cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.10.22.154 Par Nicolas Coolman (2015/10/22)
~ Démarré par JeanLouis.Gohard (Administrator) (2015/10/25 11:49:12)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Documents and Settings\JeanLouis.Gohard\Bureau\ZHPDiag.txt
~ Rapport: C:\Documents and Settings\JeanLouis.Gohard\Application Data\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows XP, 32-bit Service Pack 3 (Build 2600)

---\\ Navigateurs Internet (1) - 0s
MSIE: Internet Explorer v8.0.6001.18702

---\\ Informations sur les produits Windows (3) - 0s
Windows Automatic Updates : OK
Windows Activation Technologies : KO
Windows Genuine Advantage : OK

---\\ Logiciels de protection (3) - 4s
Malwarebytes Anti-Malware version 2.1.6.1022
Microsoft Security Client FR-FR Language Pack v2.1.1116.0
Windows Defender XP (Activate)

---\\ Logiciels d'optimisation (1) - 5s
CCleaner v4.02

---\\ Surveillance de Logiciels (2) - 5s
Adobe Flash Player 17 NPAPI
Adobe Reader XI

---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 6 Model 15 Stepping 13, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 1038.7 MB (17% free)
~ System Restore: Activé (Enable)
~ System drive C: has 81 GB free of 114 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: PORTABLE-AMI
~ User Name: JeanLouis.Gohard
~ Logged in as Administrator

---\\ Enumération des unités disques (1) - 0s
~ Drive C: has 81 GB free of 114 GB (System)

---\\ Etat du Centre de Sécurité Windows (9) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (23) - 1s
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\WINDOWS\Explorer.exe [1037824] ©
[MD5.93AD0B78C7357A05F50E594EC7C22300] - (.Microsoft Corporation - Exécuter une DLL en tant qu'application.) () -- C:\WINDOWS\System32\rundll32.exe [33792] ©
[MD5.E1948B1F45A176FB4A0251446A5AE86D] - (.Microsoft Corporation - Internet Extensions for Win32.) () -- C:\WINDOWS\System32\wininet.dll [920064] ©
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows.) () -- C:\WINDOWS\System32\Winlogon.exe [512000] ©
[MD5.D76A076ADB74F8132924E498D63123A2] - (.Microsoft Corporation - DNS Client API DLL.) () -- C:\WINDOWS\System32\dnsapi.dll [149504] ©
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\WINDOWS\System32\drivers\AFD.sys [138496] ©
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) () -- C:\WINDOWS\System32\drivers\atapi.sys [96512] ©
[MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\WINDOWS\System32\drivers\Cdfs.sys [63744] ©
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\WINDOWS\System32\drivers\Cdrom.sys [62976] ©
[MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) () -- C:\WINDOWS\System32\drivers\Fips.sys [44672] ©
[MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) () -- C:\WINDOWS\System32\drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\WINDOWS\System32\drivers\i8042prt.sys [54144] ©
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) () -- C:\WINDOWS\System32\drivers\Imapi.sys [42112] ©
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\WINDOWS\System32\drivers\IpNat.sys [152832] ©
[MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) () -- C:\WINDOWS\System32\drivers\IPSec.sys [75264] ©
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\WINDOWS\System32\drivers\MRxSmb.sys [456320] ©
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\WINDOWS\System32\drivers\netBT.sys [162816] ©
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) () -- C:\WINDOWS\System32\drivers\ntfs.sys [574976] ©
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\WINDOWS\System32\drivers\Parport.sys [80384] ©
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [51328] ©
[MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\WINDOWS\System32\drivers\rdpdr.sys [196224] ©
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) () -- C:\WINDOWS\System32\drivers\redbook.sys [58752] ©
[MD5.46DE1126684369BACE4849E4FC8C43CA] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\WINDOWS\System32\drivers\volsnap.sys [53376] ©

---\\ Processus lancés (8) - 1s
[MD5.39E435C90C9C4F780FA0ED05CA3C3A1B] - (.Agere Systems - Agere Soft Modem Call Progress Service.) -- C:\WINDOWS\system32\agrsmsvc.exe [9216] [PID.1648] ©
[MD5.A980296E1EC9921356F0D8AD06A6EF9C] - (.Oracle Corporation - Java Quick Starter Service.) -- C:\Program Files\Java\jre7\bin\jqs.exe [182696] [PID.1760] ©
[MD5.98655F862BB07CFB1CCC9262DA621AE1] - (.pdfforge GbR - PDF Architect Helper Service.) -- C:\Program Files\PDF Architect\HelperService.exe [1522312] [PID.2012] ©
[MD5.73406F96E946F2B38615375269EF286F] - (.pdfforge GbR - PDF Architect Conversion Service.) -- C:\Program Files\PDF Architect\ConversionService.exe [905864] [PID.500] ©
[MD5.CF244AEB3E16A684B0537805CFB0BFD6] - (.TOSHIBA Corporation - TOSHIBA HDD Protection Service.) -- C:\WINDOWS\system32\ThpSrv.exe [562744] [PID.816] ©
[MD5.D540858E65BFA6FDED41AD2495ECE344] - (.TOSHIBA Corporation - TDCSrv Application.) -- C:\WINDOWS\system32\TODDSrv.exe [114688] [PID.988] ©
[MD5.1CE7982AA6A983F4C49A32C8D624237B] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [377000] [PID.852] ©
[MD5.231AE3BE35DFA790FE484CCA354BCD15] - (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\JeanLouis.Gohard\Mes documents\Téléchargements\ZHPDiag3.exe [1958912] [PID.3988] ©

---\\ Google Chrome, Démarrage,Recherche,Extensions (7) - 0s
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Docs
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] avast! Online Security
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (10) - 1s
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\amazon-france.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\ddg.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\eBay-france.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\yahoo-france.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ©
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll ©

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (10) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://fr.search.yahoo.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://fr.yahoo.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://fr.search.yahoo.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = about:newtab
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2

---\\ Internet Explorer,Proxy Management (5) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

---\\ Etude du fichier hosts (1) - 1s
~ Le fichier hôte est sain (The hosts file is clean) (15515)

---\\ Browser Helper Object de navigateur (BHO) (4) - 0s
O2 - BHO: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} . (.pdfforge GbR - PDF Architect Helper.) -- C:\Program Files\PDF Architect\PDFIEHelper.dll ©
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\ssv.dll ©
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll ©
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll ©

---\\ Internet Explorer, Barre d'outil (1) - 0s
O3 - Toolbar: 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{1E796980-9CC5-11D1-A83F-00C04FC99D61} . (...) -- (.not file.)

---\\ Applications lancées au démarrage du système (8) - 0s
O4 - HKCU\..\Run: [H/PC Connection Agent] . (.Microsoft Corporation - ActiveSync Connection Manager.) -- C:\Program Files\Microsoft ActiveSync\wcescomm.exe ©
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe ©
O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] . (.Microsoft Corporation - Watson Subscriber for SENS Network Notifica.) -- C:\Program Files\Fichiers communs\Microsoft Shared\DW\DWTRIG20.EXE ©
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe ©
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] . (.Microsoft Corporation - Watson Subscriber for SENS Network Notifica.) -- C:\Program Files\Fichiers communs\Microsoft Shared\DW\DWTRIG20.EXE ©
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe ©
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe ©
O4 - HKUS\S-1-5-21-1111638587-854934313-1538384779-1008\..\Run: [H/PC Connection Agent] . (.Microsoft Corporation - ActiveSync Connection Manager.) -- C:\Program Files\Microsoft ActiveSync\wcescomm.exe ©

---\\ Modification Domaine/Adresses DNS (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

---\\ Protocole additionnel (31) - 0s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll ©
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\system32\msvidctl.dll ©
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll ©
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll ©
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll ©
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API.) -- C:\WINDOWS\system32\inetcomm.dll ©
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll ©
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll ©
O18 - Handler: mso-offdap11 - {32505114-5902-49B2-880A-1F7738E5A384} . (.Microsoft Corporation - Microsoft Office Web Components 2003.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Web Components\11\OWC11.DLL ©
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll ©
O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll ©
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\system32\msvidctl.dll ©
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll ©
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll ©
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll ©
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll ©
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll ©
O18 - Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Filter: lzdhtml - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll ©
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL ©

---\\ Liste des services NT non Microsoft et non désactivés (8) - 0s
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) . (.Agere Systems - Agere Soft Modem Call Progress Service.) - C:\WINDOWS\system32\agrsmsvc.exe ©
O23 - Service: Google Software Updater (gusvc) . (.Google - gusvc.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe ©
O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Oracle Corporation - Java Quick Starter Service.) - C:\Program Files\Java\jre7\bin\jqs.exe ©
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe ©
O23 - Service: PDF Architect Helper Service (PDF Architect Helper Service) . (.pdfforge GbR - PDF Architect Helper Service.) - C:\Program Files\PDF Architect\HelperService.exe ©
O23 - Service: PDF Architect Service (PDF Architect Service) . (.pdfforge GbR - PDF Architect Conversion Service.) - C:\Program Files\PDF Architect\ConversionService.exe ©
O23 - Service: TOSHIBA HDD Protection (Thpsrv) . (.TOSHIBA Corporation - TOSHIBA HDD Protection Service.) - C:\WINDOWS\system32\ThpSrv.exe ©
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) . (.TOSHIBA Corporation - TDCSrv Application.) - C:\WINDOWS\system32\TODDSrv.exe ©

---\\ Enumère les données de BootExecute (1) - 0s
O34 - HKLM BootExecute: (sdnclean.exe)

---\\ Logiciels installés (63) - 9s
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR ©
O42 - Logiciel: Adobe Flash Player 17 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX ©
O42 - Logiciel: Adobe Flash Player 17 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI ©
O42 - Logiciel: Adobe Shockwave Player 11.6 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player ©
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner ©
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (...) [HKLM] -- HDMI
O42 - Logiciel: HW E583X Driver - (.Huawei Technologies Co.,Ltd.) [HKLM] -- HW E583X Driver ©
O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.) [HKLM] -- IDNMitigationAPIs ©
O42 - Logiciel: Windows Internet Explorer 7 - (.Microsoft Corporation.) [HKLM] -- ie7 ©
O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8 ©
O42 - Logiciel: Toshiba Controls Utility - (.TOSHIBA.) [HKLM] -- InstallShield_{ACA1086B-9B62-4F80-B4B9-5659395E4F25} ©
O42 - Logiciel: Toshiba Touchpad Utility - (.TOSHIBA.) [HKLM] -- InstallShield_{F77890F3-774A-4CBE-A2E3-7BB0DC71D1FA} ©
O42 - Logiciel: High Definition Audio Driver Package - KB888111 - (.Microsoft Corporation.) [HKLM] -- KB888111WXPSP2 ©
O42 - Logiciel: Windows Media Player 10 Hotfix - KB894476 - (.Microsoft Corporation.) [HKLM] -- KB894476 ©
O42 - Logiciel: Windows Desktop Search 3.01 - (.Microsoft Corporation.) [HKLM] -- KB917013 ©
O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399 ©
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906 ©
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5 ©
O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5 ©
O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.6.1022 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes Anti-Malware_is1 ©
O42 - Logiciel: Mozilla Firefox 39.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 39.0 (x86 fr) ©
O42 - Logiciel: Mozilla Thunderbird 24.6.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Thunderbird 24.6.0 (x86 fr) ©
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService ©
O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1 ©
O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.) [HKLM] -- NLSDownlevelMapping ©
O42 - Logiciel: Gestion d'énergie TOSHIBA - (...) [HKLM] -- Power Saver
O42 - Logiciel: TOSHIBA Software Modem - (.Agere Systems.) [HKLM] -- TOSHIBA Software Modem ©
O42 - Logiciel: VLC media player 2.1.3 - (.VideoLAN.) [HKLM] -- VLC media player ©
O42 - Logiciel: Windows Genuine Advantage Notifications (KB905474) - (.Microsoft Corporation.) [HKLM] -- WgaNotify ©
O42 - Logiciel: Windows Media Format 11 runtime - (...) [HKLM] -- Windows Media Format Runtime
O42 - Logiciel: Lecteur Windows Media 11 - (...) [HKLM] -- Windows Media Player
O42 - Logiciel: Windows XP Service Pack 3 - (.Microsoft Corporation.) [HKLM] -- Windows XP Service ©
O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- WMFDist11 ©
O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.) [HKLM] -- wmp11 ©
O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000 ©
O42 - Logiciel: PDFCreator - (.pdfforge.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D} ©
O42 - Logiciel: Macromedia Flash Player - (.Macromedia, Inc..) [HKLM] -- {0456ebd7-5f67-4ab6-852e-63781e3f389c}
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} ©
O42 - Logiciel: Java 7 Update 65 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F03217065FF} ©
O42 - Logiciel: PDF Architect - (.pdfforge.) [HKLM] -- {30B41B7A-3C9D-44DE-A7A1-949011F33CC3} ©
O42 - Logiciel: Java(TM) SE Runtime Environment 6 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160000} ©
O42 - Logiciel: Microsoft Antimalware Service FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {32E9C1A5-0FDA-4483-987D-DBABF9CC1DD8} ©
O42 - Logiciel: MSXML 4.0 SP2 (KB927978) - (.Microsoft Corporation.) [HKLM] -- {37477865-A3F1-4772-AD43-AAFC6BCFF99F} ©
O42 - Logiciel: TOSHIBA Direct Disc Writer - (.TOSHIBA Corporation.) [HKLM] -- {400830CA-F056-4BBE-80A3-9DF9CA4FB889} ©
O42 - Logiciel: Sagem Wi-Fi 11g USB adapter - (...) [HKLM] -- {40ACE18D-D5B4-40AF-81E8-2816A8AED029}
O42 - Logiciel: Microsoft Security Client FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {50779A29-834E-4E36-BBEB-B7CABC67A825} ©
O42 - Logiciel: TOSHIBA Disc Creator - (.TOSHIBA Corporation.) [HKLM] -- {5DA0E02F-970B-424B-BF41-513A5018E4C0} ©
O42 - Logiciel: msvcrt_installer - (.SAH.) [HKLM] -- {6068A42A-C1CF-45F2-9859-5DB16287FE5D} ©
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726} ©
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {77D28FF5-242F-488A-8215-937D6A4D69E0} ©
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} ©
O42 - Logiciel: TOSHIBA HDD Protection - (.TOSHIBA Corporation.) [HKLM] -- {94A90C69-71C1-470A-88F5-AA47ECC96B40} ©
O42 - Logiciel: MSXML 6 Service Pack 2 (KB954459) - (.Microsoft Corporation.) [HKLM] -- {97AA1F3C-DD64-4AA6-AEC5-F8F9F4CC21C5} ©
O42 - Logiciel: Microsoft ActiveSync - (.Microsoft Corporation.) [HKLM] -- {99052DB7-9592-4522-A558-5417BBAD48EE} ©
O42 - Logiciel: Windows Defender - (.Microsoft Corporation.) [HKLM] -- {A06275F4-324B-4E85-95E6-87B2CD729401} ©
O42 - Logiciel: Adobe Reader XI (11.0.08) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AB0000000001} ©
O42 - Logiciel: OGA Notifier 2.0.0048.0 - (.Microsoft Corporation.) [HKLM] -- {B2544A03-10D0-4E5E-BA69-0362FFC20D18} ©
O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.) [HKLM] -- {C04E32E0-0416-434D-AFB9-6969D703A9EF} ©
O42 - Logiciel: REALTEK GbE & FE Ethernet PCI-E NIC Driver - (.Realtek.) [HKLM] -- {C9BED750-1211-4480-B1A5-718A3BE15525} ©
O42 - Logiciel: getPlus(R) for Adobe - (.NOS Microsystems Ltd..) [HKLM] -- {CF40ACC5-E1BB-4aff-AC72-04C2F616BCA7} ©
O42 - Logiciel: TOSHIBA SD Memory Utilities - (.TOSHIBA.) [HKLM] -- {EBFF48F5-3CFA-436F-8FD5-94FB01D3A0A7} ©
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} ©

---\\ HKCU & HKLM Software Keys (118) - 9s
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\AdwCleaner
HKLM\SOFTWARE\Agere
HKLM\SOFTWARE\AppDataLow
HKLM\SOFTWARE\Apple Computer, Inc.
HKLM\SOFTWARE\BrowserChoice
HKLM\SOFTWARE\C07ft5Y
HKLM\SOFTWARE\Canon
HKLM\SOFTWARE\Debug
HKLM\SOFTWARE\Earth Resource Mapping
HKLM\SOFTWARE\EnigmaSoftwareGroup
HKLM\SOFTWARE\ESRI
HKLM\SOFTWARE\FLEXlm License Manager
HKLM\SOFTWARE\FRANCE TELECOM
HKLM\SOFTWARE\Gemplus
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\Huawei technologies
HKLM\SOFTWARE\InstalledOptions
HKLM\SOFTWARE\InstallShield
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\JreMetrics
HKLM\SOFTWARE\Lake
HKLM\SOFTWARE\Licenses
HKLM\SOFTWARE\Lucent
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\Macrovision
HKLM\SOFTWARE\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Malwarebytes' Anti-Malware (Trial)
HKLM\SOFTWARE\McAfee.com
HKLM\SOFTWARE\Mediasofts
HKLM\SOFTWARE\MicroQuill
HKLM\SOFTWARE\MimarSinan
HKLM\SOFTWARE\Mindscape
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\NOS
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\PDFCreator
HKLM\SOFTWARE\Piriform
HKLM\SOFTWARE\Program Groups
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Redemption
HKLM\SOFTWARE\Redemption
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\RICOH
HKLM\SOFTWARE\RTLSetup
HKLM\SOFTWARE\Safer Networking Limited
HKLM\SOFTWARE\SAMSUNG
HKLM\SOFTWARE\Schlumberger
HKLM\SOFTWARE\Secure
HKLM\SOFTWARE\Software
HKLM\SOFTWARE\Symantec
HKLM\SOFTWARE\TOSHIBA
HKLM\SOFTWARE\VideoLAN
HKLM\SOFTWARE\webtogo
HKLM\SOFTWARE\Windows
HKLM\SOFTWARE\Windows 3.1 Migration Status
HKLM\SOFTWARE\Wise Solutions
HKLM\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Audacity
HKCU\SOFTWARE\BD Gest 7
HKCU\SOFTWARE\bdgest7
HKCU\SOFTWARE\Canon
HKCU\SOFTWARE\Canon_Inc_IC
HKCU\SOFTWARE\Citrix
HKCU\SOFTWARE\Cogistem
HKCU\SOFTWARE\Dassault Systemes
HKCU\SOFTWARE\Earth Resource Mapping
HKCU\SOFTWARE\eDrawings
HKCU\SOFTWARE\FLEXlm License Manager
HKCU\SOFTWARE\FRANCE TELECOM
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\InterVideo
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\keyhole.com
HKCU\SOFTWARE\Lake
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\LogMeIn
HKCU\SOFTWARE\Lucent
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Malwarebytes' Anti-Malware
HKCU\SOFTWARE\MimarSinan
HKCU\SOFTWARE\Monitored
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opendisc
HKCU\SOFTWARE\PDF Architect
HKCU\SOFTWARE\PDFCreator
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Redemption
HKCU\SOFTWARE\Redemption
HKCU\SOFTWARE\Research In Motion
HKCU\SOFTWARE\Safer Networking Limited
HKCU\SOFTWARE\Samsung
HKCU\SOFTWARE\settings
HKCU\SOFTWARE\Skyline
HKCU\SOFTWARE\Software
HKCU\SOFTWARE\Sony Corporation
HKCU\SOFTWARE\SWActivation
HKCU\SOFTWARE\Thunderbird
HKCU\SOFTWARE\Toshiba
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Upperspace
HKCU\SOFTWARE\VirginMega
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software

---\\ Contenu des dossiers Programmes (185) - 8s
O43 - CFD: 2013/05/29 19:18:28 - [] D -- C:\Program Files\Adobe
O43 - CFD: 2010/10/09 09:41:26 - [] D -- C:\Program Files\Alwil Software
O43 - CFD: 2013/03/15 17:57:47 - [] D -- C:\Program Files\BlackBerry Connect Desktop pour Windows Mobile
O43 - CFD: 2013/06/08 17:24:21 - [] D -- C:\Program Files\CCleaner
O43 - CFD: 2013/06/15 12:24:06 - [] D -- C:\Program Files\Citrix
O43 - CFD: 2008/03/11 14:01:23 - [] D -- C:\Program Files\Cogistem
O43 - CFD: 2007/07/26 14:06:17 - [0] D -- C:\Program Files\ComPlus Applications
O43 - CFD: 2014/03/22 18:42:08 - [] D -- C:\Program Files\Dassault Systemes
O43 - CFD: 2014/04/20 10:59:17 - [] D -- C:\Program Files\DIFX
O43 - CFD: 2014/05/09 15:09:36 - [] D -- C:\Program Files\Enigma Software Group =>.Superfluous.SpyHunter
O43 - CFD: 2010/02/14 12:21:21 - [] D -- C:\Program Files\ESRI
O43 - CFD: 2014/07/09 18:25:02 - [] D -- C:\Program Files\Fichiers communs
O43 - CFD: 2014/07/09 18:52:16 - [] D -- C:\Program Files\Google
O43 - CFD: 2012/04/14 18:25:15 - [] D -- C:\Program Files\HW E583X Driver
O43 - CFD: 2014/05/08 19:01:53 - [] HD -- C:\Program Files\InstallShield Installation Information
O43 - CFD: 2013/10/26 17:18:48 - [] D -- C:\Program Files\Intel
O43 - CFD: 2014/04/11 07:26:47 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 2013/06/21 20:29:11 - [] D -- C:\Program Files\Java
O43 - CFD: 2008/02/28 02:05:26 - [] D -- C:\Program Files\ltmoh
O43 - CFD: 2015/05/31 10:29:55 - [] D -- C:\Program Files\Malwarebytes Anti-Malware
O43 - CFD: 2014/07/10 18:50:22 - [0] D -- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 2012/07/23 17:49:50 - [] D -- C:\Program Files\MarkAny
O43 - CFD: 2009/04/27 19:37:28 - [] D -- C:\Program Files\Messenger
O43 - CFD: 2013/11/09 12:43:42 - [] D -- C:\Program Files\MetalCad2
O43 - CFD: 2013/03/15 19:44:34 - [] D -- C:\Program Files\Microsoft ActiveSync
O43 - CFD: 2008/02/28 00:11:24 - [] D -- C:\Program Files\Microsoft CAPICOM 2.1.0.2
O43 - CFD: 2008/02/28 02:05:27 - [] D -- C:\Program Files\microsoft frontpage
O43 - CFD: 2013/06/08 08:37:10 - [] D -- C:\Program Files\Microsoft Office
O43 - CFD: 2013/06/08 08:49:14 - [] D -- C:\Program Files\Microsoft Small Business
O43 - CFD: 2013/10/26 17:15:30 - [] D -- C:\Program Files\Microsoft SQL Server
O43 - CFD: 2010/01/16 15:21:48 - [] D -- C:\Program Files\Microsoft Works
O43 - CFD: 2014/01/20 19:42:19 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 2013/11/24 18:05:04 - [] D -- C:\Program Files\Mindscape
O43 - CFD: 2010/09/01 11:51:09 - [] D -- C:\Program Files\Movie Maker
O43 - CFD: 2015/07/12 08:27:46 - [] D -- C:\Program Files\Mozilla Firefox
O43 - CFD: 2015/10/25 10:46:34 - [] D -- C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 2014/06/12 21:22:15 - [] D -- C:\Program Files\Mozilla Thunderbird
O43 - CFD: 2009/08/09 09:56:36 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 2008/02/28 02:08:54 - [] D -- C:\Program Files\MSN
O43 - CFD: 2008/02/28 02:09:04 - [] D -- C:\Program Files\MSN Gaming Zone
O43 - CFD: 2007/07/26 14:30:50 - [0] D -- C:\Program Files\MSXML 4.0
O43 - CFD: 2008/02/28 00:12:41 - [] D -- C:\Program Files\MSXML 6.0
O43 - CFD: 2012/09/04 18:24:25 - [] D -- C:\Program Files\MultimediaTools
O43 - CFD: 2009/04/27 19:30:42 - [] D -- C:\Program Files\NetMeeting
O43 - CFD: 2009/01/08 19:31:32 - [] D -- C:\Program Files\NOS
O43 - CFD: 2008/02/28 02:09:15 - [] D -- C:\Program Files\Online Services
O43 - CFD: 2013/11/09 12:31:52 - [] D -- C:\Program Files\Orange
O43 - CFD: 2013/06/08 08:45:28 - [0] D -- C:\Program Files\OrangeBS
O43 - CFD: 2010/12/19 08:49:54 - [] D -- C:\Program Files\Outlook Express
O43 - CFD: 2012/12/12 18:22:28 - [] D -- C:\Program Files\PDF Architect
O43 - CFD: 2013/06/08 17:31:14 - [] D -- C:\Program Files\PDFCreator
O43 - CFD: 2008/02/28 02:09:27 - [] D -- C:\Program Files\Realtek
O43 - CFD: 2009/08/09 09:56:26 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 2012/07/23 17:51:10 - [] D -- C:\Program Files\Samsung
O43 - CFD: 2013/03/15 18:44:54 - [] D -- C:\Program Files\Securitoo
O43 - CFD: 2008/02/28 02:09:27 - [] D -- C:\Program Files\Services en ligne
O43 - CFD: 2015/05/31 10:22:50 - [] D -- C:\Program Files\Spybot - Search & Destroy 2
O43 - CFD: 2013/11/09 13:07:11 - [] D -- C:\Program Files\Toshiba
O43 - CFD: 2013/08/28 13:09:18 - [] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 2013/02/24 17:56:04 - [] D -- C:\Program Files\Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter
O43 - CFD: 2013/06/08 17:16:40 - [] D -- C:\Program Files\VideoLAN
O43 - CFD: 2013/03/16 17:11:32 - [] D -- C:\Program Files\Wanadoo
O43 - CFD: 2008/02/27 22:49:42 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 2008/02/29 10:01:20 - [] D -- C:\Program Files\Windows Desktop Search
O43 - CFD: 2009/01/02 17:14:04 - [] D -- C:\Program Files\Windows Media Connect 2
O43 - CFD: 2009/04/27 19:30:39 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 2009/04/27 19:30:39 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 2007/07/26 14:07:02 - [0] HD -- C:\Program Files\WindowsUpdate
O43 - CFD: 2008/02/28 02:10:11 - [] D -- C:\Program Files\xerox
O43 - CFD: 2015/05/31 10:00:06 - [] D -- C:\Program Files\ZHPDiag
O43 - CFD: 2009/04/27 19:34:25 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Accessoires
O43 - CFD: 2013/03/15 18:46:48 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Booster Orange
O43 - CFD: 2013/06/08 17:24:19 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\CCleaner
O43 - CFD: 2013/11/24 10:34:02 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
O43 - CFD: 2014/04/25 18:20:07 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Java
O43 - CFD: 2008/02/28 01:52:32 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Jeux
O43 - CFD: 2013/06/08 08:39:34 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft Office
O43 - CFD: 2013/03/16 17:11:25 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Orange
O43 - CFD: 2011/10/07 11:22:16 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Outil de mise à jour Google
O43 - CFD: 2008/02/28 01:52:32 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Outils d'administration
O43 - CFD: 2012/12/12 18:22:17 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\PDF Architect
O43 - CFD: 2012/12/12 18:21:01 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\PDFCreator
O43 - CFD: 2008/02/28 01:52:32 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Realtek
O43 - CFD: 2013/02/24 17:55:51 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter
O43 - CFD: 2013/06/08 17:17:20 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\VideoLAN
O43 - CFD: 2013/06/02 00:45:20 - [] D -- C:\Documents and Settings\All Users\Application Data\Adobe
O43 - CFD: 2010/10/09 09:39:09 - [] D -- C:\Documents and Settings\All Users\Application Data\Alwil Software
O43 - CFD: 2015/02/13 20:21:09 - [] D -- C:\Documents and Settings\All Users\Application Data\AVAST Software
O43 - CFD: 2009/02/08 12:18:51 - [] D -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations
O43 - CFD: 2013/06/08 08:03:29 - [] D -- C:\Documents and Settings\All Users\Application Data\FLEXnet
O43 - CFD: 2014/07/09 18:27:46 - [] D -- C:\Documents and Settings\All Users\Application Data\Garmin
O43 - CFD: 2013/10/26 17:18:08 - [] D -- C:\Documents and Settings\All Users\Application Data\Google
O43 - CFD: 2011/10/07 11:22:17 - [] D -- C:\Documents and Settings\All Users\Application Data\Google Updater
O43 - CFD: 2008/09/30 17:41:05 - [] D -- C:\Documents and Settings\All Users\Application Data\LogMeIn
O43 - CFD: 2014/07/10 18:50:22 - [] D -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
O43 - CFD: 2013/06/08 17:37:30 - [] D -- C:\Documents and Settings\All Users\Application Data\McAfee
O43 - CFD: 2015/05/31 09:58:49 - [] SD -- C:\Documents and Settings\All Users\Application Data\Microsoft
O43 - CFD: 2015/07/15 14:05:36 - [] D -- C:\Documents and Settings\All Users\Application Data\Microsoft Help
O43 - CFD: 2013/05/29 06:43:33 - [] D -- C:\Documents and Settings\All Users\Application Data\Mozilla
O43 - CFD: 2012/09/04 18:24:01 - [] D -- C:\Documents and Settings\All Users\Application Data\Norton
O43 - CFD: 2011/10/15 07:08:44 - [] D -- C:\Documents and Settings\All Users\Application Data\NortonInstaller
O43 - CFD: 2009/01/08 19:31:35 - [] D -- C:\Documents and Settings\All Users\Application Data\NOS
O43 - CFD: 2009/10/08 18:24:44 - [] D -- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage
O43 - CFD: 2014/07/09 18:35:51 - [] D -- C:\Documents and Settings\All Users\Application Data\Package Cache
O43 - CFD: 2013/03/16 16:55:40 - [] D -- C:\Documents and Settings\All Users\Application Data\Samsung
O43 - CFD: 2008/02/28 01:52:21 - [] D -- C:\Documents and Settings\All Users\Application Data\SBSI
O43 - CFD: 2013/03/16 17:13:37 - [0] D -- C:\Documents and Settings\All Users\Application Data\Skyline
O43 - CFD: 2015/05/31 09:58:53 - [] D -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
O43 - CFD: 2011/10/14 17:25:11 - [] D -- C:\Documents and Settings\All Users\Application Data\Sun
O43 - CFD: 2008/02/27 20:35:38 - [] D -- C:\Documents and Settings\All Users\Application Data\Symantec
O43 - CFD: 2013/12/15 12:26:21 - [0] AD -- C:\Documents and Settings\All Users\Application Data\TEMP
O43 - CFD: 2008/02/27 22:46:41 - [] D -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
O43 - CFD: 2013/05/29 19:20:26 - [] D -- C:\Program Files\Fichiers communs\Adobe
O43 - CFD: 2014/07/31 18:35:14 - [] D -- C:\Program Files\Fichiers communs\Adobe AIR
O43 - CFD: 2008/09/08 08:11:49 - [] D -- C:\Program Files\Fichiers communs\Canon
O43 - CFD: 2014/05/16 20:47:53 - [] D -- C:\Program Files\Fichiers communs\DESIGNER
O43 - CFD: 2008/02/28 02:02:05 - [] D -- C:\Program Files\Fichiers communs\InstallShield
O43 - CFD: 2014/07/31 18:38:31 - [] D -- C:\Program Files\Fichiers communs\Java
O43 - CFD: 2013/06/08 08:50:50 - [] D -- C:\Program Files\Fichiers communs\Microsoft Shared
O43 - CFD: 2008/02/28 02:03:27 - [] D -- C:\Program Files\Fichiers communs\MSSoap
O43 - CFD: 2008/02/28 02:03:27 - [] D -- C:\Program Files\Fichiers communs\ODBC
O43 - CFD: 2008/02/28 02:03:27 - [] D -- C:\Program Files\Fichiers communs\Services
O43 - CFD: 2008/02/28 02:03:27 - [] D -- C:\Program Files\Fichiers communs\SpeechEngines
O43 - CFD: 2012/03/18 09:20:24 - [] D -- C:\Program Files\Fichiers communs\Symantec Shared
O43 - CFD: 2009/04/27 20:21:29 - [] D -- C:\Program Files\Fichiers communs\System
O43 - CFD: 2014/05/09 15:08:32 - [] D -- C:\Program Files\Fichiers communs\Wise Installation Wizard
O43 - CFD: 2013/05/29 20:32:13 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\Adobe
O43 - CFD: 2012/12/12 18:23:02 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\APP_NAME_NON_STRING
O43 - CFD: 2008/09/27 19:23:29 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\Canon
O43 - CFD: 2014/03/22 18:43:57 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\DraftSight
O43 - CFD: 2014/04/13 20:17:30 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\dvdcss
O43 - CFD: 2014/02/07 20:07:45 - [0] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\EDrawings
O43 - CFD: 2014/07/09 18:27:37 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\Garmin
O43 - CFD: 2009/02/01 12:44:10 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\Google
O43 - CFD: 2010/04/15 11:20:07 - [0] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\Help
O43 - CFD: 2013/06/08 17:10:42 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\HTML Executable
O43 - CFD: 2009/11/13 13:22:11 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\Icones
O43 - CFD: 2008/02/28 01:52:12 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\Identities
O43 - CFD: 2008/02/28 01:52:12 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\InstallShield
O43 - CFD: 2009/05/03 07:59:40 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\InterVideo
O43 - CFD: 2008/02/27 22:44:32 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\Macromedia
O43 - CFD: 2014/07/10 18:50:41 - [0] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\Malwarebytes
O43 - CFD: 2014/07/09 17:53:18 - [] SD -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\Microsoft
O43 - CFD: 2014/05/11 08:11:23 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\Mozilla
O43 - CFD: 2009/10/06 18:30:52 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\Office Genuine Advantage
O43 - CFD: 2013/11/09 11:59:09 - [0] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\Orange
O43 - CFD: 2013/06/04 19:42:15 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\PDF Architect
O43 - CFD: 2012/07/23 17:53:53 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\Samsung
O43 - CFD: 2008/02/28 01:52:13 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\Sun
O43 - CFD: 2013/05/30 18:29:24 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\Thunderbird
O43 - CFD: 2010/04/14 18:17:34 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\toshiba
O43 - CFD: 2014/07/16 20:21:52 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\vlc
O43 - CFD: 2008/02/29 10:01:44 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\Windows Desktop Search
O43 - CFD: 2015/10/25 11:49:23 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\ZHP
O43 - CFD: 2008/09/27 19:23:57 - [0] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\ZoomBrowser EX
O43 - CFD: 2013/07/26 10:41:19 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\ZWSoft
O43 - CFD: 2013/11/24 10:32:08 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\Adobe
O43 - CFD: 2014/05/09 11:24:40 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\ApplicationHistory
O43 - CFD: 2011/11/11 11:49:36 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\CANON_INC
O43 - CFD: 2013/06/15 12:23:47 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\Citrix
O43 - CFD: 2009/05/01 18:11:50 - [0] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\Deployment
O43 - CFD: 2012/07/23 17:47:02 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\Downloaded Installations
O43 - CFD: 2014/07/09 18:27:46 - [0] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\Garmin
O43 - CFD: 2014/04/19 10:10:19 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\Google
O43 - CFD: 2010/04/15 11:20:07 - [0] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\Help
O43 - CFD: 2008/02/29 10:01:50 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\Identities
O43 - CFD: 2008/09/30 17:41:05 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\LogMeIn
O43 - CFD: 2013/12/15 21:32:14 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\Microsoft
O43 - CFD: 2007/07/26 16:22:15 - [0] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\Microsoft Help
O43 - CFD: 2014/05/10 21:02:44 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\Mozilla
O43 - CFD: 2009/01/08 19:31:38 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\NOS
O43 - CFD: 2008/02/28 00:10:48 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\PCHealth
O43 - CFD: 2013/03/16 16:55:40 - [0] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\Samsung
O43 - CFD: 2008/02/28 01:52:20 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\Seven Zip
O43 - CFD: 2013/02/23 13:29:02 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\Sun
O43 - CFD: 2014/04/19 10:18:56 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\Temp
O43 - CFD: 2013/06/26 19:48:43 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\Thunderbird
O43 - CFD: 2009/02/28 19:08:06 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\Toshiba
O43 - CFD: 2012/04/23 18:03:25 - [0] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\Unity
O43 - CFD: 2011/08/09 20:45:39 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\Western Digital
O43 - CFD: 2009/08/25 11:17:59 - [] D -- C:\Documents and Settings\JeanLouis.Gohard\Local Settings\Application Data\{09B8D80F-5AEA-4C15-BA5C-6422F65250E5}
O43 - CFD: 2008/02/28 09:42:03 - [] RD -- C:\Documents and Settings\JeanLouis.Gohard\Menu Démarrer\Programmes\Accessoires
O43 - CFD: 2014/05/09 11:24:42 - [] RD -- C:\Documents and Settings\JeanLouis.Gohard\Menu Démarrer\Programmes\Démarrage
O43 - CFD: 2013/11/09 12:31:53 - [0] D -- C:\Documents and Settings\JeanLouis.Gohard\Menu Démarrer\Programmes\Orange
O43 - CFD: 2009/07/02 17:06:28 - [] RD -- C:\Documents and Settings\JeanLouis.Gohard\Menu Démarrer\Programmes\Outils d'administration

---\\ ShellIconOverlayIdentifiers (SIOI) (1) - 0s
O106 - SIOI: Offline Files Menu [Fichiers hors connexion] - {750fdf0e-2a26-11d1-a3ea-080036587f03}. (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\system32\cscui.dll ©

---\\ Enumération des clés StartupReg (24) - 1s
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe ©
O53 - SMSR:HKLM\...\startupreg\Alcmtr [Key] . (.Realtek Semiconductor Corp. - Realtek Azalia Audio - Event Monitor.) -- ALCMTR.EXE (.not file.) ©
O53 - SMSR:HKLM\...\startupreg\AzMixerSel [Key] . (.Realtek Semiconductor Corp. - Azalia Mixer Selector.) -- C:\Program Files\Realtek\InstallShield\AzMixerSel.exe ©
O53 - SMSR:HKLM\...\startupreg\ctfmon.exe [Key] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe ©
O53 - SMSR:HKLM\...\startupreg\DDWMon [Key] . (.TOSHIBA Corporation - TOSHIBA Direct Disc Writer - Event Monitor.) -- C:\Program Files\Toshiba\TOSHIBA Direct Disc Writer\DDWMon.exe ©
O53 - SMSR:HKLM\...\startupreg\FlashPlayerUpdate [Key] . (.Adobe Systems Incorporated - Adobe® Flash® Player Installer/Uninstaller.) -- C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_17_0_0_169_Plugin.exe ©
O53 - SMSR:HKLM\...\startupreg\H/PC Connection Agent [Key] . (.Microsoft Corporation - ActiveSync Connection Manager.) -- C:\Program Files\Microsoft ActiveSync\wcescomm.exe ©
O53 - SMSR:HKLM\...\startupreg\HotKeysCmds [Key] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe ©
O53 - SMSR:HKLM\...\startupreg\IgfxTray [Key] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe ©
O53 - SMSR:HKLM\...\startupreg\KernelFaultCheck [Key] . (...) -- C:\WINDOWS\system32\dumprep 0 -k (.not file.)
O53 - SMSR:HKLM\...\startupreg\LtMoh [Key] . (.Agere Systems - LtMoh MFC Application.) -- C:\Program Files\ltmoh\ltmoh.exe ©
O53 - SMSR:HKLM\...\startupreg\MSC [Key] . (...) -- c:\Program Files\Microsoft Security Client\msseces.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\MSMSGS [Key] . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe ©
O53 - SMSR:HKLM\...\startupreg\Orange Installer [Key] . (...) -- C:\Program Files\Orange\Orange Installer\OrangeInstaller.exe
O53 - SMSR:HKLM\...\startupreg\orangeinside [Key] . (...) -- C:\Documents and Settings\JeanLouis.Gohard\Application Data\Orange\OrangeInside\one\OrangeInside.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Persistence [Key] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe ©
O53 - SMSR:HKLM\...\startupreg\RTHDCPL [Key] . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- RTHDCPL.EXE (.not file.) ©
O53 - SMSR:HKLM\...\startupreg\SmoothView [Key] . (...) -- C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe ©
O53 - SMSR:HKLM\...\startupreg\swg [Key] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe ©
O53 - SMSR:HKLM\...\startupreg\ThpSrv [Key] . (...) -- C:\WINDOWS\system32\thpsrv /logon (.not file.)
O53 - SMSR:HKLM\...\startupreg\topi [Key] . (...) -- C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\TPSMain [Key] . (.TOSHIBA Corporation - .) -- TPSMain.exe (.not file.) ©
O53 - SMSR:HKLM\...\startupreg\Windows Defender [Key] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe ©

---\\ Liste des pilotes du système (113) - 6s
O58 - SDL:2006/11/28 23:11:00 A . (.Agere Systems - SoftModem Device Driver.) -- C:\WINDOWS\System32\drivers\AGRSM.sys [1161888] ©
O58 - SDL:2008/04/13 19:36:39 C . (.Advanced Micro Devices, Inc. - AMD Win2000 AGP Filter.) -- C:\WINDOWS\System32\drivers\amdagp.sys [43008] ©
O58 - SDL:2004/08/03 21:29:30 C . (.ATI Technologies Inc. - ATI WDM BT829 MiniDriver (A).) -- C:\WINDOWS\System32\drivers\ati1btxx.sys [56623] ©
O58 - SDL:2004/08/03 21:29:30 C . (.ATI Technologies Inc. - ATI Specialized MVD VBI Codec.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys [11615] ©
O58 - SDL:2004/08/03 21:29:30 C . (.ATI Technologies Inc. - ATI Specialized PCD VBI Codec.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys [12047] ©
O58 - SDL:2004/08/03 21:29:32 C . (.ATI Technologies Inc. - ATI Rage Theater Audio WDM Minidriver.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys [30671] ©
O58 - SDL:2004/08/03 21:29:32 C . (.ATI Technologies Inc. - ATI WDM Rage Theater MiniDriver.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys [63663] ©
O58 - SDL:2004/08/03 21:29:32 C . (.ATI Technologies Inc. - ATI WDM TV Sound MiniDriver.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys [26367] ©
O58 - SDL:2004/08/03 21:29:32 C . (.ATI Technologies Inc. - ATI WDM Teletext Decoder.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys [21343] ©
O58 - SDL:2004/08/03 21:29:32 C . (.ATI Technologies Inc. - ATI WDM TVTuner MiniDriver.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys [36463] ©
O58 - SDL:2004/08/03 21:29:32 C . (.ATI Technologies Inc. - ATI WDM CrossBar MiniDriver.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys [29455] ©
O58 - SDL:2004/08/03 21:29:32 C . (.ATI Technologies Inc. - ATI WDM TVAUDIO_CrossBar MiniDriver.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys [34735] ©
O58 - SDL:2004/08/03 23:38:42 C . (.ATI Technologies Inc. - Pilote de miniport ATI RAGE 128.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys [327168] ©
O58 - SDL:2004/08/03 23:38:44 C . (.ATI Technologies Inc. - Pilote de miniport ATI RAGE 128.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys [701440] ©
O58 - SDL:2004/08/03 21:29:28 C . (.ATI Technologies Inc. - ATI WDM BT829 MiniDriver (A).) -- C:\WINDOWS\System32\drivers\atinbtxx.sys [57856] ©
O58 - SDL:2004/08/03 21:29:30 C . (.ATI Technologies Inc. - ATI Specialized MVD VBI Codec RT2.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys [13824] ©
O58 - SDL:2004/08/03 21:29:30 C . (.ATI Technologies Inc. - ATI Specialized PCD VBI Codec RT2.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys [14336] ©
O58 - SDL:2004/08/03 21:29:30 C . (.ATI Technologies Inc. - ATI Rage Theater Audio WDM Minidriver.) -- C:\WINDOWS\System32\drivers\atinraxx.sys [52224] ©
O58 - SDL:2004/08/03 21:29:32 C . (.ATI Technologies Inc. - ATI WDM Rage Theater MiniDriver RT2.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys [104960] ©
O58 - SDL:2004/08/03 21:29:32 C . (.ATI Technologies Inc. - ATI WDM TV Sound MiniDriver.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys [28672] ©
O58 - SDL:2004/08/03 21:29:32 C . (.ATI Technologies Inc. - ATI WDM Teletext Decoder.) -- C:\WINDOWS\System32\drivers\atinttxx.sys [13824] ©
O58 - SDL:2004/08/03 21:29:32 C . (.ATI Technologies Inc. - ATI WDM TVTuner MiniDriver.) -- C:\WINDOWS\System32\drivers\atintuxx.sys [73216] ©
O58 - SDL:2004/08/03 21:29:32 C . (.ATI Technologies Inc. - ATI WDM CrossBar MiniDriver.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys [31744] ©
O58 - SDL:2004/08/03 21:29:32 C . (.ATI Technologies Inc. - ATI WDM TVAUDIO_CrossBar MiniDriver RT2.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys [63488] ©
O58 - SDL:2005/06/11 05:42:00 A . (.Quanta Computer Corp - Toshiba HwSetup Driver.) -- C:\WINDOWS\System32\drivers\BoiHwSetup.sys [5504]
O58 - SDL:2006/01/18 14:08:56 AC . (.Printing Communications Assoc., Inc. (PCAUSA) - PCAUSA NDIS 5.0 SPR Protocol Driver.) -- C:\WINDOWS\System32\drivers\BRGSp50.sys [20608] ©
O58 - SDL:2006/01/18 14:08:56 AC . (.Printing Communications Assoc., Inc. (PCAUSA) - PCAUSA NDIS 5.0 SPR Protocol Driver (AMD64).) -- C:\WINDOWS\System32\drivers\BRGSp50a64.sys [29184] ©
O58 - SDL:2004/08/05 11:00:00 AC . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\System32\drivers\cinemst2.sys [262528] ©
O58 - SDL:2004/08/05 11:00:00 AC . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\System32\drivers\cpqdap01.sys [11776] ©
O58 - SDL:2008/04/14 03:05:07 AC . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) -- C:\WINDOWS\System32\drivers\dmboot.sys [800256] ©
O58 - SDL:2008/04/14 03:05:12 AC . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\System32\drivers\dmio.sys [154496] ©
O58 - SDL:2004/08/05 11:00:00 AC . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\drivers\dmload.sys [5888] ©
O58 - SDL:2007/08/09 03:13:04 AC . (.Huawei Tech. Co., Ltd. - HUAWEI USB Smart Card Driver.) -- C:\WINDOWS\System32\drivers\ewdcsc.sys [24448] ©
O58 - SDL:2009/10/12 14:21:54 AC . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\ewusbdev.sys [100736] ©
O58 - SDL:2009/09/10 13:55:52 AC . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\ewusbmdm.sys [102528] ©
O58 - SDL:2009/10/20 17:47:46 AC . (.Huawei Technologies Co., Ltd. - USB NDIS Miniport Driver.) -- C:\WINDOWS\System32\drivers\ewusbnet.sys [113280] ©
O58 - SDL:2007/11/13 23:29:24 RAC . (.Option NV - NDIS driver.) -- C:\WINDOWS\System32\drivers\Gt51Ip.sys [95744]
O58 - SDL:2007/11/13 23:29:24 RAC . (.Option N.V. - .) -- C:\WINDOWS\System32\drivers\gt72ubus.sys [51968]
O58 - SDL:2007/11/13 23:29:24 RAC . (.Option N.V. - .) -- C:\WINDOWS\System32\drivers\gtptser.sys [8064]
O58 - SDL:2008/04/13 17:36:05 A . (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\System32\drivers\hdaudbus.sys [144384]
O58 - SDL:2005/01/07 16:07:16 AC . (.Windows (R) Server 2003 DDK provider - High Definition Audio Function Driver v1.0a.) -- C:\WINDOWS\System32\drivers\Hdaudio.sys [145920]
O58 - SDL:2004/08/03 21:41:48 C . (.Conexant Systems, Inc. - HSF_HWB2 WDM driver.) -- C:\WINDOWS\System32\drivers\hsfbs2s2.sys [220032] ©
O58 - SDL:2004/08/03 21:41:50 C . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\WINDOWS\System32\drivers\hsfcxts2.sys [685056] ©
O58 - SDL:2004/08/03 21:41:56 C . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\WINDOWS\System32\drivers\hsfdpsp2.sys [1041536] ©
O58 - SDL:2007/02/12 12:36:54 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\WINDOWS\System32\drivers\iaStor.sys [277784] ©
O58 - SDL:2007/05/16 19:14:58 A . (.Intel Corporation - Intel Graphics Miniport Driver.) -- C:\WINDOWS\System32\drivers\igxpmp32.sys [5707744] ©
O58 - SDL:2007/08/03 15:04:52 A . (.LogMeIn, Inc. - LogMeIn Mirror Miniport Driver.) -- C:\WINDOWS\System32\drivers\lmimirr.sys [10144] ©
O58 - SDL:2008/10/25 17:24:00 A . (.LogMeIn, Inc. - LogMeIn Rfs Drivemap Driver.) -- C:\WINDOWS\System32\drivers\LMIRfsDriver.sys [47640] ©
O58 - SDL:2015/04/14 08:37:42 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbam.sys [23256] ©
O58 - SDL:2015/04/14 08:37:48 A . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\WINDOWS\System32\drivers\mbamchameleon.sys [120024] ©
O58 - SDL:2015/05/31 10:31:17 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [119512] ©
O58 - SDL:2004/08/03 21:41:56 C . (.Conexant - Diagnostic Interface DRIVER.) -- C:\WINDOWS\System32\drivers\mdmxsdk.sys [11868] ©
O58 - SDL:2004/08/03 21:41:40 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys [126686] ©
O58 - SDL:2004/08/03 21:41:38 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\mtlstrm.sys [1309184] ©
O58 - SDL:2004/08/03 21:29:38 C . (.Matrox Graphics Inc. - Matrox Parhelia Miniport Driver.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys [452736] ©
O58 - SDL:2007/04/27 12:01:34 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\WINDOWS\System32\drivers\NETw4x32.sys [2203520] ©
O58 - SDL:2004/08/05 11:00:00 AC . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\nikedrv.sys [12032] ©
O58 - SDL:2004/08/03 21:41:40 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys [180360] ©
O58 - SDL:2004/08/03 21:29:56 C . (.NVIDIA Corporation - NVIDIA Compatible Windows 2000 Miniport Dri.) -- C:\WINDOWS\System32\drivers\nv4_mini.sys [1897408] ©
O58 - SDL:2004/08/05 11:00:00 A . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Lib.) -- C:\WINDOWS\System32\drivers\ptilink.sys [17792] ©
O58 - SDL:2004/08/03 21:41:40 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\recagent.sys [13776] ©
O58 - SDL:2007/02/24 13:42:22 A . (.REDC - RICOH SD Driver.) -- C:\WINDOWS\System32\drivers\rimmptsk.sys [39936] ©
O58 - SDL:2007/01/23 15:40:20 A . (.REDC - RICOH MS Driver.) -- C:\WINDOWS\System32\drivers\rimsptsk.sys [42496] ©
O58 - SDL:2004/08/05 11:00:00 AC . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\System32\drivers\rio8drv.sys [12032] ©
O58 - SDL:2004/08/05 11:00:00 AC . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\riodrv.sys [12032] ©
O58 - SDL:2007/03/21 21:02:04 A . (.REDC - RICOH XD SM Driver.) -- C:\WINDOWS\System32\drivers\rixdptsk.sys [37376] ©
O58 - SDL:2007/02/07 08:43:26 A . (.Realtek Semiconductor Corporation - Realtek 10/100/1000 NDIS 5.1 Driver.) -- C:\WINDOWS\System32\drivers\Rtenicxp.sys [90880] ©
O58 - SDL:2007/05/11 02:28:00 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys [4419584] ©
O58 - SDL:2007/05/11 19:06:00 AC . (.Realtek Semiconductor Corporation - Realtek RTL8187B NDIS Driver.) -- C:\WINDOWS\System32\drivers\RTL8187B.sys [217600] ©
O58 - SDL:2004/08/03 21:29:52 C . (.S3 Graphics, Inc. - S3 ProSavage(DDR) & Twister Miniport Driver.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys [166912] ©
O58 - SDL:2007/11/13 11:25:54 AC . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\WINDOWS\System32\drivers\secdrv.sys [20480] ©
O58 - SDL:2008/04/13 19:36:39 C . (.Silicon Integrated Systems Corporation - SiS NT AGP Filter.) -- C:\WINDOWS\System32\drivers\sisagp.sys [40960] ©
O58 - SDL:2004/08/03 21:41:42 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\slnt7554.sys [129535] ©
O58 - SDL:2004/08/03 21:41:44 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\slntamr.sys [404990] ©
O58 - SDL:2004/08/03 21:41:46 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\slnthal.sys [95424] ©
O58 - SDL:2004/08/03 21:41:46 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\slwdmsup.sys [13240] ©
O58 - SDL:2011/06/02 06:47:22 AC . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\WINDOWS\System32\drivers\ssadcm.sys [10472] ©
O58 - SDL:2011/06/02 06:47:22 AC . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\WINDOWS\System32\drivers\ssadwh.sys [10344] ©
O58 - SDL:2006/12/04 03:44:32 AC . (.UPEK Inc. - TouchChip USB Kernel Driver.) -- C:\WINDOWS\System32\drivers\tcusb.sys [38288]
O58 - SDL:2007/02/22 14:10:30 A . (.TOSHIBA Corporation. - Toshiba ODD Writing Driver For x86. XP.) -- C:\WINDOWS\System32\drivers\tdcmdpst.sys [16128] ©
O58 - SDL:2007/03/26 11:22:18 A . (.TOSHIBA Corporation - TOSHIBA Direct Disc Writer - File System Dr.) -- C:\WINDOWS\System32\drivers\tdudf.sys [105856] ©
O58 - SDL:2007/04/27 09:19:00 AC . (.TOSHIBA Corporation - TOSHIBA HDD Protection Driver.) -- C:\WINDOWS\System32\drivers\thpdrv.sys [21120] ©
O58 - SDL:2007/03/09 14:23:18 AC . (.TOSHIBA Corporation - TOSHIBA HDD Protection - Shock Sensor Drive.) -- C:\WINDOWS\System32\drivers\Thpevm.sys [6528] ©
O58 - SDL:2006/10/23 15:32:20 A . (.TOSHIBA Corporation - TOSHIBA Bluetooth EC Driver.) -- C:\WINDOWS\System32\drivers\tosrfec.sys [9216] ©
O58 - SDL:2007/02/19 11:15:32 A . (.TOSHIBA Corporation - TOSHIBA Direct Disc Writer - DVD-RAM UDF Fi.) -- C:\WINDOWS\System32\drivers\trudf.sys [134016] ©
O58 - SDL:2004/08/05 11:00:00 AC . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\System32\drivers\tsbvcap.sys [21376] ©
O58 - SDL:2007/04/16 10:19:10 A . (.Chicony Electronics Co., Ltd. - UVCFTR_S.sys.) -- C:\WINDOWS\System32\drivers\UVCFTR_S.SYS [11776] ©
O58 - SDL:2004/08/05 11:00:00 AC . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\System32\drivers\vdmindvd.sys [58112] ©
O58 - SDL:2004/08/03 21:29:40 C . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\wadv07nt.sys [11807] ©
O58 - SDL:2004/08/03 21:29:40 C . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\wadv08nt.sys [11295] ©
O58 - SDL:2004/08/03 21:29:42 C . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\wadv09nt.sys [11871] ©
O58 - SDL:2004/08/03 21:29:42 C . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\wadv11nt.sys [11935] ©
O58 - SDL:2004/08/03 21:29:46 C . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\watv06nt.sys [22271] ©
O58 - SDL:2004/08/03 21:29:46 C . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\watv10nt.sys [25471] ©
O58 - SDL:2006/01/18 14:08:56 AC . (.Printing Communications Assoc., Inc. (PCAUSA) - PCAUSA NDIS 5.0 SPR Protocol Driver.) -- C:\WINDOWS\System32\drivers\ZDPSp50.sys [17664] ©
O58 - SDL:2006/01/18 14:08:56 AC . (.Printing Communications Assoc., Inc. (PCAUSA) - PCAUSA NDIS 5.0 SPR Protocol Driver (AMD64).) -- C:\WINDOWS\System32\drivers\ZDPSp50a64.sys [31744] ©
O58 - SDL:2004/08/05 11:00:00 AC . (...) -- C:\WINDOWS\System32\ansi.sys [9037]
O58 - SDL:2004/08/05 11:00:00 AC . (...) -- C:\WINDOWS\System32\country.sys [27097]
O58 - SDL:2004/08/05 11:00:00 AC . (...) -- C:\WINDOWS\System32\himem.sys [4912]
O58 - SDL:2004/08/05 11:00:00 AC . (...) -- C:\WINDOWS\System32\key01.sys [42809]
O58 - SDL:2004/08/05 11:00:00 AC . (...) -- C:\WINDOWS\System32\keyboard.sys [42537]
O58 - SDL:2004/08/05 11:00:00 AC . (...) -- C:\WINDOWS\System32\ntdos.sys [27916]
O58 - SDL:2004/08/05 11:00:00 AC . (...) -- C:\WINDOWS\System32\ntdos404.sys [29146]
O58 - SDL:2004/08/05 11:00:00 AC . (...) -- C:\WINDOWS\System32\ntdos411.sys [29370]
O58 - SDL:2004/08/05 11:00:00 AC . (...) -- C:\WINDOWS\System32\ntdos412.sys [29274]
O58 - SDL:2004/08/05 11:00:00 AC . (...) -- C:\WINDOWS\System32\ntdos804.sys [29146]
O58 - SDL:2004/08/05 11:00:00 AC . (...) -- C:\WINDOWS\System32\ntio.sys [34000]
O58 - SDL:2004/08/05 11:00:00 AC . (...) -- C:\WINDOWS\System32\ntio404.sys [34560]
O58 - SDL:2004/08/05 11:00:00 AC . (...) -- C:\WINDOWS\System32\ntio411.sys [35648]
O58 - SDL:2004/08/05 11:00:00 AC . (...) -- C:\WINDOWS\System32\ntio412.sys [35424]
O58 - SDL:2004/08/05 11:00:00 AC . (...) -- C:\WINDOWS\System32\ntio804.sys [34560]
O58 - SDL:2003/09/23 12:38:34 AC . (.Printing Communications Assoc., Inc. (PCAUSA) - PCAUSA NDIS 5.0 MPR Protocol Driver.) -- C:\WINDOWS\System32\pcampr5.sys [34688] ©
O58 - SDL:2006/03/01 20:53:54 AC . (.Printing Communications Assoc., Inc. (PCAUSA) - PCAUSA NDIS 5.0 Protocol Driver.) -- C:\WINDOWS\System32\pcandis5.sys [32128] ©

---\\ Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll ©
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ©
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\system32\wscript.exe ©
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe ©
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe ©

---\\ Menu de démarrage Internet (9) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- iexplore.exe
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (...) -- C:\PROGRA~1\Wanadoo\WOOBrowser\WOOBrowser.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe ©

---\\ Recherche d'infection sur les navigateurs (3) - 4s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {67A636DE-E191-4AF3-8FC8-0EEAC95C96D5} - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {9CB96984-43C3-4D44-90EF-01466EFCF7BB} - (Yahoo! (Avast)) - http://fr.search.yahoo.com/

---\\ Enumère les services démarrés par Svchost (40) - 1s
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\WINDOWS\system32\appmgmts.dll [176640] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\WINDOWS\system32\audiosrv.dll [42496] ©
O83 - Search Svchost Services: Browser (Browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\system32\browser.dll [78336] ©
O83 - Search Svchost Services: CryptSvc (CryptSvc) . (.Microsoft Corporation - Cryptographic Services.) -- C:\WINDOWS\system32\cryptsvc.dll [62464] ©
O83 - Search Svchost Services: DMServer (DMServer) . (.Microsoft Corp. - DLL Service gestionnaire de disque logique.) -- C:\WINDOWS\system32\dmserver.dll [24576] ©
O83 - Search Svchost Services: DHCP (DHCP) . (.Microsoft Corporation - Service client DHCP.) -- C:\WINDOWS\system32\dhcpcsvc.dll [127488] ©
O83 - Search Svchost Services: ERSvc (ERSvc) . (.Microsoft Corporation - Windows Error Reporting Service.) -- C:\WINDOWS\system32\ersvc.dll [23040] ©
O83 - Search Svchost Services: EventSystem (EventSystem) . (.Microsoft Corporation - .) -- C:\WINDOWS\system32\es.dll [253952] ©
O83 - Search Svchost Services: FastUserSwitchingCompatibility (FastUserSwitchingCompatibility) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] ©
O83 - Search Svchost Services: HidServ (HidServ) . (.Microsoft Corporation - HID Audio Service.) -- C:\WINDOWS\system32\hidserv.dll [21504] ©
O83 - Search Svchost Services: LanmanServer (LanmanServer) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [99840] ©
O83 - Search Svchost Services: LanmanWorkstation (LanmanWorkstation) . (.Microsoft Corporation - Workstation Service DLL.) -- C:\WINDOWS\system32\wkssvc.dll [132096] ©
O83 - Search Svchost Services: Messenger (Messenger) . (.Microsoft Corporation - NT Messenger Service.) -- C:\WINDOWS\system32\msgsvc.dll [33792] ©
O83 - Search Svchost Services: Netman (Netman) . (.Microsoft Corporation - Gestionnaire de connexions réseau.) -- C:\WINDOWS\system32\netman.dll [198144] ©
O83 - Search Svchost Services: Nla (Nla) . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Micro.) -- C:\WINDOWS\system32\mswsock.dll [247808] ©
O83 - Search Svchost Services: Ntmssvc (Ntmssvc) . (.Microsoft Corporation - Gestionnaire de stockage amovible.) -- C:\WINDOWS\system32\ntmssvc.dll [438272] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\system32\rasauto.dll [88576] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\system32\rasmans.dll [186368] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\system32\mprdim.dll [53248] ©
O83 - Search Svchost Services: Schedule (Schedule) . (.Microsoft Corporation - Moteur du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [194560] ©
O83 - Search Svchost Services: Seclogon (Seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [18944] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\system32\sens.dll [39424] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à.) -- C:\WINDOWS\system32\ipnathlp.dll [332800] ©
O83 - Search Svchost Services: SRService (SRService) . (.Microsoft Corporation - Service de restauration du système.) -- C:\WINDOWS\system32\srsvc.dll [171520] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\WINDOWS\system32\tapisrv.dll [249856] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] ©
O83 - Search Svchost Services: TrkWks (TrkWks) . (.Microsoft Corporation - Distributed Link Tracking Client.) -- C:\WINDOWS\system32\trkwks.dll [90112] ©
O83 - Search Svchost Services: W32Time (W32Time) . (.Microsoft Corporation - Service de temps Windows.) -- C:\WINDOWS\system32\w32time.dll [178176] ©
O83 - Search Svchost Services: WZCSVC (WZCSVC) . (.Microsoft Corporation - Service configuration automatique sans fil.) -- C:\WINDOWS\system32\wzcsvc.dll [483840] ©
O83 - Search Svchost Services: Wmi (Wmi) . (.Microsoft Corporation - API avancées Windows 32.) -- C:\WINDOWS\system32\advapi32.dll [685568] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\wmisvc.dll [145408] ©
O83 - Search Svchost Services: wscsvc (wscsvc) . (.Microsoft Corporation - Windows Security Center Service.) -- C:\WINDOWS\system32\wscsvc.dll [80896] ©
O83 - Search Svchost Services: xmlprov (xmlprov) . (.Microsoft Corporation - Network Provisioning Service.) -- C:\WINDOWS\system32\xmlprov.dll [129024] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\system32\qmgr.dll [409088] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update AutoUpdate Service.) -- C:\WINDOWS\system32\wuauserv.dll [6656] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] ©
O83 - Search Svchost Services: helpsvc (helpsvc) . (.Microsoft Corporation - Microsoft PCHealth Service Holder.) -- C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll [38400] ©
O83 - Search Svchost Services: WmdmPmSN (WmdmPmSN) . (.Microsoft Corporation - Microsoft Media Device Service Provider.) -- C:\WINDOWS\system32\mspmsnsv.dll [27136] ©
O83 - Search Svchost Services: napagent (napagent) . (.Microsoft Corporation - Exécution du service Agent de quarantaine.) -- C:\WINDOWS\system32\qagentrt.dll [293376] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\WINDOWS\system32\kmsvc.dll [61440] ©

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (13) - 13s

SS - Demand [2015/05/01 21:12:47] [ 268464] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe ©
SR - Auto [2006/10/05 20:10:12] [ 9216] Agere Modem Call Progress Audio (AgereModemAudio) . (.Agere Systems.) - C:\WINDOWS\system32\agrsmsvc.exe ©
SS - Demand [2008/12/01 10:59:52] [ 33752] getPlus(R) Helper (getPlus(R) Helper) . (.NOS Microsystems Ltd..) - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe ©
SS - Auto [2011/10/07 11:21:41] [ 194104] Google Software Updater (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe ©
SS - Demand [2005/04/03 23:41:10] [ 69632] InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe ©
SR - Auto [2014/07/31 18:37:53] [ 182696] Java Quick Starter (JavaQuickStarterService) . (.Oracle Corporation.) - C:\Program Files\Java\jre7\bin\jqs.exe ©
SS - Auto [2015/04/14 08:36:30] [ 1080120] (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe ©
SS - Demand [2015/07/12 08:27:45] [ 148136] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe ©
SR - Auto [2012/11/22 16:58:14] [ 1522312] PDF Architect Helper Service (PDF Architect Helper Service) . (.pdfforge GbR.) - C:\Program Files\PDF Architect\HelperService.exe ©
SR - Auto [2012/11/22 16:56:10] [ 905864] PDF Architect Service (PDF Architect Service) . (.pdfforge GbR.) - C:\Program Files\PDF Architect\ConversionService.exe ©
SR - Auto [2007/05/18 09:52:16] [ 562744] TOSHIBA HDD Protection (Thpsrv) . (.TOSHIBA Corporation.) - C:\WINDOWS\system32\ThpSrv.exe ©
SR - Auto [2006/05/25 18:30:16] [ 114688] TOSHIBA Optical Disc Drive Service (TODDSrv) . (.TOSHIBA Corporation.) - C:\WINDOWS\system32\TODDSrv.exe ©

---\\ Scan Additionnel (1) - 0s
~ Aucun élément malicieux ou superflu trouvé.

---\\ Récapitulatif des éléments trouvées sur votre station (1) - 0s
~ Aucun élément malicieux ou superflu trouvé.

~ End of the scan, 96573 items in 77 seconds (770)(0)()

Publicité


Signaler le contenu de ce document

Publicité