cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.7.5.84 Par Nicolas Coolman (2015\07\05)
~ Démarré par moi (Administrator) (2015/07/12 18:38:04)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version KO
~ Mode: Scanner
~ Rapport: C:\Documents and Settings\moi\Bureau\ZHPDiag.txt
~ Rapport: C:\Documents and Settings\moi\Application Data\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
~ Windows XP, 32-bit Service Pack 3 (Build 2600)

---\\ Logiciels de protection (2) - 1s
Avast Free Antivirus v10.2.2218
Malwarebytes Anti-Malware version 2.1.8.1057

---\\ Surveillance de Logiciels (2) - 1s
Adobe Flash Player 11 ActiveX
Adobe Reader X

---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
~ Total physical RAM (KB): 1038508
~ System Restore: Activé (Enable)
~ System drive C: has 49 GB free of 100 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: MOI
~ User Name: moi
~ Logged in as Administrator

---\\ Enumération des unités disques (3) - 6s
~ Drive C: has 49 GB free of 100 GB (System)
~ Drive D: has 95 GB free of 99 GB
~ Drive E: has 81 GB free of 105 GB

---\\ Recherche particulière de fichiers génériques (22) - 0s
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\WINDOWS\Explorer.exe [1037824]
[MD5.93AD0B78C7357A05F50E594EC7C22300] - (.Microsoft Corporation - Exécuter une DLL en tant qu'application.) () -- C:\WINDOWS\System32\rundll32.exe [33792]
[MD5.6CE32F7778061CCC5814D5E0F282D369] - (.Microsoft Corporation - Internet Extensions for Win32.) () -- C:\WINDOWS\System32\wininet.dll [914944]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows.) () -- C:\WINDOWS\System32\Winlogon.exe [512000]
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\WINDOWS\System32\drivers\AFD.sys [138496]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) () -- C:\WINDOWS\System32\drivers\atapi.sys [96512]
[MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\WINDOWS\System32\drivers\Cdfs.sys [63744]
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\WINDOWS\System32\drivers\Cdrom.sys [62976]
[MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) () -- C:\WINDOWS\System32\drivers\Fips.sys [44672]
[MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) () -- C:\WINDOWS\System32\drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\WINDOWS\System32\drivers\i8042prt.sys [54144]
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) () -- C:\WINDOWS\System32\drivers\Imapi.sys [42112]
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\WINDOWS\System32\drivers\IpNat.sys [152832]
[MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) () -- C:\WINDOWS\System32\drivers\IPSec.sys [75264]
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\WINDOWS\System32\drivers\MRxSmb.sys [456320]
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\WINDOWS\System32\drivers\netBT.sys [162816]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) () -- C:\WINDOWS\System32\drivers\ntfs.sys [574976]
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\WINDOWS\System32\drivers\Parport.sys [80384]
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [51328]
[MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\WINDOWS\System32\drivers\rdpdr.sys [196224]
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) () -- C:\WINDOWS\System32\drivers\redbook.sys [58752]
[MD5.46DE1126684369BACE4849E4FC8C43CA] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\WINDOWS\System32\drivers\volsnap.sys [53376]

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) (12) - 1s
G2 - GCE: Extension [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [eofcbnmajmjmplflapaojjnihcjkigck] Avast SafePrice
G2 - GCE: Extension [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] Avast Online Security
G2 - GCE: Extension [User Data\Default] [jeaohhlajejodfjadcponpnjgkiikocn] IDM Integration Module
G2 - GCE: Extension [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Extension [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Extension [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) (7) - 1s
P2 - FPN: [HKCU] [@Skype Limited.com/Facebook Video Calling Plugin] - (.Skype Limited.) -- C:\Documents and Settings\moi\Local Settings\Application Data\Facebook\Video\Skype\npFacebookVideoCalling.dll
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS.) -- C:\Documents and Settings\moi\Local Settings\Application Data\Unity\WebPlayer\loader\npUnity3D32.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.5.1] - (.Oracle Corporation.) -- C:\WINDOWS\system32\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.5.1] - (.Oracle Corporation.) -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.2] - (.VideoLAN.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.3] - (.VideoLAN.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.2.0] - (.VideoLAN.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) (12) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2

---\\ Internet Explorer, Proxy Management (R5) (6) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1

---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

---\\ Hosts file redirection (O1) (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (1)

---\\ Browser Helper Object de navigateur (BHO) (O2) (4) - 0s
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.Avast Software s.r.o. - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll

---\\ Applications lancées au démarrage du sytème (O4) (9) - 1s
O4 - HKLM\..\Run: [C-cleaner] . (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\system32\wscript.exe
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe
O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] . (.Adobe Systems Incorporated - Adobe® Flash® Player Installer/Uninstaller.) -- C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_11_7_700_224_ActiveX.exe
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-1708537768-412668190-1644491937-1003\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe
O4 - HKUS\S-1-5-21-1708537768-412668190-1644491937-1003\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-1708537768-412668190-1644491937-1003\..\RunOnce: [FlashPlayerUpdate] . (.Adobe Systems Incorporated - Adobe® Flash® Player Installer/Uninstaller.) -- C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_11_7_700_224_ActiveX.exe

---\\ Modification Domaine/Adresses DNS (O17) (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: NameServer = 77.88.8.8,77.88.8.1
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

---\\ Liste des services NT non Microsoft et non désactivés (O23) (8) - 4s
O23 - Service: Arp Intelligent Protection Service (AIPS) . (.Arcai.com - Arp Intelligent Protection Service.) - C:\Program Files\netcut\services\aips.exe
O23 - Service: Avast Antivirus (avast! Antivirus) . (.Avast Software s.r.o. - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avira Service Host (Avira.OE.ServiceHost) . (.Avira Operations GmbH & Co. KG - Avira.OE.ServiceHost.) - C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Oracle Corporation - Java(TM) Quick Starter Service.) - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
O23 - Service: VIA Karaoke digital mixer Service (KaraokeService) . (.VIA Technologies, Inc. - Service binary.) - C:\WINDOWS\system32\KaraokeSer.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe

---\\ Tâches planifiées en automatique (O39) (5) - 0s
O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\Tasks\avast! Emergency Update.job [358]
O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job [1052]
O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [1056]
O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP - à la connexion.job [218]
O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP -mensuellement.job [212]

---\\ Logiciels installés (O42) (57) - 18s
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Shockwave Player 12.1 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player
O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM] -- Avast
O42 - Logiciel: EPSON Printer Software - (.SEIKO EPSON Corporation.) [HKLM] -- EPSON Printer and Utilities
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- HDMI
O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.) [HKLM] -- IDNMitigationAPIs
O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8
O42 - Logiciel: VIA Platform Device Manager - (.VIA Technologies, Inc..) [HKLM] -- InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM] -- Internet Download Manager
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5
O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.) [HKLM] -- NLSDownlevelMapping
O42 - Logiciel: San Andreas Mod Installer - (.cpmusick.) [HKLM] -- San Andreas Mod Installer1.1
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: Microsoft Kernel-Mode Driver Framework Feature Pack 1.5 - (.Microsoft Corporation.) [HKLM] -- Wdf01005
O42 - Logiciel: Microsoft Kernel-Mode Driver Framework Feature Pack 1.7 - (.Microsoft Corporation.) [HKLM] -- Wdf01007
O42 - Logiciel: Microsoft Kernel-Mode Driver Framework Feature Pack 1.9 - (.Microsoft Corporation.) [HKLM] -- Wdf01009
O42 - Logiciel: Windows Genuine Advantage Notifications (KB905474) - (.Microsoft Corporation.) [HKLM] -- WgaNotify
O42 - Logiciel: WinRAR 4.20 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Microsoft WinUsb 1.0 - (.Microsoft Corporation.) [HKLM] -- winusb0100
O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000
O42 - Logiciel: ZHPFix 2015 - (.Nicolas Coolman.) [HKLM] -- ZHPFix_is1
O42 - Logiciel: JavaFX 2.1.1 - (.Oracle Corporation.) [HKLM] -- {1111706F-666A-4037-7777-211328764D10}
O42 - Logiciel: MSVC80_x86 - (.Nokia.) [HKLM] -- {212748BB-0DA5-46DE-82A1-403736DC9F27}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Skype™ 7.4 - (.Skype Technologies S.A..) [HKLM] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Java(TM) 7 Update 5 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217005FF}
O42 - Logiciel: Complément Office 2007 - Microsoft Enregistrer en tant que PDF ou XPS (Beta - (.Microsoft Corporation.) [HKLM] -- {30120000-00B2-040C-0000-0000000FF1CE}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {45C56AA7-ED1B-4800-A97F-EDDF3F3520B1}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}
O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}
O42 - Logiciel: Internet Explorer - (.Microsoft Corporation.) [HKLM] -- {4E414048-A9DD-4F60-AA1D-018E716C88C9}
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}
O42 - Logiciel: MSVC80_x86_v2 - (.Nokia.) [HKLM] -- {6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}
O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Python 2.7.9 - (.Python Software Foundation.) [HKLM] -- {79F081BF-7454-43DB-BD8F-9EE596813232}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: DLL Suite 2013 - (...) [HKLM] -- {885843E7-6CAC-4791-B7BF-1CD516017954}_is1
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {8E5233E1-7495-44FB-8DEB-4BE906D59619}
O42 - Logiciel: Internet Explorer - (.Microsoft Corporation.) [HKLM] -- {95036AAE-0E83-474A-866B-D76A1AAD40B0}
O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM] -- {9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}
O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
O42 - Logiciel: Adobe Reader X (10.1.11) - Fran?ais - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: MSVC90_x86 - (.Nokia.) [HKLM] -- {AF111648-99A1-453E-81DD-80DBBF6DAD0D}
O42 - Logiciel: Facebook Video Calling 1.2.0.287 - (.Skype Limited.) [HKLM] -- {B92C5909-1D37-4C51-8397-A28BB28E5DC3}
O42 - Logiciel: REALTEK GbE & FE Ethernet PCI-E NIC Driver - (.Realtek.) [HKLM] -- {C9BED750-1211-4480-B1A5-718A3BE15525}
O42 - Logiciel: GTA San Andreas - (.Rockstar Games.) [HKLM] -- {D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU] -- Dropbox
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU] -- uTorrent

---\\ HKCU & HKLM Software Keys (312) - 18s
HKLM\SOFTWARE\4shared Desktop
HKLM\SOFTWARE\Aardwork
HKLM\SOFTWARE\ACE Compression Software
HKLM\SOFTWARE\Activision
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\AdwCleaner
HKLM\SOFTWARE\Ahead
HKLM\SOFTWARE\AMPing
HKLM\SOFTWARE\ANIWConnd Service
HKLM\SOFTWARE\AntiTrojanElite
HKLM\SOFTWARE\AppDataLow
HKLM\SOFTWARE\Apple Computer, Inc.
HKLM\SOFTWARE\Apple Inc.
HKLM\SOFTWARE\Arcai
HKLM\SOFTWARE\Aureal
HKLM\SOFTWARE\AVAST Software
HKLM\SOFTWARE\Avg
HKLM\SOFTWARE\Avira
HKLM\SOFTWARE\baidu
HKLM\SOFTWARE\Baidu Security
HKLM\SOFTWARE\BCL Technologies
HKLM\SOFTWARE\biofacile
HKLM\SOFTWARE\Bugbear
HKLM\SOFTWARE\Byte-Size Software
HKLM\SOFTWARE\C07ft5Y
HKLM\SOFTWARE\Caphyon
HKLM\SOFTWARE\ComputerAssociates
HKLM\SOFTWARE\Creative Tech
HKLM\SOFTWARE\Cygnus Solutions
HKLM\SOFTWARE\Data Fellows
HKLM\SOFTWARE\Davilex
HKLM\SOFTWARE\Davilex Games
HKLM\SOFTWARE\Debug
HKLM\SOFTWARE\DFX
HKLM\SOFTWARE\dll-files.com =>PUP.DllFilesFixer
HKLM\SOFTWARE\DMA Design Ltd
HKLM\SOFTWARE\Dropbox
HKLM\SOFTWARE\DT Soft
HKLM\SOFTWARE\DVDVideoSoft
HKLM\SOFTWARE\EA Games
HKLM\SOFTWARE\Eidos Interactive
HKLM\SOFTWARE\Elaborate Bytes
HKLM\SOFTWARE\Electronic Arts
HKLM\SOFTWARE\Empire Interactive
HKLM\SOFTWARE\EPSON
HKLM\SOFTWARE\ErrorLists-crcodedownloader =>Adware.CrossRider
HKLM\SOFTWARE\Flash Memory Toolkit
HKLM\SOFTWARE\FlashGet Network
HKLM\SOFTWARE\Fox Interactive
HKLM\SOFTWARE\GEAR Software
HKLM\SOFTWARE\Gemplus
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\GT Interactive
HKLM\SOFTWARE\GTIS
HKLM\SOFTWARE\HaaliMkx
HKLM\SOFTWARE\HitmanPro
HKLM\SOFTWARE\IM Providers
HKLM\SOFTWARE\IncrediMail
HKLM\SOFTWARE\Infogrames
HKLM\SOFTWARE\InstallShield
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\Internet Download Manager
HKLM\SOFTWARE\IObit
HKLM\SOFTWARE\ISSS
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\JGsoft
HKLM\SOFTWARE\JreMetrics
HKLM\SOFTWARE\jumpshot.com
HKLM\SOFTWARE\KasperskyLab
HKLM\SOFTWARE\KCG
HKLM\SOFTWARE\KONAMI
HKLM\SOFTWARE\KONAMIPES5
HKLM\SOFTWARE\Licenses
HKLM\SOFTWARE\Lightworks
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Malwarebytes' Anti-Malware (Trial)
HKLM\SOFTWARE\Matrox
HKLM\SOFTWARE\MidnightRoadWarriors
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\Nero
HKLM\SOFTWARE\NewSoft
HKLM\SOFTWARE\Nokia
HKLM\SOFTWARE\Norton
HKLM\SOFTWARE\NovaLogic
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\OpenVPN-GUI
HKLM\SOFTWARE\Opera Software
HKLM\SOFTWARE\Oracle
HKLM\SOFTWARE\PCSuite
HKLM\SOFTWARE\Point of View, Inc.
HKLM\SOFTWARE\PopCap
HKLM\SOFTWARE\PowerISO
HKLM\SOFTWARE\PowerTechnology
HKLM\SOFTWARE\Program Groups
HKLM\SOFTWARE\Pyro
HKLM\SOFTWARE\Python
HKLM\SOFTWARE\quran kareem
HKLM\SOFTWARE\Ratbag
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\ReflexiveArcade
HKLM\SOFTWARE\regfac
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\Remedy Entertainment
HKLM\SOFTWARE\Rockstar Games
HKLM\SOFTWARE\Rovio Entertainment Ltd.
HKLM\SOFTWARE\RTLSetup
HKLM\SOFTWARE\SAMI
HKLM\SOFTWARE\SAMSUNG
HKLM\SOFTWARE\Sandlot
HKLM\SOFTWARE\Schlumberger
HKLM\SOFTWARE\Sierra OnLine
HKLM\SOFTWARE\Skype
HKLM\SOFTWARE\Skypelauncher
HKLM\SOFTWARE\SmartPCFixer
HKLM\SOFTWARE\SNC
HKLM\SOFTWARE\SOFTWARE
HKLM\SOFTWARE\SoloScanner
HKLM\SOFTWARE\SoloVXD
HKLM\SOFTWARE\Sony Interactive
HKLM\SOFTWARE\SSC Service Utility
HKLM\SOFTWARE\Sunisoft
HKLM\SOFTWARE\Swearware
HKLM\SOFTWARE\Symantec
HKLM\SOFTWARE\SystemSafe
HKLM\SOFTWARE\Techland
HKLM\SOFTWARE\The Silicon Realms Toolworks
HKLM\SOFTWARE\THQ
HKLM\SOFTWARE\Titus
HKLM\SOFTWARE\TrendMicro
HKLM\SOFTWARE\TuneUp
HKLM\SOFTWARE\UBISOFT
HKLM\SOFTWARE\Ufasoft
HKLM\SOFTWARE\Valve
HKLM\SOFTWARE\VIA Technologies, Inc
HKLM\SOFTWARE\VideoLAN
HKLM\SOFTWARE\WiFi Hopper
HKLM\SOFTWARE\WildTangent
HKLM\SOFTWARE\Windows 3.1 Migration Status
HKLM\SOFTWARE\WinRAR
HKLM\SOFTWARE\WiseFixer
HKLM\SOFTWARE\WON
HKLM\SOFTWARE\Yahoo
HKCU\SOFTWARE\2.6.1519.190
HKCU\SOFTWARE\4shared
HKCU\SOFTWARE\4shared Desktop
HKCU\SOFTWARE\Acclaim
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Ahead
HKCU\SOFTWARE\Akamai
HKCU\SOFTWARE\Alk
HKCU\SOFTWARE\AMS Software
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\Arcai.com
HKCU\SOFTWARE\ASProtect
HKCU\SOFTWARE\Atola
HKCU\SOFTWARE\AUTORUN
HKCU\SOFTWARE\AVAST Software
HKCU\SOFTWARE\Avira
HKCU\SOFTWARE\Baidu
HKCU\SOFTWARE\Baidu Security
HKCU\SOFTWARE\BearShare =>PUP.BearShare
HKCU\SOFTWARE\BenVista
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Boonty
HKCU\SOFTWARE\Camfrog
HKCU\SOFTWARE\Caphyon
HKCU\SOFTWARE\CatalinaGroup
HKCU\SOFTWARE\CBS Interactive
HKCU\SOFTWARE\CDBurnerXP
HKCU\SOFTWARE\Cheat Engine
HKCU\SOFTWARE\CleanMyPC
HKCU\SOFTWARE\Cocoon Software
HKCU\SOFTWARE\CocoonSoftware
HKCU\SOFTWARE\CodeGear
HKCU\SOFTWARE\CommViewWiFi
HKCU\SOFTWARE\ComodoGroup
HKCU\SOFTWARE\Core Design
HKCU\SOFTWARE\Counter-Strike Source
HKCU\SOFTWARE\CPE17AutorunKiller
HKCU\SOFTWARE\CrystalIdea Software
HKCU\SOFTWARE\Cygnus Solutions
HKCU\SOFTWARE\D-Link
HKCU\SOFTWARE\dahanco
HKCU\SOFTWARE\David Esperalta
HKCU\SOFTWARE\DicoVerb
HKCU\SOFTWARE\Digital Illusions
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\Dropbox
HKCU\SOFTWARE\DT Soft
HKCU\SOFTWARE\DVDVideoSoft
HKCU\SOFTWARE\Electronic Arts
HKCU\SOFTWARE\Emulators
HKCU\SOFTWARE\EPSON
HKCU\SOFTWARE\epsxe
HKCU\SOFTWARE\Eset
HKCU\SOFTWARE\Eterlogic Software
HKCU\SOFTWARE\F-Secure
HKCU\SOFTWARE\Facebook
HKCU\SOFTWARE\File and Folder Information
HKCU\SOFTWARE\Flash Saver V4.5
HKCU\SOFTWARE\FlashGet Network
HKCU\SOFTWARE\FreeAudioVideo
HKCU\SOFTWARE\FreeCDRIP
HKCU\SOFTWARE\FreeDownloadManager.ORG
HKCU\SOFTWARE\GameSpy
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\GRETECH
HKCU\SOFTWARE\guru
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\Helmsman
HKCU\SOFTWARE\HookNetwork
HKCU\SOFTWARE\IACCOMMON
HKCU\SOFTWARE\IE
HKCU\SOFTWARE\IGA
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\ImTOO
HKCU\SOFTWARE\Infogrames
HKCU\SOFTWARE\Initex
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\Intelligent Converters
HKCU\SOFTWARE\Jacked
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\KasperskyLab
HKCU\SOFTWARE\kde.org
HKCU\SOFTWARE\Kiloo Games
HKCU\SOFTWARE\Kuma Games
HKCU\SOFTWARE\L2j Community Network
HKCU\SOFTWARE\Lamantine
HKCU\SOFTWARE\LdShih
HKCU\SOFTWARE\Leadertech
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Lightworks
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Macrovision
HKCU\SOFTWARE\Magical Jelly Bean Software
HKCU\SOFTWARE\Magicbit
HKCU\SOFTWARE\malavida
HKCU\SOFTWARE\Malwarebytes' Anti-Malware
HKCU\SOFTWARE\Media Research Group
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\ND-Faciliti
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Nilings
HKCU\SOFTWARE\NirSoft
HKCU\SOFTWARE\Nokia
HKCU\SOFTWARE\Northcode Inc
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\PC SOFT
HKCU\SOFTWARE\PearlMountain
HKCU\SOFTWARE\PixelPlanet
HKCU\SOFTWARE\pixelStorm
HKCU\SOFTWARE\PlayFreeBrowser
HKCU\SOFTWARE\PopCap
HKCU\SOFTWARE\PowerISO
HKCU\SOFTWARE\Pyro Studios
HKCU\SOFTWARE\qNewsPaper
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Red Storm Entertainment
HKCU\SOFTWARE\Remedy Entertainment
HKCU\SOFTWARE\RLZer
HKCU\SOFTWARE\Rockstar Games
HKCU\SOFTWARE\Sahmon Studio
HKCU\SOFTWARE\SAMP
HKCU\SOFTWARE\Sandlot
HKCU\SOFTWARE\SecuROM
HKCU\SOFTWARE\Shredder
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Skypelauncher
HKCU\SOFTWARE\SkypeRS
HKCU\SOFTWARE\SMAD?V
HKCU\SOFTWARE\Softplicity
HKCU\SOFTWARE\Software
HKCU\SOFTWARE\StartupManager
HKCU\SOFTWARE\StellarStone
HKCU\SOFTWARE\Sucinv corporation
HKCU\SOFTWARE\Sunisoft
HKCU\SOFTWARE\SweetScape
HKCU\SOFTWARE\Sysinternals
HKCU\SOFTWARE\SystemSafe
HKCU\SOFTWARE\TBSB00001 =>PUP.Conduit
HKCU\SOFTWARE\TeleCharger
HKCU\SOFTWARE\The Silicon Realms Toolworks
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\TuneUp
HKCU\SOFTWARE\Ubisoft
HKCU\SOFTWARE\Ufasoft
HKCU\SOFTWARE\Ultracopier
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\USBFlashBlockUnblock
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\VIA
HKCU\SOFTWARE\Vision Thing
HKCU\SOFTWARE\vp-eye
HKCU\SOFTWARE\Wget
HKCU\SOFTWARE\Widcomm
HKCU\SOFTWARE\WinAVI
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Yahoo
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\?ïNR Labs
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Macromedia

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) (319) - 13s
O43 - CFD: 2015/05/22 23:26:33 - [0] D -- C:\Program Files\39e53a6e-c750-445d-b17f-0eade5201720 =>Adware.CrossRider
O43 - CFD: 2014/04/06 10:41:05 - [] D -- C:\Program Files\Adobe
O43 - CFD: 2011/10/19 21:26:44 - [] D -- C:\Program Files\Apple Software Update
O43 - CFD: 2015/04/29 22:29:58 - [] D -- C:\Program Files\AVAST Software
O43 - CFD: 2015/04/29 12:06:56 - [] D -- C:\Program Files\Avira
O43 - CFD: 2012/07/15 10:30:49 - [] D -- C:\Program Files\CS_Worx
O43 - CFD: 2012/08/27 21:20:24 - [] D -- C:\Program Files\data
O43 - CFD: 2013/01/31 18:40:22 - [] D -- C:\Program Files\directx
O43 - CFD: 2015/07/05 19:54:14 - [] D -- C:\Program Files\DLLSuite
O43 - CFD: 2015/04/29 23:06:35 - [] D -- C:\Program Files\Dropbox
O43 - CFD: 2014/07/19 22:04:21 - [] D -- C:\Program Files\EPSON
O43 - CFD: 2014/11/16 13:04:15 - [] D -- C:\Program Files\Epson Software
O43 - CFD: 2015/07/12 14:03:50 - [] D -- C:\Program Files\Fichiers communs
O43 - CFD: 2014/11/10 19:33:22 - [] D -- C:\Program Files\Free PDF to Word Converter
O43 - CFD: 2015/06/27 04:38:16 - [] D -- C:\Program Files\Google
O43 - CFD: 2014/08/22 23:13:51 - [] D -- C:\Program Files\ImTOO
O43 - CFD: 2015/03/06 20:43:24 - [] HD -- C:\Program Files\InstallShield Installation Information
O43 - CFD: 2015/06/29 02:17:05 - [] D -- C:\Program Files\Internet Download Manager
O43 - CFD: 2014/09/21 01:37:57 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 2014/11/16 12:58:27 - [] D -- C:\Program Files\IObit
O43 - CFD: 2014/09/21 01:37:57 - [] D -- C:\Program Files\iTunes
O43 - CFD: 2012/08/23 18:03:52 - [] D -- C:\Program Files\Java
O43 - CFD: 2014/07/02 01:08:54 - [] D -- C:\Program Files\JavaScript Maker
O43 - CFD: 2015/03/06 20:42:32 - [] D -- C:\Program Files\Lightworks
O43 - CFD: 2015/07/06 19:22:31 - [] D -- C:\Program Files\Malwarebytes Anti-Malware
O43 - CFD: 2011/08/23 12:01:41 - [] D -- C:\Program Files\Microsoft
O43 - CFD: 2010/08/23 01:30:40 - [] D -- C:\Program Files\microsoft frontpage
O43 - CFD: 2011/06/30 23:56:44 - [] D -- C:\Program Files\Microsoft Office
O43 - CFD: 2010/08/23 01:55:15 - [] D -- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 2010/08/23 01:55:56 - [] D -- C:\Program Files\Microsoft Sync Framework
O43 - CFD: 2012/08/04 11:44:13 - [] D -- C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 2011/02/26 16:22:33 - [] D -- C:\Program Files\Microsoft Works
O43 - CFD: 2010/08/23 02:03:32 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 2015/06/23 07:40:29 - [] D -- C:\Program Files\Movie Maker
O43 - CFD: 2010/08/23 02:04:21 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 2011/05/16 11:58:32 - [] D -- C:\Program Files\MSN
O43 - CFD: 2011/10/13 15:45:01 - [] D -- C:\Program Files\MSN Gaming Zone
O43 - CFD: 2015/07/12 02:44:12 - [0] D -- C:\Program Files\MSXML 4.0
O43 - CFD: 2013/09/01 17:26:28 - [] D -- C:\Program Files\netcut
O43 - CFD: 2012/07/28 11:15:44 - [] D -- C:\Program Files\NetMeeting
O43 - CFD: 2013/04/17 20:32:05 - [] D -- C:\Program Files\NewASOfr
O43 - CFD: 2015/01/25 18:21:15 - [0] D -- C:\Program Files\NirSoft
O43 - CFD: 2011/10/09 21:49:45 - [] D -- C:\Program Files\Online Services
O43 - CFD: 2013/04/18 17:29:38 - [] D -- C:\Program Files\OpenVPN
O43 - CFD: 2015/01/25 18:18:47 - [] D -- C:\Program Files\Opera
O43 - CFD: 2015/02/08 20:40:47 - [] D -- C:\Program Files\Oracle
O43 - CFD: 2012/08/03 20:24:47 - [] D -- C:\Program Files\Outlook Express
O43 - CFD: 2015/07/08 03:00:58 - [] D -- C:\Program Files\PowerISO
O43 - CFD: 2013/04/14 19:58:46 - [] D -- C:\Program Files\Realtek
O43 - CFD: 2012/08/16 14:09:41 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 2010/08/23 01:28:02 - [] D -- C:\Program Files\Services en ligne
O43 - CFD: 2015/03/23 10:07:40 - [] RD -- C:\Program Files\Skype
O43 - CFD: 2014/11/15 18:15:08 - [] D -- C:\Program Files\Smadav
O43 - CFD: 2014/09/21 01:47:22 - [] D -- C:\Program Files\SRS Labs
O43 - CFD: 2015/04/19 21:47:40 - [] D -- C:\Program Files\Strogino CS Portal
O43 - CFD: 2014/11/03 18:55:24 - [0] D -- C:\Program Files\TuneUp Utilities 2014
O43 - CFD: 2013/05/08 16:44:46 - [] D -- C:\Program Files\VIA
O43 - CFD: 2011/06/28 00:58:59 - [] D -- C:\Program Files\VideoLAN
O43 - CFD: 2012/07/04 12:54:18 - [] D -- C:\Program Files\Web Page Maker
O43 - CFD: 2013/08/01 14:18:05 - [] D -- C:\Program Files\Windows Live
O43 - CFD: 2014/07/26 21:25:27 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 2012/07/28 11:13:43 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 2013/01/29 10:28:23 - [] D -- C:\Program Files\WinRAR
O43 - CFD: 2015/07/12 18:16:18 - [] D -- C:\Program Files\xerox
O43 - CFD: 2014/11/07 23:34:31 - [0] D -- C:\Program Files\XnView
O43 - CFD: 2014/12/13 10:51:11 - [] HD -- C:\Program Files\Zero G Registry
O43 - CFD: 2015/07/06 15:14:04 - [] D -- C:\Program Files\ZHPFix
O43 - CFD: 2013/08/05 23:15:05 - [] D -- C:\Documents and Settings\All Users\Application Data\188F1432-103A-4ffb-80F1-36B633C5C9E1
O43 - CFD: 2011/09/17 07:20:49 - [] D -- C:\Documents and Settings\All Users\Application Data\311F
O43 - CFD: 2014/08/29 17:42:01 - [] SHD -- C:\Documents and Settings\All Users\Application Data\360Quarant
O43 - CFD: 2013/08/22 08:36:07 - [0] D -- C:\Documents and Settings\All Users\Application Data\4shared Desktop
O43 - CFD: 2012/07/03 14:45:59 - [] D -- C:\Documents and Settings\All Users\Application Data\Adobe
O43 - CFD: 2011/10/07 16:19:39 - [] D -- C:\Documents and Settings\All Users\Application Data\Ahead
O43 - CFD: 2011/10/19 21:26:02 - [] D -- C:\Documents and Settings\All Users\Application Data\Apple
O43 - CFD: 2013/08/05 23:13:33 - [] D -- C:\Documents and Settings\All Users\Application Data\Apple Computer
O43 - CFD: 2015/04/29 22:29:21 - [] D -- C:\Documents and Settings\All Users\Application Data\AVAST Software
O43 - CFD: 2015/04/29 21:57:32 - [] D -- C:\Documents and Settings\All Users\Application Data\Avira
O43 - CFD: 2012/09/17 11:42:34 - [] D -- C:\Documents and Settings\All Users\Application Data\Avnex
O43 - CFD: 2014/12/08 20:19:59 - [] D -- C:\Documents and Settings\All Users\Application Data\Baidu
O43 - CFD: 2015/04/21 19:15:23 - [0] D -- C:\Documents and Settings\All Users\Application Data\Baidu Security
O43 - CFD: 2012/10/31 17:45:31 - [0] D -- C:\Documents and Settings\All Users\Application Data\Bluetooth
O43 - CFD: 2013/05/06 20:16:31 - [] D -- C:\Documents and Settings\All Users\Application Data\ClubSanDisk
O43 - CFD: 2013/07/20 22:18:05 - [] HD -- C:\Documents and Settings\All Users\Application Data\Common Files
O43 - CFD: 2012/06/20 21:33:40 - [] D -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
O43 - CFD: 2014/09/21 01:23:27 - [] D -- C:\Documents and Settings\All Users\Application Data\DFX
O43 - CFD: 2011/09/27 14:25:56 - [] D -- C:\Documents and Settings\All Users\Application Data\Electronic Arts
O43 - CFD: 2015/01/03 21:28:40 - [] D -- C:\Documents and Settings\All Users\Application Data\EPSON
O43 - CFD: 2014/08/24 00:30:31 - [] D -- C:\Documents and Settings\All Users\Application Data\F-Secure
O43 - CFD: 2014/06/28 10:12:27 - [] D -- C:\Documents and Settings\All Users\Application Data\FarmFrenzy2
O43 - CFD: 2014/06/10 08:21:10 - [] D -- C:\Documents and Settings\All Users\Application Data\Genimo
O43 - CFD: 2011/09/01 21:59:50 - [] D -- C:\Documents and Settings\All Users\Application Data\Google
O43 - CFD: 2013/01/04 15:22:32 - [] D -- C:\Documents and Settings\All Users\Application Data\HitmanPro
O43 - CFD: 2013/09/24 17:25:08 - [0] D -- C:\Documents and Settings\All Users\Application Data\IDM
O43 - CFD: 2014/07/07 01:49:04 - [] D -- C:\Documents and Settings\All Users\Application Data\Informer Technologies, Inc
O43 - CFD: 2013/06/15 17:33:54 - [] D -- C:\Documents and Settings\All Users\Application Data\Installations
O43 - CFD: 2015/07/08 03:01:00 - [] D -- C:\Documents and Settings\All Users\Application Data\InstallMate
O43 - CFD: 2011/08/16 13:45:30 - [] D -- C:\Documents and Settings\All Users\Application Data\InstallShield
O43 - CFD: 2013/10/24 20:57:29 - [] D -- C:\Documents and Settings\All Users\Application Data\InterAction studios
O43 - CFD: 2014/11/15 17:03:11 - [] D -- C:\Documents and Settings\All Users\Application Data\IObit
O43 - CFD: 2014/08/13 12:03:06 - [] D -- C:\Documents and Settings\All Users\Application Data\iolo
O43 - CFD: 2014/05/04 17:17:06 - [] D -- C:\Documents and Settings\All Users\Application Data\KONAMI
O43 - CFD: 2012/08/03 02:52:17 - [] D -- C:\Documents and Settings\All Users\Application Data\KONAMI(2)
O43 - CFD: 2015/03/31 20:46:30 - [] D -- C:\Documents and Settings\All Users\Application Data\Logs
O43 - CFD: 2015/01/15 17:23:48 - [] D -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
O43 - CFD: 2015/06/04 10:10:52 - [] D -- C:\Documents and Settings\All Users\Application Data\MFAData
O43 - CFD: 2013/04/24 13:11:56 - [] D -- C:\Documents and Settings\All Users\Application Data\Microsoft
O43 - CFD: 2015/07/12 01:46:49 - [] D -- C:\Documents and Settings\All Users\Application Data\Microsoft Help
O43 - CFD: 2011/04/25 18:50:00 - [] D -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
O43 - CFD: 2013/04/24 13:01:33 - [] D -- C:\Documents and Settings\All Users\Application Data\NokiaInstallerCache
O43 - CFD: 2013/12/22 05:16:06 - [] D -- C:\Documents and Settings\All Users\Application Data\Norton
O43 - CFD: 2013/12/22 05:16:01 - [] D -- C:\Documents and Settings\All Users\Application Data\NortonInstaller
O43 - CFD: 2015/04/30 10:37:21 - [] D -- C:\Documents and Settings\All Users\Application Data\Package Cache
O43 - CFD: 2013/06/22 01:54:42 - [] D -- C:\Documents and Settings\All Users\Application Data\PC Suite
O43 - CFD: 2014/07/02 01:17:38 - [] D -- C:\Documents and Settings\All Users\Application Data\PC1Data
O43 - CFD: 2014/09/12 09:14:35 - [] D -- C:\Documents and Settings\All Users\Application Data\PearlMountain
O43 - CFD: 2013/05/20 21:36:58 - [] D -- C:\Documents and Settings\All Users\Application Data\PixelPlanet
O43 - CFD: 2014/06/08 22:39:20 - [] D -- C:\Documents and Settings\All Users\Application Data\PopCap Games
O43 - CFD: 2014/11/29 20:12:52 - [] D -- C:\Documents and Settings\All Users\Application Data\ProductData
O43 - CFD: 2014/09/12 11:39:37 - [] D -- C:\Documents and Settings\All Users\Application Data\RogueKiller
O43 - CFD: 2013/01/01 19:18:37 - [] D -- C:\Documents and Settings\All Users\Application Data\Samsung
O43 - CFD: 2012/12/07 08:47:32 - [] D -- C:\Documents and Settings\All Users\Application Data\Sandlot Games
O43 - CFD: 2015/04/30 11:00:53 - [] D -- C:\Documents and Settings\All Users\Application Data\Skype
O43 - CFD: 2014/09/21 01:47:49 - [] D -- C:\Documents and Settings\All Users\Application Data\SRS Labs
O43 - CFD: 2011/12/09 11:31:30 - [] D -- C:\Documents and Settings\All Users\Application Data\Sun
O43 - CFD: 2013/09/03 21:34:22 - [] D -- C:\Documents and Settings\All Users\Application Data\TrackMania
O43 - CFD: 2014/11/02 14:02:17 - [] D -- C:\Documents and Settings\All Users\Application Data\TuneUp Software
O43 - CFD: 2012/12/30 10:29:12 - [] D -- C:\Documents and Settings\All Users\Application Data\UDL
O43 - CFD: 2015/07/12 13:06:49 - [0] D -- C:\Documents and Settings\All Users\Application Data\USBSecurity
O43 - CFD: 2011/08/30 04:25:15 - [0] D -- C:\Documents and Settings\All Users\Application Data\Web Page Maker
O43 - CFD: 2015/07/05 19:59:34 - [] D -- C:\Documents and Settings\All Users\Application Data\Weskysoft
O43 - CFD: 2011/01/07 11:48:03 - [] D -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
O43 - CFD: 2012/01/13 23:52:36 - [] D -- C:\Documents and Settings\All Users\Application Data\WinZip
O43 - CFD: 2012/08/18 02:20:32 - [] D -- C:\Documents and Settings\All Users\Application Data\Yahoo!
O43 - CFD: 2011/09/23 14:28:27 - [0] DC -- C:\Documents and Settings\All Users\Application Data\{24F60343-EE5D-4CF0-B73B-93E1632F750B}
O43 - CFD: 2014/11/15 14:43:22 - [0] D -- C:\Documents and Settings\All Users\Application Data\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
O43 - CFD: 2011/10/19 21:28:18 - [] D -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
O43 - CFD: 2012/04/30 14:48:16 - [0] DC -- C:\Documents and Settings\All Users\Application Data\{6DFE6B59-3F4E-45AF-A9D0-5EDC43DD23AF}
O43 - CFD: 2014/11/02 13:57:51 - [] SHD -- C:\Documents and Settings\All Users\Application Data\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
O43 - CFD: 2014/07/09 23:36:41 - [] D -- C:\Program Files\Fichiers communs\Adobe
O43 - CFD: 2011/02/25 00:34:22 - [] D -- C:\Program Files\Fichiers communs\Adobe AIR
O43 - CFD: 2013/08/05 23:13:49 - [] D -- C:\Program Files\Fichiers communs\Apple
O43 - CFD: 2013/05/20 21:37:19 - [] D -- C:\Program Files\Fichiers communs\BCL Technologies
O43 - CFD: 2015/07/12 01:32:19 - [] D -- C:\Program Files\Fichiers communs\DESIGNER
O43 - CFD: 2012/07/04 12:53:13 - [] D -- C:\Program Files\Fichiers communs\DVDVideoSoft
O43 - CFD: 2012/07/02 10:47:12 - [] D -- C:\Program Files\Fichiers communs\EPSON
O43 - CFD: 2011/11/25 12:29:59 - [] D -- C:\Program Files\Fichiers communs\InstallShield
O43 - CFD: 2012/07/10 17:21:16 - [] D -- C:\Program Files\Fichiers communs\Java
O43 - CFD: 2014/09/01 00:44:28 - [] D -- C:\Program Files\Fichiers communs\Microsoft Shared
O43 - CFD: 2010/08/23 01:27:30 - [] D -- C:\Program Files\Fichiers communs\MSSoap
O43 - CFD: 2014/07/19 21:54:32 - [] D -- C:\Program Files\Fichiers communs\NewSoft
O43 - CFD: 2011/07/01 21:53:15 - [] D -- C:\Program Files\Fichiers communs\ODBC
O43 - CFD: 2013/05/20 21:36:47 - [] D -- C:\Program Files\Fichiers communs\PixelPlanet
O43 - CFD: 2012/08/06 01:53:41 - [] D -- C:\Program Files\Fichiers communs\Services
O43 - CFD: 2015/01/08 20:59:31 - [] D -- C:\Program Files\Fichiers communs\Skype
O43 - CFD: 2010/08/23 02:14:53 - [] D -- C:\Program Files\Fichiers communs\SpeechEngines
O43 - CFD: 2011/10/07 00:54:28 - [0] D -- C:\Program Files\Fichiers communs\SWF Studio
O43 - CFD: 2014/02/08 21:56:19 - [0] D -- C:\Program Files\Fichiers communs\Symantec Shared
O43 - CFD: 2013/09/23 12:09:09 - [] RSHD -- C:\Program Files\Fichiers communs\System
O43 - CFD: 2011/03/04 00:34:01 - [] D -- C:\Program Files\Fichiers communs\Windows Live
O43 - CFD: 2014/11/15 17:16:54 - [0] D -- C:\Program Files\Fichiers communs\XpressUpdate
O43 - CFD: 2014/01/15 17:47:13 - [] D -- C:\Documents and Settings\moi\Application Data\ Preferences Gifour
O43 - CFD: 2014/07/26 21:21:43 - [] D -- C:\Documents and Settings\moi\Application Data\.oit
O43 - CFD: 2015/05/31 19:05:31 - [] D -- C:\Documents and Settings\moi\Application Data\4shared Desktop
O43 - CFD: 2014/04/20 22:37:25 - [] D -- C:\Documents and Settings\moi\Application Data\4Sync
O43 - CFD: 2011/08/24 13:39:10 - [] D -- C:\Documents and Settings\moi\Application Data\Adobe
O43 - CFD: 2014/04/20 22:37:26 - [] D -- C:\Documents and Settings\moi\Application Data\Ahead
O43 - CFD: 2014/09/15 18:14:57 - [] D -- C:\Documents and Settings\moi\Application Data\AMS Software
O43 - CFD: 2014/11/15 14:46:35 - [] D -- C:\Documents and Settings\moi\Application Data\Apple Computer
O43 - CFD: 2015/04/29 22:31:47 - [] D -- C:\Documents and Settings\moi\Application Data\AVAST Software
O43 - CFD: 2014/12/10 23:09:19 - [] D -- C:\Documents and Settings\moi\Application Data\Baidu
O43 - CFD: 2015/01/03 21:57:13 - [] D -- C:\Documents and Settings\moi\Application Data\BavMini
O43 - CFD: 2014/02/22 20:38:36 - [] D -- C:\Documents and Settings\moi\Application Data\BITS
O43 - CFD: 2011/09/17 07:30:56 - [0] D -- C:\Documents and Settings\moi\Application Data\bsbandmltbpi
O43 - CFD: 2012/04/03 22:36:50 - [] D -- C:\Documents and Settings\moi\Application Data\Camfrog
O43 - CFD: 2012/08/14 12:50:35 - [] D -- C:\Documents and Settings\moi\Application Data\Canneverbe_Limited
O43 - CFD: 2012/11/30 14:42:29 - [] D -- C:\Documents and Settings\moi\Application Data\Charles
O43 - CFD: 2011/04/25 17:29:20 - [] D -- C:\Documents and Settings\moi\Application Data\Cocoon Software
O43 - CFD: 2013/08/01 14:34:41 - [] D -- C:\Documents and Settings\moi\Application Data\DiskAid
O43 - CFD: 2015/07/12 14:25:59 - [] D -- C:\Documents and Settings\moi\Application Data\DMCache
O43 - CFD: 2015/04/29 23:07:03 - [] D -- C:\Documents and Settings\moi\Application Data\Dropbox
O43 - CFD: 2015/05/07 10:17:31 - [] D -- C:\Documents and Settings\moi\Application Data\dvdcss
O43 - CFD: 2012/05/22 17:56:00 - [] D -- C:\Documents and Settings\moi\Application Data\DVDVideoSoft
O43 - CFD: 2012/08/04 15:33:14 - [] D -- C:\Documents and Settings\moi\Application Data\Epson
O43 - CFD: 2013/05/02 21:38:51 - [] D -- C:\Documents and Settings\moi\Application Data\Fexmax
O43 - CFD: 2013/01/05 11:29:15 - [] D -- C:\Documents and Settings\moi\Application Data\FlashGet
O43 - CFD: 2013/01/05 11:29:12 - [] D -- C:\Documents and Settings\moi\Application Data\FlashGetBHO
O43 - CFD: 2011/10/04 16:07:26 - [] D -- C:\Documents and Settings\moi\Application Data\Free Download Manager
O43 - CFD: 2012/07/06 10:42:37 - [] D -- C:\Documents and Settings\moi\Application Data\Free-PDF-to-Word.com
O43 - CFD: 2011/01/03 19:48:51 - [] D -- C:\Documents and Settings\moi\Application Data\FreeAudioPack
O43 - CFD: 2011/04/19 22:43:32 - [] D -- C:\Documents and Settings\moi\Application Data\FreeCDRipper
O43 - CFD: 2014/06/09 23:09:42 - [] D -- C:\Documents and Settings\moi\Application Data\Genimo
O43 - CFD: 2012/05/30 13:26:46 - [] D -- C:\Documents and Settings\moi\Application Data\GetRightToGo
O43 - CFD: 2011/02/05 12:21:25 - [] D -- C:\Documents and Settings\moi\Application Data\Google
O43 - CFD: 2011/04/26 21:39:56 - [0] D -- C:\Documents and Settings\moi\Application Data\Help
O43 - CFD: 2015/06/20 04:48:07 - [] D -- C:\Documents and Settings\moi\Application Data\IDM
O43 - CFD: 2012/08/19 21:36:58 - [] D -- C:\Documents and Settings\moi\Application Data\ImTOO
O43 - CFD: 2013/06/22 01:05:54 - [] D -- C:\Documents and Settings\moi\Application Data\ImTOO Software Studio
O43 - CFD: 2011/07/04 14:18:32 - [] D -- C:\Documents and Settings\moi\Application Data\InstallShield
O43 - CFD: 2014/11/15 14:46:50 - [] D -- C:\Documents and Settings\moi\Application Data\IObit
O43 - CFD: 2014/11/17 10:02:08 - [] D -- C:\Documents and Settings\moi\Application Data\IObit Apps
O43 - CFD: 2011/02/25 00:34:33 - [] D -- C:\Documents and Settings\moi\Application Data\it.ratioconsulta.sonephone-air
O43 - CFD: 2011/08/29 04:59:56 - [0] D -- C:\Documents and Settings\moi\Application Data\jzipband
O43 - CFD: 2011/06/10 20:17:38 - [] D -- C:\Documents and Settings\moi\Application Data\KastorFreeAudioConverter
O43 - CFD: 2014/09/15 10:39:39 - [] D -- C:\Documents and Settings\moi\Application Data\KeePass
O43 - CFD: 2011/08/16 16:49:39 - [] D -- C:\Documents and Settings\moi\Application Data\Kuma Games
O43 - CFD: 2011/07/25 08:22:53 - [] D -- C:\Documents and Settings\moi\Application Data\Leadertech
O43 - CFD: 2011/09/18 01:44:55 - [] D -- C:\Documents and Settings\moi\Application Data\Leawo
O43 - CFD: 2010/08/23 01:52:32 - [] D -- C:\Documents and Settings\moi\Application Data\Macromedia
O43 - CFD: 2012/05/28 00:47:04 - [] D -- C:\Documents and Settings\moi\Application Data\MAGIX
O43 - CFD: 2012/07/04 11:03:29 - [] D -- C:\Documents and Settings\moi\Application Data\Malwarebytes
O43 - CFD: 2015/04/16 21:33:05 - [] D -- C:\Documents and Settings\moi\Application Data\Microsoft
O43 - CFD: 2011/10/13 14:45:33 - [] D -- C:\Documents and Settings\moi\Application Data\Million
O43 - CFD: 2012/07/24 20:57:53 - [] D -- C:\Documents and Settings\moi\Application Data\mojosoft
O43 - CFD: 2014/10/24 11:18:58 - [] D -- C:\Documents and Settings\moi\Application Data\Mozilla
O43 - CFD: 2011/04/25 18:51:49 - [] D -- C:\Documents and Settings\moi\Application Data\NCH Swift Sound
O43 - CFD: 2014/07/26 21:42:21 - [] D -- C:\Documents and Settings\moi\Application Data\Nokia
O43 - CFD: 2014/07/26 21:42:21 - [0] D -- C:\Documents and Settings\moi\Application Data\Nokia Suite
O43 - CFD: 2012/07/10 17:20:25 - [] D -- C:\Documents and Settings\moi\Application Data\Oracle
O43 - CFD: 2012/07/13 21:51:15 - [] D -- C:\Documents and Settings\moi\Application Data\PC Cleaners
O43 - CFD: 2014/03/02 21:41:15 - [] D -- C:\Documents and Settings\moi\Application Data\PC Suite
O43 - CFD: 2012/07/15 18:42:09 - [] D -- C:\Documents and Settings\moi\Application Data\PCPro
O43 - CFD: 2014/09/12 09:14:35 - [] D -- C:\Documents and Settings\moi\Application Data\PearlMountain
O43 - CFD: 2015/03/22 15:41:17 - [] D -- C:\Documents and Settings\moi\Application Data\PhotoScape
O43 - CFD: 2013/05/20 21:44:02 - [] D -- C:\Documents and Settings\moi\Application Data\PixelPlanet
O43 - CFD: 2015/07/04 01:57:30 - [] D -- C:\Documents and Settings\moi\Application Data\PowerISO
O43 - CFD: 2012/12/06 19:10:38 - [] D -- C:\Documents and Settings\moi\Application Data\Ratbag
O43 - CFD: 2015/07/08 03:00:58 - [0] D -- C:\Documents and Settings\moi\Application Data\rmi
O43 - CFD: 2014/10/02 12:53:03 - [] D -- C:\Documents and Settings\moi\Application Data\Rovio
O43 - CFD: 2014/10/02 12:53:13 - [] D -- C:\Documents and Settings\moi\Application Data\Rovio Entertainment Ltd
O43 - CFD: 2014/06/08 22:13:50 - [] D -- C:\Documents and Settings\moi\Application Data\Sahmon Games
O43 - CFD: 2014/07/22 21:04:33 - [] D -- C:\Documents and Settings\moi\Application Data\Samsung
O43 - CFD: 2014/06/27 20:21:47 - [] RHD -- C:\Documents and Settings\moi\Application Data\SecuROM
O43 - CFD: 2012/04/28 22:19:57 - [] D -- C:\Documents and Settings\moi\Application Data\SkyMonk
O43 - CFD: 2015/07/10 11:43:37 - [] D -- C:\Documents and Settings\moi\Application Data\Skype
O43 - CFD: 2014/08/12 06:30:49 - [] D -- C:\Documents and Settings\moi\Application Data\skypePM
O43 - CFD: 2014/11/15 17:47:01 - [0] D -- C:\Documents and Settings\moi\Application Data\Smadav
O43 - CFD: 2011/04/25 17:36:46 - [] D -- C:\Documents and Settings\moi\Application Data\Softplicity
O43 - CFD: 2014/07/09 23:05:30 - [] D -- C:\Documents and Settings\moi\Application Data\Software Informer
O43 - CFD: 2015/01/05 18:30:57 - [] D -- C:\Documents and Settings\moi\Application Data\sparta111
O43 - CFD: 2011/05/08 22:09:21 - [] D -- C:\Documents and Settings\moi\Application Data\Sun
O43 - CFD: 2012/08/03 02:42:31 - [] D -- C:\Documents and Settings\moi\Application Data\SWClient
O43 - CFD: 2013/01/26 13:29:42 - [] D -- C:\Documents and Settings\moi\Application Data\SweetScape
O43 - CFD: 2014/11/02 14:01:55 - [] D -- C:\Documents and Settings\moi\Application Data\TuneUp Software
O43 - CFD: 2012/04/03 23:09:27 - [] D -- C:\Documents and Settings\moi\Application Data\Ufasoft
O43 - CFD: 2011/03/01 22:44:45 - [] D -- C:\Documents and Settings\moi\Application Data\URSoft
O43 - CFD: 2015/07/05 22:17:49 - [] D -- C:\Documents and Settings\moi\Application Data\uTorrent
O43 - CFD: 2015/07/10 05:33:30 - [] D -- C:\Documents and Settings\moi\Application Data\vlc
O43 - CFD: 2011/08/30 04:25:46 - [] D -- C:\Documents and Settings\moi\Application Data\Web Page Maker
O43 - CFD: 2012/10/07 12:46:01 - [] D -- C:\Documents and Settings\moi\Application Data\WinAVI
O43 - CFD: 2011/05/07 00:49:08 - [] D -- C:\Documents and Settings\moi\Application Data\WinRAR
O43 - CFD: 2015/01/16 13:26:20 - [] D -- C:\Documents and Settings\moi\Application Data\XnView
O43 - CFD: 2012/08/18 02:29:33 - [0] D -- C:\Documents and Settings\moi\Application Data\Yahoo!
O43 - CFD: 2015/07/12 18:38:15 - [] D -- C:\Documents and Settings\moi\Application Data\ZHP
O43 - CFD: 2011/08/24 13:38:35 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Adobe
O43 - CFD: 2011/10/20 01:28:24 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Ahead
O43 - CFD: 2014/04/20 22:36:37 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Akamai
O43 - CFD: 2011/10/19 21:26:46 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Apple
O43 - CFD: 2011/10/19 21:28:41 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Apple Computer
O43 - CFD: 2011/02/14 12:05:03 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Ares
O43 - CFD: 2015/04/29 11:47:48 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Avg2015
O43 - CFD: 2013/09/13 19:40:07 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\avgchrome
O43 - CFD: 2015/04/16 21:33:59 - [0] D -- C:\Documents and Settings\moi\Local Settings\Application Data\BAVData
O43 - CFD: 2011/09/17 07:18:11 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\BearShare =>PUP.BearShare
O43 - CFD: 2013/01/01 21:32:07 - [0] D -- C:\Documents and Settings\moi\Local Settings\Application Data\BitZipper
O43 - CFD: 2014/04/22 21:49:52 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\cache
O43 - CFD: 2014/11/21 15:37:37 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\CatalinaGroup
O43 - CFD: 2014/12/10 23:26:12 - [0] D -- C:\Documents and Settings\moi\Local Settings\Application Data\ChatVibes.com
O43 - CFD: 2013/08/23 10:09:34 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\COMODO
O43 - CFD: 2014/07/10 02:50:40 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\CrashRpt =>SUP.CrashReports
O43 - CFD: 2014/09/21 01:02:46 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\DFX
O43 - CFD: 2014/07/22 20:59:47 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Downloaded Installations
O43 - CFD: 2013/07/16 05:48:35 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Electronic_Arts_Inc
O43 - CFD: 2014/09/12 17:37:31 - [0] D -- C:\Documents and Settings\moi\Local Settings\Application Data\F-Secure
O43 - CFD: 2013/09/01 01:59:08 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Facebook
O43 - CFD: 2015/02/28 12:45:10 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Google
O43 - CFD: 2011/04/26 21:39:56 - [0] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Help
O43 - CFD: 2014/12/08 20:27:51 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Installer
O43 - CFD: 2014/06/10 19:28:52 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Kiloo Games
O43 - CFD: 2013/08/03 12:55:18 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\libimobiledevice
O43 - CFD: 2015/04/29 11:47:48 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\MFAData
O43 - CFD: 2015/06/24 23:15:40 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Microsoft
O43 - CFD: 2011/05/10 10:31:24 - [0] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Microsoft Help
O43 - CFD: 2014/05/26 12:02:08 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Mozilla
O43 - CFD: 2013/07/04 09:08:38 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\MPCBrowser
O43 - CFD: 2014/07/19 21:58:03 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\NewSoft
O43 - CFD: 2013/04/24 13:10:27 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Nokia
O43 - CFD: 2013/04/24 14:30:16 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\NokiaAccount
O43 - CFD: 2012/07/30 13:34:13 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\PCHealth
O43 - CFD: 2013/06/25 23:23:21 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Proxure
O43 - CFD: 2014/07/23 06:49:24 - [0] D -- C:\Documents and Settings\moi\Local Settings\Application Data\RealVNC
O43 - CFD: 2012/09/24 23:48:38 - [0] D -- C:\Documents and Settings\moi\Local Settings\Application Data\SISContents
O43 - CFD: 2012/04/02 12:17:49 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\SKIDROW
O43 - CFD: 2014/09/24 11:57:21 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Skype
O43 - CFD: 2015/01/25 18:20:18 - [0] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Sparta
O43 - CFD: 2014/09/21 01:47:56 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\SRS Labs
O43 - CFD: 2012/07/10 19:22:41 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Sun
O43 - CFD: 2015/07/12 13:06:10 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Temp
O43 - CFD: 2014/11/02 14:01:55 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\TuneUp Software
O43 - CFD: 2013/01/24 12:26:50 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\Unity
O43 - CFD: 2011/04/25 17:29:10 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\WDSetup
O43 - CFD: 2012/10/07 12:46:01 - [] D -- C:\Documents and Settings\moi\Local Settings\Application Data\WinAVI
O43 - CFD: 2015/02/17 15:59:42 - [0] D -- C:\Documents and Settings\moi\Local Settings\Application Data\WMTools Downloaded Files
O43 - CFD: 2015/02/02 07:32:27 - [] D -- C:\Documents and Settings\moi\Menu Démarrer\Programmes\Accessoires
O43 - CFD: 2012/07/15 10:31:00 - [] D -- C:\Documents and Settings\moi\Menu Démarrer\Programmes\CS_Worx
O43 - CFD: 2015/07/05 19:54:17 - [] D -- C:\Documents and Settings\moi\Menu Démarrer\Programmes\Dll Suite 2014
O43 - CFD: 2015/04/29 23:06:08 - [] D -- C:\Documents and Settings\moi\Menu Démarrer\Programmes\Dropbox
O43 - CFD: 2014/07/23 06:30:02 - [] D -- C:\Documents and Settings\moi\Menu Démarrer\Programmes\Démarrage
O43 - CFD: 2014/04/14 12:33:39 - [] D -- C:\Documents and Settings\moi\Menu Démarrer\Programmes\Eidos Interactive
O43 - CFD: 2013/09/26 15:23:26 - [] D -- C:\Documents and Settings\moi\Menu Démarrer\Programmes\Google Chrome
O43 - CFD: 2014/09/27 13:01:29 - [] D -- C:\Documents and Settings\moi\Menu Démarrer\Programmes\Internet Download Manager
O43 - CFD: 2015/04/29 12:30:48 - [0] D -- C:\Documents and Settings\moi\Menu Démarrer\Programmes\Lightworks
O43 - CFD: 2015/07/06 19:22:33 - [] D -- C:\Documents and Settings\moi\Menu Démarrer\Programmes\Malwarebytes Anti-Malware
O43 - CFD: 2015/02/21 23:45:54 - [] RD -- C:\Documents and Settings\moi\Menu Démarrer\Programmes\Outils d'administration
O43 - CFD: 2015/07/04 01:44:44 - [] D -- C:\Documents and Settings\moi\Menu Démarrer\Programmes\PowerISO
O43 - CFD: 2015/06/01 11:56:43 - [] D -- C:\Documents and Settings\moi\Menu Démarrer\Programmes\Rockstar Games
O43 - CFD: 2015/07/06 18:47:43 - [] D -- C:\Documents and Settings\moi\Menu Démarrer\Programmes\Sparta
O43 - CFD: 2015/03/14 20:40:41 - [] D -- C:\Documents and Settings\moi\Menu Démarrer\Programmes\VideoLAN
O43 - CFD: 2012/07/04 19:33:27 - [] D -- C:\Documents and Settings\moi\Menu Démarrer\Programmes\WinRAR
O43 - CFD: 2015/07/06 15:13:56 - [] D -- C:\Documents and Settings\moi\Menu Démarrer\Programmes\ZHP

---\\ Enumération des clés de registre StartupReg (SMSR) (O53) (30) - 6s
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- c:\program files\fichiers communs\Adobe\ARM\1.0\AdobeARM.exe
O53 - SMSR:HKLM\...\startupreg\AdopeFlash [Key] . (.AutoIt Team - AutoIt v3 Script.) -- C:\Google\AutoIt3.exe
O53 - SMSR:HKLM\...\startupreg\AdopeUpdate [Key] . (.AutoIt Team - AutoIt v3 Script.) -- c:\Google\AutoIt3.exe
O53 - SMSR:HKLM\...\startupreg\AntiWormUpdate [Key] . (.AutoIt Team - AutoIt v3 Script.) -- C:\Google\AutoIt3.exe
O53 - SMSR:HKLM\...\startupreg\APSDaemon [Key] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Fichiers communs\Apple\Apple Application Support\APSDaemon.exe
O53 - SMSR:HKLM\...\startupreg\AvastUI.exe [Key] . (.Avast Software s.r.o. - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O53 - SMSR:HKLM\...\startupreg\Avira Systray [Key] . (.Avira Operations GmbH & Co. KG - Avira.) -- C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe
O53 - SMSR:HKLM\...\startupreg\BluetoothAuthenticationAgent [Key] . (.Microsoft Corporation - Exécuter une DLL en tant qu'application.) -- rundll32.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\C-cleaner [Key] . (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\system32\wscript.exe
O53 - SMSR:HKLM\...\startupreg\CTFMON.EXE [Key] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O53 - SMSR:HKLM\...\startupreg\EPSON Stylus CX4300 Series [Key] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\E_FATICAR.EXE
O53 - SMSR:HKLM\...\startupreg\Facebook Update [Key] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Documents and Settings\moi\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe
O53 - SMSR:HKLM\...\startupreg\HDAudDeck [Key] . (.VIA Technologies, Inc. - HDeck MFC Application.) -- C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe
O53 - SMSR:HKLM\...\startupreg\HotKeysCmds [Key] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe
O53 - SMSR:HKLM\...\startupreg\IDMan [Key] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe
O53 - SMSR:HKLM\...\startupreg\IERESETATTRIB [Key] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\WINDOWS\system32\cmd.exe
O53 - SMSR:HKLM\...\startupreg\IgfxTray [Key] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe
O53 - SMSR:HKLM\...\startupreg\iTunesHelper [Key] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O53 - SMSR:HKLM\...\startupreg\KernelFaultCheck [Key] . (...) -- C:\WINDOWS\system32\dumprep 0 -k (.not file.)
O53 - SMSR:HKLM\...\startupreg\NewJavaInstall [Key] . (.AutoIt Team - AutoIt v3 Script.) -- C:\Google\AutoIt3.exe
O53 - SMSR:HKLM\...\startupreg\Persistence [Key] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe
O53 - SMSR:HKLM\...\startupreg\PWRISOVM.EXE [Key] . (.Power Software Ltd - PowerISO Virtual Drive Manager.) -- C:\Program Files\PowerISO\PWRISOVM.EXE
O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
O53 - SMSR:HKLM\...\startupreg\swg [Key] . (.Google Inc. - GoogleToolbarNotifier.) -- c:\program files\Google\googletoolbarnotifier\googletoolbarnotifier.exe
O53 - SMSR:HKLM\...\startupreg\Synchronization Manager [Key] . (.Microsoft Corporation - Gestionnaire de synchronisation Microsoft.) -- C:\WINDOWS\system32\mobsync.exe
O53 - SMSR:HKLM\...\startupreg\Systweak Wallpaper Changer [Key] . (...) -- wallpaper.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\UserFaultCheck [Key] . (...) -- C:\WINDOWS\system32\dumprep 0 -u (.not file.)
O53 - SMSR:HKLM\...\startupreg\uTorrent [Key] . (.BitTorrent Inc. - µTorrent.) -- C:\Documents and Settings\moi\Application Data\uTorrent\uTorrent.exe
O53 - SMSR:HKLM\...\startupreg\VideoLAN [Key] . (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\system32\wscript.exe
O53 - SMSR:HKLM\...\startupreg\Windows Update [Key] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- c:\WINDOWS\system32\cmd.exe

---\\ Liste des pilotes du système (SDL) (O58) (123) - 41s
O58 - SDL:2015/07/06 13:04:04 A . (.Advanced Micro Devices, Inc. - AMD Win2000 AGP Filter.) -- C:\WINDOWS\System32\drivers\amdagp.sys [43008]
O58 - SDL:2000/03/29 15:17:42 C . (...) -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS [5824]
O58 - SDL:2015/04/29 22:30:34 A . (...) -- C:\WINDOWS\System32\drivers\aswHwid.sys [24144]
O58 - SDL:2015/04/29 22:30:34 A . (.Avast Software s.r.o. - avast! File System Minifilter for Windows 2.) -- C:\WINDOWS\System32\drivers\aswMonFlt.sys [74976]
O58 - SDL:2014/09/27 23:03:11 A . (.ALWIL Software - avast! Filtering NDIS driver.) -- C:\WINDOWS\System32\drivers\aswNdis.sys [12112]
O58 - SDL:2015/04/29 22:30:34 A . (.Avast Software s.r.o. - avast! TDI Redirect Driver.) -- C:\WINDOWS\System32\drivers\aswRdr.sys [55200]
O58 - SDL:2015/04/29 22:30:34 A . (...) -- C:\WINDOWS\System32\drivers\aswRvrt.sys [49904]
O58 - SDL:2015/04/29 22:30:25 A . (.Avast Software s.r.o. - avast! Virtualization Driver.) -- C:\WINDOWS\System32\drivers\aswSnx.sys [787760]
O58 - SDL:2015/04/29 22:30:34 A . (.Avast Software s.r.o. - avast! self protection module.) -- C:\WINDOWS\System32\drivers\aswSP.sys [427992]
O58 - SDL:2015/04/29 22:30:34 A . (.Avast Software s.r.o. - avast! TDI Filter Driver.) -- C:\WINDOWS\System32\drivers\aswTdi.sys [57888]
O58 - SDL:2015/04/29 22:30:34 A . (...) -- C:\WINDOWS\System32\drivers\aswVmm.sys [209048]
O58 - SDL:2015/07/06 13:04:09 A . (.ATI Technologies Inc. - ATI WDM BT829 MiniDriver (A).) -- C:\WINDOWS\System32\drivers\ati1btxx.sys [56623]
O58 - SDL:2015/07/06 13:04:11 A . (.ATI Technologies Inc. - ATI Specialized MVD VBI Codec.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys [11615]
O58 - SDL:2015/07/06 13:04:15 A . (.ATI Technologies Inc. - ATI Specialized PCD VBI Codec.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys [12047]
O58 - SDL:2015/07/06 13:04:20 A . (.ATI Technologies Inc. - ATI Rage Theater Audio WDM Minidriver.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys [30671]
O58 - SDL:2015/07/06 13:04:28 A . (.ATI Technologies Inc. - ATI WDM Rage Theater MiniDriver.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys [63663]
O58 - SDL:2015/07/06 18:36:40 A . (.ATI Technologies Inc. - ATI WDM TV Sound MiniDriver.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys [26367]
O58 - SDL:2015/07/06 13:04:34 A . (.ATI Technologies Inc. - ATI WDM Teletext Decoder.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys [21343]
O58 - SDL:2015/07/06 18:36:44 A . (.ATI Technologies Inc. - ATI WDM TVTuner MiniDriver.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys [36463]
O58 - SDL:2015/07/06 18:36:51 A . (.ATI Technologies Inc. - ATI WDM CrossBar MiniDriver.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys [29455]
O58 - SDL:2015/07/06 13:04:42 A . (.ATI Technologies Inc. - ATI WDM TVAUDIO_CrossBar MiniDriver.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys [34735]
O58 - SDL:2008/04/13 18:55:32 A . (.ATI Technologies Inc. - Pilote de miniport ATI RAGE 128.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys [327168]
O58 - SDL:2008/04/13 18:55:34 A . (.ATI Technologies Inc. - Pilote de miniport ATI RAGE 128.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys [701440]
O58 - SDL:2015/07/06 13:06:10 A . (.ATI Technologies Inc. - ATI WDM BT829 MiniDriver (A).) -- C:\WINDOWS\System32\drivers\atinbtxx.sys [57856]
O58 - SDL:2015/07/06 13:06:14 A . (.ATI Technologies Inc. - ATI Specialized MVD VBI Codec RT2.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys [13824]
O58 - SDL:2015/07/06 18:36:55 A . (.ATI Technologies Inc. - ATI Specialized PCD VBI Codec RT2.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys [14336]
O58 - SDL:2015/07/06 13:06:23 A . (.ATI Technologies Inc. - ATI Rage Theater Audio WDM Minidriver.) -- C:\WINDOWS\System32\drivers\atinraxx.sys [52224]
O58 - SDL:2015/07/06 13:06:55 A . (.ATI Technologies Inc. - ATI WDM Rage Theater MiniDriver RT2.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys [104960]
O58 - SDL:2015/07/06 13:06:58 A . (.ATI Technologies Inc. - ATI WDM TV Sound MiniDriver.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys [28672]
O58 - SDL:2015/07/06 13:07:02 A . (.ATI Technologies Inc. - ATI WDM Teletext Decoder.) -- C:\WINDOWS\System32\drivers\atinttxx.sys [13824]
O58 - SDL:2015/07/06 13:07:11 A . (.ATI Technologies Inc. - ATI WDM TVTuner MiniDriver.) -- C:\WINDOWS\System32\drivers\atintuxx.sys [73216]
O58 - SDL:2015/07/06 13:07:15 A . (.ATI Technologies Inc. - ATI WDM CrossBar MiniDriver.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys [31744]
O58 - SDL:2015/07/06 13:07:21 A . (.ATI Technologies Inc. - ATI WDM TVAUDIO_CrossBar MiniDriver RT2.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys [63488]
O58 - SDL:2006/05/12 13:17:10 A . (.Broadcom Corporation. - Bluetooth BTPORT Driver for Windows 2000.) -- C:\WINDOWS\System32\drivers\btwmodem.sys [30189]
O58 - SDL:2001/10/02 19:17:52 C . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\System32\drivers\cinemst2.sys [262528]
O58 - SDL:2001/10/02 19:17:52 C . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\System32\drivers\cpqdap01.sys [11776]
O58 - SDL:2007/05/03 10:27:46 RA . (.Copyright (C) 2005 SRS Labs, Inc. - SRS Labs CSII Decoder Kernel DLL.) -- C:\WINDOWS\System32\drivers\csiidecoder_kern_i386.sys [37248]
O58 - SDL:2008/04/13 19:05:08 C . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) -- C:\WINDOWS\System32\drivers\dmboot.sys [800256]
O58 - SDL:2008/04/13 19:05:14 N . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\System32\drivers\dmio.sys [154496]
O58 - SDL:2001/10/02 19:17:30 N . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\drivers\dmload.sys [5888]
O58 - SDL:2003/03/02 18:44:26 A . (...) -- C:\WINDOWS\System32\drivers\enodpl.sys [7552]
O58 - SDL:2015/07/06 13:07:42 A . (.Creative Technology Ltd. - ENSONIQ AudioPCI 97 WDM Audio Miniport.) -- C:\WINDOWS\System32\drivers\es1371mp.sys [40704]
O58 - SDL:2012/08/21 13:01:22 A . (.GEAR Software Inc. - CD DVD Filter.) -- C:\WINDOWS\System32\drivers\GEARAspiWDM.sys [26840]
O58 - SDL:2008/04/13 09:36:06 N . (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\System32\drivers\hdaudbus.sys [144384]
O58 - SDL:2015/07/06 18:37:17 A . (.Conexant Systems, Inc. - HSF_HWB2 WDM driver.) -- C:\WINDOWS\System32\drivers\hsfbs2s2.sys [220032]
O58 - SDL:2015/07/06 13:08:59 A . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\WINDOWS\System32\drivers\hsfcxts2.sys [685056]
O58 - SDL:2015/07/06 18:38:43 A . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\WINDOWS\System32\drivers\hsfdpsp2.sys [1041536]
O58 - SDL:2014/06/09 09:40:58 A . (.Tonec Inc. - Internet Download Manager TDI Driver.) -- C:\WINDOWS\System32\drivers\idmtdi.sys [121440]
O58 - SDL:2010/01/13 12:18:36 A . (.Intel Corporation - Intel Graphics Miniport Driver.) -- C:\WINDOWS\System32\drivers\igxpmp32.sys [1730272]
O58 - SDL:2002/10/13 20:17:00 A . (...) -- C:\WINDOWS\System32\drivers\litdpl.sys [4736]
O58 - SDL:2015/06/18 08:41:36 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbam.sys [23256]
O58 - SDL:2015/06/18 08:41:46 A . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\WINDOWS\System32\drivers\mbamchameleon.sys [121560]
O58 - SDL:2015/07/09 02:41:46 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [98520]
O58 - SDL:2015/07/06 13:09:14 A . (.Conexant - Diagnostic Interface DRIVER.) -- C:\WINDOWS\System32\drivers\mdmxsdk.sys [11868]
O58 - SDL:2008/02/14 14:12:00 N . (.Creative Technology Ltd. - Creative WDM Audio Driver (32-bit).) -- C:\WINDOWS\System32\drivers\monfilt.sys [1389056]
O58 - SDL:2015/07/06 13:09:25 A . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys [126686]
O58 - SDL:2015/07/06 18:39:48 A . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\mtlstrm.sys [1309184]
O58 - SDL:2015/07/06 13:20:14 A . (.Matrox Graphics Inc. - Matrox Parhelia Miniport Driver.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys [452736]
O58 - SDL:2003/10/24 17:05:58 C . (.Windows (R) Server 2003 DDK provider - RawPacket NDIS Protocol Driver.) -- C:\WINDOWS\System32\drivers\Ndisprot.sys [22016]
O58 - SDL:2001/10/02 19:17:52 C . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\nikedrv.sys [12032]
O58 - SDL:2015/07/06 13:20:24 A . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys [180360]
O58 - SDL:2015/07/06 13:22:22 A . (.NVIDIA Corporation - NVIDIA Compatible Windows 2000 Miniport Dri.) -- C:\WINDOWS\System32\drivers\nv4_mini.sys [1897408]
O58 - SDL:2015/07/06 13:22:26 A . (.AMD Inc. - NDIS 5.0 driver.) -- C:\WINDOWS\System32\drivers\pcntpci5.sys [35328]
O58 - SDL:2001/10/02 19:18:56 N . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Lib.) -- C:\WINDOWS\System32\drivers\ptilink.sys [17792]
O58 - SDL:2015/07/06 13:22:29 A . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\recagent.sys [13776]
O58 - SDL:2001/10/02 19:17:52 C . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\System32\drivers\rio8drv.sys [12032]
O58 - SDL:2001/10/02 19:17:52 C . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\riodrv.sys [12032]
O58 - SDL:2012/10/26 21:20:42 A . (.Realtek Semiconductor Corporation - Realtek 10/100/1000 NDIS 5.1 Driver.) -- C:\WINDOWS\System32\drivers\Rtenicxp.sys [372112]
O58 - SDL:2015/07/06 13:22:45 A . (.S3 Graphics, Inc. - S3 ProSavage(DDR) & Twister Miniport Driver.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys [166912]
O58 - SDL:2015/04/08 03:01:28 A . (.Power Software Ltd - PowerISO Virtual Drive.) -- C:\WINDOWS\System32\drivers\scdemu.sys [113984]
O58 - SDL:2008/04/13 09:39:16 C . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\WINDOWS\System32\drivers\secdrv.sys [20480]
O58 - SDL:2007/11/20 18:35:48 N . (.Prolific Technology Inc. - USB-to-Serial Cable Driver.) -- C:\WINDOWS\System32\drivers\ser2pl.sys [49792]
O58 - SDL:2015/07/06 13:22:49 A . (.Silicon Integrated Systems Corporation - SiS NT AGP Filter.) -- C:\WINDOWS\System32\drivers\sisagp.sys [40960]
O58 - SDL:2015/07/06 13:22:57 A . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\slnt7554.sys [129535]
O58 - SDL:2015/07/06 13:23:27 A . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\slntamr.sys [404990]
O58 - SDL:2015/07/06 13:23:37 A . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\slnthal.sys [95424]
O58 - SDL:2015/07/06 13:23:41 A . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\slwdmsup.sys [13240]
O58 - SDL:2001/08/17 21:56:16 N . (.Sony Corporation - Sony USB Lower Filter driver.) -- C:\WINDOWS\System32\drivers\SONYPVU1.SYS [7552]
O58 - SDL:2007/05/03 10:28:04 RA . (.Copyright (C) 2006 SRS Labs, Inc. - SRS WOW HD, TSXT, CSII, Mobile HD Standalon.) -- C:\WINDOWS\System32\drivers\SRS_SSCFilter_i386.sys [39552]
O58 - SDL:2011/10/18 02:43:42 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudbus.sys [78136]
O58 - SDL:2010/09/17 18:42:46 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudmdm.sys [179520]
O58 - SDL:2010/09/17 18:42:46 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Mobile Logging Device Driver (M.) -- C:\WINDOWS\System32\drivers\ssudserd.sys [179520]
O58 - SDL:2007/05/03 10:27:42 RA . (.Copyright (C) 2005 SRS Labs, Inc. - SRS Labs Surround HP kernel DLL.) -- C:\WINDOWS\System32\drivers\Surroundhp_kern_i386.sys [47360]
O58 - SDL:2012/01/11 03:38:56 A . (.The OpenVPN Project - TAP-Win32 Virtual Network Driver.) -- C:\WINDOWS\System32\drivers\tap0901.sys [26624]
O58 - SDL:2012/12/05 08:27:46 A . (.Seiko Epson Corporation - EPSON USB Device Driver for TM/BA/EU Printe.) -- C:\WINDOWS\System32\drivers\TMUSBXP.sys [49408]
O58 - SDL:2014/09/12 11:59:37 A . (...) -- C:\WINDOWS\System32\drivers\TrueSight.sys [33512]
O58 - SDL:2001/10/02 19:17:52 C . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\System32\drivers\tsbvcap.sys [21376]
O58 - SDL:2007/05/03 10:27:42 RA . (.Copyright (C) 2006 SRS Labs, Inc. - SRS Labs TruSurround HD 4 kernel DLL.) -- C:\WINDOWS\System32\drivers\tshd4_kern_i386.sys [46592]
O58 - SDL:2014/11/24 12:16:14 A . (.Oracle Corporation - VirtualBox Support Driver.) -- C:\WINDOWS\System32\drivers\VBoxDrv.sys [744520]
O58 - SDL:2014/11/24 12:16:00 A . (.Oracle Corporation - VirtualBox Host-Only Network Adapter Driver.) -- C:\WINDOWS\System32\drivers\VBoxNetAdp.sys [116184]
O58 - SDL:2014/11/24 12:16:00 A . (.Oracle Corporation - VirtualBox USB Monitor Driver.) -- C:\WINDOWS\System32\drivers\VBoxUSBMon.sys [104384]
O58 - SDL:2001/10/02 19:17:52 C . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\System32\drivers\vdmindvd.sys [58112]
O58 - SDL:2012/10/22 09:43:20 RA . (.VIA Technologies, Inc. - VIA High Definition Audio Function Driver.) -- C:\WINDOWS\System32\drivers\viahduaa.sys [2558200]
O58 - SDL:2015/07/06 13:24:10 A . (.VMware, Inc. - VMware PCI VMCI Bus Device.) -- C:\WINDOWS\System32\drivers\vmci.sys [54960]
O58 - SDL:2015/07/06 13:24:13 A . (.VMware, Inc. - VMware Replay Debugging Driver.) -- C:\WINDOWS\System32\drivers\vmdebug.sys [19504]
O58 - SDL:2015/07/06 13:24:17 A . (.VMware, Inc. - VMware HGFS File System Driver.) -- C:\WINDOWS\System32\drivers\vmhgfs.sys [117552]
O58 - SDL:2015/07/06 13:24:19 A . (.VMware, Inc. - VMware Pointing Device Driver.) -- C:\WINDOWS\System32\drivers\vmmouse.sys [11696]
O58 - SDL:2015/07/06 13:24:23 A . (.VMware, Inc. - VMware SCSI Controller Driver.) -- C:\WINDOWS\System32\drivers\vmscsi.sys [17968]
O58 - SDL:2015/07/06 13:24:31 A . (.VMware, Inc. - VMware PCI Ethernet Adapter.) -- C:\WINDOWS\System32\drivers\vmxnet.sys [36400]
O58 - SDL:2015/07/06 13:24:28 A . (.VMware, Inc. - VMware SVGA II Miniport.) -- C:\WINDOWS\System32\drivers\vmx_svga.sys [63920]
O58 - SDL:2012/12/02 09:02:46 A . (.Eterlogic Software - Virtual Serial Port Emulator kernel driver.) -- C:\WINDOWS\System32\drivers\VSPE.sys [22528]
O58 - SDL:2015/07/06 13:24:36 A . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\wadv07nt.sys [11807]
O58 - SDL:2015/07/06 13:24:39 A . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\wadv08nt.sys [11295]
O58 - SDL:2015/07/06 13:24:42 A . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\wadv09nt.sys [11871]
O58 - SDL:2015/07/06 13:24:45 A . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\wadv11nt.sys [11935]
O58 - SDL:2015/07/06 13:24:47 A . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\watv06nt.sys [22271]
O58 - SDL:2015/07/06 13:24:50 A . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\watv10nt.sys [25471]
O58 - SDL:2007/05/03 10:27:44 RA . (.SRS Labs, Inc. - WOW HD kernel mode DLL for Windows.) -- C:\WINDOWS\System32\drivers\wowhd_kern_i386.sys [32000]
O58 - SDL:2001/10/02 19:17:16 C . (...) -- C:\WINDOWS\System32\ansi.sys [9037]
O58 - SDL:2001/10/02 19:17:26 N . (...) -- C:\WINDOWS\System32\country.sys [27097]
O58 - SDL:2001/10/02 19:18:02 N . (...) -- C:\WINDOWS\System32\himem.sys [4912]
O58 - SDL:2001/10/02 19:18:12 C . (...) -- C:\WINDOWS\System32\key01.sys [42809]
O58 - SDL:2008/04/13 09:50:56 C . (...) -- C:\WINDOWS\System32\keyboard.sys [42537]
O58 - SDL:2001/10/02 19:18:38 N . (...) -- C:\WINDOWS\System32\ntdos.sys [27916]
O58 - SDL:2001/10/02 19:18:38 C . (...) -- C:\WINDOWS\System32\ntdos404.sys [29146]
O58 - SDL:2001/10/02 19:18:38 C . (...) -- C:\WINDOWS\System32\ntdos411.sys [29370]
O58 - SDL:2001/10/02 19:18:38 C . (...) -- C:\WINDOWS\System32\ntdos412.sys [29274]
O58 - SDL:2001/10/02 19:18:38 C . (...) -- C:\WINDOWS\System32\ntdos804.sys [29146]
O58 - SDL:2008/04/13 09:49:52 N . (...) -- C:\WINDOWS\System32\ntio.sys [34000]
O58 - SDL:2008/04/13 09:49:44 C . (...) -- C:\WINDOWS\System32\ntio404.sys [34560]
O58 - SDL:2008/04/13 09:49:40 C . (...) -- C:\WINDOWS\System32\ntio411.sys [35648]
O58 - SDL:2008/04/13 09:49:44 C . (...) -- C:\WINDOWS\System32\ntio412.sys [35424]
O58 - SDL:2008/04/13 09:49:42 C . (...) -- C:\WINDOWS\System32\ntio804.sys [34560]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) (17) - 513s
O61 - LFC: 2015/07/08 17:30:34 A . (..) -- C:\Documents and Settings\moi\Mes documents\savegames\New001\savegame.bin [4718592]
O61 - LFC: 2015/07/08 17:30:34 A . (..) -- C:\Documents and Settings\moi\Mes documents\savegames\New001\checkpoints\autosave.bin [4718592]
O61 - LFC: 2015/07/08 17:28:32 A . (..) -- C:\Documents and Settings\moi\Mes documents\savegames\New001\checkpoints\autosave1.bin [4718592]
O61 - LFC: 2015/07/05 20:12:40 A . (..) -- C:\Documents and Settings\moi\Mes documents\savegames\New001\checkpoints\checkpoint0.bin [4718592]
O61 - LFC: 2015/07/06 19:23:24 A . (..) -- C:\Documents and Settings\moi\Mes documents\savegames\New001\checkpoints\checkpoint1.bin [4718592]
O61 - LFC: 2015/07/06 19:23:24 A . (..) -- C:\Documents and Settings\moi\Mes documents\savegames\New001\checkpoints\checkpoint2.bin [4718592]
O61 - LFC: 2015/07/07 18:15:40 A . (..) -- C:\Documents and Settings\moi\Mes documents\savegames\New001\checkpoints\checkpoint3.bin [4718592]
O61 - LFC: 2015/07/07 18:15:40 A . (..) -- C:\Documents and Settings\moi\Mes documents\savegames\New001\checkpoints\checkpoint4.bin [4718592]
O61 - LFC: 2015/07/08 14:09:40 A . (..) -- C:\Documents and Settings\moi\Mes documents\savegames\New001\checkpoints\checkpoint5.bin [4718592]
O61 - LFC: 2015/07/08 14:09:40 A . (..) -- C:\Documents and Settings\moi\Mes documents\savegames\New001\checkpoints\checkpoint6.bin [4718592]
O61 - LFC: 2015/07/08 14:53:02 A . (..) -- C:\Documents and Settings\moi\Mes documents\savegames\New001\checkpoints\checkpoint7.bin [4718592]
O61 - LFC: 2015/07/12 06:22:57 A . (..) -- C:\Documents and Settings\moi\Mes documents\My Games\Halo\savegame.bin [4718592]
O61 - LFC: 2015/07/12 02:48:36 A . (..) -- C:\Documents and Settings\moi\Mes documents\My Games\Halo\savegames\PastoRe\savegame.bin [4718592]
O61 - LFC: 2015/07/12 02:48:36 A . (..) -- C:\Documents and Settings\moi\Mes documents\My Games\Halo\savegames\PastoRe\checkpoints\autosave.bin [4718592]
O61 - LFC: 2015/07/12 16:55:33 A . (..) -- C:\Documents and Settings\moi\Local Settings\Application Data\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]
O61 - LFC: 2065/06/23 18:17:07 C . (.Babylon LTD Copyright (C) 2010.) -- C:\Documents and Settings\moi\Local Settings\Application Data\Google\Chrome\User Data\Temp\scoped_dir_18300\CRX_INSTALL\BabylonChromePI.dll [169472] =>PUP.Babylon
O61 - LFC: 2015/07/08 15:27:10 RA . (.Swearware.) -- C:\Documents and Settings\moi\Bureau\portes\ComboFix.exe [5632279]

---\\ Associations Shell Spawning (O67) (7) - 2s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\system32\wscript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Editeur du Registre.) -- C:\WINDOWS\regedit.exe

---\\ Menu de démarrage Internet (SMI) (O68) (11) - 4s
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\PROGRAM FILES\GOOGLE\CHROME\APPLICATION\CHROME.EXE
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Opera\launcher.exe
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (...) -- C:\Documents and Settings\moi\Local Settings\Application Data\Torch\Application\torch.exe =>PUP.Torch
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe

---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) (7) - 1s
O69 - SBI: SearchScopes [HKCU] $IESearchEngineGuid - (Alnaddy) - http://www.alnaddy.com/ =>Hijacker.Alnaddy
O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (@ieframe.dll,-12512) - http://search.live.com/
O69 - SBI: SearchScopes [HKCU] 8FECDED5-F67B-4B56-BE15-CC7252F82707 - (Alnaddy) - http://www.alnaddy.com/ =>Hijacker.Alnaddy
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {127DC68E-69F3-4217-8C0B-4D90196C6D05} [DefaultScope] - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {CC1C2299-0776-435C-BD5C-42CAB8F2D71E} - (Google) - http://www.google.com/

---\\ Enumère les services démarrés par Svchost (SSS) (O83) (40) - 9s
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\WINDOWS\system32\appmgmts.dll [176640]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\WINDOWS\system32\audiosrv.dll [42496]
O83 - Search Svchost Services: Browser (Browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\system32\browser.dll [78336]
O83 - Search Svchost Services: CryptSvc (CryptSvc) . (.Microsoft Corporation - Cryptographic Services.) -- C:\WINDOWS\system32\cryptsvc.dll [62464]
O83 - Search Svchost Services: DMServer (DMServer) . (.Microsoft Corp. - DLL Service gestionnaire de disque logique.) -- C:\WINDOWS\system32\dmserver.dll [24576]
O83 - Search Svchost Services: DHCP (DHCP) . (.Microsoft Corporation - Service client DHCP.) -- C:\WINDOWS\system32\dhcpcsvc.dll [127488]
O83 - Search Svchost Services: ERSvc (ERSvc) . (.Microsoft Corporation - Windows Error Reporting Service.) -- C:\WINDOWS\system32\ersvc.dll [23040]
O83 - Search Svchost Services: EventSystem (EventSystem) . (.Microsoft Corporation - .) -- C:\WINDOWS\system32\es.dll [253952]
O83 - Search Svchost Services: FastUserSwitchingCompatibility (FastUserSwitchingCompatibility) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680]
O83 - Search Svchost Services: HidServ (HidServ) . (.Microsoft Corporation - HID Audio Service.) -- C:\WINDOWS\system32\hidserv.dll [21504]
O83 - Search Svchost Services: LanmanServer (LanmanServer) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [99840]
O83 - Search Svchost Services: LanmanWorkstation (LanmanWorkstation) . (.Microsoft Corporation - Workstation Service DLL.) -- C:\WINDOWS\system32\wkssvc.dll [132096]
O83 - Search Svchost Services: Messenger (Messenger) . (.Microsoft Corporation - NT Messenger Service.) -- C:\WINDOWS\system32\msgsvc.dll [33792]
O83 - Search Svchost Services: Netman (Netman) . (.Microsoft Corporation - Gestionnaire de connexions réseau.) -- C:\WINDOWS\system32\netman.dll [198144]
O83 - Search Svchost Services: Nla (Nla) . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Micro.) -- C:\WINDOWS\system32\mswsock.dll [247808]
O83 - Search Svchost Services: Ntmssvc (Ntmssvc) . (.Microsoft Corporation - Gestionnaire de stockage amovible.) -- C:\WINDOWS\system32\ntmssvc.dll [438272]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\system32\rasauto.dll [88576]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\system32\rasmans.dll [186368]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\system32\mprdim.dll [53248]
O83 - Search Svchost Services: Schedule (Schedule) . (.Microsoft Corporation - Moteur du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [194560]
O83 - Search Svchost Services: Seclogon (Seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [18944]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\system32\sens.dll [39424]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à.) -- C:\WINDOWS\system32\ipnathlp.dll [332800]
O83 - Search Svchost Services: SRService (SRService) . (.Microsoft Corporation - Service de restauration du système.) -- C:\WINDOWS\system32\srsvc.dll [171520]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\WINDOWS\system32\tapisrv.dll [249856]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680]
O83 - Search Svchost Services: TrkWks (TrkWks) . (.Microsoft Corporation - Distributed Link Tracking Client.) -- C:\WINDOWS\system32\trkwks.dll [90112]
O83 - Search Svchost Services: W32Time (W32Time) . (.Microsoft Corporation - Service de temps Windows.) -- C:\WINDOWS\system32\w32time.dll [178176]
O83 - Search Svchost Services: WZCSVC (WZCSVC) . (.Microsoft Corporation - Service configuration automatique sans fil.) -- C:\WINDOWS\system32\wzcsvc.dll [483840]
O83 - Search Svchost Services: Wmi (Wmi) . (.Microsoft Corporation - API avancées Windows 32.) -- C:\WINDOWS\system32\advapi32.dll [685568]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\wmisvc.dll [145408]
O83 - Search Svchost Services: wscsvc (wscsvc) . (.Microsoft Corporation - Windows Security Center Service.) -- C:\WINDOWS\system32\wscsvc.dll [80896]
O83 - Search Svchost Services: xmlprov (xmlprov) . (.Microsoft Corporation - Network Provisioning Service.) -- C:\WINDOWS\system32\xmlprov.dll [129024]
O83 - Search Svchost Services: napagent (napagent) . (.Microsoft Corporation - Exécution du service Agent de quarantaine.) -- C:\WINDOWS\system32\qagentrt.dll [293376]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\WINDOWS\system32\kmsvc.dll [61440]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\system32\qmgr.dll [409088]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680]
O83 - Search Svchost Services: helpsvc (helpsvc) . (.Microsoft Corporation - Microsoft PCHealth Service Holder.) -- C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll [38400]
O83 - Search Svchost Services: WmdmPmSN (WmdmPmSN) . (.Microsoft Corporation - Microsoft Media Device Service Provider.) -- C:\WINDOWS\system32\mspmsnsv.dll [27136]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update AutoUpdate Service.) -- C:\WINDOWS\system32\wuauserv.dll [6656]

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) (12) - 26s
S1 - Demand [2013/06/11 20:44:52] [ 256904] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
S1 - Auto [2011/07/28 17:35:44] [ 262144] Arp Intelligent Protection Service (AIPS) . (.Arcai.com.) - C:\Program Files\netcut\services\aips.exe
S1 - Auto [2015/04/29 22:30:28] [ 343336] Avast Antivirus (avast! Antivirus) . (.Avast Software s.r.o..) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
S1 - Auto [2015/04/10 15:19:46] [ 205104] Avira Service Host (Avira.OE.ServiceHost) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe
S1 - Auto [2012/07/04 13:55:56] [ 116648] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
S1 - Demand [2012/07/04 13:55:56] [ 116648] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
S1 - Demand [2012/08/15 11:22:29] [ 194032] Google Software Updater (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
S1 - Auto [2012/05/04 19:29:46] [ 161664] Java Quick Starter (JavaQuickStarterService) . (.Oracle Corporation.) - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
S1 - Auto [2012/10/22 09:43:14] [ 88696] VIA Karaoke digital mixer Service (KaraokeService) . (.VIA Technologies, Inc..) - C:\WINDOWS\system32\KaraokeSer.exe
S1 - Auto [2015/06/18 08:39:46] [ 1871160] (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
S1 - Auto [2015/06/18 08:39:50] [ 1133880] (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
S1 - Auto [2015/02/18 20:11:32] [ 315488] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe

---\\ Scan Additionnel (O88) (9) - 0s
HKLM\SOFTWARE\dll-files.com =>PUP.DllFilesFixer
HKLM\SOFTWARE\ErrorLists-crcodedownloader =>Adware.CrossRider
HKCU\SOFTWARE\BearShare =>PUP.BearShare
HKCU\SOFTWARE\TBSB00001 =>PUP.Conduit
C:\Program Files\39e53a6e-c750-445d-b17f-0eade5201720 =>Adware.CrossRider
C:\Documents and Settings\moi\Local Settings\Application Data\BearShare =>PUP.BearShare
C:\Documents and Settings\moi\Local Settings\Application Data\CrashRpt =>SUP.CrashReports
C:\Documents and Settings\moi\Local Settings\Application Data\Google\Chrome\User Data\Temp\scoped_dir_18300\CRX_INSTALL\BabylonChromePI.dll =>PUP.Babylon
HKLM\SOFTWARE\Clients\StartMenuInternet\torch.exe\shell\Open\command [Bad: C:\Documents and Settings\moi\Local Settings\Application Data\Torch\Application\torch.exe ] =>PUP.Torch

---\\ Récapitulatif des détections trouvées sur votre station (8) - 0s
http://www.nicolascoolman.fr/blog =>PUP.DllFilesFixer
http://www.nicolascoolman.fr/pup-crossrider/ =>Adware.CrossRider
http://www.nicolascoolman.fr/pup-bearshare/ =>PUP.BearShare
http://www.nicolascoolman.fr/toolbar-conduit/ =>PUP.Conduit
http://www.nicolascoolman.fr/blog =>SUP.CrashReports
http://www.nicolascoolman.fr/pup-babylon/ =>PUP.Babylon
http://www.nicolascoolman.fr/blog =>PUP.Torch
http://www.nicolascoolman.fr/hijacker-alnaddy/ =>Hijacker.Alnaddy

~ End of the scan, 64702 items in 681 seconds (1091)(0)()

Publicité


Signaler le contenu de ce document

Publicité