cjoint

Publicité


Publicité

Commentaire : ~ ZHPDiag v2015.11.1.159 Par Nicolas Coolman (2015/11/01) ~ Démarré par melissa (Administrator) (2015/11/01 20:10:53) ~ Site: http://www.nicolascoolman.fr ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Etat de la version: Version OK ~ Mode: Scanner ~ Rapport: C:\Documents and Settings\melissa\Bureau\ZHPDiag.txt ~ Rapport: C:\Documents and Settings\melissa\Application Data\ZHP\ZHPDiag.txt ~ UAC: Deactivate ~ Démarrage du système: Normal (Normal boot) Windows XP, 32-bit Service Pack 3 (Build 2600) ---\\ Navigateurs Internet (2) - 0s MFIE: Mozilla Firefox 8.0.1 (x86 fr) v8.0.1 MSIE: Internet Explorer v8.0.6001.18702 ---\\ Informations sur les produits Windows (4) - 0s Windows Automatic Updates : OK Windows Activation Technologies : KO Windows Genuine Advantage : OK Windows Guenuine Advantage (antiwpa) : OK ---\\ Logiciels de protection (1) - 2s SMADAV version 10.2.1 v10.2.1 ---\\ Surveillance de Logiciels (2) - 3s Adobe Flash Player 18 NPAPI Adobe Reader X ---\\ Informations sur le système (7) - 0s ~ Operating System: x86 Family 15 Model 6 Stepping 5, GenuineIntel ~ Operating System: 32-bit ~ Boot mode: Normal (Normal boot) Total RAM: 1310.188 MB (35% free) ~ System Restore: Activé (Enable) ~ System drive C: has 28 GB free of 39 GB Total RAM: 1310.188 MB (24% free) ---\\ Mode de connexion au système (3) - 0s ~ Computer Name: MELISSA-C115467 ~ User Name: melissa ~ Logged in as Administrator ---\\ Enumération des unités disques (3) - 5s ~ Drive C: has 28 GB free of 39 GB (System) ~ Drive D: has 31 GB free of 36 GB ~ Drive E: has GB free of 3 GB ---\\ Etat du Centre de Sécurité Windows (8) - 0s [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK ---\\ Recherche particulière de fichiers génériques (23) - 1s [MD5.FD950CE95D091DB7044B82A743861B60] - 14/04/2008 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [1431040] © [MD5.93AD0B78C7357A05F50E594EC7C22300] - 14/04/2008 - (.Microsoft Corporation - Exécuter une DLL en tant qu'application.) -- C:\WINDOWS\System32\rundll32.exe [33792] © [MD5.2988BFF8257A55EA8AFD038F49F81A34] - 06/02/2014 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\WINDOWS\System32\wininet.dll [920064] © [MD5.DD73D6B9F6B4CB630CF35B438B540174] - 14/04/2008 - (.Microsoft Corporation - Application d'ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [512000] © [MD5.4992C88B25C429744D255C35C756BB7B] - 03/03/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\System32\dnsapi.dll [149504] © [MD5.F6B7B1ECD7B41736BDB6FF4B092BCB79] - 17/08/2011 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [138496] © [MD5.9F3A2F5AA6875C72BF062C712CFA2674] - 14/04/2008 - (.Microsoft Corporation - IDE/ATAPI Port Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [96512] © [MD5.C885B02847F5D2FD45A24E219ED93B32] - 14/04/2008 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [63744] © [MD5.1F4260CC5B42272D71F79E570A27A4FE] - 14/04/2008 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [62976] © [MD5.31F923EB2170FC172C81ABDA0045D18C] - 14/04/2008 - (.Microsoft Corporation - Pilote de cryptographie FIPS.) -- C:\WINDOWS\System32\drivers\Fips.sys [44672] © [MD5.573C7D0A32852B48F3058CFD8026F511] - 14/04/2008 - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [144384] [MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - 13/04/2008 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [54144] © [MD5.083A052659F5310DD8B6A6CB05EDCF8E] - 14/04/2008 - (.Microsoft Corporation - IMAPI Kernel Driver.) -- C:\WINDOWS\System32\drivers\Imapi.sys [42112] © [MD5.CC748EA12C6EFFDE940EE98098BF96BB] - 14/04/2008 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [152832] © [MD5.23C74D75E36E7158768DD63D92789A91] - 14/04/2008 - (.Microsoft Corporation - IPSec Driver.) -- C:\WINDOWS\System32\drivers\IPSec.sys [75264] © [MD5.FB2FCCC70F7174C7BF64F48E96D3ADF4] - 15/07/2011 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [457856] © [MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - 14/04/2008 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [162816] © [MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - 14/04/2008 - (.Microsoft Corporation - NT File System Driver.) -- C:\WINDOWS\System32\drivers\ntfs.sys [574976] © [MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - 16/12/2008 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [80384] © [MD5.11B4A627BC9614B885C4969BFA5FF8A6] - 14/04/2008 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [51328] © [MD5.15CABD0F7C00C47C70124907916AF3F1] - 13/04/2008 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [196224] © [MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - 13/04/2008 - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) -- C:\WINDOWS\System32\drivers\redbook.sys [58752] © [MD5.46DE1126684369BACE4849E4FC8C43CA] - 14/04/2008 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [53376] © ---\\ Processus lancés (10) - 1s [MD5.84DD33D57638F5E46ABFA6FC19CFE87A] - (.Baidu Inc. - FasterNow.) -- C:\Program Files\Baidu Cleaner\FasterNow.exe [867944] [PID.1712] [MD5.835F65D8FEF255BE6C9050B5BB9E8F36] - (.Baidu Inc. - PC App Store Service.) -- C:\Program Files\PC App Store\5.0.1.8682\PCAppStoreSvc.exe [571424] [PID.548] [MD5.56E52535F4CF96E42DB1140E2B18731F] - (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Baidu Browser\spark.exe [983352] [PID.2288] [MD5.56E52535F4CF96E42DB1140E2B18731F] - (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Baidu Browser\spark.exe [983352] [PID.3964] [MD5.56E52535F4CF96E42DB1140E2B18731F] - (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Baidu Browser\spark.exe [983352] [PID.3896] [MD5.56E52535F4CF96E42DB1140E2B18731F] - (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Baidu Browser\spark.exe [983352] [PID.1096] [MD5.56E52535F4CF96E42DB1140E2B18731F] - (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Baidu Browser\spark.exe [983352] [PID.2548] [MD5.12EB1611DFAD425DFBAA85B994BC20E1] - (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\melissa\Bureau\ZHPDiag3.exe [1963008] [PID.2412] © [MD5.25532414A7A088553527A75B31DF0592] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [924632] [PID.3540] © [MD5.1CD878FFA3B97D9008FA0E723ED996CB] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [16856] [PID.2716] © ---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (2) - 0s M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_18_0_0_160.dll © ---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (13) - 0s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://my.myplaycity.com R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://my.myplaycity.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2 ---\\ Internet Explorer,Proxy Management (4) - 0s R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.) © F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) © F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ---\\ Etude du fichier hosts (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (20) ---\\ Browser Helper Object de navigateur (BHO) (1) - 0s O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} . (...) -- C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (.not file.) ---\\ Internet Explorer, Barre d'outil (3) - 0s O3 - Toolbar: 0x07000000EE0300007E69791EC59CD111A83F00C04FC99D612001000004000000EF0300007E69791EC59CD111A83F00C04FC99D612101000004000000F00300007E69791EC59CD111A83F00C04FC99D613001000004000000 - [HKCU]{710EB7A1-45ED-11D0-924A-0020AFC7AC4D} . (...) -- (.not file.) O3 - Toolbar: 0x07000000F40300007E69791EC59CD111A83F00C04FC99D612001000000000000F50300007E69791EC59CD111A83F00C04FC99D612101000000000000F70300007E69791EC59CD111A83F00C04FC99D612501000004000000 - [HKCU]{1E796980-9CC5-11D1-A83F-00C04FC99D61} . (...) -- (.not file.) O3 - Toolbar: (no name) - [HKLM]{10921475-03CE-4E04-90CE-E2E7EF20C814} (Orphean) (.not file.) ---\\ Applications lancées au démarrage du système (18) - 1s O4 - HKLM\..\Run: [SMΔRT-Protection] . (.Smadsoft - Smadav USB Antivirus & Additional Protectio.) -- C:\Program Files\SMADAV\SMΔRTP.exe O4 - HKLM\..\Run: [PCAppStore_AppStoreDeskTool] . (.Baidu Inc. - PC App Store DeskTool.) -- C:\Program Files\PC App Store\5.0.1.8682\AppStoreDeskTool.exe O4 - HKLM\..\Run: [Baidu Cleaner] . (.Baidu Inc. - Baidu Cleaner Tray.) -- C:\Program Files\Baidu Cleaner\BCleanerTray.exe O4 - HKLM\..\Run: [NvCplDaemon] . (.Microsoft Corporation - Exécuter une DLL en tant qu'application.) -- C:\WINDOWS\System32\RUNDLL32.EXE © O4 - HKLM\..\Run: [NvMediaCenter] . (.Microsoft Corporation - Exécuter une DLL en tant qu'application.) -- C:\WINDOWS\System32\RunDLL32.exe © O4 - HKLM\..\Run: [nwiz] . (...) -- C:\Program Files\NVIDIA Corporation\nview\nwiz.exe O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe © O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe © O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe © O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N O4 - HKUS\S-1-5-21-1060284298-630328440-1606980848-1003\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe © ---\\ Modification Domaine/Adresses DNS (5) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4 =>.Google Public DNS O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4 =>.Google Public DNS O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1 O17 - HKLM\System\CS3\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1 ---\\ Protocole additionnel (25) - 0s O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll © O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll © O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\system32\msvidctl.dll © O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll © O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll © O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll © O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll © O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll © O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll © O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll © O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll © O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll © O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API.) -- C:\WINDOWS\system32\inetcomm.dll © O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll © O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll © O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll © O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\system32\msvidctl.dll © O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll © O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll © O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll © O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll © O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll © O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll © O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll © O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll © ---\\ Liste des services NT non Microsoft et non désactivés (6) - 1s O23 - Service: Baidu Cleaner Service (BCleanerSvc) . (.Baidu Inc. - Baidu Cleaner Service.) - C:\Program Files\Baidu Cleaner\BCleanerSvc.exe O23 - Service: CodeMeter Runtime Server (CodeMeter.exe) . (.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) - C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe © O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe © O23 - Service: PC App Store Service 5.0.1.8682 (PCAppStoreSvc_{PCAppStore_5.0.1.8682}) . (.Baidu Inc. - PC App Store Service.) - C:\Program Files\PC App Store\5.0.1.8682\PCAppStoreSvc.exe O23 - Service: (PCFasterSvc_{PCFaster_6.0.0.0}) . (.Baidu Inc. - Baidu Cleaner Service.) - C:\Program Files\Baidu Cleaner\BCleanerSvc.exe O23 - Service: Baidu Spark Service (SparkSvc) . (.Baidu Inc. - spark.) - C:\Program Files\baidu\Baidu Browser\sparkservice.exe ---\\ Tâches planifiées en automatique (2) - 3s [MD5.00000000000000000000000000000000] [APT] [DriverMaxWelcomes] (...) -- C:\Program Files\Innovative Solutions\DriverMax\drivermax.exe (.not file.) [0] O39 - APT: DriverMaxWelcomes - (...) -- C:\WINDOWS\Tasks\DriverMaxWelcomes.job [308] ---\\ Logiciels installés (27) - 20s O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR © O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI © O42 - Logiciel: Baidu Cleaner - (.Baidu Inc..) [HKLM] -- Baidu Cleaner O42 - Logiciel: FormatFactory 3.3.5.0 - (.Format Factory.) [HKLM] -- FormatFactory © O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8 © O42 - Logiciel: K-Lite Mega Codec Pack 8.0.0 - (...) [HKLM] -- KLiteCodecPack_is1 O42 - Logiciel: Mozilla Firefox 8.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 8.0.1 (x86 fr) © O42 - Logiciel: Need For Waves - (.MyPlayCity, Inc..) [HKLM] -- Need For Waves_is1 O42 - Logiciel: PC App Store - (.Baidu, Inc..) [HKLM] -- PC App Store 5.0.1.8682 © O42 - Logiciel: Plants vs. Zombies - (.PopCap Games.) [HKLM] -- Plants vs. Zombies © O42 - Logiciel: Baidu Browser - (.Baidu Inc..) [HKLM] -- Spark O42 - Logiciel: Star Sword - (.Media Contact LLC.) [HKLM] -- Star Sword_is1 O42 - Logiciel: Windows 8 Transformation Pack - (.Windows X's Live.) [HKLM] -- UX Pack O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM] -- VLC media player © O42 - Logiciel: WinRAR 5.21 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver © O42 - Logiciel: WinRARar 4.2 - (...) [HKLM] -- WinRARar 4.2 O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {0A3925EA-5B0E-401B-A189-7419149747B2} © O42 - Logiciel: Flash Drive Tester v1.14 - (.Virtual Console.) [HKLM] -- {272C8DEE-F54F-406C-9AA6-B4DE2985A47C} © O42 - Logiciel: Skype™ 7.8 - (.Skype Technologies S.A..) [HKLM] -- {6A0549A9-1B96-498C-ACBC-3943001FEB19} © O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} © O42 - Logiciel: SMADAV version 10.2.1 - (.SmadSoft.) [HKLM] -- {8B9FA5FF-3E61-4658-B0DA-E6DDB46D6BAD}_is1 O42 - Logiciel: Adobe Reader X (10.1.10) - Arabic - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1025-7B44-AA1000000001} © O42 - Logiciel: NVIDIA Pilote graphique 307.83 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver © O42 - Logiciel: NVIDIA nView 136.53 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView © O42 - Logiciel: Mises à jour NVIDIA 1.10.8 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update © O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} © O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU] -- UnityWebPlayer © ---\\ HKCU & HKLM Software Keys (146) - 20s HKLM\SOFTWARE\Adobe HKLM\SOFTWARE\Alpha Networks HKLM\SOFTWARE\America Online HKLM\SOFTWARE\ANI HKLM\SOFTWARE\AOL HKLM\SOFTWARE\Apple Computer, Inc. HKLM\SOFTWARE\AVG HKLM\SOFTWARE\AviSynth HKLM\SOFTWARE\Baidu HKLM\SOFTWARE\Baidu Cleaner HKLM\SOFTWARE\Baidu Security HKLM\SOFTWARE\Baidu_Drp_pos HKLM\SOFTWARE\Big Fish Games HKLM\SOFTWARE\C07ft5Y HKLM\SOFTWARE\CloudOpt HKLM\SOFTWARE\CloudOPTInfo HKLM\SOFTWARE\Creative Tech HKLM\SOFTWARE\Cyberlink HKLM\SOFTWARE\D-Link HKLM\SOFTWARE\Dayterium HKLM\SOFTWARE\DtsEncodeTools HKLM\SOFTWARE\Gabest HKLM\SOFTWARE\GameHouse HKLM\SOFTWARE\Gemplus HKLM\SOFTWARE\GNU HKLM\SOFTWARE\Google HKLM\SOFTWARE\HaaliMkx HKLM\SOFTWARE\Hewlett-Packard Company HKLM\SOFTWARE\IHProtect =>PUP.Optional.AgentODR HKLM\SOFTWARE\IM Providers HKLM\SOFTWARE\IN Wallpaper ProjectTool HKLM\SOFTWARE\Innovative Solutions HKLM\SOFTWARE\InstallShield HKLM\SOFTWARE\Intel HKLM\SOFTWARE\Internet Download Manager HKLM\SOFTWARE\InterVideo HKLM\SOFTWARE\IObit HKLM\SOFTWARE\iSkysoft HKLM\SOFTWARE\istartsurfSoftware =>PUP.Optional.IsStart HKLM\SOFTWARE\JavaSoft HKLM\SOFTWARE\JreMetrics HKLM\SOFTWARE\Khronos HKLM\SOFTWARE\KLCodecPack HKLM\SOFTWARE\Lake HKLM\SOFTWARE\LAV HKLM\SOFTWARE\Licenses HKLM\SOFTWARE\Macromedia HKLM\SOFTWARE\MDC HKLM\SOFTWARE\Mooii HKLM\SOFTWARE\Mozilla HKLM\SOFTWARE\mozilla.org HKLM\SOFTWARE\MozillaPlugins HKLM\SOFTWARE\NVIDIA Corporation HKLM\SOFTWARE\ODBC HKLM\SOFTWARE\Opera Software HKLM\SOFTWARE\PGWARE HKLM\SOFTWARE\PopCap HKLM\SOFTWARE\Program Groups HKLM\SOFTWARE\Realtek HKLM\SOFTWARE\Realtek Semiconductor Corp. HKLM\SOFTWARE\RegisteredApplications HKLM\SOFTWARE\Schlumberger HKLM\SOFTWARE\Secure HKLM\SOFTWARE\Silicon Integrated Systems Corporation HKLM\SOFTWARE\Skype HKLM\SOFTWARE\Sony Corporation HKLM\SOFTWARE\SONY PVC HKLM\SOFTWARE\SupDp =>PUP.Optional.SupTab HKLM\SOFTWARE\supTab =>PUP.Optional.SupTab HKLM\SOFTWARE\TuneUp HKLM\SOFTWARE\VideoLAN HKLM\SOFTWARE\WebProtector =>PUP.Optional.BProtector HKLM\SOFTWARE\WIBU-SYSTEMS HKLM\SOFTWARE\Windows 3.1 Migration Status HKLM\SOFTWARE\Windows X HKLM\SOFTWARE\WinRAR HKLM\SOFTWARE\Wow6432Node HKCU\SOFTWARE\3rd Eye Solutions HKCU\SOFTWARE\Abrosoft HKCU\SOFTWARE\AC3filter HKCU\SOFTWARE\Adobe HKCU\SOFTWARE\ALLPlayer Remote HKCU\SOFTWARE\America Online HKCU\SOFTWARE\AOL HKCU\SOFTWARE\Ashampoo HKCU\SOFTWARE\AVG HKCU\SOFTWARE\Baidu HKCU\SOFTWARE\Baidu Cleaner HKCU\SOFTWARE\Baidu Security HKCU\SOFTWARE\Brasfoot2013 HKCU\SOFTWARE\Christmas Garland Light HKCU\SOFTWARE\Clubic HKCU\SOFTWARE\CyberLink HKCU\SOFTWARE\DivXNetworks HKCU\SOFTWARE\DownloadManager HKCU\SOFTWARE\DScaler5 HKCU\SOFTWARE\Dz4-EvEr HKCU\SOFTWARE\FreeTime HKCU\SOFTWARE\Gabest HKCU\SOFTWARE\GameHouse HKCU\SOFTWARE\Gametop HKCU\SOFTWARE\GetData HKCU\SOFTWARE\GNU HKCU\SOFTWARE\Google HKCU\SOFTWARE\Haali HKCU\SOFTWARE\IM Providers HKCU\SOFTWARE\Innovative Solutions HKCU\SOFTWARE\Intel HKCU\SOFTWARE\JavaSoft HKCU\SOFTWARE\Lake HKCU\SOFTWARE\LAV HKCU\SOFTWARE\Local AppWizard-Generated Applications HKCU\SOFTWARE\Macromedia HKCU\SOFTWARE\madFlac HKCU\SOFTWARE\MarBit HKCU\SOFTWARE\MediaChance HKCU\SOFTWARE\MediaInfo HKCU\SOFTWARE\MetaGeek, LLC HKCU\SOFTWARE\MetaProducts HKCU\SOFTWARE\Mooii HKCU\SOFTWARE\Mozilla HKCU\SOFTWARE\MozillaPlugins HKCU\SOFTWARE\Netscape HKCU\SOFTWARE\NVIDIA Corporation HKCU\SOFTWARE\Opera Software HKCU\SOFTWARE\PC App Store HKCU\SOFTWARE\PopCap HKCU\SOFTWARE\ProductSetup =>Adware.InstallCore HKCU\SOFTWARE\Realtek HKCU\SOFTWARE\RegisteredApplications HKCU\SOFTWARE\Sahmon Games HKCU\SOFTWARE\SigmaTeam HKCU\SOFTWARE\Skype HKCU\SOFTWARE\Slender HKCU\SOFTWARE\SMADΔV HKCU\SOFTWARE\Sunplus HKCU\SOFTWARE\Sysinternals HKCU\SOFTWARE\TAdvCheckList HKCU\SOFTWARE\Trolltech HKCU\SOFTWARE\Unity HKCU\SOFTWARE\VB and VBA Program Settings HKCU\SOFTWARE\Windows X HKCU\SOFTWARE\WinRAR HKCU\SOFTWARE\WinRAR SFX HKCU\SOFTWARE\WPI HKCU\SOFTWARE\ZebHelpProcess Helper ---\\ Contenu des dossiers Programmes (176) - 10s O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\3COM O43 - CFD: 23/06/2015 - [0] D -- C:\Program Files\Abrosoft O43 - CFD: 04/10/2015 - [] D -- C:\Program Files\Adobe O43 - CFD: 04/07/2015 - [] D -- C:\Program Files\AVG O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\baidu O43 - CFD: 01/11/2015 - [] D -- C:\Program Files\Baidu Cleaner O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Baidu Security O43 - CFD: 24/06/2015 - [] D -- C:\Program Files\CodeMeter O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Common Files O43 - CFD: 23/06/2015 - [0] D -- C:\Program Files\ComPlus Applications O43 - CFD: 28/06/2015 - [] D -- C:\Program Files\D-Link O43 - CFD: 04/10/2015 - [] D -- C:\Program Files\Fichiers communs O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\FreeTime O43 - CFD: 24/10/2015 - [] D -- C:\Program Files\GameTop.com O43 - CFD: 16/08/2015 - [] HD -- C:\Program Files\InstallShield Installation Information O43 - CFD: 14/07/2015 - [] D -- C:\Program Files\Internet Explorer O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\IObit O43 - CFD: 23/06/2015 - [0] D -- C:\Program Files\iSkysoft O43 - CFD: 27/10/2015 - [] D -- C:\Program Files\K-Lite Codec Pack O43 - CFD: 24/06/2015 - [] D -- C:\Program Files\Microsoft.NET O43 - CFD: 01/07/2015 - [] D -- C:\Program Files\MiuiTab =>PUP.Optional.MiuiTab O43 - CFD: 14/07/2015 - [] D -- C:\Program Files\Movie Maker O43 - CFD: 30/10/2015 - [] D -- C:\Program Files\Mozilla Firefox O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\MSN Gaming Zone O43 - CFD: 23/06/2015 - [0] D -- C:\Program Files\MSXML 4.0 O43 - CFD: 16/10/2015 - [] D -- C:\Program Files\MyPlayCity.com O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\NetMeeting O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\NSIS Uninstall Information O43 - CFD: 28/08/2015 - [] D -- C:\Program Files\NVIDIA Corporation O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Opera O43 - CFD: 15/07/2015 - [] D -- C:\Program Files\Outlook Express O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\PC App Store O43 - CFD: 16/10/2015 - [] D -- C:\Program Files\PopCap Games O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Realtek O43 - CFD: 25/06/2015 - [0] D -- C:\Program Files\Recuva O43 - CFD: 24/07/2015 - [0] D -- C:\Program Files\Rockstar Games O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Services en ligne O43 - CFD: 16/08/2015 - [] RD -- C:\Program Files\Skype O43 - CFD: 31/10/2015 - [] D -- C:\Program Files\SMADAV O43 - CFD: 23/06/2015 - [0] HD -- C:\Program Files\Uninstall Information O43 - CFD: 15/07/2015 - [] D -- C:\Program Files\UX Pack O43 - CFD: 25/06/2015 - [] D -- C:\Program Files\VideoLAN O43 - CFD: 16/08/2015 - [] D -- C:\Program Files\Virtual Console O43 - CFD: 25/06/2015 - [0] D -- C:\Program Files\WebProtectorPlus =>PUP.Optional.WebProtect O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Windows Media Connect 2 O43 - CFD: 15/07/2015 - [] D -- C:\Program Files\Windows Media Player O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Windows NT O43 - CFD: 23/06/2015 - [0] HD -- C:\Program Files\WindowsUpdate O43 - CFD: 24/06/2015 - [] D -- C:\Program Files\WinRAR O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\WinRARar O43 - CFD: 23/06/2015 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Accessoires O43 - CFD: 18/08/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Baidu Browser O43 - CFD: 01/11/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Baidu Cleaner O43 - CFD: 24/07/2015 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage O43 - CFD: 25/10/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\GameTop.com O43 - CFD: 16/08/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Hewlett-Packard Company O43 - CFD: 23/06/2015 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Jeux O43 - CFD: 27/10/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\K-Lite Codec Pack O43 - CFD: 16/10/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\MyPlayCity.com O43 - CFD: 23/06/2015 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Outils d'administration O43 - CFD: 16/10/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\PopCap Games O43 - CFD: 16/08/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Skype O43 - CFD: 12/08/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\SMADAV Antivirus O43 - CFD: 25/06/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\VideoLAN O43 - CFD: 24/06/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WinRAR O43 - CFD: 05/10/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Adobe O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\AIM O43 - CFD: 14/07/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Ashampoo O43 - CFD: 04/07/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\AVG O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Baidu O43 - CFD: 23/07/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Baidu Cleaner O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Baidu Security O43 - CFD: 24/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\BigFishCache O43 - CFD: 24/10/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\BsrSvc_exe O43 - CFD: 04/07/2015 - [] HD -- C:\Documents and Settings\All Users\Application Data\Common Files O43 - CFD: 25/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\CyberLink O43 - CFD: 23/06/2015 - [0] D -- C:\Documents and Settings\All Users\Application Data\IDM O43 - CFD: 25/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\IHProtectUpDate =>PUP.Optional.AgentODR O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\install_clap O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\IObit O43 - CFD: 16/10/2015 - [] SD -- C:\Documents and Settings\All Users\Application Data\Microsoft O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Mozilla O43 - CFD: 28/08/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\NVIDIA O43 - CFD: 28/08/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\NVIDIA Corporation O43 - CFD: 13/07/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Oracle O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\PDVD O43 - CFD: 16/10/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\PopCap Games O43 - CFD: 25/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\ProductData =>PUP.Optional.Generic O43 - CFD: 01/11/2015 - [0] D -- C:\Documents and Settings\All Users\Application Data\RpData O43 - CFD: 16/08/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Skype O43 - CFD: 13/07/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Sun O43 - CFD: 25/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\SUPPORTDIR O43 - CFD: 25/10/2015 - [0] AD -- C:\Documents and Settings\All Users\Application Data\TEMP O43 - CFD: 23/06/2015 - [0] D -- C:\Documents and Settings\All Users\Application Data\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} =>PUP.Optional.Generic O43 - CFD: 04/10/2015 - [] D -- C:\Program Files\Fichiers communs\Adobe O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Fichiers communs\Adobe AIR O43 - CFD: 23/06/2015 - [0] D -- C:\Program Files\Fichiers communs\AOL O43 - CFD: 07/07/2015 - [] D -- C:\Program Files\Fichiers communs\InstallShield O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Fichiers communs\IObit O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Fichiers communs\Microsoft Shared O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Fichiers communs\MSSoap O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Fichiers communs\ODBC O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Fichiers communs\Services O43 - CFD: 16/08/2015 - [] D -- C:\Program Files\Fichiers communs\Skype O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Fichiers communs\SpeechEngines O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Fichiers communs\System O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\acccore O43 - CFD: 04/10/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Adobe O43 - CFD: 12/07/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Alive Games O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Apple Computer O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Avant Downloader O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Avant Profiles O43 - CFD: 04/07/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\AVG O43 - CFD: 12/07/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Awem O43 - CFD: 18/08/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Baidu O43 - CFD: 16/10/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Baidu Cleaner O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\CyberLink O43 - CFD: 28/10/2015 - [0] D -- C:\Documents and Settings\melissa\Application Data\DMCache O43 - CFD: 27/10/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\dvdcss O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Identities O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\inkscape O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Innovative Solutions O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\IObit O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Macromedia O43 - CFD: 28/10/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Media Player Classic O43 - CFD: 04/10/2015 - [] SD -- C:\Documents and Settings\melissa\Application Data\Microsoft O43 - CFD: 25/10/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Mozilla O43 - CFD: 23/06/2015 - [0] D -- C:\Documents and Settings\melissa\Application Data\Opera Software O43 - CFD: 29/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\PC App Store O43 - CFD: 27/06/2015 - [0] D -- C:\Documents and Settings\melissa\Application Data\PhotoScape O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\ProductData O43 - CFD: 04/07/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\RPEng O43 - CFD: 20/10/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Sahmon Games O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Shortcut O43 - CFD: 28/10/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Skype O43 - CFD: 11/07/2015 - [0] D -- C:\Documents and Settings\melissa\Application Data\Smadav O43 - CFD: 13/07/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Sun O43 - CFD: 17/08/2015 - [0] D -- C:\Documents and Settings\melissa\Application Data\Update O43 - CFD: 27/10/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\vlc O43 - CFD: 25/06/2015 - [0] D -- C:\Documents and Settings\melissa\Application Data\WebExtend O43 - CFD: 17/08/2015 - [0] D -- C:\Documents and Settings\melissa\Application Data\WindowsUpdate O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\WinRAR O43 - CFD: 01/11/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\ZHP O43 - CFD: 04/10/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Adobe O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\AIM O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\AOL O43 - CFD: 04/07/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Avg O43 - CFD: 12/08/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Baidu O43 - CFD: 24/06/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Big Fish O43 - CFD: 20/07/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Christmas Puzzle O43 - CFD: 26/07/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\com.gamehouse.acid O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\CyberLink O43 - CFD: 18/07/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Downloaded Installations O43 - CFD: 29/06/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Electronic_Arts_Inc O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Innovative Solutions O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\iSkysoft O43 - CFD: 24/06/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\MetaGeek,_LLC O43 - CFD: 28/10/2015 - [] SD -- C:\Documents and Settings\melissa\Local Settings\Application Data\Microsoft O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\MiniService O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Mozilla O43 - CFD: 23/06/2015 - [0] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Opera Software O43 - CFD: 14/07/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\photoOptimizeHistoryDataBase O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Skype O43 - CFD: 24/07/2015 - [0] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Slender O43 - CFD: 13/07/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Sun O43 - CFD: 31/10/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\temp O43 - CFD: 05/07/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Unity O43 - CFD: 07/07/2015 - [0] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\WMTools Downloaded Files O43 - CFD: 23/06/2015 - [] RD -- C:\Documents and Settings\melissa\Menu Démarrer\Programmes\Accessoires O43 - CFD: 23/07/2015 - [] D -- C:\Documents and Settings\melissa\Menu Démarrer\Programmes\Baidu Cleaner O43 - CFD: 24/07/2015 - [0] RD -- C:\Documents and Settings\melissa\Menu Démarrer\Programmes\Démarrage O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Menu Démarrer\Programmes\FormatFactory O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Menu Démarrer\Programmes\PC App Store O43 - CFD: 16/08/2015 - [] D -- C:\Documents and Settings\melissa\Menu Démarrer\Programmes\Virtual Console O43 - CFD: 24/06/2015 - [] D -- C:\Documents and Settings\melissa\Menu Démarrer\Programmes\WinRAR O43 - CFD: 01/11/2015 - [] D -- C:\Program Files\Mozilla Firefox ---\\ ShellIconOverlayIdentifiers (SIOI) (1) - 0s O106 - SIOI: Offline Files Menu [Fichiers hors connexion] - {750fdf0e-2a26-11d1-a3ea-080036587f03}. (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\system32\cscui.dll © ---\\ Liste des pilotes du système (42) - 2s O58 - SDL:2009/11/18 06:16:00 A . (.Creative - Creative WDM 3D Audio Driver.) -- C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480] © O58 - SDL:2015/03/31 07:14:18 A . (.Baidu, Inc. - Baidu Antivirus Hook Base.) -- C:\WINDOWS\System32\drivers\Bhbase.sys [47408] © O58 - SDL:2015/03/31 07:14:20 A . (.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) -- C:\WINDOWS\System32\drivers\BprotectEx.sys [114960] © O58 - SDL:2008/12/16 17:27:52 A . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\System32\drivers\cinemst2.sys [262528] © O58 - SDL:2008/12/16 17:27:52 A . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\System32\drivers\cpqdap01.sys [11776] © O58 - SDL:2008/04/14 12:00:00 A . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) -- C:\WINDOWS\System32\drivers\dmboot.sys [800256] © O58 - SDL:2008/04/14 12:00:00 A . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\System32\drivers\dmio.sys [154496] © O58 - SDL:2008/04/14 12:00:00 A . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\drivers\dmload.sys [5888] © O58 - SDL:2008/04/14 12:00:00 A . (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\System32\drivers\hdaudbus.sys [144384] O58 - SDL:2009/11/18 06:17:00 A . (.Creative Technology Ltd. - Creative WDM Audio Driver (32-bit).) -- C:\WINDOWS\System32\drivers\Monfilt.sys [1395800] © O58 - SDL:2010/04/03 11:27:42 A . (.Ralink Technology, Corp. - Ralink 802.11 Wireless Adapter Driver.) -- C:\WINDOWS\System32\drivers\netr61.sys [344928] © O58 - SDL:2008/12/16 17:27:52 A . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\nikedrv.sys [12032] © O58 - SDL:2013/01/31 12:22:47 A . (.NVIDIA Corporation - NVIDIA Windows XP Miniport Driver, Version.) -- C:\WINDOWS\System32\drivers\nv4_mini.sys [12648960] © O58 - SDL:2008/04/14 12:00:00 A . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Lib.) -- C:\WINDOWS\System32\drivers\ptilink.sys [17792] © O58 - SDL:2008/12/16 17:27:52 A . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\System32\drivers\rio8drv.sys [12032] © O58 - SDL:2008/12/16 17:27:52 A . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\riodrv.sys [12032] © O58 - SDL:2015/02/12 19:44:26 A . (.MediaTek Inc. - MediaTek 802.11n Wireless Adapter Driver.) -- C:\WINDOWS\System32\drivers\rt2870.sys [2833296] O58 - SDL:2013/12/10 19:20:44 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys [5630168] © O58 - SDL:2008/04/14 12:00:00 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\WINDOWS\System32\drivers\secdrv.sys [20480] © O58 - SDL:2008/03/03 11:00:00 A . (.Silicon Integrated Systems Corp. - NDIS 5.1 Miniport Driver for SiS191/SiS190.) -- C:\WINDOWS\System32\drivers\SiSGbeXP.sys [43392] © O58 - SDL:2008/12/16 15:26:07 N . (.Silicon Integrated Systems Corp. - SiS PCI Mini IDE Driver.) -- C:\WINDOWS\System32\drivers\siside.sys [4096] © O58 - SDL:2001/11/05 08:23:14 A . (.Sony Corporation - sonyhcb.sys.) -- C:\WINDOWS\System32\drivers\sonyhcb.sys [6097] © O58 - SDL:2001/11/05 08:23:20 A . (.Sony Corporation - sonyhcc.sys.) -- C:\WINDOWS\System32\drivers\sonyhcc.sys [38739] © O58 - SDL:2001/11/05 08:23:52 A . (.Sony Corporation - sonyhcs.sys.) -- C:\WINDOWS\System32\drivers\sonyhcs.sys [299923] © O58 - SDL:2002/10/15 21:41:06 A . (.Sony Corporation - Sony Digital Imaging.) -- C:\WINDOWS\System32\drivers\sonypvs1.sys [102220] © O58 - SDL:2008/12/16 17:27:52 A . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\System32\drivers\tsbvcap.sys [21376] © O58 - SDL:2008/12/16 17:27:52 A . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\System32\drivers\vdmindvd.sys [58112] © O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\ansi.sys [9037] O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\country.sys [27097] O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\himem.sys [4912] O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\key01.sys [42809] O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\keyboard.sys [42537] O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\ntdos.sys [27916] O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\ntdos404.sys [29146] O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\ntdos411.sys [29370] O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\ntdos412.sys [29274] O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\ntdos804.sys [29146] O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\ntio.sys [34000] O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\ntio404.sys [34560] O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\ntio411.sys [35648] O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\ntio412.sys [35424] O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\ntio804.sys [34560] ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (2) - 1s O61 - LFC: 2015/10/30 16:51:39 A . (..) -- C:\Documents and Settings\melissa\Mes documents\Téléchargements\V3630_GPRS_SAMSAT_HD700_VFD_MK.bin [7618560] O61 - LFC: 2015/10/29 16:15:34 A . (..) -- C:\Documents and Settings\melissa\Bureau\all boot by tiffecheby74 2015\software-SR-C10.bin [0] ---\\ Associations Shell Spawning (10) - 1s O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll © O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <BaiduSparkHTML>[HKLM\..\open\Command] (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Baidu Browser\spark.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\system32\wscript.exe © O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe © O67 - Shell Spawning: <.scr> <scrfile>[HKLM\..\open\Command] (...) -- "%1" /S O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe © ---\\ Menu de démarrage Internet (14) - 0s O68 - StartMenuInternet: <BaiduSpark.EXE> <Baidu Browser>[HKLM\..\Shell\open\Command] (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Baidu Browser\Spark.exe O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe © O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe © O68 - StartMenuInternet: <launcher.exe> <>[HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Opera\launcher.exe O68 - StartMenuInternet: <Spark.exe> <>[HKLM\..\Shell\open\Command] (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Baidu Browser\Spark.exe O68 - StartMenuInternet: <BaiduSpark.EXE> <Baidu Browser>[HKLM\..\InstallInfo\ShowIconsCommand] (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Baidu Browser\spark.exe O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe © O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe © O68 - StartMenuInternet: <BaiduSpark.EXE> <Baidu Browser>[HKLM\..\InstallInfo\ReinstallCommand] (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Baidu Browser\spark.exe O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe © O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe © O68 - StartMenuInternet: <BaiduSpark.EXE> <Baidu Browser>[HKLM\..\InstallInfo\HideIconsCommand] (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Baidu Browser\spark.exe O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe © O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe © ---\\ Recherche d'infection sur les navigateurs (3) - 3s O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/ O69 - SBI: SearchScopes [HKCU] {96bd48dd-741b-41ae-ac4a-aff96ba00f7e} [DefaultScope] - (MyPlayCity) - http://my.myplaycity.com/ O69 - SBI: SearchScopes [HKCU] {9AD09901-06DD-4DDD-A62D-6D2243B771AB} - (MyPlayCity) - http://start.myplaycity.com/ ---\\ Enumère les services démarrés par Svchost (41) - 0s O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\WINDOWS\system32\appmgmts.dll [176640] © O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\WINDOWS\system32\audiosrv.dll [42496] © O83 - Search Svchost Services: Browser (Browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\system32\browser.dll [78336] © O83 - Search Svchost Services: CryptSvc (CryptSvc) . (.Microsoft Corporation - Cryptographic Services.) -- C:\WINDOWS\system32\cryptsvc.dll [62464] © O83 - Search Svchost Services: DMServer (DMServer) . (.Microsoft Corp. - DLL Service gestionnaire de disque logique.) -- C:\WINDOWS\system32\dmserver.dll [24576] © O83 - Search Svchost Services: DHCP (DHCP) . (.Microsoft Corporation - Service client DHCP.) -- C:\WINDOWS\system32\dhcpcsvc.dll [127488] © O83 - Search Svchost Services: ERSvc (ERSvc) . (.Microsoft Corporation - Windows Error Reporting Service.) -- C:\WINDOWS\system32\ersvc.dll [23040] © O83 - Search Svchost Services: EventSystem (EventSystem) . (.Microsoft Corporation - .) -- C:\WINDOWS\system32\es.dll [253952] © O83 - Search Svchost Services: FastUserSwitchingCompatibility (FastUserSwitchingCompatibility) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] © O83 - Search Svchost Services: HidServ (HidServ) . (.Microsoft Corporation - HID Audio Service.) -- C:\WINDOWS\system32\hidserv.dll [21504] © O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Moniteur infrarouge.) -- C:\WINDOWS\system32\irmon.dll [29184] © O83 - Search Svchost Services: LanmanServer (LanmanServer) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [99840] © O83 - Search Svchost Services: LanmanWorkstation (LanmanWorkstation) . (.Microsoft Corporation - Workstation Service DLL.) -- C:\WINDOWS\system32\wkssvc.dll [132096] © O83 - Search Svchost Services: Messenger (Messenger) . (.Microsoft Corporation - NT Messenger Service.) -- C:\WINDOWS\system32\msgsvc.dll [33792] © O83 - Search Svchost Services: Netman (Netman) . (.Microsoft Corporation - Gestionnaire de connexions réseau.) -- C:\WINDOWS\system32\netman.dll [198144] © O83 - Search Svchost Services: Nla (Nla) . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Micro.) -- C:\WINDOWS\system32\mswsock.dll [247808] © O83 - Search Svchost Services: Ntmssvc (Ntmssvc) . (.Microsoft Corporation - Gestionnaire de stockage amovible.) -- C:\WINDOWS\system32\ntmssvc.dll [438272] © O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\system32\rasauto.dll [88576] © O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\system32\rasmans.dll [186368] © O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\system32\mprdim.dll [53248] © O83 - Search Svchost Services: Schedule (Schedule) . (.Microsoft Corporation - Moteur du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [194560] © O83 - Search Svchost Services: Seclogon (Seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [18944] © O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\system32\sens.dll [39424] © O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à.) -- C:\WINDOWS\system32\ipnathlp.dll [332800] © O83 - Search Svchost Services: SRService (SRService) . (.Microsoft Corporation - Service de restauration du système.) -- C:\WINDOWS\system32\srsvc.dll [171520] © O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\WINDOWS\system32\tapisrv.dll [249856] © O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] © O83 - Search Svchost Services: TrkWks (TrkWks) . (.Microsoft Corporation - Distributed Link Tracking Client.) -- C:\WINDOWS\system32\trkwks.dll [90112] © O83 - Search Svchost Services: W32Time (W32Time) . (.Microsoft Corporation - Service de temps Windows.) -- C:\WINDOWS\system32\w32time.dll [178176] © O83 - Search Svchost Services: WZCSVC (WZCSVC) . (.Microsoft Corporation - Service configuration automatique sans fil.) -- C:\WINDOWS\system32\wzcsvc.dll [483840] © O83 - Search Svchost Services: Wmi (Wmi) . (.Microsoft Corporation - API avancées Windows 32.) -- C:\WINDOWS\system32\advapi32.dll [685568] © O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\wmisvc.dll [145408] © O83 - Search Svchost Services: wscsvc (wscsvc) . (.Microsoft Corporation - Windows Security Center Service.) -- C:\WINDOWS\system32\wscsvc.dll [80896] © O83 - Search Svchost Services: xmlprov (xmlprov) . (.Microsoft Corporation - Network Provisioning Service.) -- C:\WINDOWS\system32\xmlprov.dll [129024] © O83 - Search Svchost Services: napagent (napagent) . (.Microsoft Corporation - Exécution du service Agent de quarantaine.) -- C:\WINDOWS\system32\qagentrt.dll [293376] © O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\WINDOWS\system32\kmsvc.dll [61440] © O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\system32\qmgr.dll [409088] © O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update AutoUpdate Service.) -- C:\WINDOWS\system32\wuauserv.dll [6656] © O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] © O83 - Search Svchost Services: helpsvc (helpsvc) . (.Microsoft Corporation - Microsoft PCHealth Service Holder.) -- C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll [38400] © O83 - Search Svchost Services: WmdmPmSN (WmdmPmSN) . (.Microsoft Corporation - Microsoft Media Device Service Provider.) -- C:\WINDOWS\system32\mspmsnsv.dll [27136] © ---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (11) - 31s SS - Auto [29/05/2015] [ 1697896] Baidu Cleaner Service (BCleanerSvc) . (.Baidu Inc..) - C:\Program Files\Baidu Cleaner\BCleanerSvc.exe SS - Demand [23/07/2015] [ 3147624] Baidu System Repair Tool Service (BsrSvc) . (.Baidu, Inc..) - C:\Program Files\Baidu Cleaner\System Repair\BsrSvc.exe © SS - Auto [19/07/2012] [ 2568120] CodeMeter Runtime Server (CodeMeter.exe) . (.WIBU-SYSTEMS AG.) - C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe © SS - Demand [25/01/2013] [ 314176] WinMetro Service (MetroServ) . (.IObit.) - C:\Program Files\UX Pack\WinMetro\MetroSvc.exe © SS - Demand [31/01/2013] [ 156448] NVIDIA Driver Helper Service (NVSvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvsvc32.exe © SS - Auto [31/01/2013] [ 1259296] NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe © SR - Auto [30/01/2015] [ 571424] PC App Store Service 5.0.1.8682 (PCAppStoreSvc_{PCAppStore_5.0.1.8682}) . (.Baidu Inc..) - C:\Program Files\PC App Store\5.0.1.8682\PCAppStoreSvc.exe SS - Boot [29/05/2015] [ 1697896] (PCFasterSvc_{PCFaster_6.0.0.0}) . (.Baidu Inc..) - C:\Program Files\Baidu Cleaner\BCleanerSvc.exe SS - Demand [09/07/2015] [ 327296] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe © SS - Auto [28/10/2015] [ 97080] Baidu Spark Service (SparkSvc) . (.Baidu Inc..) - C:\Program Files\baidu\Baidu Browser\sparkservice.exe ---\\ Scan Additionnel (11) - 0s HKLM\SOFTWARE\IHProtect =>PUP.Optional.AgentODR HKLM\SOFTWARE\istartsurfSoftware =>PUP.Optional.IsStart HKLM\SOFTWARE\SupDp =>PUP.Optional.SupTab HKLM\SOFTWARE\supTab =>PUP.Optional.SupTab HKLM\SOFTWARE\WebProtector =>PUP.Optional.BProtector HKCU\SOFTWARE\ProductSetup =>Adware.InstallCore C:\Program Files\MiuiTab =>PUP.Optional.MiuiTab C:\Program Files\WebProtectorPlus =>PUP.Optional.WebProtect C:\Documents and Settings\All Users\Application Data\IHProtectUpDate =>PUP.Optional.AgentODR C:\Documents and Settings\All Users\Application Data\ProductData =>PUP.Optional.Generic C:\Documents and Settings\All Users\Application Data\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} =>PUP.Optional.Generic ---\\ Récapitulatif des éléments trouvées sur votre station (8) - 0s http://www.nicolascoolman.fr/blog =>PUP.Optional.AgentODR http://www.nicolascoolman.fr/pup-isstart/ =>PUP.Optional.IsStart http://www.nicolascoolman.fr/pup-suptab/ =>PUP.Optional.SupTab http://www.nicolascoolman.fr/pup-bprotector/ =>PUP.Optional.BProtector http://www.nicolascoolman.fr/adware-installcore/ =>Adware.InstallCore http://www.nicolascoolman.fr/blog =>PUP.Optional.MiuiTab http://www.nicolascoolman.fr/blog =>PUP.Optional.WebProtect http://www.nicolascoolman.fr/blog =>PUP.Optional.Generic ~ End of the scan, 65774 items in 91 seconds (673)(0)

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.11.1.159 Par Nicolas Coolman (2015/11/01)
~ Démarré par melissa (Administrator) (2015/11/01 20:10:53)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Documents and Settings\melissa\Bureau\ZHPDiag.txt
~ Rapport: C:\Documents and Settings\melissa\Application Data\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows XP, 32-bit Service Pack 3 (Build 2600)

---\\ Navigateurs Internet (2) - 0s
MFIE: Mozilla Firefox 8.0.1 (x86 fr) v8.0.1
MSIE: Internet Explorer v8.0.6001.18702

---\\ Informations sur les produits Windows (4) - 0s
Windows Automatic Updates : OK
Windows Activation Technologies : KO
Windows Genuine Advantage : OK
Windows Guenuine Advantage (antiwpa) : OK

---\\ Logiciels de protection (1) - 2s
SMADAV version 10.2.1 v10.2.1

---\\ Surveillance de Logiciels (2) - 3s
Adobe Flash Player 18 NPAPI
Adobe Reader X

---\\ Informations sur le système (7) - 0s
~ Operating System: x86 Family 15 Model 6 Stepping 5, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 1310.188 MB (35% free)
~ System Restore: Activé (Enable)
~ System drive C: has 28 GB free of 39 GB
Total RAM: 1310.188 MB (24% free)

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: MELISSA-C115467
~ User Name: melissa
~ Logged in as Administrator

---\\ Enumération des unités disques (3) - 5s
~ Drive C: has 28 GB free of 39 GB (System)
~ Drive D: has 31 GB free of 36 GB
~ Drive E: has GB free of 3 GB

---\\ Etat du Centre de Sécurité Windows (8) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Recherche particulière de fichiers génériques (23) - 1s
[MD5.FD950CE95D091DB7044B82A743861B60] - 14/04/2008 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [1431040] ©
[MD5.93AD0B78C7357A05F50E594EC7C22300] - 14/04/2008 - (.Microsoft Corporation - Exécuter une DLL en tant qu'application.) -- C:\WINDOWS\System32\rundll32.exe [33792] ©
[MD5.2988BFF8257A55EA8AFD038F49F81A34] - 06/02/2014 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\WINDOWS\System32\wininet.dll [920064] ©
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - 14/04/2008 - (.Microsoft Corporation - Application d'ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [512000] ©
[MD5.4992C88B25C429744D255C35C756BB7B] - 03/03/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\System32\dnsapi.dll [149504] ©
[MD5.F6B7B1ECD7B41736BDB6FF4B092BCB79] - 17/08/2011 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [138496] ©
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - 14/04/2008 - (.Microsoft Corporation - IDE/ATAPI Port Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [96512] ©
[MD5.C885B02847F5D2FD45A24E219ED93B32] - 14/04/2008 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [63744] ©
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - 14/04/2008 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [62976] ©
[MD5.31F923EB2170FC172C81ABDA0045D18C] - 14/04/2008 - (.Microsoft Corporation - Pilote de cryptographie FIPS.) -- C:\WINDOWS\System32\drivers\Fips.sys [44672] ©
[MD5.573C7D0A32852B48F3058CFD8026F511] - 14/04/2008 - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - 13/04/2008 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [54144] ©
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - 14/04/2008 - (.Microsoft Corporation - IMAPI Kernel Driver.) -- C:\WINDOWS\System32\drivers\Imapi.sys [42112] ©
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - 14/04/2008 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [152832] ©
[MD5.23C74D75E36E7158768DD63D92789A91] - 14/04/2008 - (.Microsoft Corporation - IPSec Driver.) -- C:\WINDOWS\System32\drivers\IPSec.sys [75264] ©
[MD5.FB2FCCC70F7174C7BF64F48E96D3ADF4] - 15/07/2011 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [457856] ©
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - 14/04/2008 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [162816] ©
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - 14/04/2008 - (.Microsoft Corporation - NT File System Driver.) -- C:\WINDOWS\System32\drivers\ntfs.sys [574976] ©
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - 16/12/2008 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [80384] ©
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - 14/04/2008 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [51328] ©
[MD5.15CABD0F7C00C47C70124907916AF3F1] - 13/04/2008 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [196224] ©
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - 13/04/2008 - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) -- C:\WINDOWS\System32\drivers\redbook.sys [58752] ©
[MD5.46DE1126684369BACE4849E4FC8C43CA] - 14/04/2008 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [53376] ©

---\\ Processus lancés (10) - 1s
[MD5.84DD33D57638F5E46ABFA6FC19CFE87A] - (.Baidu Inc. - FasterNow.) -- C:\Program Files\Baidu Cleaner\FasterNow.exe [867944] [PID.1712]
[MD5.835F65D8FEF255BE6C9050B5BB9E8F36] - (.Baidu Inc. - PC App Store Service.) -- C:\Program Files\PC App Store\5.0.1.8682\PCAppStoreSvc.exe [571424] [PID.548]
[MD5.56E52535F4CF96E42DB1140E2B18731F] - (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Baidu Browser\spark.exe [983352] [PID.2288]
[MD5.56E52535F4CF96E42DB1140E2B18731F] - (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Baidu Browser\spark.exe [983352] [PID.3964]
[MD5.56E52535F4CF96E42DB1140E2B18731F] - (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Baidu Browser\spark.exe [983352] [PID.3896]
[MD5.56E52535F4CF96E42DB1140E2B18731F] - (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Baidu Browser\spark.exe [983352] [PID.1096]
[MD5.56E52535F4CF96E42DB1140E2B18731F] - (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Baidu Browser\spark.exe [983352] [PID.2548]
[MD5.12EB1611DFAD425DFBAA85B994BC20E1] - (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\melissa\Bureau\ZHPDiag3.exe [1963008] [PID.2412] ©
[MD5.25532414A7A088553527A75B31DF0592] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [924632] [PID.3540] ©
[MD5.1CD878FFA3B97D9008FA0E723ED996CB] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [16856] [PID.2716] ©

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (2) - 0s
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_18_0_0_160.dll ©

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (13) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://my.myplaycity.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://my.myplaycity.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2

---\\ Internet Explorer,Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (20)

---\\ Browser Helper Object de navigateur (BHO) (1) - 0s
O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} . (...) -- C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (.not file.)

---\\ Internet Explorer, Barre d'outil (3) - 0s
O3 - Toolbar: 0x07000000EE0300007E69791EC59CD111A83F00C04FC99D612001000004000000EF0300007E69791EC59CD111A83F00C04FC99D612101000004000000F00300007E69791EC59CD111A83F00C04FC99D613001000004000000 - [HKCU]{710EB7A1-45ED-11D0-924A-0020AFC7AC4D} . (...) -- (.not file.)
O3 - Toolbar: 0x07000000F40300007E69791EC59CD111A83F00C04FC99D612001000000000000F50300007E69791EC59CD111A83F00C04FC99D612101000000000000F70300007E69791EC59CD111A83F00C04FC99D612501000004000000 - [HKCU]{1E796980-9CC5-11D1-A83F-00C04FC99D61} . (...) -- (.not file.)
O3 - Toolbar: (no name) - [HKLM]{10921475-03CE-4E04-90CE-E2E7EF20C814} (Orphean) (.not file.)

---\\ Applications lancées au démarrage du système (18) - 1s
O4 - HKLM\..\Run: [SMΔRT-Protection] . (.Smadsoft - Smadav USB Antivirus & Additional Protectio.) -- C:\Program Files\SMADAV\SMΔRTP.exe
O4 - HKLM\..\Run: [PCAppStore_AppStoreDeskTool] . (.Baidu Inc. - PC App Store DeskTool.) -- C:\Program Files\PC App Store\5.0.1.8682\AppStoreDeskTool.exe
O4 - HKLM\..\Run: [Baidu Cleaner] . (.Baidu Inc. - Baidu Cleaner Tray.) -- C:\Program Files\Baidu Cleaner\BCleanerTray.exe
O4 - HKLM\..\Run: [NvCplDaemon] . (.Microsoft Corporation - Exécuter une DLL en tant qu'application.) -- C:\WINDOWS\System32\RUNDLL32.EXE ©
O4 - HKLM\..\Run: [NvMediaCenter] . (.Microsoft Corporation - Exécuter une DLL en tant qu'application.) -- C:\WINDOWS\System32\RunDLL32.exe ©
O4 - HKLM\..\Run: [nwiz] . (...) -- C:\Program Files\NVIDIA Corporation\nview\nwiz.exe
O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe ©
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe ©
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe ©
O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32
O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32
O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32
O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32
O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
O4 - HKUS\S-1-5-21-1060284298-630328440-1606980848-1003\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe ©

---\\ Modification Domaine/Adresses DNS (5) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4 =>.Google Public DNS
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4 =>.Google Public DNS
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1

---\\ Protocole additionnel (25) - 0s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll ©
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\system32\msvidctl.dll ©
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll ©
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll ©
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll ©
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API.) -- C:\WINDOWS\system32\inetcomm.dll ©
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll ©
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll ©
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\system32\msvidctl.dll ©
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll ©
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll ©
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll ©
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll ©
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll ©
O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll ©

---\\ Liste des services NT non Microsoft et non désactivés (6) - 1s
O23 - Service: Baidu Cleaner Service (BCleanerSvc) . (.Baidu Inc. - Baidu Cleaner Service.) - C:\Program Files\Baidu Cleaner\BCleanerSvc.exe
O23 - Service: CodeMeter Runtime Server (CodeMeter.exe) . (.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) - C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe ©
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe ©
O23 - Service: PC App Store Service 5.0.1.8682 (PCAppStoreSvc_{PCAppStore_5.0.1.8682}) . (.Baidu Inc. - PC App Store Service.) - C:\Program Files\PC App Store\5.0.1.8682\PCAppStoreSvc.exe
O23 - Service: (PCFasterSvc_{PCFaster_6.0.0.0}) . (.Baidu Inc. - Baidu Cleaner Service.) - C:\Program Files\Baidu Cleaner\BCleanerSvc.exe
O23 - Service: Baidu Spark Service (SparkSvc) . (.Baidu Inc. - spark.) - C:\Program Files\baidu\Baidu Browser\sparkservice.exe

---\\ Tâches planifiées en automatique (2) - 3s
[MD5.00000000000000000000000000000000] [APT] [DriverMaxWelcomes] (...) -- C:\Program Files\Innovative Solutions\DriverMax\drivermax.exe (.not file.) [0]
O39 - APT: DriverMaxWelcomes - (...) -- C:\WINDOWS\Tasks\DriverMaxWelcomes.job [308]

---\\ Logiciels installés (27) - 20s
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR ©
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI ©
O42 - Logiciel: Baidu Cleaner - (.Baidu Inc..) [HKLM] -- Baidu Cleaner
O42 - Logiciel: FormatFactory 3.3.5.0 - (.Format Factory.) [HKLM] -- FormatFactory ©
O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8 ©
O42 - Logiciel: K-Lite Mega Codec Pack 8.0.0 - (...) [HKLM] -- KLiteCodecPack_is1
O42 - Logiciel: Mozilla Firefox 8.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 8.0.1 (x86 fr) ©
O42 - Logiciel: Need For Waves - (.MyPlayCity, Inc..) [HKLM] -- Need For Waves_is1
O42 - Logiciel: PC App Store - (.Baidu, Inc..) [HKLM] -- PC App Store 5.0.1.8682 ©
O42 - Logiciel: Plants vs. Zombies - (.PopCap Games.) [HKLM] -- Plants vs. Zombies ©
O42 - Logiciel: Baidu Browser - (.Baidu Inc..) [HKLM] -- Spark
O42 - Logiciel: Star Sword - (.Media Contact LLC.) [HKLM] -- Star Sword_is1
O42 - Logiciel: Windows 8 Transformation Pack - (.Windows X's Live.) [HKLM] -- UX Pack
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM] -- VLC media player ©
O42 - Logiciel: WinRAR 5.21 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver ©
O42 - Logiciel: WinRARar 4.2 - (...) [HKLM] -- WinRARar 4.2
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {0A3925EA-5B0E-401B-A189-7419149747B2} ©
O42 - Logiciel: Flash Drive Tester v1.14 - (.Virtual Console.) [HKLM] -- {272C8DEE-F54F-406C-9AA6-B4DE2985A47C} ©
O42 - Logiciel: Skype™ 7.8 - (.Skype Technologies S.A..) [HKLM] -- {6A0549A9-1B96-498C-ACBC-3943001FEB19} ©
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} ©
O42 - Logiciel: SMADAV version 10.2.1 - (.SmadSoft.) [HKLM] -- {8B9FA5FF-3E61-4658-B0DA-E6DDB46D6BAD}_is1
O42 - Logiciel: Adobe Reader X (10.1.10) - Arabic - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1025-7B44-AA1000000001} ©
O42 - Logiciel: NVIDIA Pilote graphique 307.83 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver ©
O42 - Logiciel: NVIDIA nView 136.53 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView ©
O42 - Logiciel: Mises à jour NVIDIA 1.10.8 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update ©
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} ©
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU] -- UnityWebPlayer ©

---\\ HKCU & HKLM Software Keys (146) - 20s
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\Alpha Networks
HKLM\SOFTWARE\America Online
HKLM\SOFTWARE\ANI
HKLM\SOFTWARE\AOL
HKLM\SOFTWARE\Apple Computer, Inc.
HKLM\SOFTWARE\AVG
HKLM\SOFTWARE\AviSynth
HKLM\SOFTWARE\Baidu
HKLM\SOFTWARE\Baidu Cleaner
HKLM\SOFTWARE\Baidu Security
HKLM\SOFTWARE\Baidu_Drp_pos
HKLM\SOFTWARE\Big Fish Games
HKLM\SOFTWARE\C07ft5Y
HKLM\SOFTWARE\CloudOpt
HKLM\SOFTWARE\CloudOPTInfo
HKLM\SOFTWARE\Creative Tech
HKLM\SOFTWARE\Cyberlink
HKLM\SOFTWARE\D-Link
HKLM\SOFTWARE\Dayterium
HKLM\SOFTWARE\DtsEncodeTools
HKLM\SOFTWARE\Gabest
HKLM\SOFTWARE\GameHouse
HKLM\SOFTWARE\Gemplus
HKLM\SOFTWARE\GNU
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\HaaliMkx
HKLM\SOFTWARE\Hewlett-Packard Company
HKLM\SOFTWARE\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\IM Providers
HKLM\SOFTWARE\IN Wallpaper ProjectTool
HKLM\SOFTWARE\Innovative Solutions
HKLM\SOFTWARE\InstallShield
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\Internet Download Manager
HKLM\SOFTWARE\InterVideo
HKLM\SOFTWARE\IObit
HKLM\SOFTWARE\iSkysoft
HKLM\SOFTWARE\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\JreMetrics
HKLM\SOFTWARE\Khronos
HKLM\SOFTWARE\KLCodecPack
HKLM\SOFTWARE\Lake
HKLM\SOFTWARE\LAV
HKLM\SOFTWARE\Licenses
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\MDC
HKLM\SOFTWARE\Mooii
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\NVIDIA Corporation
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\Opera Software
HKLM\SOFTWARE\PGWARE
HKLM\SOFTWARE\PopCap
HKLM\SOFTWARE\Program Groups
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\Realtek Semiconductor Corp.
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\Schlumberger
HKLM\SOFTWARE\Secure
HKLM\SOFTWARE\Silicon Integrated Systems Corporation
HKLM\SOFTWARE\Skype
HKLM\SOFTWARE\Sony Corporation
HKLM\SOFTWARE\SONY PVC
HKLM\SOFTWARE\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\TuneUp
HKLM\SOFTWARE\VideoLAN
HKLM\SOFTWARE\WebProtector =>PUP.Optional.BProtector
HKLM\SOFTWARE\WIBU-SYSTEMS
HKLM\SOFTWARE\Windows 3.1 Migration Status
HKLM\SOFTWARE\Windows X
HKLM\SOFTWARE\WinRAR
HKLM\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\3rd Eye Solutions
HKCU\SOFTWARE\Abrosoft
HKCU\SOFTWARE\AC3filter
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\ALLPlayer Remote
HKCU\SOFTWARE\America Online
HKCU\SOFTWARE\AOL
HKCU\SOFTWARE\Ashampoo
HKCU\SOFTWARE\AVG
HKCU\SOFTWARE\Baidu
HKCU\SOFTWARE\Baidu Cleaner
HKCU\SOFTWARE\Baidu Security
HKCU\SOFTWARE\Brasfoot2013
HKCU\SOFTWARE\Christmas Garland Light
HKCU\SOFTWARE\Clubic
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\DivXNetworks
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\DScaler5
HKCU\SOFTWARE\Dz4-EvEr
HKCU\SOFTWARE\FreeTime
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GameHouse
HKCU\SOFTWARE\Gametop
HKCU\SOFTWARE\GetData
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Innovative Solutions
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Lake
HKCU\SOFTWARE\LAV
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\madFlac
HKCU\SOFTWARE\MarBit
HKCU\SOFTWARE\MediaChance
HKCU\SOFTWARE\MediaInfo
HKCU\SOFTWARE\MetaGeek, LLC
HKCU\SOFTWARE\MetaProducts
HKCU\SOFTWARE\Mooii
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\PC App Store
HKCU\SOFTWARE\PopCap
HKCU\SOFTWARE\ProductSetup =>Adware.InstallCore
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\Sahmon Games
HKCU\SOFTWARE\SigmaTeam
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Slender
HKCU\SOFTWARE\SMADΔV
HKCU\SOFTWARE\Sunplus
HKCU\SOFTWARE\Sysinternals
HKCU\SOFTWARE\TAdvCheckList
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\Windows X
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\WPI
HKCU\SOFTWARE\ZebHelpProcess Helper

---\\ Contenu des dossiers Programmes (176) - 10s
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\3COM
O43 - CFD: 23/06/2015 - [0] D -- C:\Program Files\Abrosoft
O43 - CFD: 04/10/2015 - [] D -- C:\Program Files\Adobe
O43 - CFD: 04/07/2015 - [] D -- C:\Program Files\AVG
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\baidu
O43 - CFD: 01/11/2015 - [] D -- C:\Program Files\Baidu Cleaner
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Baidu Security
O43 - CFD: 24/06/2015 - [] D -- C:\Program Files\CodeMeter
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Common Files
O43 - CFD: 23/06/2015 - [0] D -- C:\Program Files\ComPlus Applications
O43 - CFD: 28/06/2015 - [] D -- C:\Program Files\D-Link
O43 - CFD: 04/10/2015 - [] D -- C:\Program Files\Fichiers communs
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\FreeTime
O43 - CFD: 24/10/2015 - [] D -- C:\Program Files\GameTop.com
O43 - CFD: 16/08/2015 - [] HD -- C:\Program Files\InstallShield Installation Information
O43 - CFD: 14/07/2015 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\IObit
O43 - CFD: 23/06/2015 - [0] D -- C:\Program Files\iSkysoft
O43 - CFD: 27/10/2015 - [] D -- C:\Program Files\K-Lite Codec Pack
O43 - CFD: 24/06/2015 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 01/07/2015 - [] D -- C:\Program Files\MiuiTab =>PUP.Optional.MiuiTab
O43 - CFD: 14/07/2015 - [] D -- C:\Program Files\Movie Maker
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files\Mozilla Firefox
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\MSN Gaming Zone
O43 - CFD: 23/06/2015 - [0] D -- C:\Program Files\MSXML 4.0
O43 - CFD: 16/10/2015 - [] D -- C:\Program Files\MyPlayCity.com
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\NetMeeting
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\NSIS Uninstall Information
O43 - CFD: 28/08/2015 - [] D -- C:\Program Files\NVIDIA Corporation
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Opera
O43 - CFD: 15/07/2015 - [] D -- C:\Program Files\Outlook Express
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\PC App Store
O43 - CFD: 16/10/2015 - [] D -- C:\Program Files\PopCap Games
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Realtek
O43 - CFD: 25/06/2015 - [0] D -- C:\Program Files\Recuva
O43 - CFD: 24/07/2015 - [0] D -- C:\Program Files\Rockstar Games
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Services en ligne
O43 - CFD: 16/08/2015 - [] RD -- C:\Program Files\Skype
O43 - CFD: 31/10/2015 - [] D -- C:\Program Files\SMADAV
O43 - CFD: 23/06/2015 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 15/07/2015 - [] D -- C:\Program Files\UX Pack
O43 - CFD: 25/06/2015 - [] D -- C:\Program Files\VideoLAN
O43 - CFD: 16/08/2015 - [] D -- C:\Program Files\Virtual Console
O43 - CFD: 25/06/2015 - [0] D -- C:\Program Files\WebProtectorPlus =>PUP.Optional.WebProtect
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Windows Media Connect 2
O43 - CFD: 15/07/2015 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 23/06/2015 - [0] HD -- C:\Program Files\WindowsUpdate
O43 - CFD: 24/06/2015 - [] D -- C:\Program Files\WinRAR
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\WinRARar
O43 - CFD: 23/06/2015 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Accessoires
O43 - CFD: 18/08/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Baidu Browser
O43 - CFD: 01/11/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Baidu Cleaner
O43 - CFD: 24/07/2015 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
O43 - CFD: 25/10/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\GameTop.com
O43 - CFD: 16/08/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Hewlett-Packard Company
O43 - CFD: 23/06/2015 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Jeux
O43 - CFD: 27/10/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\K-Lite Codec Pack
O43 - CFD: 16/10/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\MyPlayCity.com
O43 - CFD: 23/06/2015 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Outils d'administration
O43 - CFD: 16/10/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\PopCap Games
O43 - CFD: 16/08/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Skype
O43 - CFD: 12/08/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\SMADAV Antivirus
O43 - CFD: 25/06/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\VideoLAN
O43 - CFD: 24/06/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WinRAR
O43 - CFD: 05/10/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Adobe
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\AIM
O43 - CFD: 14/07/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Ashampoo
O43 - CFD: 04/07/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\AVG
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Baidu
O43 - CFD: 23/07/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Baidu Cleaner
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Baidu Security
O43 - CFD: 24/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\BigFishCache
O43 - CFD: 24/10/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\BsrSvc_exe
O43 - CFD: 04/07/2015 - [] HD -- C:\Documents and Settings\All Users\Application Data\Common Files
O43 - CFD: 25/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\CyberLink
O43 - CFD: 23/06/2015 - [0] D -- C:\Documents and Settings\All Users\Application Data\IDM
O43 - CFD: 25/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\IHProtectUpDate =>PUP.Optional.AgentODR
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\install_clap
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\IObit
O43 - CFD: 16/10/2015 - [] SD -- C:\Documents and Settings\All Users\Application Data\Microsoft
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Mozilla
O43 - CFD: 28/08/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\NVIDIA
O43 - CFD: 28/08/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\NVIDIA Corporation
O43 - CFD: 13/07/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Oracle
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\PDVD
O43 - CFD: 16/10/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\PopCap Games
O43 - CFD: 25/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\ProductData =>PUP.Optional.Generic
O43 - CFD: 01/11/2015 - [0] D -- C:\Documents and Settings\All Users\Application Data\RpData
O43 - CFD: 16/08/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Skype
O43 - CFD: 13/07/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Sun
O43 - CFD: 25/06/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\SUPPORTDIR
O43 - CFD: 25/10/2015 - [0] AD -- C:\Documents and Settings\All Users\Application Data\TEMP
O43 - CFD: 23/06/2015 - [0] D -- C:\Documents and Settings\All Users\Application Data\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} =>PUP.Optional.Generic
O43 - CFD: 04/10/2015 - [] D -- C:\Program Files\Fichiers communs\Adobe
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Fichiers communs\Adobe AIR
O43 - CFD: 23/06/2015 - [0] D -- C:\Program Files\Fichiers communs\AOL
O43 - CFD: 07/07/2015 - [] D -- C:\Program Files\Fichiers communs\InstallShield
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Fichiers communs\IObit
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Fichiers communs\Microsoft Shared
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Fichiers communs\MSSoap
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Fichiers communs\ODBC
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Fichiers communs\Services
O43 - CFD: 16/08/2015 - [] D -- C:\Program Files\Fichiers communs\Skype
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Fichiers communs\SpeechEngines
O43 - CFD: 23/06/2015 - [] D -- C:\Program Files\Fichiers communs\System
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\acccore
O43 - CFD: 04/10/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Adobe
O43 - CFD: 12/07/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Alive Games
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Apple Computer
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Avant Downloader
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Avant Profiles
O43 - CFD: 04/07/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\AVG
O43 - CFD: 12/07/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Awem
O43 - CFD: 18/08/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Baidu
O43 - CFD: 16/10/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Baidu Cleaner
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\CyberLink
O43 - CFD: 28/10/2015 - [0] D -- C:\Documents and Settings\melissa\Application Data\DMCache
O43 - CFD: 27/10/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\dvdcss
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Identities
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\inkscape
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Innovative Solutions
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\IObit
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Macromedia
O43 - CFD: 28/10/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Media Player Classic
O43 - CFD: 04/10/2015 - [] SD -- C:\Documents and Settings\melissa\Application Data\Microsoft
O43 - CFD: 25/10/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Mozilla
O43 - CFD: 23/06/2015 - [0] D -- C:\Documents and Settings\melissa\Application Data\Opera Software
O43 - CFD: 29/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\PC App Store
O43 - CFD: 27/06/2015 - [0] D -- C:\Documents and Settings\melissa\Application Data\PhotoScape
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\ProductData
O43 - CFD: 04/07/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\RPEng
O43 - CFD: 20/10/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Sahmon Games
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Shortcut
O43 - CFD: 28/10/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Skype
O43 - CFD: 11/07/2015 - [0] D -- C:\Documents and Settings\melissa\Application Data\Smadav
O43 - CFD: 13/07/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\Sun
O43 - CFD: 17/08/2015 - [0] D -- C:\Documents and Settings\melissa\Application Data\Update
O43 - CFD: 27/10/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\vlc
O43 - CFD: 25/06/2015 - [0] D -- C:\Documents and Settings\melissa\Application Data\WebExtend
O43 - CFD: 17/08/2015 - [0] D -- C:\Documents and Settings\melissa\Application Data\WindowsUpdate
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\WinRAR
O43 - CFD: 01/11/2015 - [] D -- C:\Documents and Settings\melissa\Application Data\ZHP
O43 - CFD: 04/10/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Adobe
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\AIM
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\AOL
O43 - CFD: 04/07/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Avg
O43 - CFD: 12/08/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Baidu
O43 - CFD: 24/06/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Big Fish
O43 - CFD: 20/07/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Christmas Puzzle
O43 - CFD: 26/07/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\com.gamehouse.acid
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\CyberLink
O43 - CFD: 18/07/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Downloaded Installations
O43 - CFD: 29/06/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Electronic_Arts_Inc
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Innovative Solutions
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\iSkysoft
O43 - CFD: 24/06/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\MetaGeek,_LLC
O43 - CFD: 28/10/2015 - [] SD -- C:\Documents and Settings\melissa\Local Settings\Application Data\Microsoft
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\MiniService
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Mozilla
O43 - CFD: 23/06/2015 - [0] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Opera Software
O43 - CFD: 14/07/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\photoOptimizeHistoryDataBase
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Skype
O43 - CFD: 24/07/2015 - [0] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Slender
O43 - CFD: 13/07/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Sun
O43 - CFD: 31/10/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\temp
O43 - CFD: 05/07/2015 - [] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\Unity
O43 - CFD: 07/07/2015 - [0] D -- C:\Documents and Settings\melissa\Local Settings\Application Data\WMTools Downloaded Files
O43 - CFD: 23/06/2015 - [] RD -- C:\Documents and Settings\melissa\Menu Démarrer\Programmes\Accessoires
O43 - CFD: 23/07/2015 - [] D -- C:\Documents and Settings\melissa\Menu Démarrer\Programmes\Baidu Cleaner
O43 - CFD: 24/07/2015 - [0] RD -- C:\Documents and Settings\melissa\Menu Démarrer\Programmes\Démarrage
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Menu Démarrer\Programmes\FormatFactory
O43 - CFD: 23/06/2015 - [] D -- C:\Documents and Settings\melissa\Menu Démarrer\Programmes\PC App Store
O43 - CFD: 16/08/2015 - [] D -- C:\Documents and Settings\melissa\Menu Démarrer\Programmes\Virtual Console
O43 - CFD: 24/06/2015 - [] D -- C:\Documents and Settings\melissa\Menu Démarrer\Programmes\WinRAR
O43 - CFD: 01/11/2015 - [] D -- C:\Program Files\Mozilla Firefox

---\\ ShellIconOverlayIdentifiers (SIOI) (1) - 0s
O106 - SIOI: Offline Files Menu [Fichiers hors connexion] - {750fdf0e-2a26-11d1-a3ea-080036587f03}. (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\system32\cscui.dll ©

---\\ Liste des pilotes du système (42) - 2s
O58 - SDL:2009/11/18 06:16:00 A . (.Creative - Creative WDM 3D Audio Driver.) -- C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480] ©
O58 - SDL:2015/03/31 07:14:18 A . (.Baidu, Inc. - Baidu Antivirus Hook Base.) -- C:\WINDOWS\System32\drivers\Bhbase.sys [47408] ©
O58 - SDL:2015/03/31 07:14:20 A . (.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) -- C:\WINDOWS\System32\drivers\BprotectEx.sys [114960] ©
O58 - SDL:2008/12/16 17:27:52 A . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\System32\drivers\cinemst2.sys [262528] ©
O58 - SDL:2008/12/16 17:27:52 A . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\System32\drivers\cpqdap01.sys [11776] ©
O58 - SDL:2008/04/14 12:00:00 A . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) -- C:\WINDOWS\System32\drivers\dmboot.sys [800256] ©
O58 - SDL:2008/04/14 12:00:00 A . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\System32\drivers\dmio.sys [154496] ©
O58 - SDL:2008/04/14 12:00:00 A . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\drivers\dmload.sys [5888] ©
O58 - SDL:2008/04/14 12:00:00 A . (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\System32\drivers\hdaudbus.sys [144384]
O58 - SDL:2009/11/18 06:17:00 A . (.Creative Technology Ltd. - Creative WDM Audio Driver (32-bit).) -- C:\WINDOWS\System32\drivers\Monfilt.sys [1395800] ©
O58 - SDL:2010/04/03 11:27:42 A . (.Ralink Technology, Corp. - Ralink 802.11 Wireless Adapter Driver.) -- C:\WINDOWS\System32\drivers\netr61.sys [344928] ©
O58 - SDL:2008/12/16 17:27:52 A . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\nikedrv.sys [12032] ©
O58 - SDL:2013/01/31 12:22:47 A . (.NVIDIA Corporation - NVIDIA Windows XP Miniport Driver, Version.) -- C:\WINDOWS\System32\drivers\nv4_mini.sys [12648960] ©
O58 - SDL:2008/04/14 12:00:00 A . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Lib.) -- C:\WINDOWS\System32\drivers\ptilink.sys [17792] ©
O58 - SDL:2008/12/16 17:27:52 A . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\System32\drivers\rio8drv.sys [12032] ©
O58 - SDL:2008/12/16 17:27:52 A . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\riodrv.sys [12032] ©
O58 - SDL:2015/02/12 19:44:26 A . (.MediaTek Inc. - MediaTek 802.11n Wireless Adapter Driver.) -- C:\WINDOWS\System32\drivers\rt2870.sys [2833296]
O58 - SDL:2013/12/10 19:20:44 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys [5630168] ©
O58 - SDL:2008/04/14 12:00:00 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\WINDOWS\System32\drivers\secdrv.sys [20480] ©
O58 - SDL:2008/03/03 11:00:00 A . (.Silicon Integrated Systems Corp. - NDIS 5.1 Miniport Driver for SiS191/SiS190.) -- C:\WINDOWS\System32\drivers\SiSGbeXP.sys [43392] ©
O58 - SDL:2008/12/16 15:26:07 N . (.Silicon Integrated Systems Corp. - SiS PCI Mini IDE Driver.) -- C:\WINDOWS\System32\drivers\siside.sys [4096] ©
O58 - SDL:2001/11/05 08:23:14 A . (.Sony Corporation - sonyhcb.sys.) -- C:\WINDOWS\System32\drivers\sonyhcb.sys [6097] ©
O58 - SDL:2001/11/05 08:23:20 A . (.Sony Corporation - sonyhcc.sys.) -- C:\WINDOWS\System32\drivers\sonyhcc.sys [38739] ©
O58 - SDL:2001/11/05 08:23:52 A . (.Sony Corporation - sonyhcs.sys.) -- C:\WINDOWS\System32\drivers\sonyhcs.sys [299923] ©
O58 - SDL:2002/10/15 21:41:06 A . (.Sony Corporation - Sony Digital Imaging.) -- C:\WINDOWS\System32\drivers\sonypvs1.sys [102220] ©
O58 - SDL:2008/12/16 17:27:52 A . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\System32\drivers\tsbvcap.sys [21376] ©
O58 - SDL:2008/12/16 17:27:52 A . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\System32\drivers\vdmindvd.sys [58112] ©
O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\ansi.sys [9037]
O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\country.sys [27097]
O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\himem.sys [4912]
O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\key01.sys [42809]
O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\keyboard.sys [42537]
O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\ntdos.sys [27916]
O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\ntdos404.sys [29146]
O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\ntdos411.sys [29370]
O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\ntdos412.sys [29274]
O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\ntdos804.sys [29146]
O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\ntio.sys [34000]
O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\ntio404.sys [34560]
O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\ntio411.sys [35648]
O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\ntio412.sys [35424]
O58 - SDL:2008/04/14 12:00:00 A . (...) -- C:\WINDOWS\System32\ntio804.sys [34560]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (2) - 1s
O61 - LFC: 2015/10/30 16:51:39 A . (..) -- C:\Documents and Settings\melissa\Mes documents\Téléchargements\V3630_GPRS_SAMSAT_HD700_VFD_MK.bin [7618560]
O61 - LFC: 2015/10/29 16:15:34 A . (..) -- C:\Documents and Settings\melissa\Bureau\all boot by tiffecheby74 2015\software-SR-C10.bin [0]

---\\ Associations Shell Spawning (10) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll ©
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Baidu Browser\spark.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\system32\wscript.exe ©
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe ©
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe ©

---\\ Menu de démarrage Internet (14) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Baidu Browser\Spark.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ©
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Opera\launcher.exe
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Baidu Browser\Spark.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Baidu Browser\spark.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Baidu Browser\spark.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Copyright (C) 2011 - spark.) -- C:\Program Files\baidu\Baidu Browser\spark.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe ©

---\\ Recherche d'infection sur les navigateurs (3) - 3s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {96bd48dd-741b-41ae-ac4a-aff96ba00f7e} [DefaultScope] - (MyPlayCity) - http://my.myplaycity.com/
O69 - SBI: SearchScopes [HKCU] {9AD09901-06DD-4DDD-A62D-6D2243B771AB} - (MyPlayCity) - http://start.myplaycity.com/

---\\ Enumère les services démarrés par Svchost (41) - 0s
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\WINDOWS\system32\appmgmts.dll [176640] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\WINDOWS\system32\audiosrv.dll [42496] ©
O83 - Search Svchost Services: Browser (Browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\system32\browser.dll [78336] ©
O83 - Search Svchost Services: CryptSvc (CryptSvc) . (.Microsoft Corporation - Cryptographic Services.) -- C:\WINDOWS\system32\cryptsvc.dll [62464] ©
O83 - Search Svchost Services: DMServer (DMServer) . (.Microsoft Corp. - DLL Service gestionnaire de disque logique.) -- C:\WINDOWS\system32\dmserver.dll [24576] ©
O83 - Search Svchost Services: DHCP (DHCP) . (.Microsoft Corporation - Service client DHCP.) -- C:\WINDOWS\system32\dhcpcsvc.dll [127488] ©
O83 - Search Svchost Services: ERSvc (ERSvc) . (.Microsoft Corporation - Windows Error Reporting Service.) -- C:\WINDOWS\system32\ersvc.dll [23040] ©
O83 - Search Svchost Services: EventSystem (EventSystem) . (.Microsoft Corporation - .) -- C:\WINDOWS\system32\es.dll [253952] ©
O83 - Search Svchost Services: FastUserSwitchingCompatibility (FastUserSwitchingCompatibility) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] ©
O83 - Search Svchost Services: HidServ (HidServ) . (.Microsoft Corporation - HID Audio Service.) -- C:\WINDOWS\system32\hidserv.dll [21504] ©
O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Moniteur infrarouge.) -- C:\WINDOWS\system32\irmon.dll [29184] ©
O83 - Search Svchost Services: LanmanServer (LanmanServer) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [99840] ©
O83 - Search Svchost Services: LanmanWorkstation (LanmanWorkstation) . (.Microsoft Corporation - Workstation Service DLL.) -- C:\WINDOWS\system32\wkssvc.dll [132096] ©
O83 - Search Svchost Services: Messenger (Messenger) . (.Microsoft Corporation - NT Messenger Service.) -- C:\WINDOWS\system32\msgsvc.dll [33792] ©
O83 - Search Svchost Services: Netman (Netman) . (.Microsoft Corporation - Gestionnaire de connexions réseau.) -- C:\WINDOWS\system32\netman.dll [198144] ©
O83 - Search Svchost Services: Nla (Nla) . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Micro.) -- C:\WINDOWS\system32\mswsock.dll [247808] ©
O83 - Search Svchost Services: Ntmssvc (Ntmssvc) . (.Microsoft Corporation - Gestionnaire de stockage amovible.) -- C:\WINDOWS\system32\ntmssvc.dll [438272] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\system32\rasauto.dll [88576] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\system32\rasmans.dll [186368] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\system32\mprdim.dll [53248] ©
O83 - Search Svchost Services: Schedule (Schedule) . (.Microsoft Corporation - Moteur du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [194560] ©
O83 - Search Svchost Services: Seclogon (Seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [18944] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\system32\sens.dll [39424] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à.) -- C:\WINDOWS\system32\ipnathlp.dll [332800] ©
O83 - Search Svchost Services: SRService (SRService) . (.Microsoft Corporation - Service de restauration du système.) -- C:\WINDOWS\system32\srsvc.dll [171520] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\WINDOWS\system32\tapisrv.dll [249856] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] ©
O83 - Search Svchost Services: TrkWks (TrkWks) . (.Microsoft Corporation - Distributed Link Tracking Client.) -- C:\WINDOWS\system32\trkwks.dll [90112] ©
O83 - Search Svchost Services: W32Time (W32Time) . (.Microsoft Corporation - Service de temps Windows.) -- C:\WINDOWS\system32\w32time.dll [178176] ©
O83 - Search Svchost Services: WZCSVC (WZCSVC) . (.Microsoft Corporation - Service configuration automatique sans fil.) -- C:\WINDOWS\system32\wzcsvc.dll [483840] ©
O83 - Search Svchost Services: Wmi (Wmi) . (.Microsoft Corporation - API avancées Windows 32.) -- C:\WINDOWS\system32\advapi32.dll [685568] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\wmisvc.dll [145408] ©
O83 - Search Svchost Services: wscsvc (wscsvc) . (.Microsoft Corporation - Windows Security Center Service.) -- C:\WINDOWS\system32\wscsvc.dll [80896] ©
O83 - Search Svchost Services: xmlprov (xmlprov) . (.Microsoft Corporation - Network Provisioning Service.) -- C:\WINDOWS\system32\xmlprov.dll [129024] ©
O83 - Search Svchost Services: napagent (napagent) . (.Microsoft Corporation - Exécution du service Agent de quarantaine.) -- C:\WINDOWS\system32\qagentrt.dll [293376] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\WINDOWS\system32\kmsvc.dll [61440] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\system32\qmgr.dll [409088] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update AutoUpdate Service.) -- C:\WINDOWS\system32\wuauserv.dll [6656] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] ©
O83 - Search Svchost Services: helpsvc (helpsvc) . (.Microsoft Corporation - Microsoft PCHealth Service Holder.) -- C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll [38400] ©
O83 - Search Svchost Services: WmdmPmSN (WmdmPmSN) . (.Microsoft Corporation - Microsoft Media Device Service Provider.) -- C:\WINDOWS\system32\mspmsnsv.dll [27136] ©

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (11) - 31s

SS - Auto [29/05/2015] [ 1697896] Baidu Cleaner Service (BCleanerSvc) . (.Baidu Inc..) - C:\Program Files\Baidu Cleaner\BCleanerSvc.exe
SS - Demand [23/07/2015] [ 3147624] Baidu System Repair Tool Service (BsrSvc) . (.Baidu, Inc..) - C:\Program Files\Baidu Cleaner\System Repair\BsrSvc.exe ©
SS - Auto [19/07/2012] [ 2568120] CodeMeter Runtime Server (CodeMeter.exe) . (.WIBU-SYSTEMS AG.) - C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe ©
SS - Demand [25/01/2013] [ 314176] WinMetro Service (MetroServ) . (.IObit.) - C:\Program Files\UX Pack\WinMetro\MetroSvc.exe ©
SS - Demand [31/01/2013] [ 156448] NVIDIA Driver Helper Service (NVSvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvsvc32.exe ©
SS - Auto [31/01/2013] [ 1259296] NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe ©
SR - Auto [30/01/2015] [ 571424] PC App Store Service 5.0.1.8682 (PCAppStoreSvc_{PCAppStore_5.0.1.8682}) . (.Baidu Inc..) - C:\Program Files\PC App Store\5.0.1.8682\PCAppStoreSvc.exe
SS - Boot [29/05/2015] [ 1697896] (PCFasterSvc_{PCFaster_6.0.0.0}) . (.Baidu Inc..) - C:\Program Files\Baidu Cleaner\BCleanerSvc.exe
SS - Demand [09/07/2015] [ 327296] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe ©
SS - Auto [28/10/2015] [ 97080] Baidu Spark Service (SparkSvc) . (.Baidu Inc..) - C:\Program Files\baidu\Baidu Browser\sparkservice.exe

---\\ Scan Additionnel (11) - 0s
HKLM\SOFTWARE\IHProtect =>PUP.Optional.AgentODR
HKLM\SOFTWARE\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\supTab =>PUP.Optional.SupTab
HKLM\SOFTWARE\WebProtector =>PUP.Optional.BProtector
HKCU\SOFTWARE\ProductSetup =>Adware.InstallCore
C:\Program Files\MiuiTab =>PUP.Optional.MiuiTab
C:\Program Files\WebProtectorPlus =>PUP.Optional.WebProtect
C:\Documents and Settings\All Users\Application Data\IHProtectUpDate =>PUP.Optional.AgentODR
C:\Documents and Settings\All Users\Application Data\ProductData =>PUP.Optional.Generic
C:\Documents and Settings\All Users\Application Data\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} =>PUP.Optional.Generic

---\\ Récapitulatif des éléments trouvées sur votre station (8) - 0s
http://www.nicolascoolman.fr/blog =>PUP.Optional.AgentODR
http://www.nicolascoolman.fr/pup-isstart/ =>PUP.Optional.IsStart
http://www.nicolascoolman.fr/pup-suptab/ =>PUP.Optional.SupTab
http://www.nicolascoolman.fr/pup-bprotector/ =>PUP.Optional.BProtector
http://www.nicolascoolman.fr/adware-installcore/ =>Adware.InstallCore
http://www.nicolascoolman.fr/blog =>PUP.Optional.MiuiTab
http://www.nicolascoolman.fr/blog =>PUP.Optional.WebProtect
http://www.nicolascoolman.fr/blog =>PUP.Optional.Generic

~ End of the scan, 65774 items in 91 seconds (673)(0)

Publicité


Signaler le contenu de ce document

Publicité