cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.6.30.77 by Nicolas Coolman (2015\06\30)
~ Run by PROPRIETAIRE (Administrator) (2015/01/12 16:27:00)
~ Site : http://www.nicolascoolman.fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Pas de fichier réseau
~ Type : Scanner
~ Report : C:\Documents and Settings\PROPRIETAIRE\Bureau\ZHPDiag.txt
~ UAC : Deactivate
~ Boot Mode : Normal (Normal boot)
~ Windows XP, 32-bit Service Pack 2 (Build 2600)

---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 15 Model 79 Stepping 2, AuthenticAMD
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
~ Total physical RAM (KB): 1965232
~ System Restore: Activé (Enable)
~ System drive C: has 581 GB free of 610 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: ASUS-7906D1A371
~ User Name: PROPRIETAIRE
~ Logged in as Administrator

---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 581 GB free of 610 GB (System)
~ Drive E: has 29 GB free of 30 GB

---\\ Etat du Centre de Sécurité Windows (9) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Recherche particulière de fichiers génériques (22) - 0s
[MD5.4C33E5B9A6197B6ED215F6CFBA0A2DAA] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\WINDOWS\Explorer.exe [1036288]
[MD5.F5402CD47B7389DDC21F92119A906EEE] - (.Microsoft Corporation - Exécuter une DLL en tant qu'application.) () -- C:\WINDOWS\System32\rundll32.exe [33792]
[MD5.58FE94EF42E074F4CAD8BF02E70E6478] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\WINDOWS\System32\wininet.dll [660480]
[MD5.8D52AEDD07247B743A4D9BD372F69109] - (.Microsoft Corporation - Application d'ouverture de session Windows.) () -- C:\WINDOWS\System32\Winlogon.exe [506368]
[MD5.5AC495F4CB807B2B98AD2AD591E6D92E] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\WINDOWS\System32\drivers\AFD.sys [138496]
[MD5.CDFE4411A69C224BD1D11B2DA92DAC51] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) () -- C:\WINDOWS\System32\drivers\atapi.sys [95360]
[MD5.CD7D5152DF32B47F4E36F710B35AAE02] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\WINDOWS\System32\drivers\Cdfs.sys [63744]
[MD5.AF9C19B3100FE010496B1A27181FBF72] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\WINDOWS\System32\drivers\Cdrom.sys [49536]
[MD5.8B121FF880683607AB2AEF0340721718] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) () -- C:\WINDOWS\System32\drivers\Fips.sys [35072]
[MD5.3FCC124B6E08EE0E9351F717DD136939] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) () -- C:\WINDOWS\System32\drivers\HDAudBus.sys [138752]
[MD5.D1EFCBD693B5BA21314D06368C471070] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\WINDOWS\System32\drivers\i8042prt.sys [54400]
[MD5.F8AA320C6A0409C0380E5D8A99D76EC6] - (.Microsoft Corporation - IMAPI Kernel Driver.) () -- C:\WINDOWS\System32\drivers\Imapi.sys [41856]
[MD5.B5A8E215AC29D24D60B4D1250EF05ACE] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\WINDOWS\System32\drivers\IpNat.sys [134912]
[MD5.64537AA5C003A6AFEEE1DF819062D0D1] - (.Microsoft Corporation - IPSec Driver.) () -- C:\WINDOWS\System32\drivers\IPSec.sys [74752]
[MD5.1FD607FC67F7F7C633C3DA65BFC53D18] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\WINDOWS\System32\drivers\MRxSmb.sys [451456]
[MD5.0C80E410CD2F47134407EE7DD19CC86B] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\WINDOWS\System32\drivers\netBT.sys [162816]
[MD5.B78BE402C3F63DD55521F73876951CDD] - (.Microsoft Corporation - NT File System Driver.) () -- C:\WINDOWS\System32\drivers\ntfs.sys [574592]
[MD5.318696359AC7DF48D1E51974EC527DD2] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\WINDOWS\System32\drivers\Parport.sys [80384]
[MD5.98FAEB4A4DCF812BA1C6FCA4AA3E115C] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [51328]
[MD5.A2CAE2C60BC37E0751EF9DDA7CEAF4AD] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\WINDOWS\System32\drivers\rdpdr.sys [196864]
[MD5.2CC30B68DD62B73D444A41322CD7FC4C] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) () -- C:\WINDOWS\System32\drivers\redbook.sys [58496]
[MD5.313B1A0D5DB26DFE1C34A6C13B2CE0A7] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\WINDOWS\System32\drivers\volsnap.sys [53376]

---\\ Processus lancés (7) - 1s
[MD5.85A6662B5F12B84D599A74119F04B381] - (.Kenonic Controls Ltd. - CrypKey NT Service.) -- C:\WINDOWS\system32\Crypserv.exe [52224] [PID.1772]
[MD5.F5179458B21780A88056C142F395406F] - (.ESET - Eset Service.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [472320] [PID.1800]
[MD5.60DF241092EBE92CBDE1D704254BF1DB] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 171.2.) -- C:\WINDOWS\system32\nvsvc32.exe [155716] [PID.1948]
[MD5.5F5BD0F4DFF2D82EF5767EB29D0E4572] - (.ESET - Eset GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [1443072] [PID.600]
[MD5.9B4C1812595C389AB9CCF1FF3B315248] - (.Apple Computer, Inc. - .) -- C:\Program Files\QuickTime\qttask.exe [98304] [PID.420]
[MD5.4A59A9F53628FD76EAA3EDFE9903BBFD] - (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\bin\IncMail.exe [366536] [PID.832]
[MD5.F4762082DDCFD241BE8BA5DD35133F4A] - (.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files\IncrediMail\bin\ImApp.exe [264136] [PID.1272]

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) (6) - 1s
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - EXT: (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.FRA
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\WMP Firefox Plugin License.rtf
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\WMP Firefox Plugin RelNotes.txt
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_18_0_0_232.dll

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) (7) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer, Proxy Management (R5) (3) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

---\\ Hosts file redirection (O1) (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (10619)

---\\ Browser Helper Object de navigateur (BHO) (O2) (3) - 0s
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} (Orphean)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} (Orphean)
O2 - BHO: (no name) - {9030D464-4C02-4ABF-8ECC-5164760863C6} (Orphean)

---\\ Applications lancées au démarrage du sytème (O4) (4) - 0s
O4 - HKLM\..\Run: [egui] . (.ESET - Eset GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Computer, Inc. - .) -- C:\Program Files\QuickTime\qttask.exe
O4 - HKCU\..\Run: [IncrediMail] . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\bin\IncMail.exe
O4 - HKUS\S-1-5-21-1659004503-1202660629-839522115-1003\..\Run: [IncrediMail] . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files\IncrediMail\bin\IncMail.exe

---\\ Modification Domaine/Adresses DNS (O17) (1) - 0s
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

---\\ Liste des services NT non Microsoft et non désactivés (O23) (3) - 0s
O23 - Service: Eset Service (ekrn) . (.ESET - Eset Service.) - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 171.2.) - C:\WINDOWS\system32\nvsvc32.exe

---\\ Tâches planifiées en automatique (O39) (6) - 1s
O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\Tasks\At1.job [460]
O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\Tasks\At2.job [460]
O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\Tasks\At3.job [460]
O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\Tasks\At4.job [460]
O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\Tasks\HP Photo Creations Messager.job [346]

---\\ Logiciels installés (O42) (51) - 6s
O42 - Logiciel: 3Planesoft Screensaver Manager 1.2 - (.3Planesoft.) [HKLM] -- 3Planesoft Screensaver Manager_is1
O42 - Logiciel: Adobe Flash Player 16 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI
O42 - Logiciel: CleanUp! - (...) [HKLM] -- CleanUp!
O42 - Logiciel: Coral Clock 3D Screensaver 1.0 - (.3Planesoft.) [HKLM] -- Coral Clock 3D Screensaver_is1
O42 - Logiciel: NOD32 v3.0.642 FiX1.2 by TemDono (31 days remaining forever up - (...) [HKLM] -- Eset NOD32 v3.0.642 FiX1.2 by TemDono_is1
O42 - Logiciel: HijackThis 1.99.1 - (.Soeperman Enterprises Ltd..) [HKLM] -- HijackThis
O42 - Logiciel: HP Photo Creations - (.HP Photo Creations.) [HKLM] -- HP Photo Creations
O42 - Logiciel: IncrediMail 2.0 - (.IncrediMail Ltd..) [HKLM] -- IncrediMail
O42 - Logiciel: High Definition Audio Driver Package - KB888111 - (.Microsoft Corporation.) [HKLM] -- KB888111WXPSP2
O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.) [HKLM] -- KB892130
O42 - Logiciel: Windows Installer 3.1 (KB893803) - (.Microsoft Corporation.) [HKLM] -- KB893803v2
O42 - Logiciel: K-Lite Codec Pack 4.5.3 (Full) - (...) [HKLM] -- KLiteCodecPack_is1
O42 - Logiciel: LiveUpdate 2.0 (Symantec Corporation) - (.Symantec Corporation.) [HKLM] -- LiveUpdate
O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Marvell Miniport Driver - (.Marvell.) [HKLM] -- Marvell Miniport Driver
O42 - Logiciel: Mozilla Firefox (3.5.19) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.5.19)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService
O42 - Logiciel: Canon MP Navigator 3.0 - (...) [HKLM] -- MP Navigator 3.0
O42 - Logiciel: Nero Suite - (...) [HKLM] -- NeroMultiInstaller!UninstallKey
O42 - Logiciel: NVIDIA Drivers - (...) [HKLM] -- NVIDIA Drivers
O42 - Logiciel: Photo Notifier and Animation Creator - (.IncrediMail Ltd..) [HKLM] -- Photo Notifier and Animation Creator
O42 - Logiciel: PhotoFiltre - (...) [HKLM] -- PhotoFiltre
O42 - Logiciel: QuickTime - (...) [HKLM] -- QuickTime
O42 - Logiciel: WinRAR archiver - (...) [HKLM] -- WinRAR archiver
O42 - Logiciel: Xvid 1.1.2 final uninstall - (.Xvid team (Koepi).) [HKLM] -- Xvid_is1
O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}
O42 - Logiciel: Super Point de Croix - (...) [HKLM] -- {0E3BCDB6-6953-11D5-AB5D-525405E326F4}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: IncrediMail - (.IncrediMail.) [HKLM] -- {5E97F3BD-CDDC-4188-9D98-532E14FABB5D}
O42 - Logiciel: PowerDVD - (...) [HKLM] -- {6811CAA0-BF12-11D4-9EA1-0050BAE317E1}
O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
O42 - Logiciel: Photo Notifier and Animation Creator - (.Nom de votre société.) [HKLM] -- {6B7F28D4-160E-40C6-B7C8-5EC6B9734DA7}
O42 - Logiciel: Java 2 Runtime Environment, SE v1.4.2_03 - (.Sun Microsystems, Inc..) [HKLM] -- {7148F0A8-6813-11D6-A77B-00B0D0142030}
O42 - Logiciel: ESET NOD32 Antivirus - (.Eset spol s r. o..) [HKLM] -- {7D974ACA-4EE5-412C-8E6A-A5B57B305727}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Choice Guard - (.Microsoft Corporation.) [HKLM] -- {8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
O42 - Logiciel: Pattern Maker for cross stitch - v4 - (.HobbyWare, Inc..) [HKLM] -- {9CE2B4FB-8127-4058-B028-C5961242A480}
O42 - Logiciel: HP Deskjet 3070 B611 series Aide - (.Hewlett Packard.) [HKLM] -- {9F20CE56-3828-432D-A3C5-3EC6A2ED93C6}
O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
O42 - Logiciel: Adobe Reader X (10.1.11) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: Samsung Master - (.Samsung.) [HKLM] -- {AEC0CEBC-0FC7-4716-8222-1C4A742719B1}
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1
O42 - Logiciel: AMD Processor Driver - (.AMD.) [HKLM] -- {C151CE54-E7EA-4804-854B-F515368B0798}
O42 - Logiciel: PCStitch 9 - (.M&R Technologies, Inc..) [HKLM] -- {DB32A38E-4D83-49F9-9E69-4D0929C5F175}
O42 - Logiciel: NOD32 FiX v1.9 - (...) [HKLM] -- {DBC3FDEC-D5F4-439C-9A18-EF454A74E3DE}_is1
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {DDD5104F-1C44-49EB-9E6B-29EC5D27658B}
O42 - Logiciel: Logiciel de base du périphérique HP Deskjet 3070 B611 series - (.Hewlett-Packard Co..) [HKLM] -- {E6FA3494-B3FB-4CED-87BA-FB1B77A25781}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: HP Deskjet 3070 B611 series - Enquête sur l'amélioration du produit - (.Hewlett-Packard Co..) [HKLM] -- {F4440FD5-62F4-41B3-BC2C-736B99D65B73}
O42 - Logiciel: PhotoFiltre - (...) [HKCU] -- PhotoFiltre

---\\ HKCU & HKLM Software Keys (103) - 6s
HKLM\SOFTWARE\3Planesoft
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\AdwCleaner
HKLM\SOFTWARE\Ahead
HKLM\SOFTWARE\AMD
HKLM\SOFTWARE\Apple Computer, Inc.
HKLM\SOFTWARE\ArcticLine
HKLM\SOFTWARE\ASUS
HKLM\SOFTWARE\C07ft5Y
HKLM\SOFTWARE\Canon
HKLM\SOFTWARE\Codec Tweak Tool
HKLM\SOFTWARE\Cyberlink
HKLM\SOFTWARE\DivXNetworks
HKLM\SOFTWARE\ESET
HKLM\SOFTWARE\Gemplus
HKLM\SOFTWARE\GNU
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\HaaliMkx
HKLM\SOFTWARE\Hewlett-Packard
HKLM\SOFTWARE\HP
HKLM\SOFTWARE\IncrediMail
HKLM\SOFTWARE\InstallShield
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\KLCodecPack
HKLM\SOFTWARE\LightScribe
HKLM\SOFTWARE\M&R Technologies, Inc.
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\Marvell
HKLM\SOFTWARE\McAfee.com
HKLM\SOFTWARE\Micro Application
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\Nero
HKLM\SOFTWARE\NVIDIA Corporation
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\PDFCreator
HKLM\SOFTWARE\Photo Notifier and Animation Creator
HKLM\SOFTWARE\PhotoFiltre
HKLM\SOFTWARE\Program Groups
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\Realtek Semiconductor Corp.
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\RocketLife
HKLM\SOFTWARE\S3R521
HKLM\SOFTWARE\Safer Networking Limited
HKLM\SOFTWARE\SAGEM
HKLM\SOFTWARE\Samsung
HKLM\SOFTWARE\SamsungMaster
HKLM\SOFTWARE\Schlumberger
HKLM\SOFTWARE\Secure
HKLM\SOFTWARE\Soeperman Enterprises Ltd.
HKLM\SOFTWARE\Symantec
HKLM\SOFTWARE\TeamViewer
HKLM\SOFTWARE\Visan
HKLM\SOFTWARE\Windows 3.1 Migration Status
HKCU\SOFTWARE\3rd Eye Solutions
HKCU\SOFTWARE\AC3filter
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Ahead
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ASUS
HKCU\SOFTWARE\Binary Noise
HKCU\SOFTWARE\Canon
HKCU\SOFTWARE\CanonBJ
HKCU\SOFTWARE\CoreVorbis
HKCU\SOFTWARE\Cyberlink
HKCU\SOFTWARE\DivXNetworks
HKCU\SOFTWARE\ESET
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\GSpot Appliance Corp
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\HobbyWare
HKCU\SOFTWARE\HP
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\IncrediMail
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\M&R Technologies
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\MediaInfo
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\PDFCreator
HKCU\SOFTWARE\PhotoFiltre
HKCU\SOFTWARE\Quadratus
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Safer Networking Limited
HKCU\SOFTWARE\stevengould.org
HKCU\SOFTWARE\Stoik
HKCU\SOFTWARE\STOIK Imagic 30
HKCU\SOFTWARE\TeamViewer
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\Visan
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/ (166) - 5s
O43 - CFD: 2009/07/21 - 15:37:11 - [] D -- C:\Program Files\3Planesoft Screensaver Manager
O43 - CFD: 2011/06/17 - 21:44:02 - [] D -- C:\Program Files\Adobe
O43 - CFD: 2009/06/23 - 15:35:25 - [] D -- C:\Program Files\Ahead
O43 - CFD: 2009/06/23 - 11:50:14 - [] D -- C:\Program Files\AMD
O43 - CFD: 2009/06/25 - 13:53:19 - [] D -- C:\Program Files\bertrand
O43 - CFD: 2015/02/26 - 16:20:09 - [] D -- C:\Program Files\Bing Bar Installer
O43 - CFD: 2011/09/27 - 08:06:25 - [] D -- C:\Program Files\Canon
O43 - CFD: 2009/06/23 - 15:57:40 - [] D -- C:\Program Files\CleanUp!
O43 - CFD: 2009/06/23 - 17:25:39 - [0] D -- C:\Program Files\ComPlus Applications
O43 - CFD: 2009/07/22 - 14:11:29 - [] D -- C:\Program Files\Coral Clock 3D Screensaver
O43 - CFD: 2009/06/23 - 15:30:37 - [] D -- C:\Program Files\CyberLink
O43 - CFD: 2009/06/25 - 13:53:39 - [] D -- C:\Program Files\drivers
O43 - CFD: 2009/06/23 - 15:36:24 - [] D -- C:\Program Files\ESET
O43 - CFD: 2011/06/17 - 21:44:02 - [] D -- C:\Program Files\Fichiers communs
O43 - CFD: 2011/09/27 - 08:11:10 - [] D -- C:\Program Files\Hewlett-Packard
O43 - CFD: 2011/04/12 - 10:29:40 - [] D -- C:\Program Files\HobbyWare
O43 - CFD: 2011/09/27 - 08:09:56 - [] D -- C:\Program Files\HP
O43 - CFD: 2011/09/27 - 08:10:16 - [] D -- C:\Program Files\HP Photo Creations
O43 - CFD: 2011/08/18 - 06:42:13 - [] D -- C:\Program Files\IncrediMail
O43 - CFD: 2010/02/10 - 10:47:35 - [] HD -- C:\Program Files\InstallShield Installation Information
O43 - CFD: 2010/02/10 - 10:43:48 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 2009/06/23 - 15:14:20 - [] D -- C:\Program Files\Java
O43 - CFD: 2009/06/23 - 15:14:56 - [] D -- C:\Program Files\K-Lite Codec Pack
O43 - CFD: 2015/01/12 - 11:44:11 - [] D -- C:\Program Files\Malwarebytes Anti-Malware
O43 - CFD: 2009/06/23 - 11:55:31 - [] D -- C:\Program Files\Marvell
O43 - CFD: 2009/06/23 - 17:25:26 - [] D -- C:\Program Files\Messenger
O43 - CFD: 2009/09/30 - 20:45:42 - [] D -- C:\Program Files\Micro Application
O43 - CFD: 2009/06/23 - 15:19:36 - [] D -- C:\Program Files\Microsoft
O43 - CFD: 2009/06/23 - 17:28:19 - [] D -- C:\Program Files\microsoft frontpage
O43 - CFD: 2009/06/23 - 15:27:51 - [] D -- C:\Program Files\Microsoft Office
O43 - CFD: 2014/12/03 - 23:50:40 - [] D -- C:\Program Files\Microsoft Silverlight
O43 - CFD: 2009/06/23 - 15:27:49 - [] D -- C:\Program Files\Microsoft Visual Studio
O43 - CFD: 2009/06/23 - 15:27:58 - [] D -- C:\Program Files\Microsoft Works
O43 - CFD: 2009/06/23 - 17:26:22 - [] D -- C:\Program Files\Movie Maker
O43 - CFD: 2015/01/09 - 17:06:20 - [] D -- C:\Program Files\Mozilla Firefox
O43 - CFD: 2015/02/26 - 23:16:16 - [] D -- C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 2009/06/23 - 15:27:54 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 2009/06/23 - 17:24:56 - [] D -- C:\Program Files\MSN
O43 - CFD: 2009/06/23 - 17:25:22 - [] D -- C:\Program Files\MSN Gaming Zone
O43 - CFD: 2009/06/23 - 17:26:33 - [] D -- C:\Program Files\NetMeeting
O43 - CFD: 2011/04/12 - 11:08:59 - [] D -- C:\Program Files\NexusFile
O43 - CFD: 2009/06/23 - 17:25:29 - [] D -- C:\Program Files\Online Services
O43 - CFD: 2009/06/23 - 17:26:30 - [] D -- C:\Program Files\Outlook Express
O43 - CFD: 2010/02/10 - 10:48:01 - [] D -- C:\Program Files\PCStitch 9
O43 - CFD: 2011/04/12 - 10:51:05 - [] D -- C:\Program Files\PDFCreator
O43 - CFD: 2011/02/24 - 19:36:27 - [] D -- C:\Program Files\Photo Notifier and Animation Creator
O43 - CFD: 2009/06/23 - 15:13:46 - [] D -- C:\Program Files\PhotoFiltre
O43 - CFD: 2009/06/25 - 13:48:08 - [] D -- C:\Program Files\quadra
O43 - CFD: 2009/06/23 - 15:14:48 - [] D -- C:\Program Files\QuickTime
O43 - CFD: 2009/06/23 - 11:50:32 - [] D -- C:\Program Files\Realtek
O43 - CFD: 2009/08/02 - 14:07:16 - [] D -- C:\Program Files\Samsung
O43 - CFD: 2009/06/23 - 17:27:05 - [] D -- C:\Program Files\Services en ligne
O43 - CFD: 2009/06/23 - 15:58:34 - [] D -- C:\Program Files\Spybot - Search & Destroy
O43 - CFD: 2011/04/12 - 08:46:07 - [] D -- C:\Program Files\Symantec
O43 - CFD: 2009/06/23 - 17:33:12 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 2009/07/14 - 10:36:01 - [] D -- C:\Program Files\Western Digital
O43 - CFD: 2009/06/23 - 15:19:32 - [] D -- C:\Program Files\Windows Live
O43 - CFD: 2009/06/23 - 15:19:23 - [] D -- C:\Program Files\Windows Live SkyDrive
O43 - CFD: 2009/06/23 - 17:28:06 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 2009/06/23 - 17:25:16 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 2009/06/23 - 17:27:08 - [0] HD -- C:\Program Files\WindowsUpdate
O43 - CFD: 2009/06/23 - 15:13:56 - [] D -- C:\Program Files\WinRAR
O43 - CFD: 2009/07/10 - 16:04:26 - [] D -- C:\Program Files\wletmin
O43 - CFD: 2010/10/24 - 17:44:18 - [0] D -- C:\Program Files\Xenocode
O43 - CFD: 2009/06/23 - 17:28:19 - [] D -- C:\Program Files\xerox
O43 - CFD: 2009/08/02 - 14:06:42 - [] D -- C:\Program Files\Xvid
O43 - CFD: 2009/07/21 - 15:37:12 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\3Planesoft
O43 - CFD: 2009/06/25 - 13:33:44 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Accessoires
O43 - CFD: 2011/09/27 - 08:06:21 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Canon Utilities
O43 - CFD: 2009/06/23 - 15:30:39 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\CyberLink PowerDVD
O43 - CFD: 2012/10/08 - 08:37:57 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
O43 - CFD: 2009/06/23 - 15:36:24 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ESET
O43 - CFD: 2012/07/11 - 22:05:41 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Games
O43 - CFD: 2011/09/27 - 08:10:16 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HP
O43 - CFD: 2012/07/11 - 22:05:41 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\IncrediMail
O43 - CFD: 2009/06/23 - 15:14:21 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Java Web Start
O43 - CFD: 2009/06/23 - 17:25:47 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Jeux
O43 - CFD: 2009/06/23 - 15:14:58 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\K-Lite Codec Pack
O43 - CFD: 2015/01/12 - 11:44:16 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Malwarebytes Anti-Malware
O43 - CFD: 2009/09/30 - 20:45:42 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Micro Application
O43 - CFD: 2009/06/23 - 15:28:18 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft Office
O43 - CFD: 2014/12/03 - 19:35:12 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft Silverlight
O43 - CFD: 2015/02/26 - 17:19:31 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox
O43 - CFD: 2009/06/23 - 15:35:33 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Nero
O43 - CFD: 2009/06/23 - 16:31:13 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Outils d'administration
O43 - CFD: 2011/04/12 - 10:29:53 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Pattern Maker for cross stitch - v4
O43 - CFD: 2010/02/10 - 10:47:49 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\PCStitch 9
O43 - CFD: 2011/04/12 - 10:50:50 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\PDFCreator
O43 - CFD: 2009/06/23 - 15:13:42 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\PhotoFiltre
O43 - CFD: 2009/06/23 - 15:14:44 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\QuickTime
O43 - CFD: 2009/08/02 - 14:07:16 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Samsung
O43 - CFD: 2009/06/23 - 15:55:06 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Spybot - Search & Destroy
O43 - CFD: 2009/06/23 - 15:19:17 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Windows Live
O43 - CFD: 2009/06/23 - 15:13:56 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WinRAR
O43 - CFD: 2009/08/02 - 14:06:42 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Xvid
O43 - CFD: 2011/06/17 - 21:43:33 - [] D -- C:\Documents and Settings\All Users\Application Data\Adobe
O43 - CFD: 2009/06/23 - 15:32:27 - [] D -- C:\Documents and Settings\All Users\Application Data\Ahead
O43 - CFD: 2009/06/23 - 15:30:38 - [] D -- C:\Documents and Settings\All Users\Application Data\CyberLink
O43 - CFD: 2009/06/23 - 15:36:24 - [] D -- C:\Documents and Settings\All Users\Application Data\ESET
O43 - CFD: 2011/09/27 - 08:18:00 - [] D -- C:\Documents and Settings\All Users\Application Data\HP
O43 - CFD: 2011/09/27 - 08:10:14 - [] D -- C:\Documents and Settings\All Users\Application Data\HP Photo Creations
O43 - CFD: 2009/06/25 - 14:03:18 - [] D -- C:\Documents and Settings\All Users\Application Data\IM
O43 - CFD: 2009/06/25 - 14:02:20 - [] D -- C:\Documents and Settings\All Users\Application Data\IncrediMail
O43 - CFD: 2015/09/17 - 08:55:22 - [] D -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
O43 - CFD: 2010/06/29 - 20:11:42 - [] D -- C:\Documents and Settings\All Users\Application Data\McAfee
O43 - CFD: 2015/01/12 - 11:43:40 - [] SD -- C:\Documents and Settings\All Users\Application Data\Microsoft
O43 - CFD: 2011/09/06 - 08:35:23 - [] D -- C:\Documents and Settings\All Users\Application Data\Microsoft Help
O43 - CFD: 2012/05/08 - 17:51:45 - [] D -- C:\Documents and Settings\All Users\Application Data\Mozilla
O43 - CFD: 2011/04/12 - 10:29:44 - [] D -- C:\Documents and Settings\All Users\Application Data\Pattern Maker for cross stitch
O43 - CFD: 2010/02/10 - 10:47:42 - [] D -- C:\Documents and Settings\All Users\Application Data\PCStitch 9
O43 - CFD: 2011/02/24 - 19:36:27 - [] D -- C:\Documents and Settings\All Users\Application Data\Photo Notifier and Animation Creator
O43 - CFD: 2009/06/23 - 15:14:26 - [] D -- C:\Documents and Settings\All Users\Application Data\QuickTime
O43 - CFD: 2015/09/17 - 08:42:14 - [] D -- C:\Documents and Settings\All Users\Application Data\RogueKiller
O43 - CFD: 2014/02/17 - 11:21:17 - [] D -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
O43 - CFD: 2009/06/23 - 16:33:08 - [] D -- C:\Documents and Settings\All Users\Application Data\Symantec
O43 - CFD: 2011/06/17 - 21:44:15 - [] D -- C:\Program Files\Fichiers communs\Adobe
O43 - CFD: 2009/06/23 - 15:32:24 - [] D -- C:\Program Files\Fichiers communs\Ahead
O43 - CFD: 2009/06/23 - 15:27:49 - [] D -- C:\Program Files\Fichiers communs\DESIGNER
O43 - CFD: 2009/06/23 - 16:25:15 - [] D -- C:\Program Files\Fichiers communs\InstallShield
O43 - CFD: 2009/06/23 - 15:14:14 - [] D -- C:\Program Files\Fichiers communs\Java
O43 - CFD: 2009/06/23 - 15:35:10 - [] D -- C:\Program Files\Fichiers communs\LightScribe
O43 - CFD: 2009/06/23 - 15:27:58 - [] D -- C:\Program Files\Fichiers communs\Microsoft Shared
O43 - CFD: 2009/06/23 - 17:26:29 - [] D -- C:\Program Files\Fichiers communs\MSSoap
O43 - CFD: 2009/06/23 - 15:33:35 - [] D -- C:\Program Files\Fichiers communs\Nero
O43 - CFD: 2009/06/23 - 19:16:34 - [] D -- C:\Program Files\Fichiers communs\ODBC
O43 - CFD: 2009/06/23 - 17:26:32 - [] D -- C:\Program Files\Fichiers communs\Services
O43 - CFD: 2009/06/23 - 19:16:31 - [] D -- C:\Program Files\Fichiers communs\SpeechEngines
O43 - CFD: 2011/04/12 - 08:46:06 - [] D -- C:\Program Files\Fichiers communs\Symantec Shared
O43 - CFD: 2009/06/23 - 15:25:50 - [] D -- C:\Program Files\Fichiers communs\System
O43 - CFD: 2009/06/23 - 15:16:52 - [] D -- C:\Program Files\Fichiers communs\Windows Live
O43 - CFD: 2011/04/12 - 22:25:42 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Adobe
O43 - CFD: 2011/09/27 - 08:05:47 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Canon
O43 - CFD: 2010/01/27 - 21:51:52 - [0] D -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Help
O43 - CFD: 2011/09/29 - 07:16:50 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Application Data\HpUpdate
O43 - CFD: 2010/05/25 - 19:54:21 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Icones
O43 - CFD: 2009/06/23 - 17:33:13 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Identities
O43 - CFD: 2009/06/23 - 11:50:01 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Application Data\InstallShield
O43 - CFD: 2009/06/23 - 16:33:06 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Application Data\IsolatedStorage
O43 - CFD: 2009/06/23 - 12:00:30 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Macromedia
O43 - CFD: 2011/04/12 - 22:25:42 - [] SD -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Microsoft
O43 - CFD: 2009/06/23 - 15:15:20 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Mozilla
O43 - CFD: 2010/10/29 - 20:25:56 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Application Data\PCStitch Pro
O43 - CFD: 2009/06/23 - 15:14:20 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Sun
O43 - CFD: 2013/01/31 - 14:26:24 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Application Data\TeamViewer
O43 - CFD: 2009/06/23 - 11:56:00 - [0] D -- C:\Documents and Settings\PROPRIETAIRE\Application Data\TMP
O43 - CFD: 2009/06/25 - 13:18:03 - [0] D -- C:\Documents and Settings\PROPRIETAIRE\Application Data\WinRAR
O43 - CFD: 2015/01/12 - 16:27:05 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Application Data\ZHP
O43 - CFD: 2011/04/12 - 11:05:29 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Local Settings\Application Data\Adobe
O43 - CFD: 2009/06/23 - 17:41:16 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Local Settings\Application Data\ApplicationHistory
O43 - CFD: 2013/08/13 - 21:58:21 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Local Settings\Application Data\ESET
O43 - CFD: 2010/01/27 - 21:51:52 - [0] D -- C:\Documents and Settings\PROPRIETAIRE\Local Settings\Application Data\Help
O43 - CFD: 2011/09/27 - 08:08:10 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Local Settings\Application Data\HP
O43 - CFD: 2011/02/25 - 12:35:53 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Local Settings\Application Data\IM
O43 - CFD: 2015/01/12 - 11:47:52 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Local Settings\Application Data\Microsoft
O43 - CFD: 2009/06/23 - 15:25:37 - [0] D -- C:\Documents and Settings\PROPRIETAIRE\Local Settings\Application Data\Microsoft Help
O43 - CFD: 2009/06/23 - 15:15:20 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Local Settings\Application Data\Mozilla
O43 - CFD: 2011/04/12 - 22:25:42 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Local Settings\Application Data\Temp
O43 - CFD: 2010/10/24 - 17:44:18 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Local Settings\Application Data\Xenocode
O43 - CFD: 2009/06/23 - 15:14:07 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Local Settings\Application Data\{7148F0A6-6813-11D6-A77B-00B0D0142030}
O43 - CFD: 2009/06/23 - 17:33:15 - [] RD -- C:\Documents and Settings\PROPRIETAIRE\Menu Démarrer\Programmes\Accessoires
O43 - CFD: 2009/06/23 - 15:57:40 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Menu Démarrer\Programmes\CleanUp!
O43 - CFD: 2015/02/26 - 15:57:13 - [] RD -- C:\Documents and Settings\PROPRIETAIRE\Menu Démarrer\Programmes\Démarrage
O43 - CFD: 2009/06/23 - 11:56:00 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Menu Démarrer\Programmes\Marvell
O43 - CFD: 2011/09/06 - 08:54:50 - [] RD -- C:\Documents and Settings\PROPRIETAIRE\Menu Démarrer\Programmes\Outils d'administration
O43 - CFD: 2011/04/12 - 10:06:34 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Menu Démarrer\Programmes\PhotoFiltre
O43 - CFD: 2009/06/23 - 15:13:56 - [] D -- C:\Documents and Settings\PROPRIETAIRE\Menu Démarrer\Programmes\WinRAR

---\\ Liste des pilotes du système (SDL) (O58) (45) - 1s
O58 - SDL:2006/07/01 21:42:58 A . (.Advanced Micro Devices - AMD Processor Driver.) -- C:\WINDOWS\System32\drivers\AmdK8.sys [43520]
O58 - SDL:2004/08/13 03:56:20 RA . (. - ATK0110 ACPI Utility.) -- C:\WINDOWS\System32\drivers\ASACPI.sys [5810]
O58 - SDL:2007/08/01 04:39:28 A . (...) -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS [12536]
O58 - SDL:2004/08/05 13:00:00 A . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\System32\drivers\cinemst2.sys [262528]
O58 - SDL:2004/08/05 13:00:00 A . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\System32\drivers\cpqdap01.sys [11776]
O58 - SDL:2004/08/05 13:00:00 A . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) -- C:\WINDOWS\System32\drivers\dmboot.sys [800256]
O58 - SDL:2004/08/05 13:00:00 A . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\System32\drivers\dmio.sys [154496]
O58 - SDL:2004/08/05 13:00:00 A . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\drivers\dmload.sys [5888]
O58 - SDL:2008/02/20 10:01:30 A . (.ESET - Amon monitor.) -- C:\WINDOWS\System32\drivers\eamon.sys [39944]
O58 - SDL:2008/02/20 10:02:22 A . (.ESET - Eset AntiStealth driver.) -- C:\WINDOWS\System32\drivers\easdrv.sys [29704]
O58 - SDL:2008/02/20 10:11:16 A . (...) -- C:\WINDOWS\System32\drivers\epfwtdir.sys [33800]
O58 - SDL:2005/01/07 16:07:18 N . (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\System32\drivers\Hdaudbus.sys [138752]
O58 - SDL:2005/01/07 16:07:16 N . (.Windows (R) Server 2003 DDK provider - High Definition Audio Function Driver v1.0a.) -- C:\WINDOWS\System32\drivers\Hdaudio.sys [145920]
O58 - SDL:2015/06/18 08:41:36 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbam.sys [23256]
O58 - SDL:2015/06/18 08:41:46 A . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\WINDOWS\System32\drivers\mbamchameleon.sys [121560]
O58 - SDL:2015/01/12 11:44:24 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [98520]
O58 - SDL:2004/08/05 13:00:00 A . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\nikedrv.sys [12032]
O58 - SDL:2008/01/26 05:08:00 A . (.NVIDIA Corporation - NVIDIA Compatible Windows 2000 Miniport Dri.) -- C:\WINDOWS\System32\drivers\nv4_mini.sys [7069504]
O58 - SDL:2008/01/11 06:02:04 RA . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\WINDOWS\System32\drivers\nvhda32.sys [31392]
O58 - SDL:2007/10/12 08:53:10 RA . (.NVIDIA Corporation - NVIDIA® nForce(TM) SMU Microcontroller Driv.) -- C:\WINDOWS\System32\drivers\nvsmu.sys [13312]
O58 - SDL:2004/08/05 13:00:00 A . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Lib.) -- C:\WINDOWS\System32\drivers\ptilink.sys [17792]
O58 - SDL:2004/08/05 13:00:00 A . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\System32\drivers\rio8drv.sys [12032]
O58 - SDL:2004/08/05 13:00:00 A . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\riodrv.sys [12032]
O58 - SDL:2007/11/01 07:38:56 R . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys [4620288]
O58 - SDL:2004/08/05 13:00:00 A . (...) -- C:\WINDOWS\System32\drivers\secdrv.sys [27440]
O58 - SDL:2015/09/17 08:42:14 A . (...) -- C:\WINDOWS\System32\drivers\TrueSight.sys [29160]
O58 - SDL:2004/08/05 13:00:00 A . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\System32\drivers\tsbvcap.sys [21376]
O58 - SDL:2004/08/05 13:00:00 A . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\System32\drivers\vdmindvd.sys [58112]
O58 - SDL:2007/08/15 09:22:00 A . (.Marvell - NDIS5.1 Miniport Driver for Marvell Yukon E.) -- C:\WINDOWS\System32\drivers\yk51x86.sys [265856]
O58 - SDL:2004/08/05 13:00:00 A . (...) -- C:\WINDOWS\System32\ansi.sys [9037]
O58 - SDL:2000/02/03 20:53:12 A . (...) -- C:\WINDOWS\System32\Ckldrv.sys [24608]
O58 - SDL:2004/08/05 13:00:00 A . (...) -- C:\WINDOWS\System32\country.sys [27097]
O58 - SDL:2004/08/05 13:00:00 A . (...) -- C:\WINDOWS\System32\himem.sys [4912]
O58 - SDL:2004/08/05 13:00:00 A . (...) -- C:\WINDOWS\System32\key01.sys [42809]
O58 - SDL:2004/08/05 13:00:00 A . (...) -- C:\WINDOWS\System32\keyboard.sys [42537]
O58 - SDL:2004/08/05 13:00:00 A . (...) -- C:\WINDOWS\System32\ntdos.sys [27916]
O58 - SDL:2004/08/05 13:00:00 A . (...) -- C:\WINDOWS\System32\ntdos404.sys [29146]
O58 - SDL:2004/08/05 13:00:00 A . (...) -- C:\WINDOWS\System32\ntdos411.sys [29370]
O58 - SDL:2004/08/05 13:00:00 A . (...) -- C:\WINDOWS\System32\ntdos412.sys [29274]
O58 - SDL:2004/08/05 13:00:00 A . (...) -- C:\WINDOWS\System32\ntdos804.sys [29146]
O58 - SDL:2004/08/05 13:00:00 A . (...) -- C:\WINDOWS\System32\ntio.sys [34000]
O58 - SDL:2004/08/05 13:00:00 A . (...) -- C:\WINDOWS\System32\ntio404.sys [34560]
O58 - SDL:2004/08/05 13:00:00 A . (...) -- C:\WINDOWS\System32\ntio411.sys [35648]
O58 - SDL:2004/08/05 13:00:00 A . (...) -- C:\WINDOWS\System32\ntio412.sys [35424]
O58 - SDL:2004/08/05 13:00:00 A . (...) -- C:\WINDOWS\System32\ntio804.sys [34560]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) (3) - 29s
O61 - LFC: 2015/02/26 17:18:31 A . (.Mozilla.) -- C:\Documents and Settings\PROPRIETAIRE\Mes documents\Téléchargements\Firefox Setup 3.5.19.exe [8220232]
O61 - LFC: 2015/03/31 18:05:44 A . (..) -- C:\Documents and Settings\PROPRIETAIRE\Local Settings\Application Data\Adobe\Acrobat\10.0\UserCache.bin [68113]
O61 - LFC: 2015/01/15 16:56:12 A . (..) -- C:\Documents and Settings\PROPRIETAIRE\Application Data\Mozilla\Firefox\Profiles\tyxvx5e0.default\gmp-gmpopenh264\1.3\gmpopenh264.dll [617984]

---\\ Associations Shell Spawning (O67) (10) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.EXE
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (r) Windows Based Script Host.) -- C:\WINDOWS\system32\wscript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

---\\ Menu de démarrage Internet (SMI) (O68) (8) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Windows NT User Data Migration Tool.) -- C:\WINDOWS\system32\shmgrate.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Windows NT User Data Migration Tool.) -- C:\WINDOWS\system32\shmgrate.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Windows NT User Data Migration Tool.) -- C:\WINDOWS\system32\shmgrate.exe

---\\ Recherche d'infection sur les navigateurs internet (SBI (2) - 0s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {d5ad30c5-0459-495a-9cc3-0ac76ebca588} - (YouGoo) - http://www.yougoo.fr/ =>PUP.YouGoo

---\\ Scan Additionnel (O88) (1) - 0s
~ Aucun élément malicieux trouvé.

---\\ Récapitulatif des détections trouvées sur votre station (1) - 0s
http://www.nicolascoolman.fr/pup-yougoo/ =>PUP.YouGoo

~ End of the scan, 36967 items in 49 seconds (502)(0)()

Publicité


Signaler le contenu de ce document

Publicité