - GS\Desktop [Robert]: AD-R.lnk . (...) -- C:\Program Files (x86)\Ad-Remover\main.exe
O4 - GS\QuickLaunch [Administrateur]: Google Chrome.lnk . (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O4 - GS\QuickLaunch [Administrateur]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch [Administrateur]: Samsung Kies (Lite).lnk . (...) -- C:\Program Files (x86)\Samsung\Kies\KiesAgent.exe
O4 - GS\QuickLaunch [Administrateur]: Samsung Kies.lnk . (...) -- C:\Program Files (x86)\Samsung\Kies\KiesAgent.exe
O4 - GS\QuickLaunch [Administrateur]: Samsung Story Album Viewer.lnk . (...) -- C:\Program Files (x86)\Samsung\Story Album Viewer\HTML5Viewer.exe
O4 - GS\QuickLaunch [Administrateur]: XnView.lnk . (.XnView, http://www.xnview.com - XnView for Windows.) -- C:\Program Files (x86)\XnView\xnview.exe
O4 - GS\TaskBar [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Administrateur]: Mozilla Firefox (2).lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar [Administrateur]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\Program [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Accessories [Administrateur]: Command Prompt.lnk . (.Microsoft Corporation - Interpr�teur de commandes Windows.) -- C:\Windows\system32\cmd.exe
O4 - GS\Accessories [Administrateur]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe
O4 - GS\Accessories [Administrateur]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\SystemTools [Administrateur]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SystemTools [Administrateur]: Private Character Editor.lnk . (.Microsoft Corporation - �diteur de caract�res priv�s.) -- C:\Windows\system32\eudcedit.exe
O4 - GS\SendTo [Administrateur]: Format Factory.lnk . (.Free Time - FormatFactory.) -- C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe
O4 - GS\SendTo [Administrateur]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\fsquirt.exe
O4 - GS\Desktop [Administrateur]: AD-R.lnk . (...) -- C:\Program Files (x86)\Ad-Remover\main.exe
O4 - GS\Desktop [Administrateur]: adwcleaner(1).exe - Raccourci.lnk . (...) -- D:\Robert\T�l�chargements\adwcleaner(1).exe (.not file.)
O4 - GS\Desktop [Administrateur]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) -- C:\Windows\system32\cleanmgr.exe
O4 - GS\Desktop [Administrateur]: Format Factory.lnk . (.Free Time - FormatFactory.) -- C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe
O4 - GS\Desktop [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\Desktop [Administrateur]: MyDefrag.exe - Raccourci.lnk . (...) -- C:\Program Files (x86)\MyDefrag v4.3.1\MyDefrag.exe (.not file.)
O4 - GS\Desktop [Administrateur]: Revo Uninstaller.lnk . (.VS Revo Group - Revo Uninstaller.) -- C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe
O4 - GS\Desktop [Administrateur]: XnView.lnk . (.XnView, http://www.xnview.com - XnView for Windows.) -- C:\Program Files (x86)\XnView\xnview.exe
O4 - GS\Desktop [Administrateur]: Your Unin-staller!.lnk . (.URSoft,Inc - Your Uninstaller! - New way to uninstall pr.) -- C:\Program Files (x86)\Your Uninstaller! 7\urmain.exe
~ Global Startup: 89 Scanned in 00mn 02s



---\\ Applications lanc�es au d�marrage du syt�me (O4)
O4 - HKCU\..\RunOnce: [Report] \AdwCleaner\AdwCleaner[S5].txt
O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-2851782335-3773044986-3138838024-500\..\RunOnce: [Report] \AdwCleaner\AdwCleaner[S5].txt
~ Application: Scanned in 00mn 00s



---\\ Invisibilit� de l'ic�ne d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d�affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corp. - Microsoft� Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft� Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
~ Winsock: 9 Scanned in 00mn 00s



---\\ Site dans la Zone de confiance d'Internet Explorer (O15)
O15 - Trusted Zone: [HKCU\...\Domains] http.geoportail.fr
O15 - Trusted Zone: [HKLM\...\Domains] http.geoportail.fr
~ IE Zone Confiance: Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{095E5F87-0CA6-48E9-B89E-504BAB6C756D}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS1\Services\Tcpip\..\{095E5F87-0CA6-48E9-B89E-504BAB6C756D}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS2\Services\Tcpip\..\{095E5F87-0CA6-48E9-B89E-504BAB6C756D}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.241 212.27.40.240
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: LBTWlgn . (.Logitech, Inc. - Logitech Bluetooth Service.) -- c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated - Adobe� Flash� Player Update Service 11.8 r8.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 311.4.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TurboBoost (TurboBoost) . (.Intel(R) Corporation - Turbo Boost Monitor Service.) - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
~ Services: 6 Scanned in 00mn 40s



---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enum�re les donn�es de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1080]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1084]
[MD5.3ACABCA6A8DB71B7F19C8A7523AE1846] [APT] [ACMON] (.ASUS.) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [691328]
[MD5.7BBAF543CABE8A8D275BC7F6C66C1959] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [257416]
[MD5.51459B4AF1611AFA37F839C92CFAEC10] [APT] [ASUS P4G] (.ASUS.) -- C:\Program Files\P4G\BatteryLife.exe [969344]
[MD5.BEE83619A26F90A6C8273F9CA9680397] [APT] [ASUSControlDeck] (.asus.) -- C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe [1080448]
[MD5.82C362A81EE4E441CD85260C8E9E708A] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe [251784]
[MD5.4C0A720AB377391D7D2EDE1ED905A420] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [3676952] =>Piriform Ltd
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [136176]
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [136176]
[MD5.D41D8CD98F00B204E9800998ECF8427E] [APT] [MyDefrag v4.3.1 Daily] (...) -- C:\Program Files\MyDefrag v4.3.1\Scripts\AutomaticDaily.MyD" [5663]
[MD5.D41D8CD98F00B204E9800998ECF8427E] [APT] [MyDefrag v4.3.1 Monthly] (...) -- C:\Program Files\MyDefrag v4.3.1\Scripts\AutomaticMonthly.MyD" [5626]
[MD5.4064690F20D2F0C8944DECB488A873D4] [APT] [{3953F63F-038F-4988-8999-47722B765ADC}] (...) -- C:\Program Files (x86)\asus\VirtualCamera\VirCam.exe [856496]
[MD5.E01F74DE3AB93DBA73318C5DB8701C4A] [APT] [{3AAC9E2B-EF87-4AFA-818D-51DA586F9E3B}] (.Polar Electro Oy.) -- C:\Program Files (x86)\Polar\Polar ProTrainer\Polar 32.exe [4247552]
[MD5.BD912813AE9D69A0D02CA09153CB0584] [APT] [{46C77F14-4090-4988-A754-E3A038FF2ECA}] (...) -- D:\Robert\conseils informatique\fat32format\fat32format.exe [49233]
[MD5.4064690F20D2F0C8944DECB488A873D4] [APT] [{4FC8E56E-AE53-43CB-A6DB-13182DE45B6E}] (...) -- C:\Program Files (x86)\asus\VirtualCamera\VirCam.exe [856496]
[MD5.E01F74DE3AB93DBA73318C5DB8701C4A] [APT] [{6DC727D0-613F-4B34-AF02-5F6B4AD15001}] (.Polar Electro Oy.) -- C:\Program Files (x86)\Polar\Polar ProTrainer\Polar 32.exe [4247552]
[MD5.4064690F20D2F0C8944DECB488A873D4] [APT] [{927C7BDA-114C-4147-AA4D-ADC39CD66510}] (...) -- C:\Program Files (x86)\asus\VirtualCamera\VirCam.exe [856496]
[MD5.4064690F20D2F0C8944DECB488A873D4] [APT] [{C664B224-C250-4EE6-A4C7-BDE5F00D003A}] (...) -- C:\Program Files (x86)\asus\VirtualCamera\VirCam.exe [856496]
[MD5.4064690F20D2F0C8944DECB488A873D4] [APT] [{F6570484-0241-49BB-A4DF-EB7E5F0E322F}] (...) -- C:\Program Files (x86)\asus\VirtualCamera\VirCam.exe [856496]
~ Scheduled Task: 24 Scanned in 00mn 06s



---\\ Composants install�s (ActiveSetup Installed Components) (O40)
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Internet Explorer [64Bits] - {2D46B6DC-2207-486B-B523-A557E6D54B47} . (.Microsoft Corporation - Interpr�teur de commandes Windows.) -- C:\Windows\system32\cmd.exe
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 7 Scanned in 00mn 00s



---\\ Pilotes lanc�s au d�marrage du syst�me (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\Drivers\aswrdr2.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-syst�me de mise en m�moire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Drivers: 63 Scanned in 00mn 00s



---\\ Logiciels install�s (O42)
O42 - Logiciel: 3DVIA player 5.0.0.20 - (.3DVIA.) [HKLM][64Bits] -- {F06365EC-061E-48C3-B761-E1816658D618}
O42 - Logiciel: 7-Zip 9.20 - (...) [HKLM][64Bits] -- 7-Zip
O42 - Logiciel: ASUS AI Recovery - (.ASUS.) [HKLM][64Bits] -- {06585B02-F20D-4AB2-9A64-86EF2AE0F8F0}
O42 - Logiciel: ASUS LifeFrame3 - (.ASUS.) [HKLM][64Bits] -- {1DBD1F12-ED93-49C0-A7CC-56CBDE488158}
O42 - Logiciel: ASUS MultiFrame - (.ASUS.) [HKLM][64Bits] -- {9D48531D-2135-49FC-BC29-ACCDA5396A76}
O42 - Logiciel: ASUS Power4Gear Hybrid - (.ASUS.) [HKLM][64Bits] -- {9B6239BF-4E85-4590-8D72-51E30DB1A9AA}
O42 - Logiciel: ASUS Splendid Video Enhancement Technology - (.ASUS.) [HKLM][64Bits] -- {0969AF05-4FF6-4C00-9406-43599238DE0D}
O42 - Logiciel: ASUS Virtual Camera - (.asus.) [HKLM][64Bits] -- {EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}
O42 - Logiciel: ATK Package - (.ASUS.) [HKLM][64Bits] -- {AB5C933E-5C7D-4D30-B314-9C83A49B94BE}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Shockwave Player 12.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player
O42 - Logiciel: Asus_GSeries_Screensaver - (.ASUS.) [HKLM][64Bits] -- Asus_GSeries_Screensaver
O42 - Logiciel: Atheros Client Installation Program - (.Atheros.) [HKLM][64Bits] -- {D3694B69-6F8C-42D3-8A0A-EB2AB528C02C}
O42 - Logiciel: Bookworm Deluxe - (.Oberon Media Inc..) [HKLM][64Bits] -- Bookworm Deluxe
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>Piriform Ltd
O42 - Logiciel: Complemento Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {3A09ED0F-8DDF-47BB-B53D-841AB9D1D3A7}
O42 - Logiciel: ControlDeck - (.ASUS.) [HKLM][64Bits] -- {5B65EF64-1DFA-414A-8C94-7BB726158E21}
O42 - Logiciel: ConvertHelper 2.2 - (.DownloadHelper.) [HKLM][64Bits] -- {27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1
O42 - Logiciel: Cooking Dash - (.Oberon Media Inc..) [HKLM][64Bits] -- Cooking Dash
O42 - Logiciel: Defraggler - (.Piriform.) [HKLM][64Bits] -- Defraggler
O42 - Logiciel: DirectX 9 Runtime - (.Sonic Solutions.) [HKLM][64Bits] -- {AF9E97C1-7431-426D-A8D5-ABE40995C0B1}
O42 - Logiciel: ExpressGate Cloud - (.Asus.) [HKLM][64Bits] -- {499DED08-6FA8-4749-8E94-8526CC9D1CA8}
O42 - Logiciel: Fast Boot - (.ASUS.) [HKLM][64Bits] -- {13F4A7F3-EABC-4261-AF6B-1317777F0755}
O42 - Logiciel: FormatFactory 3.1.1 - (.Free Time.) [HKLM][64Bits] -- FormatFactory
O42 - Logiciel: Fresco Logic USB3.0 Host Controller - (.Fresco Logic Inc..) [HKLM][64Bits] -- {F7142CCD-6612-4F94-BF76-D256FE6EC84C}
O42 - Logiciel: Game Park Console - (.Oberon Media, Inc..) [HKLM][64Bits] -- {E71E60C1-533E-45A5-8D80-E475E88D2B17}_is1
O42 - Logiciel: Google Earth Plug-in - (.Google.) [HKLM][64Bits] -- {79361740-EAE3-11E2-9911-B8AC6F98CCE3}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Governor of Poker - (.Oberon Media Inc..) [HKLM][64Bits] -- Governor of Poker
O42 - Logiciel: Hotel Dash Suite Success - (.Oberon Media Inc..) [HKLM][64Bits] -- Hotel Dash Suite Success
O42 - Logiciel: ImgBurn - (.LIGHTNING UK!.) [HKLM][64Bits] -- ImgBurn
O42 - Logiciel: Intel(R) Turbo Boost Technology Monitor - (.Intel.) [HKLM][64Bits] -- {39F4C6F9-618A-4E5B-8FB2-6BD661174E32}
O42 - Logiciel: Java 7 Update 40 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217040FF}
O42 - Logiciel: Jewel Quest 3 - (.Oberon Media Inc..) [HKLM][64Bits] -- Jewel Quest 3
O42 - Logiciel: Logiciel Logitech Unifying 2.10 - (.Logitech.) [HKLM][64Bits] -- Logitech Unifying
O42 - Logiciel: Logitech SetPoint 6.32 - (.Logitech.) [HKLM][64Bits] -- sp6
O42 - Logiciel: Luxor 3 - (.Oberon Media Inc..) [HKLM][64Bits] -- Luxor 3
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2721691) - (.Microsoft Corporation.) [HKLM][64Bits] -- {355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB973685) - (.Microsoft Corporation.) [HKLM][64Bits] -- {859DFA95-E4A6-48CD-B88E-A3E483E89B44}
O42 - Logiciel: Ma-Config.com (64 bits) - (.Cybelsoft.) [HKLM][64Bits] -- {EAC72CE3-BD48-4F57-B833-F55F2267ADD4}
O42 - Logiciel: Mahjongg dimensions - (.Oberon Media Inc..) [HKLM][64Bits] -- Mahjongg dimensions
O42 - Logiciel: Malwarebytes Anti-Malware version 1.75.0.1300 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Messenger Companion - (.Microsoft Corporation.) [HKLM][64Bits] -- {0481A2EA-DA1D-4D10-A7C3-F8237948F6B5}
O42 - Logiciel: Messenger Companion - (.Microsoft Corporation.) [HKLM][64Bits] -- {50816F92-1652-4A7C-B9BC-48F682742C4B}
O42 - Logiciel: Messenger Companion - (.Microsoft Corporation.) [HKLM][64Bits] -- {8142D25E-028A-4563-86ED-5755783C8029}
O42 - Logiciel: Messenger Companion - (.Microsoft Corporation.) [HKLM][64Bits] -- {939C80FA-96C9-44A6-B318-8E7D8BD8481B}
O42 - Logiciel: Messenger Companion - (.Microsoft Corporation.) [HKLM][64Bits] -- {96403552-88D1-429F-9C92-388B814B885E}
O42 - Logiciel: Messenger Companion - (.Microsoft Corporation.) [HKLM][64Bits] -- {C7DAD22D-29D4-438F-B986-03B9ED582EA4}
O42 - Logiciel: Messenger ???? - (.Microsoft Corporation.) [HKLM][64Bits] -- {CF088261-BC81-4FB9-9BA0-7B5B9602D01A}
O42 - Logiciel: Microsoft Baseline Security Analyzer 2.2 - (.Microsoft Corporation.) [HKLM][64Bits] -- {08C3441C-4FAF-48D3-A551-70DD6031734F}
O42 - Logiciel: Microsoft IntelliType Pro 8.2 - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft IntelliType Pro 8.2
O42 - Logiciel: Microsoft IntelliType Pro 8.2 - (.Microsoft Corporation.) [HKLM][64Bits] -- {8219EDCB-CE5A-4348-B056-AAC0FE4E99D0}
O42 - Logiciel: Mises � jour NVIDIA 1.11.3 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update
O42 - Logiciel: Module compl�mentaire de navigateur pour la d�sactivation de Google�Analyti - (.Google Inc..) [HKLM][64Bits] -- {2A2414C2-66E9-4212-931B-57FFB1C41664}
O42 - Logiciel: Mozilla Firefox 23.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 23.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: MyDefrag v4.3.1 - (.J.C. Kessels.) [HKLM][64Bits] -- MyDefrag v4.3.1_is1
O42 - Logiciel: NVIDIA Logiciel syst�me PhysX 9.10.0514 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}
O42 - Logiciel: NVIDIA Pilote 3D Vision 311.44 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision
O42 - Logiciel: NVIDIA Pilote audio HD : 1.3.18.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver
O42 - Logiciel: NVIDIA Pilote graphique 311.44 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo
O42 - Logiciel: Plants vs Zombies - (.Oberon Media Inc..) [HKLM][64Bits] -- Plants vs Zombies
O42 - Logiciel: Polar ProTrainer - (...) [HKLM][64Bits] -- {DF7DBA84-0A55-11D6-A0A6-6A7573736972}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Realtek PCIE Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {C1594429-8296-4652-BF54-9DBE4932A44C}
O42 - Logiciel: Revo Uninstaller 1.95 - (.VS Revo Group.) [HKLM][64Bits] -- Revo Uninstaller
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44}
O42 - Logiciel: SMPlayer 0.8.5 (x64) - (.Ricardo Villalba.) [HKLM][64Bits] -- SMPlayer
O42 - Logiciel: STDU Viewer version 1.6.251.0 - (.STDUtility.) [HKLM][64Bits] -- STDU Viewer_is1
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- InstallShield_{758C8301-2696-4855-AF45-534B1200980A}
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {758C8301-2696-4855-AF45-534B1200980A}
O42 - Logiciel: Samsung Story Album Viewer - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- InstallShield_{698BBAD8-B116-495D-B879-0F07A533E57F}
O42 - Logiciel: Samsung Story Album Viewer - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {698BBAD8-B116-495D-B879-0F07A533E57F}
O42 - Logiciel: Security Task Manager 1.8c - (.Neuber Software.) [HKLM][64Bits] -- Security Task Manager
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey
O42 - Logiciel: System Requirements Lab - (...) [HKLM][64Bits] -- SystemRequirementsLab
O42 - Logiciel: THX TruStudio - (.Creative Technology Limited.) [HKLM][64Bits] -- {B11AB9C8-18A6-41DC-98B4-4988CC030136}
O42 - Logiciel: Unlocker 1.9.2 - (.Cedrick Collomb.) [HKLM][64Bits] -- Unlocker
O42 - Logiciel: VLC media player 2.0.8 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: VirtualGeo� pour le G�oportail - (.Diginext.) [HKLM][64Bits] -- VGeo3 GP
O42 - Logiciel: WIDCOMM Bluetooth Software - (.Broadcom Corporation.) [HKLM][64Bits] -- {9E9D49A4-1DF4-4138-B7DB-5D87A893088E}
O42 - Logiciel: WinFlash - (.ASUS.) [HKLM][64Bits] -- {8F21291E-0444-4B1D-B9F9-4370A73E346D}
O42 - Logiciel: Windows Driver Package - Broadcom (BTHUSB) Bluetooth (02/25/2010 6.2.0.941 - (.Broadcom.) [HKLM][64Bits] -- 85CE3A3657FAE5FD305B143E90E6FC89BA53001C
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (01/19/2010 6.2.0.1417) - (.Broadcom.) [HKLM][64Bits] -- 7341A1B43E7FE58942EB1E820A17C18305DFBCE6
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (07/29/2009 6.1.7100.0) - (.Broadcom.) [HKLM][64Bits] -- 2AA10AB519DC7432D599A0E860206A7DDCC27764
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) - (.Broadcom.) [HKLM][64Bits] -- 6B6B5E96843E55CF5CF8C7E45FB457F1FE642FF1
O42 - Logiciel: Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) - (.Broadcom.) [HKLM][64Bits] -- 3BA80AB4C7E9F8497C115C844953A3D4BEB84D21
O42 - Logiciel: Wireless Console 3 - (.ASUS.) [HKLM][64Bits] -- {20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}
O42 - Logiciel: Wise Registry Cleaner 7.84 - (.WiseCleaner.com, Inc..) [HKLM][64Bits] -- Wise Registry Cleaner_is1
O42 - Logiciel: World of Goo - (.Oberon Media Inc..) [HKLM][64Bits] -- World of Goo
O42 - Logiciel: XnView 2.04 - (.Gougelet Pierre-e.) [HKLM][64Bits] -- XnView_is1
O42 - Logiciel: Your Uninstaller! 7 - (.URSoft, Inc..) [HKLM][64Bits] -- YU2010_is1
O42 - Logiciel: avast! Free Antivirus v8.0.1497.0 - (.AVAST Software.) [HKLM][64Bits] -- avast
O42 - Logiciel: eReg - (.Logitech, Inc..) [HKLM][64Bits] -- {3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}
O42 - Logiciel: erLT - (.Logitech, Inc..) [HKLM][64Bits] -- {A498D9EB-927B-459B-85D6-DD6EF8C2C564}
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}
O42 - Logiciel: ????? Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {AB5977C5-11AE-4003-BA7D-261C48F2BC35}
~ Logic: 161 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\ATK0100]
[HKCU\Software\AVAST Software]
[HKCU\Software\Ad-Remover]
[HKCU\Software\Adobe]
[HKCU\Software\Antanda]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\MarkAny]
[HKCU\Software\AppDataLow]
[HKCU\Software\Bitdefender]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Creative Tech]
[HKCU\Software\EaseUS]
[HKCU\Software\EpmNewsInfo]
[HKCU\Software\FLEXnet]
[HKCU\Software\FreeTime]
[HKCU\Software\GNU]
[HKCU\Software\Gabest]
[HKCU\Software\Google]
[HKCU\Software\Haali]
[HKCU\Software\ImgBurn]
[HKCU\Software\JavaSoft]
[HKCU\Software\Leadertech]
[HKCU\Software\LogiShrd]
[HKCU\Software\Logitech]
[HKCU\Software\Macromedia]
[HKCU\Software\Macrovision]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MyDefrag]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Netscape]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Samsung]
[HKCU\Software\Sysinternals]
[HKCU\Software\Trolltech]
[HKCU\Software\URSoft]
[HKCU\Software\VSRevoGroup]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\cybelsoft]
[HKCU\Software\dskMetrics]
[HKCU\Software\ej-technologies]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ASUS]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Alienware]
[HKLM\Software\AntiHacks]
[HKLM\Software\BrowserChoice]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CoreSecurity]
[HKLM\Software\Creative Tech]
[HKLM\Software\ECAREME]
[HKLM\Software\EnigmaSoftwareGroup]
[HKLM\Software\Google]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\Khronos]
[HKLM\Software\Logishrd]
[HKLM\Software\Logitech]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SAMSUNG]
[HKLM\Software\SRS Labs]
[HKLM\Software\Synaptics]
[HKLM\Software\Volatile]
[HKLM\Software\WebCam]
[HKLM\Software\Widcomm]
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\ALWIL Software]
[HKLM\Software\Wow6432Node\ASUS]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\AppDataLow]
[HKLM\Software\Wow6432Node\AsLdr]
[HKLM\Software\Wow6432Node\Atheros]
[HKLM\Software\Wow6432Node\AviSynth]
[HKLM\Software\Wow6432Node\Bunndle]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Creative Labs]
[HKLM\Software\Wow6432Node\Creative Tech]
[HKLM\Software\Wow6432Node\Cygwin]
[HKLM\Software\Wow6432Node\DRWDemo]
[HKLM\Software\Wow6432Node\Diginext]
[HKLM\Software\Wow6432Node\DivXNetworks]
[HKLM\Software\Wow6432Node\DownloadHelper]
[HKLM\Software\Wow6432Node\EASEUS]
[HKLM\Software\Wow6432Node\FLEXlm License Manager]
[HKLM\Software\Wow6432Node\GNU]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\HaaliMkx]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Oberon Media]
[HKLM\Software\Wow6432Node\OpenAL]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\SlimWare Utilities Inc]
[HKLM\Software\Wow6432Node\SoftVTU]
[HKLM\Software\Wow6432Node\SuppHelpDir]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\VideACE]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Virtools]
[HKLM\Software\Wow6432Node\WiseCleaner]
[HKLM\Software\Wow6432Node\XnView]
[HKLM\Software\Wow6432Node\magnet]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
[HKLM\Software\cybelsoft]
~ Key Software: 197 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 28/01/2011 - 20:47:54 - [3,348] ----D C:\Program Files (x86)\7-Zip
O43 - CFD: 15/09/2013 - 14:31:49 - [83,657] ----D C:\Program Files (x86)\Ad-Remover
O43 - CFD: 02/01/2013 - 22:04:50 - [454,414] ----D C:\Program Files (x86)\ASUS
O43 - CFD: 01/10/2011 - 22:49:29 - [0,001] ----D C:\Program Files (x86)\Atheros
O43 - CFD: 13/09/2013 - 17:57:52 - [118,967] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 03/07/2011 - 08:33:48 - [29,417] ----D C:\Program Files (x86)\ConvertHelper
O43 - CFD: 24/12/2011 - 14:37:05 - [15,311] ----D C:\Program Files (x86)\Creative
O43 - CFD: 07/09/2013 - 13:26:31 - [134,175] ----D C:\Program Files (x86)\FreeTime
O43 - CFD: 09/06/2013 - 20:30:24 - [130,153] ----D C:\Program Files (x86)\Google
O43 - CFD: 05/08/2011 - 22:38:14 - [0,997] ----D C:\Program Files (x86)\Hard Drive Powerwash
O43 - CFD: 21/06/2013 - 10:02:27 - [3,007] ----D C:\Program Files (x86)\ImgBurn
O43 - CFD: 02/08/2011 - 14:22:04 - [0,445] ----D C:\Program Files (x86)\Innovative Solutions
O43 - CFD: 08/09/2013 - 08:17:02 - [108,981] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 09/01/2013 - 12:14:31 - [0,080] ----D C:\Program Files (x86)\Intel
O43 - CFD: 22/08/2013 - 11:57:05 - [4,886] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 15/09/2013 - 13:20:46 - [121,311] ----D C:\Program Files (x86)\Java
O43 - CFD: 28/06/2013 - 14:56:33 - [0] ----D C:\Program Files (x86)\LibreOffice 4.0
O43 - CFD: 05/08/2011 - 22:38:08 - [41,868] ----D C:\Program Files (x86)\LinuxLive USB Creator
O43 - CFD: 09/07/2013 - 08:56:55 - [13,304] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 11/09/2013 - 09:28:54 - [0] ----D C:\Program Files (x86)\MarkAny
O43 - CFD: 27/01/2011 - 23:46:16 - [0] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 12/04/2011 - 19:16:49 - [0,173] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 08/12/2010 - 22:10:17 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 28/01/2011 - 00:18:43 - [0,015] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 30/03/2011 - 09:31:42 - [1,507] ----D C:\Program Files (x86)\MozBackup-1.5-EN
O43 - CFD: 27/08/2013 - 16:52:47 - [47,928] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 27/08/2013 - 16:58:02 - [0,215] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 14/07/2009 - 07:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 30/01/2011 - 20:49:45 - [63,464] ----D C:\Program Files (x86)\MSECache
O43 - CFD: 08/12/2010 - 22:17:12 - [0,147] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 13/09/2013 - 22:47:14 - [0] ----D C:\Program Files (x86)\MyFree Codec
O43 - CFD: 07/04/2011 - 20:26:10 - [0,004] ----D C:\Program Files (x86)\NirSoft
O43 - CFD: 08/12/2010 - 22:02:57 - [0] ----D C:\Program Files (x86)\Nuance
O43 - CFD: 19/04/2013 - 13:59:05 - [108,676] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 28/01/2011 - 22:52:45 - [13,797] ----D C:\Program Files (x86)\pdfsam
O43 - CFD: 29/01/2011 - 20:26:15 - [31,631] ----D C:\Program Files (x86)\Polar
O43 - CFD: 01/10/2011 - 22:39:51 - [16,027] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 07:32:38 - [37,357] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 31/12/2012 - 23:58:23 - [0] ----D C:\Program Files (x86)\Roxio
O43 - CFD: 08/09/2013 - 08:41:05 - [295,937] ----D C:\Program Files (x86)\Samsung
O43 - CFD: 29/01/2011 - 16:05:27 - [2,594] ----D C:\Program Files (x86)\Security Task Manager
O43 - CFD: 11/08/2013 - 16:09:07 - [4,006] ----D C:\Program Files (x86)\STDU Viewer
O43 - CFD: 17/02/2011 - 20:57:45 - [0,733] ----D C:\Program Files (x86)\SystemRequirementsLab
O43 - CFD: 03/08/2011 - 20:16:31 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 14/07/2009 - 06:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 01/09/2013 - 08:16:07 - [102,176] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 11/05/2012 - 22:09:36 - [14,128] ----D C:\Program Files (x86)\Virtools
O43 - CFD: 31/10/2012 - 09:37:25 - [123,344] ----D C:\Program Files (x86)\VirtualGeo3-GP
O43 - CFD: 29/09/2011 - 13:26:44 - [6,523] ----D C:\Program Files (x86)\VS Revo Group
O43 - CFD: 11/07/2013 - 09:24:47 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 25/02/2011 - 19:39:16 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 14/07/2009 - 07:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 25/02/2011 - 19:39:16 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 25/02/2011 - 19:39:16 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 25/02/2011 - 19:39:16 - [5,717] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 14/09/2013 - 13:50:21 - [5,724] ----D C:\Program Files (x86)\Wise
O43 - CFD: 12/08/2013 - 22:02:07 - [16,761] ----D C:\Program Files (x86)\XnView
O43 - CFD: 13/09/2013 - 20:15:02 - [12,655] ----D C:\Program Files (x86)\Your Uninstaller! 7
O43 - CFD: 15/09/2013 - 20:44:44 - [16,856] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 08/12/2010 - 22:34:55 - [0,259] ----D C:\Program Files (x86)\Common Files\ControlDeck
O43 - CFD: 08/12/2010 - 22:33:34 - [0,151] ----D C:\Program Files (x86)\Common Files\Creative Labs Shared
O43 - CFD: 08/12/2010 - 22:34:38 - [4,792] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 04/08/2011 - 12:51:08 - [0,009] ----D C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 17/10/2012 - 22:27:57 - [1,191] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 17/02/2011 - 22:49:48 - [0,494] ----D C:\Program Files (x86)\Common Files\LogiShrd
O43 - CFD: 12/04/2011 - 19:17:28 - [13,563] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 08/12/2010 - 22:12:37 - [0,338] ----D C:\Program Files (x86)\Common Files\Oberon Media
O43 - CFD: 08/12/2010 - 22:22:14 - [0] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 31/12/2012 - 23:57:49 - [0] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 14/07/2009 - 05:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 08/12/2010 - 22:37:23 - [0] ----D C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 14/07/2009 - 05:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 11/08/2013 - 16:09:05 - [5,137] ----D C:\Program Files (x86)\Common Files\STDUtility
O43 - CFD: 09/11/2011 - 13:47:22 - [9,767] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 13/09/2013 - 17:57:54 - [44,064] ----D C:\Program Files (x86)\Common Files\Wise Installation Wizard
O43 - CFD: 15/02/2011 - 09:22:23 - [0,000] --H-D C:\ProgramData\.syncID
O43 - CFD: 11/05/2012 - 22:09:41 - [0,000] ----D C:\ProgramData\3DVIA
O43 - CFD: 10/04/2013 - 09:07:05 - [0] ----D C:\ProgramData\Adobe
O43 - CFD: 27/01/2011 - 23:38:16 - [35,664] ----D C:\ProgramData\Alwil Software
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 16/02/2011 - 08:40:52 - [0,004] ----D C:\ProgramData\ASUS
O43 - CFD: 01/10/2011 - 22:49:39 - [0,011] ----D C:\ProgramData\Atheros
O43 - CFD: 31/07/2011 - 21:45:34 - [0,000] ----D C:\ProgramData\Creative
O43 - CFD: 31/07/2011 - 21:45:37 - [0,006] ----D C:\ProgramData\Creative Labs
O43 - CFD: 02/01/2013 - 21:43:37 - [0,000] ----D C:\ProgramData\CyberLink
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 19/02/2011 - 18:03:57 - [18,924] ----D C:\ProgramData\Downloaded Installations
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 19/02/2011 - 18:10:32 - [0,000] ----D C:\ProgramData\FLEXnet
O43 - CFD: 15/10/2011 - 13:54:45 - [0] ----D C:\ProgramData\GoBoingo
O43 - CFD: 02/08/2011 - 14:22:10 - [0] ----D C:\ProgramData\Innovative Solutions
O43 - CFD: 05/07/2012 - 13:36:33 - [3,553] ----D C:\ProgramData\LogiShrd
O43 - CFD: 17/02/2011 - 22:58:17 - [0,003] ----D C:\ProgramData\Logitech
O43 - CFD: 21/04/2013 - 08:32:09 - [1,310] ----D C:\ProgramData\ma-config.com
O43 - CFD: 08/12/2010 - 22:37:23 - [0,225] ----D C:\ProgramData\Macrovision
O43 - CFD: 04/01/2013 - 13:19:06 - [17,497] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 30/12/2012 - 21:49:35 - [987,237] -S--D C:\ProgramData\Microsoft
O43 - CFD: 25/04/2012 - 08:42:44 - [0,019] ----D C:\ProgramData\Mozilla
O43 - CFD: 01/09/2012 - 15:34:00 - [0] ----D C:\ProgramData\Nuance
O43 - CFD: 15/09/2013 - 20:36:02 - [2,328] ----D C:\ProgramData\NVIDIA
O43 - CFD: 08/12/2010 - 22:25:10 - [2,112] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 08/12/2010 - 22:13:34 - [23,225] ----D C:\ProgramData\OberonGameConsole
O43 - CFD: 15/09/2013 - 14:05:52 - [0] ----D C:\ProgramData\Oracle
O43 - CFD: 21/10/2012 - 16:25:20 - [0,002] ----D C:\ProgramData\P4G
O43 - CFD: 08/09/2013 - 08:16:30 - [7,675] ----D C:\ProgramData\Samsung
O43 - CFD: 29/01/2011 - 16:23:55 - [2,168] ----D C:\ProgramData\SecTaskMan
O43 - CFD: 31/12/2012 - 23:58:24 - [0,001] ----D C:\ProgramData\Sonic
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 02/02/2011 - 14:17:51 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 09/07/2013 - 15:15:41 - [0,086] ---AD C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 27/01/2011 - 20:23:52 - [0,006] ----D C:\ProgramData\Trend Micro
O43 - CFD: 28/01/2011 - 22:19:32 - [0] ----D C:\ProgramData\VirtualizedApplications
O43 - CFD: 27/07/2011 - 23:14:53 - [0,002] ----D C:\ProgramData\Windows Genuine Advantage
O43 - CFD: 12/07/2011 - 16:06:58 - [2,454] ----D C:\Users\Administrateur\AppData\Roaming\Adobe
O43 - CFD: 20/06/2013 - 15:59:36 - [0] ----D C:\Users\Administrateur\AppData\Roaming\EurekaLab s.a.s
O43 - CFD: 19/02/2012 - 21:39:46 - [0] ----D C:\Users\Administrateur\AppData\Roaming\EurekaLog
O43 - CFD: 12/07/2011 - 16:05:13 - [0] ----D C:\Users\Administrateur\AppData\Roaming\Google
O43 - CFD: 18/06/2011 - 23:27:00 - [0] ----D C:\Users\Administrateur\AppData\Roaming\Identities
O43 - CFD: 04/08/2011 - 09:06:08 - [0] ----D C:\Users\Administrateur\AppData\Roaming\InstallShield
O43 - CFD: 04/08/2011 - 14:04:00 - [0,000] ----D C:\Users\Administrateur\AppData\Roaming\Leadertech
O43 - CFD: 05/07/2012 - 13:26:44 - [0,379] ----D C:\Users\Administrateur\AppData\Roaming\Logishrd
O43 - CFD: 04/08/2011 - 14:03:51 - [0] ----D C:\Users\Administrateur\AppData\Roaming\Logitech
O43 - CFD: 12/07/2011 - 16:11:58 - [0,000] ----D C:\Users\Administrateur\AppData\Roaming\Macromedia
O43 - CFD: 17/07/2011 - 08:54:15 - [8,427] ----D C:\Users\Administrateur\AppData\Roaming\Malwarebytes
O43 - CFD: 14/07/2009 - 09:44:38 - [0] ----D C:\Users\Administrateur\AppData\Roaming\Media Center Programs
O43 - CFD: 18/02/2013 - 22:42:33 - [1,034] -S--D C:\Users\Administrateur\AppData\Roaming\Microsoft
O43 - CFD: 09/11/2011 - 17:43:37 - [26,697] ----D C:\Users\Administrateur\AppData\Roaming\Mozilla
O43 - CFD: 31/12/2012 - 23:56:47 - [3,108] ----D C:\Users\Administrateur\AppData\Roaming\Roxio Log Files
O43 - CFD: 08/09/2013 - 08:08:44 - [0] ----D C:\Users\Administrateur\AppData\Roaming\Samsung
O43 - CFD: 08/01/2013 - 23:34:12 - [0,007] ----D C:\Users\Administrateur\AppData\Roaming\URSoft
O43 - CFD: 01/09/2013 - 08:16:58 - [0,077] ----D C:\Users\Administrateur\AppData\Roaming\vlc
O43 - CFD: 14/09/2013 - 14:24:14 - [0,182] ----D C:\Users\Administrateur\AppData\Roaming\Wise Registry Cleaner
O43 - CFD: 04/06/2013 - 08:37:10 - [0,038] ----D C:\Users\Administrateur\AppData\Roaming\XnView
O43 - CFD: 12/07/2011 - 16:24:47 - [0,001] ----D C:\Users\Administrateur\AppData\Roaming\Zeon
O43 - CFD: 13/07/2013 - 16:31:23 - [0] ----D C:\Users\Administrateur\AppData\Local\Adobe
O43 - CFD: 18/06/2011 - 23:26:38 - [0] ----D C:\Users\Administrateur\AppData\Local\Application Data
O43 - CFD: 31/10/2012 - 09:37:31 - [35,986] ----D C:\Users\Administrateur\AppData\Local\DIGINEXT
O43 - CFD: 08/09/2013 - 08:40:50 - [321,665] ----D C:\Users\Administrateur\AppData\Local\Downloaded Installations
O43 - CFD: 12/09/2013 - 14:55:50 - [1,874] ----D C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics
O43 - CFD: 14/07/2011 - 23:51:51 - [0,000] ----D C:\Users\Administrateur\AppData\Local\Eraser 6
O43 - CFD: 09/06/2013 - 17:23:23 - [0] ----D C:\Users\Administrateur\AppData\Local\Google
O43 - CFD: 18/06/2011 - 23:26:38 - [0] ----D C:\Users\Administrateur\AppData\Local\Historique
O43 - CFD: 02/08/2011 - 14:22:10 - [148,446] ----D C:\Users\Administrateur\AppData\Local\Innovative Solutions
O43 - CFD: 04/08/2011 - 14:03:51 - [0] ----D C:\Users\Administrateur\AppData\Local\Logishrd
O43 - CFD: 31/10/2012 - 10:09:28 - [0] ----D C:\Users\Administrateur\AppData\Local\Macromedia
O43 - CFD: 31/10/2012 - 10:09:28 - [190,769] ----D C:\Users\Administrateur\AppData\Local\Microsoft
O43 - CFD: 01/10/2012 - 09:06:38 - [0] ----D C:\Users\Administrateur\AppData\Local\MigWiz
O43 - CFD: 21/10/2012 - 16:24:52 - [40,683] ----D C:\Users\Administrateur\AppData\Local\Mozilla
O43 - CFD: 04/01/2013 - 13:04:57 - [0] ----D C:\Users\Administrateur\AppData\Local\Programs
O43 - CFD: 01/10/2011 - 20:49:15 - [552,714] ----D C:\Users\Administrateur\AppData\Local\SlimWare Utilities Inc
O43 - CFD: 19/04/2013 - 14:44:24 - [0,000] ----D C:\Users\Administrateur\AppData\Local\STDUViewer
O43 - CFD: 15/09/2013 - 18:13:45 - [18,482] ----D C:\Users\Administrateur\AppData\Local\Temp
O43 - CFD: 18/06/2011 - 23:26:38 - [0] ----D C:\Users\Administrateur\AppData\Local\Temporary Internet Files
O43 - CFD: 05/08/2011 - 22:38:32 - [0,014] R---D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 11/09/2013 - 09:28:42 - [0,000] R---D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 07/09/2013 - 13:26:53 - [0,004] ----D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
O43 - CFD: 05/08/2011 - 22:38:32 - [0,001] R---D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 09/07/2013 - 14:20:28 - [0,005] ----D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
O43 - CFD: 11/09/2013 - 09:28:42 - [0,000] R---D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 30/05/2013 - 17:56:05 - [0,003] ----D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
~ Program Folder: 162 Scanned in 00mn 10s



---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.97BA6B99BA3B01E8F215BEC5876496C7] - 15/09/2013 - 19:39:17 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1831035]
O44 - LFC:[MD5.80A65C0A7B55981E3B2C32662184E589] - 15/09/2013 - 19:36:02 ---A- . (...) -- C:\Windows\setupact.log [728]
O44 - LFC:[MD5.1E139C4C6114F6489D39AF83F5847417] - 15/09/2013 - 19:36:01 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.18A7174B57DB7BB5DFE93D9A4BC8EA65] - 15/09/2013 - 19:00:50 ---A- . (...) -- C:\Windows\ntbtlog.txt [318360]
O44 - LFC:[MD5.AE5594689486ACF8FA97401C6337752C] - 15/09/2013 - 17:33:44 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512]
O44 - LFC:[MD5.AC78D13F4894F77CBAA4C816707547AF] - 15/09/2013 - 10:38:36 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1550056]
O44 - LFC:[MD5.87008EC66622CF9AB841C7A5F83896FB] - 15/09/2013 - 10:38:36 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [106650]
O44 - LFC:[MD5.EDEFFADEC3896B42D5005E4BE48434A3] - 15/09/2013 - 10:38:36 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [131016]
O44 - LFC:[MD5.3D774DD47FFC493B7ACB77B7F09DEE61] - 15/09/2013 - 10:38:36 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [616270]
O44 - LFC:[MD5.A2ED659EDEA989497B90CD3F92AE20BB] - 15/09/2013 - 10:38:36 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [704742]
O44 - LFC:[MD5.AC78D13F4894F77CBAA4C816707547AF] - 15/09/2013 - 10:38:36 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1550056]
O44 - LFC:[MD5.87008EC66622CF9AB841C7A5F83896FB] - 15/09/2013 - 10:38:36 RSHAD . (...) -- C:\Windows\System32\perfc009.dat [106650]
O44 - LFC:[MD5.EDEFFADEC3896B42D5005E4BE48434A3] - 15/09/2013 - 10:38:36 RSHAD . (...) -- C:\Windows\System32\perfc00C.dat [131016]
O44 - LFC:[MD5.3D774DD47FFC493B7ACB77B7F09DEE61] - 15/09/2013 - 10:38:36 RSHAD . (...) -- C:\Windows\System32\perfh009.dat [616270]
O44 - LFC:[MD5.A2ED659EDEA989497B90CD3F92AE20BB] - 15/09/2013 - 10:38:36 RSHAD . (...) -- C:\Windows\System32\perfh00C.dat [704742]
O44 - LFC:[MD5.7216C804372FD0AD6C05F92FD5406A7F] - 15/09/2013 - 06:57:25 ---A- . (...) -- C:\Windows\PFRO.log [344]
O44 - LFC:[MD5.6BCAF46E2B7FA9ACE92B4D39F3037C5C] - 14/09/2013 - 14:49:55 ---A- . (...) -- C:\Windows\SysNative\acovcnt.exe [45056]
O44 - LFC:[MD5.6BCAF46E2B7FA9ACE92B4D39F3037C5C] - 14/09/2013 - 14:49:55 RSHAD . (...) -- C:\Windows\System32\acovcnt.exe [45056]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 14/09/2013 - 14:44:00 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 13/09/2013 - 18:21:00 ---A- . (...) -- C:\autoexec.bat [0]
O44 - LFC:[MD5.6D18F67D3B92AD7D6205333A5E454A8A] - 10/09/2013 - 19:28:29 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [317808]
O44 - LFC:[MD5.6D18F67D3B92AD7D6205333A5E454A8A] - 10/09/2013 - 19:28:29 RSHAD . (...) -- C:\Windows\System32\FNTCACHE.DAT [317808]
O44 - LFC:[MD5.C7ECEFD495A679284D0E9BC069F96246] - 10/09/2013 - 19:15:43 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\SysNative\MRT.exe [79143768]
O44 - LFC:[MD5.C7ECEFD495A679284D0E9BC069F96246] - 10/09/2013 - 19:15:43 RSHAD . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe [79143768]
O44 - LFC:[MD5.AD662B34B161198B9D66A564EDDA7D43] - 10/09/2013 - 19:13:01 ---A- . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\SysNative\shell32.dll [14172672]
O44 - LFC:[MD5.AD662B34B161198B9D66A564EDDA7D43] - 10/09/2013 - 19:13:01 ---A- . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll [14172672]
O44 - LFC:[MD5.23B001185B7C3CB1F4BDEB143E6B45B7] - 10/09/2013 - 19:12:59 ---A- . (.Microsoft Corporation - Biblioth�que d�objets et de contr�les de do.) -- C:\Windows\SysNative\shdocvw.dll [197120]
O44 - LFC:[MD5.23B001185B7C3CB1F4BDEB143E6B45B7] - 10/09/2013 - 19:12:59 ---A- . (.Microsoft Corporation - Biblioth�que d�objets et de contr�les de do.) -- C:\Windows\System32\shdocvw.dll [197120]
O44 - LFC:[MD5.059F00DEF82BF41E433B7ED465847726] - 10/09/2013 - 19:12:54 RSHAD . (.Microsoft Corporation - ATAPI Driver Extension.) -- C:\Windows\System32\Drivers\ataport.sys [155584]
O44 - LFC:[MD5.42A88ECF903BFE11411D188DCE830E84] - 10/09/2013 - 19:12:25 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\SysNative\win32k.sys [3155456]
O44 - LFC:[MD5.42A88ECF903BFE11411D188DCE830E84] - 10/09/2013 - 19:12:25 RSHAD . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [3155456]
~ Files: 31 Scanned in 00mn 22s



---\\ Derniers fichiers cr��s dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 13/03/2139 - 12:40:39 - C:\Windows\Prefetch\ReadyBoot
O45 - LFCP:[MD5.1CA3FCB42F34BCB4B7353B297C1F7452] - 15/09/2013 - 11:19:15 ---A- - C:\Windows\Prefetch\TASKMGR.EXE-72398DC0.pf
O45 - LFCP:[MD5.D48A5ECB5DFC87A7DC5816BD055C06F1] - 15/09/2013 - 11:20:10 ---A- - C:\Windows\Prefetch\UNINS000.EXE-64B8CD10.pf
O45 - LFCP:[MD5.26645D4DBA7E42BC8E058703270F6AD9] - 15/09/2013 - 11:20:13 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-AAD0E997.pf
O45 - LFCP:[MD5.85AD21F6CCBE797D8AE6762BA738E52D] - 15/09/2013 - 11:24:41 ---A- - C:\Windows\Prefetch\ZHPDIAG2(1).TMP-2B5413F4.pf
O45 - LFCP:[MD5.961478CB9CC45E7DBBDE52E93D8A2528] - 15/09/2013 - 11:24:49 ---A- - C:\Windows\Prefetch\ZHPDIAG2(1).TMP-0475D861.pf
O45 - LFCP:[MD5.4709F949E20B962ED94105B5CB496763] - 15/09/2013 - 11:26:21 ---A- - C:\Windows\Prefetch\ZHPDIAG2(1).TMP-9F988A68.pf
O45 - LFCP:[MD5.43A89DB28462BBF6B232249C70C977D5] - 15/09/2013 - 11:26:29 ---A- - C:\Windows\Prefetch\ZHPDIAG2(1).TMP-434B0C6B.pf
O45 - LFCP:[MD5.42A36CA6580849E449E5218A2C890AA9] - 15/09/2013 - 11:29:33 ---A- - C:\Windows\Prefetch\DISMHOST.EXE-7C7F58CD.pf
O45 - LFCP:[MD5.B7EDABCA593AF047C33D186979FACF1C] - 15/09/2013 - 11:30:53 ---A- - C:\Windows\Prefetch\DISMHOST.EXE-B4E7A329.pf
O45 - LFCP:[MD5.C21534406C087F6693124ED64D193B17] - 15/09/2013 - 11:31:15 ---A- - C:\Windows\Prefetch\CCLEANER64.EXE-AACDD30D.pf =>Piriform Ltd
O45 - LFCP:[MD5.AFDBC585B1FA2AFF5D47C8231D0F6B1B] - 15/09/2013 - 11:32:00 ---A- - C:\Windows\Prefetch\ZHPDIAG2(1).TMP-B74B5D87.pf
O45 - LFCP:[MD5.157B86697138B1E06C0EB19AF52B4E8B] - 15/09/2013 - 11:32:08 ---A- - C:\Windows\Prefetch\ZHPDIAG2(1).EXE-3A7A0743.pf
O45 - LFCP:[MD5.88B7F2100CC56977715B93EBC263D5EE] - 15/09/2013 - 11:32:08 ---A- - C:\Windows\Prefetch\ZHPDIAG2(1).TMP-3F558180.pf
O45 - LFCP:[MD5.8EB77871F3F9CBCC08909C8B57D6B229] - 15/09/2013 - 11:54:30 ---A- - C:\Windows\Prefetch\CLEANMGR.EXE-B508FB28.pf
O45 - LFCP:[MD5.29C66FEA9DAA6DC240E77AB89B9B78BA] - 15/09/2013 - 12:12:00 ---A- - C:\Windows\Prefetch\SNDVOL.EXE-783DCB11.pf
O45 - LFCP:[MD5.92EB8A4A97A71C49BA659EC25EB2D8A1] - 15/09/2013 - 12:19:15 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-B5AFA339.pf
O45 - LFCP:[MD5.4BDB23CE68BFB6F6734BF0AA289B46F4] - 15/09/2013 - 12:20:19 ---A- - C:\Windows\Prefetch\JQS.EXE-C2929C09.pf
O45 - LFCP:[MD5.D6ECFE44D4100B479B52813C899FC5E6] - 15/09/2013 - 12:20:21 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-087B672F.pf
O45 - LFCP:[MD5.7121194CDE67BEE2D4BA77124A4F121A] - 15/09/2013 - 12:20:21 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-B7C6350B.pf
O45 - LFCP:[MD5.2A576B60939EE62441521EED9344774B] - 15/09/2013 - 12:21:00 ---A- - C:\Windows\Prefetch\UNPACK200.EXE-44FB799F.pf
O45 - LFCP:[MD5.0E425CCD6A1BFBE4698E9005BEB82345] - 15/09/2013 - 12:21:38 ---A- - C:\Windows\Prefetch\JAUREG.EXE-439CCDE9.pf
O45 - LFCP:[MD5.CAA7E2CDC266BA88F0DF6260931CB446] - 15/09/2013 - 12:21:38 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-F3744DFD.pf
O45 - LFCP:[MD5.9163F1BA050C37A7123A6F74A9471450] - 15/09/2013 - 12:34:26 ---A- - C:\Windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.2BDBA45A83EBD036754B90803753A88A] - 15/09/2013 - 12:44:35 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-F452D79D.pf
O45 - LFCP:[MD5.876ED2A0F3676DC134C50EBC43C795FC] - 15/09/2013 - 13:05:12 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx
O45 - LFCP:[MD5.3098C18287CF57C858BF94778D0A2C1E] - 15/09/2013 - 13:06:13 ---A- - C:\Windows\Prefetch\AgCx_SC1.db
O45 - LFCP:[MD5.41E415FC8ABD5E4E3DD552FA2B58E722] - 15/09/2013 - 13:08:14 ---A- - C:\Windows\Prefetch\JP2LAUNCHER.EXE-FF14BCF9.pf
O45 - LFCP:[MD5.D7ECE2DA64952BE78BCA82F3E0850550] - 15/09/2013 - 13:31:49 ---A- - C:\Windows\Prefetch\AD-R.EXE-386EB07D.pf
O45 - LFCP:[MD5.A37984059B955F0ECB6C04DA80A882F6] - 15/09/2013 - 13:32:58 ---A- - C:\Windows\Prefetch\AD-R.EXE-B4851240.pf
O45 - LFCP:[MD5.EB43FE67D36F1CD6E3FB2EBB4B52DA03] - 15/09/2013 - 13:33:08 ---A- - C:\Windows\Prefetch\MAIN.EXE-BBF1C2AF.pf
O45 - LFCP:[MD5.D20AFAF4512811363205ADE88A62CC3C] - 15/09/2013 - 13:37:33 ---A- - C:\Windows\Prefetch\ERUNT.EXE-13F1C62E.pf
O45 - LFCP:[MD5.1EE4E0794E8733F0AB41F0AA1F5CA1F1] - 15/09/2013 - 13:49:08 ---A- - C:\Windows\Prefetch\JAVA.EXE-648423CD.pf
O45 - LFCP:[MD5.8C76A7CEF444B75BAB7CCA9F732343FF] - 15/09/2013 - 13:56:01 ---A- - C:\Windows\Prefetch\ADWCLEANER.EXE-966EC627.pf
O45 - LFCP:[MD5.9636B28482530E192BB98FCC68F379FC] - 15/09/2013 - 13:56:32 ---A- - C:\Windows\Prefetch\KEYTOOL.EXE-58F8FFEE.pf
O45 - LFCP:[MD5.1A0B2499D5CBC13FFAFA62F6FC6FED1C] - 15/09/2013 - 13:56:38 ---A- - C:\Windows\Prefetch\CTFMON.EXE-79423C0A.pf
O45 - LFCP:[MD5.1A5E2F40729495019200BB9974E6C720] - 15/09/2013 - 13:58:18 ---A- - C:\Windows\Prefetch\REG.EXE-26976709.pf
O45 - LFCP:[MD5.42989EDD2C3EC86C59B1663962FFD41C] - 15/09/2013 - 14:01:25 ---A- - C:\Windows\Prefetch\AVBUGREPORT.EXE-94A72672.pf
O45 - LFCP:[MD5.7E50455012411747BB73F202678D8957] - 15/09/2013 - 14:01:27 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-4D8DA32A.pf
O45 - LFCP:[MD5.0202D2E90923992A478A1C3B081DFF58] - 15/09/2013 - 14:10:27 ---A- - C:\Windows\Prefetch\JAVAW.EXE-F222D1F8.pf
O45 - LFCP:[MD5.AE7159489BC4C3E8F8C48F19B034D77B] - 15/09/2013 - 14:10:27 ---A- - C:\Windows\Prefetch\JAVAWS.EXE-FA5D4BD7.pf
O45 - LFCP:[MD5.9D16743BF46DD6EDE0197A87229A2E84] - 15/09/2013 - 15:33:56 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-8FD92526.pf
O45 - LFCP:[MD5.BD02D3306AACB51C2320761F57BEF883] - 15/09/2013 - 15:33:56 ---A- - C:\Windows\Prefetch\VSSVC.EXE-04D079CC.pf
O45 - LFCP:[MD5.7B9D5F88CA73769E843FE794447036B1] - 15/09/2013 - 15:34:11 ---A- - C:\Windows\Prefetch\MPSYSCHK.EXE-D196764D.pf
O45 - LFCP:[MD5.1EB362067B59B84A08E1CD74AE32E1BF] - 15/09/2013 - 17:05:25 ---A- - C:\Windows\Prefetch\ATBROKER.EXE-FF58B71D.pf
O45 - LFCP:[MD5.DB82D1C223599D278DB9265590291BFC] - 15/09/2013 - 17:05:29 ---A- - C:\Windows\Prefetch\RUNONCE.EXE-21038459.pf
O45 - LFCP:[MD5.C2214F3318FE23BE062E22C3B0D1CF41] - 15/09/2013 - 17:05:35 ---A- - C:\Windows\Prefetch\DWM.EXE-AEABE78B.pf
O45 - LFCP:[MD5.A9F438459964191B65BA704A7056E4C5] - 15/09/2013 - 17:05:35 ---A- - C:\Windows\Prefetch\USERINIT.EXE-F39AB672.pf
O45 - LFCP:[MD5.35211F90301B00AEE41B7C9F3657124D] - 15/09/2013 - 17:05:39 ---A- - C:\Windows\Prefetch\STIKYNOT.EXE-7E5B28DC.pf
O45 - LFCP:[MD5.518548FFAF9EC04D6684C81CF09E8D9F] - 15/09/2013 - 17:05:40 ---A- - C:\Windows\Prefetch\AVASTUI.EXE-46A8ADB6.pf
O45 - LFCP:[MD5.BA3A11A6F5054FC81A224FB6323FD28A] - 15/09/2013 - 17:06:33 ---A- - C:\Windows\Prefetch\AgCx_SC4.db
O45 - LFCP:[MD5.68391D34670FB6E734F304C3A95477E8] - 15/09/2013 - 17:10:41 ---A- - C:\Windows\Prefetch\SC.EXE-BC6DAF49.pf
O45 - LFCP:[MD5.A630A3FFE0A90D2E24402BADFA48DD45] - 15/09/2013 - 17:11:10 ---A- - C:\Windows\Prefetch\ZHPHEP.EXE-454E8E1B.pf
O45 - LFCP:[MD5.EBAA93640BB89E6B5D045E15955C6228] - 15/09/2013 - 17:11:25 ---A- - C:\Windows\Prefetch\ZHPFIX.EXE-73C708CD.pf
O45 - LFCP:[MD5.92EC2CE6158A50EE8052494116ABE270] - 15/09/2013 - 17:13:45 ---A- - C:\Windows\Prefetch\REG.EXE-8826EE4D.pf
O45 - LFCP:[MD5.B0B3A784DD97D3C0B62E6A73801B5A0F] - 15/09/2013 - 17:13:45 ---A- - C:\Windows\Prefetch\REGEDIT.EXE-32FE412B.pf
O45 - LFCP:[MD5.C51344EFA08C42E4CB8FA0BC0DAC364D] - 15/09/2013 - 17:18:26 ---A- - C:\Windows\Prefetch\WERMGR.EXE-2A1BCBC7.pf
O45 - LFCP:[MD5.6A92B3AFA5D5EAC86E1CDE11034B02C5] - 15/09/2013 - 17:30:42 ---A- - C:\Windows\Prefetch\CMD.EXE-89305D47.pf
O45 - LFCP:[MD5.C96C880CA0D1AC27DCA08276BADDC5AE] - 15/09/2013 - 17:30:42 ---A- - C:\Windows\Prefetch\LADS.EXE-285CA86B.pf
O45 - LFCP:[MD5.A5CBD797A566C979F91C44D065733C35] - 15/09/2013 - 17:32:14 ---A- - C:\Windows\Prefetch\NSLOOKUP.EXE-5EFF254E.pf
O45 - LFCP:[MD5.6933E6F3FFFE68D3D01D95DBCD7C5B01] - 15/09/2013 - 17:33:44 ---A- - C:\Windows\Prefetch\MBRCHECK.EXE-99EACF92.pf
O45 - LFCP:[MD5.526A54798458702411CEC2298198AADB] - 15/09/2013 - 17:34:42 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-28E040DE.pf
O45 - LFCP:[MD5.D570C05974A19163197825ADEDD302F3] - 15/09/2013 - 17:40:48 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-FF915DF9.pf
O45 - LFCP:[MD5.DC3534190F671DE780D72C86BCC85B53] - 15/09/2013 - 18:22:35 ---A- - C:\Windows\Prefetch\REGEDIT.EXE-4748FE01.pf
O45 - LFCP:[MD5.2F7F74C17EB06027A78FDE3B79515983] - 15/09/2013 - 18:26:00 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-648FB068.pf
O45 - LFCP:[MD5.059CAB1D2A0519AF18B4CC2442603639] - 15/09/2013 - 18:26:10 ---A- - C:\Windows\Prefetch\TASKENG.EXE-5BAF290C.pf
O45 - LFCP:[MD5.48F925D1128219CC4C541BC8E5AF2688] - 15/09/2013 - 18:31:12 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-7A3328DA.pf
O45 - LFCP:[MD5.38C354EF253CE385260BFD533AC88692] - 15/09/2013 - 18:37:17 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-AFD98684.pf
O45 - LFCP:[MD5.3E72477A4C87B57ABECEA9B38B824A6F] - 15/09/2013 - 18:48:32 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.936FAECB8DC0D90349ED93157695CEB1] - 15/09/2013 - 18:48:33 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.D6C195F074B37D8C2F791E7CC9D9F5D2] - 15/09/2013 - 18:48:33 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.9C7EE86239BDCBD80702ABDAFD33DA39] - 15/09/2013 - 18:48:33 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.73833ABD3DF0E6CFA533A615988F04B6] - 15/09/2013 - 18:52:06 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-1BEE4A84.pf
O45 - LFCP:[MD5.DA1FBED175427EFB24FAB8821A65763A] - 15/09/2013 - 18:52:17 ---A- - C:\Windows\Prefetch\MAKECAB.EXE-21F14B27.pf
O45 - LFCP:[MD5.9FB6FE9C214669E7B101C21B83C2B8AD] - 15/09/2013 - 18:52:17 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-031B6478.pf
O45 - LFCP:[MD5.67EA07BAD2DF739B6812EA30B828C77D] - 15/09/2013 - 18:52:23 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.912A3D9BF819D26BB2D5D504C64957FD] - 15/09/2013 - 19:36:48 ---A- - C:\Windows\Prefetch\AVASTEMUPDATE.EXE-35CCFD11.pf
O45 - LFCP:[MD5.AC5807E7DC68E9042BAF2C6813DDFFB7] - 15/09/2013 - 19:36:48 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf
O45 - LFCP:[MD5.2DEE962E06F4FACB96D67F8C3FB291EB] - 15/09/2013 - 19:36:51 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-98B8E418.pf
O45 - LFCP:[MD5.0FF3866F0FB2CE853C01388622F23505] - 15/09/2013 - 19:36:56 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-71214090.pf
O45 - LFCP:[MD5.9845278444ADB3B944EB546AD8CF88DE] - 15/09/2013 - 19:36:56 ---A- - C:\Windows\Prefetch\JUSCHED.EXE-EBD2DB11.pf
O45 - LFCP:[MD5.BD4FD168C6F9D6D6A0FEE7E6646D4C1D] - 15/09/2013 - 19:37:02 ---A- - C:\Windows\Prefetch\NVTRAY.EXE-7D357916.pf
O45 - LFCP:[MD5.2566A08A54FA538984CB45BCC1BC3DF1] - 15/09/2013 - 19:37:28 ---A- - C:\Windows\Prefetch\AVAST.SETUP-78AEAC94.pf
O45 - LFCP:[MD5.739035CEEE52D2D0E16DD16D233C03F4] - 15/09/2013 - 19:37:42 ---A- - C:\Windows\Prefetch\FIREFOX.EXE-FBBD985A.pf
O45 - LFCP:[MD5.2DED29320C6418265A0D5D7416ECFE1C] - 15/09/2013 - 19:38:05 ---A- - C:\Windows\Prefetch\PLUGIN-CONTAINER.EXE-78000DE6.pf
O45 - LFCP:[MD5.49DC91B3A0AC0C7687CCBC254283D47D] - 15/09/2013 - 19:38:07 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-FAA88858.pf
O45 - LFCP:[MD5.69A6337622B025D75236D0163C372682] - 15/09/2013 - 19:38:08 ---A- - C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-41B177B8.pf
O45 - LFCP:[MD5.1F9E5F7580912B1DEA3F40BDF387DBBE] - 15/09/2013 - 19:38:08 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-98F0699A.pf
O45 - LFCP:[MD5.2BCE7DF332AF1C9B6DAA1F7417E6C833] - 15/09/2013 - 19:38:19 ---A- - C:\Windows\Prefetch\DAEMONU.EXE-80296017.pf
O45 - LFCP:[MD5.8995BD7B4A90186315567136CDCD23E3] - 15/09/2013 - 19:38:20 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-18D06B2E.pf
O45 - LFCP:[MD5.26DAC1411CA9F948B457511CC74BD98F] - 15/09/2013 - 19:38:20 ---A- - C:\Windows\Prefetch\TURBOBOOST.EXE-0553F587.pf
O45 - LFCP:[MD5.6099EB5DB43352D650292B515FB4D367] - 15/09/2013 - 19:39:10 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-43972D0F.pf
O45 - LFCP:[MD5.E15957F89C04E66B872E1B8C1FE23340] - 15/09/2013 - 19:39:26 ---A- - C:\Windows\Prefetch\WUAUCLT.EXE-830BCC14.pf
O45 - LFCP:[MD5.3A177B3F130DC20D2E1DBB87CA9515FC] - 15/09/2013 - 19:40:09 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-369DF1CD.pf
O45 - LFCP:[MD5.0C5393BC3C877F2F2D328BC5D265189C] - 15/09/2013 - 19:41:24 ---A- - C:\Windows\Prefetch\SDCLT.EXE-2D2C4DDD.pf
O45 - LFCP:[MD5.F04A945A84FC1C0B008EE5919CF9F789] - 15/09/2013 - 19:41:34 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-F59CA9BD.pf
O45 - LFCP:[MD5.B7D4C06FFEA911EA2A8E5BD17CF61C93] - 15/09/2013 - 19:44:07 ---A- - C:\Windows\Prefetch\CONHOST.EXE-3218E401.pf
O45 - LFCP:[MD5.03EE186747DCE1384AE9D61ABEF7D54E] - 15/09/2013 - 19:44:17 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-437C05A8.pf
O45 - LFCP:[MD5.88A54A0877AE058CFBA1C4EBA98F9A7B] - 15/09/2013 - 19:44:19 ---A- - C:\Windows\Prefetch\CONSENT.EXE-65F6206D.pf
O45 - LFCP:[MD5.38D3D7ED668A5121D38D176B7993021A] - 15/09/2013 - 19:44:19 ---A- - C:\Windows\Prefetch\ZHPHEP.EXE-B229EB6A.pf
O45 - LFCP:[MD5.CC09AFBB79D8FE096596456BD1EB0955] - 15/09/2013 - 19:44:20 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-D0D776AC.pf
O45 - LFCP:[MD5.716CCE30EC8235582C5DC1997A447F74] - 15/09/2013 - 19:44:24 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-893DDF55.pf
O45 - LFCP:[MD5.566287E8537F68A36DD0D5939D90FF61] - 15/09/2013 - 19:44:29 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-BBB8B3DE.pf
O45 - LFCP:[MD5.E138C8210A68F925FAF8E123E25F78CE] - 15/09/2013 - 19:44:31 ---A- - C:\Windows\Prefetch\ZHPDIAG.EXE-B005F0CA.pf
O45 - LFCP:[MD5.9772FA87B3DCE653F4F5009EECCC6D04] - 15/09/2013 - 19:44:32 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-74CFCB84.pf
O45 - LFCP:[MD5.C13AF13EB887B6526B48A62BFBC62CF7] - 15/09/2013 - 19:44:41 ---A- - C:\Windows\Prefetch\CMD.EXE-EABFE48B.pf
O45 - LFCP:[MD5.B1AC713DD06DA37AA2F4C10202D37EFC] - 15/09/2013 - 19:44:41 ---A- - C:\Windows\Prefetch\CSCRIPT.EXE-228E38AF.pf
O45 - LFCP:[MD5.29A9376448EDA810F9715EACC60898A7] - 15/09/2013 - 19:44:44 ---A- - C:\Windows\Prefetch\PV.EXE-62268375.pf
O45 - LFCP:[MD5.0CA86AC7E56872DA4C6713DA9B2EF8C8] - 15/09/2013 - 19:44:47 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-CBE91656.pf
O45 - LFCP:[MD5.C34D16976B5C537DBD7D22C78313FA43] - 15/09/2013 - 19:44:47 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-94D7CB13.pf
O45 - LFCP:[MD5.F55743AFA9F285924D579973A8542FAF] - 15/09/2013 - 19:44:53 ---A- - C:\Windows\Prefetch\SUBINACL.EXE-184DCE3C.pf
O45 - LFCP:[MD5.18584FC57B5F4DCE269CE998DF5245E5] - 15/09/2013 - 19:45:34 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-7E9C9BE3.pf
O45 - LFCP:[MD5.47C244987B32F59829E130EE8A3A1F40] - 15/09/2013 - 19:45:46 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-EB1B961A.pf
~ Prefetcher: 113 Scanned in 00mn 01s



---\\ D�ni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l��diteur de configuration de s�curit� Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de s�curit� Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll
~ LSA: 9 Scanned in 00mn 00s



---\\ Contr�le du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 13 Scanned in 00mn 00s



---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"wave5"="wdmaud.drv" . (...) -- C:\Windows\System32\wdmaud.drv
O52 - TDSD: \Drivers32\"midi5"="wdmaud.drv" . (...) -- C:\Windows\System32\wdmaud.drv
O52 - TDSD: \Drivers32\"mixer5"="wdmaud.drv" . (...) -- C:\Windows\System32\wdmaud.drv
O52 - TDSD: \Drivers32\"wave"="wdmaud.drv" . (...) -- C:\Windows\System32\wdmaud.drv
O52 - TDSD: \Drivers32\"midi"="wdmaud.drv" . (...) -- C:\Windows\System32\wdmaud.drv
O52 - TDSD: \Drivers32\"mixer"="wdmaud.drv" . (...) -- C:\Windows\System32\wdmaud.drv
O52 - TDSD: \Drivers32\"aux"="wdmaud.drv" . (...) -- C:\Windows\System32\wdmaud.drv
O52 - TDSD: \Drivers32\"wave4"="wdmaud.drv" . (...) -- C:\Windows\System32\wdmaud.drv
O52 - TDSD: \Drivers32\"midi4"="wdmaud.drv" . (...) -- C:\Windows\System32\wdmaud.drv
O52 - TDSD: \Drivers32\"mixer4"="wdmaud.drv" . (...) -- C:\Windows\System32\wdmaud.drv
O52 - TDSD: \Drivers32\"wave1"="wdmaud.drv" . (...) -- C:\Windows\System32\wdmaud.drv
O52 - TDSD: \Drivers32\"midi1"="wdmaud.drv" . (...) -- C:\Windows\System32\wdmaud.drv
O52 - TDSD: \Drivers32\"mixer1"="wdmaud.drv" . (...) -- C:\Windows\System32\wdmaud.drv
O52 - TDSD: \Drivers32\"wave2"="wdmaud.drv" . (...) -- C:\Windows\System32\wdmaud.drv
O52 - TDSD: \Drivers32\"midi2"="wdmaud.drv" . (...) -- C:\Windows\System32\wdmaud.drv
O52 - TDSD: \Drivers32\"mixer2"="wdmaud.drv" . (...) -- C:\Windows\System32\wdmaud.drv
O52 - TDSD: \Drivers32\"wave3"="wdmaud.drv" . (...) -- C:\Windows\System32\wdmaud.drv
O52 - TDSD: \Drivers32\"midi3"="wdmaud.drv" . (...) -- C:\Windows\System32\wdmaud.drv
O52 - TDSD: \Drivers32\"mixer3"="wdmaud.drv" . (...) -- C:\Windows\System32\wdmaud.drv
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"wdmaud.drv"="NVIDIA High Definition Audio Driver" . (...) -- C:\Windows\System32\wdmaud.drv
~ TDSD: 22 Scanned in 00mn 00s



---\\ Enum�ration des cl�s de registre StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\ASUS Screen Saver Protector [Key] . (.ASUS - AsScrPro.) -- C:\Windows\AsScrPro.exe
O53 - SMSR:HKLM\...\startupreg\ATKMEDIA [Key] . (.ASUS - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O53 - SMSR:HKLM\...\startupreg\ATKOSD2 [Key] . (.ASUS - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O53 - SMSR:HKLM\...\startupreg\Boingo Wi-Fi [Key] . (...) -- C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk (.not file.)
O53 - SMSR:HKLM\...\startupreg\CLMLServer [Key] . (...) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\CPMonitor [Key] . (...) -- C:\Program Files (x86)\Roxio\CinePlayer\5.0\CPMonitor.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\EvtMgr6 [Key] . (.Logitech, Inc. - Logitech SetPoint Event Manager (UNICODE).) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe
O53 - SMSR:HKLM\...\startupreg\HControlUser [Key] . (.ASUS - HControlUser.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O53 - SMSR:HKLM\...\startupreg\IAStorIcon [Key] . (...) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\ISUSPM [Key] . (...) -- C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\itype [Key] . (.Microsoft Corporation - IType.exe.) -- C:\Program Files\Microsoft IntelliType Pro\itype.exe
O53 - SMSR:HKLM\...\startupreg\KiesPreload [Key] . (.Samsung - Kies.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe
O53 - SMSR:HKLM\...\startupreg\KiesTrayAgent [Key] . (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O53 - SMSR:HKLM\...\startupreg\Logitech Download Assistant [Key] . (.Logitech, Inc. - Logitech Download Assistant.) -- C:\Windows\System32\LogiLDA.dll
O53 - SMSR:HKLM\...\startupreg\Nuance PDF Reader-reminder [Key] . (...) -- C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\pdiface [Key] . (...) -- C:\Program Files\Bitdefender\60-Second Virus Scanner\pdiface.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\RTHDVCPL [Key] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O53 - SMSR:HKLM\...\startupreg\SUPERAntiSpyware [Key] . (...) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Syncables [Key] . (...) -- C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\SynTPEnh [Key] . (...) -- C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\THX TruStudio NB Settings [Key] . (.Creative Technology Ltd - THXAudioNB.) -- C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe
O53 - SMSR:HKLM\...\startupreg\THXCfg64 [Key] . (.Creative Technology Ltd. - Pas de description.) -- C:\Windows\system32\THXCfg64.dll
O53 - SMSR:HKLM\...\startupreg\UpdateLBPShortCut [Key] . (...) -- C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\UpdateP2GoShortCut [Key] . (...) -- C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\UpdReg [Key] . (.Creative Technology Ltd. - Creative UpdReg.) -- C:\Windows\UpdReg.exe
O53 - SMSR:HKLM\...\startupreg\Wireless Console 3 [Key] . (.Pas de propri�taire - Wireless Console 3.) -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
~ SMSR Keys: 28 Scanned in 00mn 00s



---\\ Enum�ration des cl�s de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Enum�ration des cl�s de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "VerboseStatus"=1
O55 - MWPS:[HKCU\...\Policies\System] - "LogonHoursAction"=2
O55 - MWPS:[HKCU\...\Policies\System] - "DontDisplayLogonHoursWarnings"=1
~ MWPS: 19 Scanned in 00mn 00s



---\\ Enum�ration des cl�s de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=255
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=67108863
~ MWPE Keys: 6 Scanned in 00mn 00s



---\\ Liste des pilotes du syst�me (SDL) (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]
O58 - SDL:[MD5.DE8B9C3E0E09D918B394207F34AC16DD] - 07/03/2011 - 10:22:46 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\athrx.sys [2228736]
O58 - SDL:[MD5.DDEE99DC54EFA20BD5A442CD733C4462] - 05/02/2013 - 09:54:40 ---A- . (...) -- C:\Windows\SysWOW64\FsUsbExDisk.Sys [37344]
~ Drivers: 19 Scanned in 00mn 00s



---\\ Derniers fichiers modifi�s ou cr�es (Utilisateur) (O61)
O61 - LFC: 12/09/2013 - 13:55:50 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091212.000\AudioDiagnostic.0.debugreport.xml [9671]
O61 - LFC: 12/09/2013 - 13:55:50 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091212.000\DeviceDiagnostic.0.debugreport.xml [9586]
O61 - LFC: 12/09/2013 - 13:55:51 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091212.000\results.xsl [49097]
O61 - LFC: 12/09/2013 - 13:55:52 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091212.000\Registry log.reg [134934]
O61 - LFC: 12/09/2013 - 13:56:14 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091212.000\AudioDiagnostic.1.debugreport.xml [9346]
O61 - LFC: 12/09/2013 - 13:56:14 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091212.000\DeviceDiagnostic.1.debugreport.xml [8789]
O61 - LFC: 12/09/2013 - 13:56:14 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091212.000\ResultReport.xml [11039]
O61 - LFC: 12/09/2013 - 13:56:14 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091212.000\results.xml [321]
O61 - LFC: 12/09/2013 - 13:58:31 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091212.001\AudioDiagnostic.0.debugreport.xml [9669]
O61 - LFC: 12/09/2013 - 13:58:31 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091212.001\DeviceDiagnostic.0.debugreport.xml [9586]
O61 - LFC: 12/09/2013 - 13:58:31 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091212.001\results.xsl [49097]
O61 - LFC: 12/09/2013 - 13:58:32 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091212.001\Registry log.reg [134934]
O61 - LFC: 12/09/2013 - 13:58:53 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091212.001\AudioDiagnostic.1.debugreport.xml [9345]
O61 - LFC: 12/09/2013 - 13:58:53 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091212.001\DeviceDiagnostic.1.debugreport.xml [8789]
O61 - LFC: 12/09/2013 - 13:58:54 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091212.001\ResultReport.xml [11039]
O61 - LFC: 12/09/2013 - 13:58:54 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091212.001\results.xml [321]
O61 - LFC: 12/09/2013 - 14:05:46 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091213.000\AudioDiagnostic.0.debugreport.xml [9668]
O61 - LFC: 12/09/2013 - 14:05:46 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091213.000\DeviceDiagnostic.0.debugreport.xml [9586]
O61 - LFC: 12/09/2013 - 14:05:47 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091213.000\results.xsl [49097]
O61 - LFC: 12/09/2013 - 14:05:48 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091213.000\Registry log.reg [134934]
O61 - LFC: 12/09/2013 - 14:09:08 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091213.000\AudioDiagnostic.1.debugreport.xml [9345]
O61 - LFC: 12/09/2013 - 14:09:08 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091213.000\DeviceDiagnostic.1.debugreport.xml [8790]
O61 - LFC: 12/09/2013 - 14:09:08 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091213.000\ResultReport.xml [11039]
O61 - LFC: 12/09/2013 - 14:09:08 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091213.000\results.xml [321]
O61 - LFC: 12/09/2013 - 14:15:29 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091213.001\AudioDiagnostic.0.debugreport.xml [9668]
O61 - LFC: 12/09/2013 - 14:15:29 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091213.001\DeviceDiagnostic.0.debugreport.xml [9586]
O61 - LFC: 12/09/2013 - 14:15:30 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091213.001\Registry log.reg [134934]
O61 - LFC: 12/09/2013 - 14:15:30 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091213.001\results.xsl [49097]
O61 - LFC: 12/09/2013 - 14:15:38 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091213.001\AudioDiagnostic.1.debugreport.xml [9345]
O61 - LFC: 12/09/2013 - 14:15:38 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091213.001\DeviceDiagnostic.1.debugreport.xml [8789]
O61 - LFC: 12/09/2013 - 14:15:39 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091213.001\ResultReport.xml [11039]
O61 - LFC: 12/09/2013 - 14:15:39 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\2013091213.001\results.xml [321]
O61 - LFC: 12/09/2013 - 14:15:39 ---A- . (...) -- C:\Users\Administrateur\AppData\Local\ElevatedDiagnostics\2550435360\latest.cab [23191]
O61 - LFC: 13/09/2013 - 16:59:34 R--A- . (.Enigma Software Group USA, LLC.) -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Installer\{86CA3695-A412-4BAE-92B6-49A60C2AC663}\WIS86CA3695A4124BAE92B649A60C2AC663_4_15_1_4270.MST [61440]
O61 - LFC: 13/09/2013 - 18:07:24 R--A- . (...) -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Installer\{86CA3695-A412-4BAE-92B6-49A60C2AC663}\Icon1226A4C5.exe [110080]
O61 - LFC: 13/09/2013 - 18:07:24 R--A- . (...) -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Installer\{86CA3695-A412-4BAE-92B6-49A60C2AC663}\IconD7F16134.exe [110080]
O61 - LFC: 13/09/2013 - 18:07:24 R--A- . (...) -- C:\Users\Administrateur\AppData\Roaming\Microsoft\Installer\{86CA3695-A412-4BAE-92B6-49A60C2AC663}\IconF7A21AF7.exe [110080]
O61 - LFC: 14/09/2013 - 12:53:59 ---A- . (...) -- C:\Users\Administrateur\AppData\Roaming\Wise Registry Cleaner\Ad\100538421.png [19695]
O61 - LFC: 14/09/2013 - 13:11:23 ---A- . (...) -- C:\Users\Administrateur\AppData\Roaming\Wise Registry Cleaner\Backup\2013-14-09 141123.reg [160399]
O61 - LFC: 14/09/2013 - 13:11:23 ---A- . (...) -- C:\Users\Administrateur\AppData\Roaming\Wise Registry Cleaner\Errorlog.txt [1598]
O61 - LFC: 14/09/2013 - 13:14:16 ---A- . (...) -- C:\Users\Administrateur\AppData\Roaming\Wise Registry Cleaner\Backup\2013-14-09 141416.reg [1010]
O61 - LFC: 14/09/2013 - 14:20:41 --HA- . (...) -- C:\Users\Administrateur\AppData\Local\IconCache.db [6701871]
O61 - LFC: 14/09/2013 - 14:41:56 ---A- . (...) -- C:\Users\Administrateur\Downloads\Windows6.1-KB947821-v28-x64.msu [25348060]
O61 - LFC: 14/09/2013 - 14:42:43 ---A- . (...) -- C:\Users\Administrateur\Documents\cc_20130914_154239.reg [3734]
O61 - LFC: 14/09/2013 - 15:09:04 ---A- . (...) -- C:\Users\Administrateur\AppData\Roaming\Wise Registry Cleaner\Ad\Ad.txt [735]
O61 - LFC: 14/09/2013 - 15:11:27 ---A- . (...) -- C:\Users\Administrateur\AppData\Roaming\Wise Registry Cleaner\Backup\2013-14-09 161127.reg [6461]
O61 - LFC: 14/09/2013 - 22:28:09 ---A- . (...) -- C:\Users\Administrateur\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\6168397779.data [751]
O61 - LFC: 14/09/2013 - 22:28:10 ---A- . (...) -- C:\Users\Administrateur\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2013-09-14 (22-33-01).txt [2360]
~ Files: 48 Scanned in 01mn 52s



---\\ Liste des outils de d�sinfection (LATC) (O63)
O63 - Logiciel: Ad-Remover par C_XX - (.C_XX.) [HKLM] -- Ad-Remover
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ ADS: Scanned in 00mn 00s



---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - 28/12/2011 - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - 03/07/2009 - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys (ASMMAP64) .(.ASUS - Memory mapping Driver.) - LEGACY_ASMMAP64
O64 - Services: CurCS - 30/08/2013 - C:\Windows\System32\Drivers\aswFsBlk.sys (aswFsBlk) .(.AVAST Software - avast! File System Access Blocking Driver.) - LEGACY_ASWFSBLK
O64 - Services: CurCS - 30/08/2013 - C:\Windows\system32\drivers\aswMonFlt.sys (aswMonFlt) .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT
O64 - Services: CurCS - 30/08/2013 - C:\Windows\system32\Drivers\aswrdr2.sys (aswRdr) .(.AVAST Software - avast! WFP Redirect Driver.) - LEGACY_ASWRDR
O64 - Services: CurCS - 30/08/2013 - Pas de propri�taire (aswRvrt) .(...) - LEGACY_ASWRVRT
O64 - Services: CurCS - 30/08/2013 - C:\Windows\System32\Drivers\aswSnx.sys (aswSnx) .(.AVAST Software - avast! Virtualization Driver.) - LEGACY_ASWSNX
O64 - Services: CurCS - 30/08/2013 - C:\Windows\System32\Drivers\aswSP.sys (aswSP) .(.AVAST Software - avast! self protection module.) - LEGACY_ASWSP
O64 - Services: CurCS - 30/08/2013 - C:\Windows\System32\Drivers\aswTdi.sys (aswTdi) .(.AVAST Software - avast! TDI Filter Driver.) - LEGACY_ASWTDI
O64 - Services: CurCS - 30/08/2013 - Pas de propri�taire (aswVmm) .(...) - LEGACY_ASWVMM
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\atapi.sys (atapi) .(.Microsoft Corporation - ATAPI IDE Miniport Driver.) - LEGACY_ATAPI
O64 - Services: CurCS - 12/04/2012 - C:\Windows\System32\DRIVERS\avisfltr.sys (avisfltr) .(.BitDefender - BitDefender AntiVirus FS filter driver.) - LEGACY_AVISFLTR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\Beep.sys (Beep) .(.Microsoft Corporation - BEEP Driver.) - LEGACY_BEEP
O64 - Services: CurCS - 04/07/2012 - C:\Windows\system32\browser.dll (bowser) .(.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) - LEGACY_BOWSER
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\cdfs.sys (cdfs) .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\clfs.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - 24/08/2012 - C:\Windows\System32\Drivers\cng.sys (CNG) .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\discache.sys (discache) .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE
O64 - Services: CurCS - 21/07/2011 - C:\Program Files\ma-config.com\Drivers\driverhardwarev2x64.sys (driverhardwarev2x64) .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2X64
O64 - Services: CurCS - 10/04/2013 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL
O64 - Services: CurCS - 02/03/2011 - Pas de propri�taire (esgiguard) .(...) - LEGACY_ESGIGUARD =>Crapware.SpyHunter
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\fastfat.sys (fastfat) .(.Microsoft Corporation - Fast FAT File System Driver.) - LEGACY_FASTFAT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\fileinfo.sys (FileInfo) .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\fltmgr.sys (FltMgr) .(.Microsoft Corporation - Gestionnaire de filtres de syst�me de fichi.) - LEGACY_FLTMGR
O64 - Services: CurCS - 24/01/2013 - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\http.sys (HTTP) .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY
O64 - Services: CurCS - 05/11/2010 - C:\Windows\System32\DRIVERS\iaStor.sys (iaStor) .(.Intel Corporation - Intel Rapid Storage Technology driver - x64.) - LEGACY_IASTOR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\irda.sys (irda) .(.Microsoft Corporation - IRDA Protocol Driver.) - LEGACY_IRDA
O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\ksecdd.sys (KSecDD) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD
O64 - Services: CurCS - 24/08/2012 - C:\Windows\System32\Drivers\ksecpkg.sys (KSecPkg) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\mountmgr.sys (mountmgr) .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb10) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\msisadrv.sys (msisadrv) .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\mup.sys (Mup) .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\nwifi.sys (NativeWifiP) .(.Microsoft Corporation - Pilote de miniport WiFi natif.) - LEGACY_NATIVEWIFIP
O64 - Services: CurCS - 22/08/2012 - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\DRIVERS\ndisuio.sys (Ndisuio) .(.Microsoft Corporation - Pilote d�E/S du mode utilisateur NDIS.) - LEGACY_NDISUIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\netbios.sys (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pciide.sys (pciide) .(.Microsoft Corporation - Generic PCI IDE Bus Driver.) - LEGACY_PCIIDE
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pcw.sys (pcw) .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\peauth.sys (PEAUTH) .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\pacer.sys (Psched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\rasacd.sys (RasAcd) .(.Microsoft Corporation - RAS Automatic Connection Driver.) - LEGACY_RASACD
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (rdbss) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\spldr.sys (spldr) .(.Microsoft Corporation - loader for security processor.) - LEGACY_SPLDR
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\srvsvc.dll (srv) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\srvsvc.dll (srv2) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2
O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du r�seau.) - LEGACY_TCPIP
O64 - Services: CurCS - 03/10/2012 - C:\Windows\System32\drivers\tcpipreg.sys (tcpipreg) .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du r�seau.) - LEGACY_TDX
O64 - Services: CurCS - 13/04/2012 - C:\Windows\System32\DRIVERS\TrufosAlt.sys (TrufosAlt) .(.BitDefender S.R.L. - Trufos Kernel Module.) - LEGACY_TRUFOSALT
O64 - Services: CurCS - 06/08/2009 - Pas de propri�taire (TurboB) .(...) - LEGACY_TURBOB
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\DRIVERS\udfs.sys (udfs) .(.Microsoft Corporation - UDF File System Driver.) - LEGACY_UDFS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\vga.sys (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\volmgrx.sys (volmgrx) .(.Microsoft Corporation - Pilote d�extension du gestionnaire de volum.) - LEGACY_VOLMGRX
O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\volsnap.sys (volsnap) .(.Microsoft Corporation - Pilote de clich� instantan� du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\vwififlt.sys (vwififlt) .(.Microsoft Corporation - Virtual WiFi Filter Driver.) - LEGACY_VWIFIFLT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6
O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\Wdf01000.sys (Wdf01000) .(.Microsoft Corporation - Runtime de l�infrastructure de pilotes en m.) - LEGACY_WDF01000
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\wfplwf.sys (WfpLwf) .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF
O64 - Services: CurCS - 24/05/2008 - C:\Windows\System32\DRIVERS\wimfltr.sys (WimFltr) .(.Microsoft Corporation - Windows Image File Mini-Filter Driver.) - LEGACY_WIMFLTR
O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\WudfPf.sys (WudfPf) .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF
~ Legacy: 94 Scanned in 00mn 09s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> [HKCR\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKCR\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
~ FASS Keys: 19 Scanned in 00mn 00s



---\\ Menu de d�marrage Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (@ieframe.dll,-12512) - http://search.live.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Goo) - http://www.google.com
~ Keys: Scanned in 00mn 00s



---\\ Enum�re les service demarr�s par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Exp�rience d�application.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de strat�gie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [853504]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [679424]
O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Moniteur infrarouge.) -- C:\Windows\System32\irmon.dll [23552]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de num�rotation automatique d�acc�s distant.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d�acc�s distant.) -- C:\Windows\System32\rasmans.dll [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d�interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d��v�nements syst�me (SENS).) -- C:\Windows\System32\sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l�application d�assistance � Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de t�l�phonie Microsoft� Windows(TM).) -- C:\Windows\System32\tapisrv.dll [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur h�te de session Burea.) -- C:\Windows\System32\termsrv.dll [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise � jour automatique Windows Update.) -- C:\Windows\system32\wuaueng.dll [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arri�re-plan.) -- C:\Windows\System32\qmgr.dll [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivit� IPv6 sur un r�seau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d�ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d�application.) -- C:\Windows\System32\appinfo.dll [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de d�couverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multim�dias.) -- C:\Windows\System32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau � distance.) -- C:\Windows\System32\sessenv.dll [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) -- C:\Windows\System32\browser.dll [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de t�ches.) -- C:\Windows\System32\schedsvc.dll [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des cl�s.) -- C:\Windows\System32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux probl�mes.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des th�mes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]
~ Services: 33 Scanned in 00mn 00s



---\\ Recherche particuli�re � la racine du syst�me (SPRF) (O84)
[MD5.2644BF43F444ADA6F2E24DB6DE6A4186] [SPRF][07/09/2013] (...) -- C:\Users\Administrateur\Desktop\Kies.reg [284525050]
[MD5.B4E7259A38BD139EC75BE4B413E69C9D] [SPRF][02/06/2013] (...) -- C:\Users\Administrateur\Desktop\LibreOffice.reg [242647970]
[MD5.9D214FE3A4C05F61E87A33348A530AC9] [SPRF][29/08/2013] (...) -- C:\Users\Administrateur\Desktop\ordinateur g�rer.reg [291119208]
~ Files: 3 Scanned in 00mn 14s



---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "TCP Query User{CE50C1EA-60D5-428D-926A-F301FF37B4D0}C:\windows\system32\mmc.exe" | In - Private - P6 - FALSE | .(.Microsoft Corporation - Microsoft Management Console.) -- C:\windows\system32\mmc.exe
O87 - FAEL: "UDP Query User{278AB6D9-198E-4599-A6EE-F84A3FB9F30E}C:\windows\system32\mmc.exe" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Microsoft Management Console.) -- C:\windows\system32\mmc.exe
O87 - FAEL: "TCP Query User{03ABF12F-8B7A-46BC-9984-47543872B022}C:\program files (x86)\mozilla firefox\plugin-container.exe" | In - Private - P6 - FALSE | .(.Mozilla Corporation.) -- C:\program files (x86)\mozilla firefox\plugin-container.exe
O87 - FAEL: "UDP Query User{7AC008D0-6A7D-4430-9C9D-A8C869D4507B}C:\program files (x86)\mozilla firefox\plugin-container.exe" | In - Private - P17 - FALSE | .(.Mozilla Corporation.) -- C:\program files (x86)\mozilla firefox\plugin-container.exe
O87 - FAEL: "RemoteDesktop-UserMode-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{547C77DC-777C-4948-A3E6-51D7CA2AC054}" | In - Private - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA 3D Vision Photo Viewer.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstview.exe
O87 - FAEL: "{3F4C2033-24AC-4ACD-BF10-C8BB432D808C}" | In - Private - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA 3D Vision Photo Viewer.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstview.exe
O87 - FAEL: "{4D457AFF-FB25-4CCE-9450-04A44B57C935}" | In - Domain - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA 3D Vision Photo Viewer.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstview.exe
O87 - FAEL: "{62C003F5-ED8F-4BF1-BD02-E9A4D05AFA8D}" | In - Domain - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA 3D Vision Photo Viewer.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstview.exe
O87 - FAEL: "{3FDE5CA1-C9D6-4803-9E16-31034F7B1D47}" | In - Private - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{23435E34-1937-4355-BCAE-0805BF357DF9}" | In - Private - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{B5635109-E33E-42D7-AFA7-15D0F99080A3}" | In - Private - P6 - TRUE | .(.CybelSoft - Service de d�tection mat�riel.) -- C:\Program Files\ma-config.com\MaConfigAgent.exe
O87 - FAEL: "{D0C57BC7-8408-42FB-B10B-5A1426580F34}" | In - Private - P17 - TRUE | .(.CybelSoft - Service de d�tection mat�riel.) -- C:\Program Files\ma-config.com\MaConfigAgent.exe
O87 - FAEL: "{10140D22-7391-4E28-BE36-5D7535361547}" | In - Private - P6 - TRUE | .(.Musiccity Co.Ltd. - MUZAoDApp Module.) -- C:\Windows\SysWOW64\muzapp.exe
O87 - FAEL: "{1711323B-BC57-4A8A-B8D3-8629D316DA24}" | In - Private - P17 - TRUE | .(.Musiccity Co.Ltd. - MUZAoDApp Module.) -- C:\Windows\SysWOW64\muzapp.exe
~ Firewall: 15 Scanned in 00mn 00s



---\\ Enum�re les codes produits des logiciels (PUC) (O90)
O90 - PUC: "047163973EAE2E1199118BCAF689CC3E" . (.Google Earth Plug-in.) -- C:\Windows\Installer\{79361740-EAE3-11E2-9911-B8AC6F98CCE3}\ARPPRODUCTICON.exe
O90 - PUC: "1038C85769625584FA5435B4210089A0" . (.Samsung Kies.) -- C:\Windows\Installer\{758C8301-2696-4855-AF45-534B1200980A}\ARPPRODUCTICON.exe
O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
O90 - PUC: "20B58560D02F2BA4A94668FEA20E8F0F" . (.ASUS AI Recovery.) -- C:\Windows\Installer\{06585B02-F20D-4AB2-9A64-86EF2AE0F8F0}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "21F1DBD139DE0C947ACC65BCED841885" . (.ASUS LifeFrame3.) -- C:\Windows\Installer\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "2C4142A29E66212439B175FF1B4C6146" . (.Module compl�mentaire de navigateur pour la d�sactivation de Google�Analytics.) -- C:\Windows\Installer\{2A2414C2-66E9-4212-931B-57FFB1C41664}\google.ico
O90 - PUC: "3EC27CAE84DB75F48B335FF52276DA4D" . (.Ma-Config.com (64 bits).) -- C:\Windows\Installer\{EAC72CE3-BD48-4F57-B833-F55F2267ADD4}\maconfico
O90 - PUC: "3F7A4F31CBAE1624FAB6317177F77055" . (.Fast Boot.) -- C:\Windows\Installer\{13F4A7F3-EABC-4261-AF6B-1317777F0755}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "46FE56B5AFD1A414C849B77B6251E812" . (.ControlDeck.) -- C:\Windows\Installer\{5B65EF64-1DFA-414A-8C94-7BB726158E21}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "4A94D9E94FD183147BBDD5788A3980E8" . (.WIDCOMM Bluetooth Software.) -- C:\Windows\Installer\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}\ARPPRODUCTICON.exe
O90 - PUC: "7C43C21609E58D74B9C5F017D78D7262" . (.swMSM.) -- C:\Windows\Installer\{612C34C7-5E90-47D8-9B5C-0F717DD82726}\ARPPRODUCTICON.exe
O90 - PUC: "80DED9948AF69474E8495862CCD9C18A" . (.ExpressGate Cloud.) -- C:\Windows\Installer\{499DED08-6FA8-4749-8E94-8526CC9D1CA8}\ARPPRODUCTICON.exe
O90 - PUC: "849FDF02DE8C34545A937F4FEA5FFA2A" . (.Wireless Console 3.) -- C:\Windows\Installer\{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}\_294823.exe
O90 - PUC: "8DABB896611BD5948B97F0705A335EF7" . (.Samsung Story Album Viewer.) -- C:\Windows\Installer\{698BBAD8-B116-495D-B879-0F07A533E57F}\ARPPRODUCTICON.exe
O90 - PUC: "9F6C4F93A816B5E4F82BB66D1671E423" . (.Intel(R) Turbo Boost Technology Monitor.) -- C:\Windows\Installer\{39F4C6F9-618A-4E5B-8FB2-6BD661174E32}\ARPPRODUCTICON.exe
O90 - PUC: "BCDE9128A5EC84340B65AA0CEFE4990D" . (.Microsoft IntelliType Pro 8.2.) -- C:\Windows\Installer\{8219EDCB-CE5A-4348-B056-AAC0FE4E99D0}\Keyboard.ico
O90 - PUC: "BE9D894AB729B954586DDDE68F2C5C46" . (.erLT.) -- C:\Windows\Installer\{A498D9EB-927B-459B-85D6-DD6EF8C2C564}\ARPPRODUCTICON.exe
O90 - PUC: "C1443C80FAF43D845A1507DD061337F4" . (.Microsoft Baseline Security Analyzer 2.2.) -- C:\Windows\Installer\{08C3441C-4FAF-48D3-A551-70DD6031734F}\mbsa.exe
O90 - PUC: "E19212F84440D1B49B9F34077AE343D6" . (.WinFlash.) -- C:\Windows\Installer\{8F21291E-0444-4B1D-B9F9-4370A73E346D}\MyIcon
O90 - PUC: "E339C5BAD7C503D43B41C9384AB949EB" . (.ATK Package.) -- C:\Windows\Installer\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}\_294823.exe
O90 - PUC: "FB9326B958E40954D827153ED01B9AAA" . (.ASUS Power4Gear Hybrid.) -- C:\Windows\Installer\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}\_6FEFF9B68218417F98F549.exe
~ Update Products: 58 Scanned in 00mn 00s



---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.2555742CCF9F59FA9FD3995A18CFFEA1] [WIS][11/03/2010] (.Broadcom Corp. - WIDCOMM Bluetooth Profile Pack.) -- C:\Windows\Installer\13e3d.msi [4917888]
[MD5.9C572F63681C3198922B81D63FDD130F] [WIS][08/12/2010] (.Intel - Intel(R) Turbo Boost Technology Monitor.) -- C:\Windows\Installer\13e4b.msi [8988160]
[MD5.582F000138FF0A52A9927E23ACF222C6] [WIS][17/02/2011] (.Fresco Logic Inc. - Fresco Logic USB3.0 Host Controller.) -- C:\Windows\Installer\5ed839.msi [3405824]
[MD5.BC1820D326CC73152876A4B6A591CFB8] [WIS][22/08/2013] (.Google Inc. - Indique au fichier Javascript Google�Analytics (ga.js) de ne pa.) -- C:\Windows\Installer\b927fb.msi [208896]
~ WIS: 94 Scanned in 01mn 34s



---\\ Etat g�n�ral des services not Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Auto 13/09/2013 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Disabled 22/06/2010 379520 | (AFBAgent) . (.ASUSTeK Computer Inc..) - C:\Windows\system32\FBAgent.exe
SS - | Disabled 16/06/2009 84536 | (ASLDRService) . (.ASUS.) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
SS - | Disabled 15/12/2009 96896 | (ATKGFNEXSrv) . (.ASUS.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
SR - | Auto 30/08/2013 46808 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
SS - | Disabled 12/03/2010 873248 | (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
SS - | Demand 08/12/2010 79360 | (Creative ALchemy AL6 Licensing Service) . (.Creative Labs.) - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
SS - | Demand 08/12/2010 79360 | (Creative Audio Engine Licensing Service) . (.Creative Labs.) - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
SS - | Disabled 22/12/2011 136176 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Disabled 22/12/2011 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Disabled 27/09/2011 359192 | (LBTServ) . (.Logitech, Inc..) - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
SS - | Disabled 19/04/2013 1141120 | (MaConfigAgent) . (.CybelSoft.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
SS - | Demand 14/08/2013 117656 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 14/03/2013 884512 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - | Auto 08/04/2013 1260320 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SR - | Auto 14/03/2013 383264 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SR - | Auto 06/08/2009 118672 | (TurboBoost) . (.Intel(R) Corporation.) - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 01mn 37s



---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Run by Administrateur at 15/09/2013 20:50:53
~ OS 64 not supported by MBR tool
~ MBR: 0 Scanned in 00mn 00s



---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Administrateur at 15/09/2013 20:50:55

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 02s



---\\ Scan Additionnel (O88)
Database Version : 12917 - (14/09/2013)
Cl�s trouv�es (Keys found) : 0
Valeurs trouv�es (Values found) : 0
Dossiers trouv�s (Folders found) : 0
Fichiers trouv�s (Files found) : 0

~ Additionnel Scan: 202714 Items scanned in 00mn 25s



---\\ R�capitulatif des d�tections trouv�es sur votre station
~ http://nicolascoolman.webs.com/apps/blog/show/26609241-crapware-spyhunter =>Crapware.SpyHunter
~ MSI: 1 link(s) detected in 00mn 25s



End of the scan (1501 lines in 06mn 47s)(0)

Publicité


Signaler le contenu de ce document

Publicité