cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.12.2.177 Par Nicolas Coolman (2015/12/02)
~ Démarré par florian baudry (Administrator) (2015/12/04 11:32:33)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Documents and Settings\florian baudry\Bureau\ZHPDiag.txt
~ Rapport: C:\Documents and Settings\florian baudry\Application Data\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows XP, 32-bit Service Pack 3 (Build 2600)

---\\ Navigateurs Internet (2) - 0s
GCIE: Google Chrome v47.0.2526.73
MSIE: Internet Explorer v8.0.6001.18702

---\\ Informations sur les produits Windows (3) - 0s
Windows Automatic Updates : OK
Windows Activation Technologies : KO
Windows Genuine Advantage : OK

---\\ Logiciels de protection (1) - 15s
Avira Antivirus v15.0.13.210

---\\ Logiciels de protection et autres (Superflus) (1) - 17s
ESET Online Scanner v3

---\\ Logiciels d'optimisation (1) - 19s
CCleaner v5.11

---\\ Surveillance de Logiciels (2) - 19s
Adobe Flash Player 19 NPAPI
Adobe Reader XI

---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 6 Model 28 Stepping 10, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 1038.444 MB (16% free)
System Restore: Activé (Enable)
System drive C: has 29 GB () free of 81 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: FLO
~ User Name: florian baudry
~ Logged in as Administrator

---\\ Enumération des unités disques (3) - 0s
~ Drive C: has 29 GB free of 81 GB (System)
~ Drive D: has 55 GB free of 55 GB
~ Drive F: has 0 GB free of 3 GB

---\\ Etat du Centre de Sécurité Windows (9) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (23) - 5s
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - 14/04/2008 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [1037824] ©
[MD5.93AD0B78C7357A05F50E594EC7C22300] - 14/04/2008 - (.Microsoft Corporation - Exécuter une DLL en tant qu'application.) -- C:\WINDOWS\System32\rundll32.exe [33792] ©
[MD5.897CA9DA6F568E24549719D5676385A1] - 29/10/2013 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\WINDOWS\System32\wininet.dll [920064] ©
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - 14/04/2008 - (.Microsoft Corporation - Application d'ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [512000] ©
[MD5.D76A076ADB74F8132924E498D63123A2] - 03/03/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\System32\dnsapi.dll [149504] ©
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - 17/08/2011 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [138496] ©
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - 14/04/2008 - (.Microsoft Corporation - IDE/ATAPI Port Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [96512] ©
[MD5.C885B02847F5D2FD45A24E219ED93B32] - 14/04/2008 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [63744] ©
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - 14/04/2008 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [62976] ©
[MD5.31F923EB2170FC172C81ABDA0045D18C] - 14/04/2008 - (.Microsoft Corporation - Pilote de cryptographie FIPS.) -- C:\WINDOWS\System32\drivers\Fips.sys [44672] ©
[MD5.573C7D0A32852B48F3058CFD8026F511] - 14/04/2008 - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - 13/04/2008 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [54144] ©
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - 14/04/2008 - (.Microsoft Corporation - IMAPI Kernel Driver.) -- C:\WINDOWS\System32\drivers\Imapi.sys [42112] ©
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - 14/04/2008 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [152832] ©
[MD5.23C74D75E36E7158768DD63D92789A91] - 14/04/2008 - (.Microsoft Corporation - IPSec Driver.) -- C:\WINDOWS\System32\drivers\IPSec.sys [75264] ©
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - 15/07/2011 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [456320] ©
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - 14/04/2008 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [162816] ©
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - 14/04/2008 - (.Microsoft Corporation - NT File System Driver.) -- C:\WINDOWS\System32\drivers\ntfs.sys [574976] ©
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - 14/04/2008 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [80384] ©
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - 14/04/2008 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [51328] ©
[MD5.15CABD0F7C00C47C70124907916AF3F1] - 13/04/2008 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [196224] ©
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - 13/04/2008 - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) -- C:\WINDOWS\System32\drivers\redbook.sys [58752] ©
[MD5.46DE1126684369BACE4849E4FC8C43CA] - 14/04/2008 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [53376] ©

---\\ Logiciels installés (126) - 37s
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU] -- uTorrent
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {14DC0059-00F1-4F62-BD1A-AB23CD51A95E} ©
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR ©
O42 - Logiciel: Adobe Flash Player 19 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX ©
O42 - Logiciel: Adobe Flash Player 19 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI ©
O42 - Logiciel: Adobe Reader XI (11.0.08) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AB0000000001} ©
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-0804-1033-1959-001824147215} ©
O42 - Logiciel: AiO_Scan_CDA - (.Hewlett-Packard.) [HKLM] -- {C8753E28-2680-49BF-BD48-DD38FD086EFE} ©
O42 - Logiciel: AiOSoftwareNPI - (.Hewlett-Packard.) [HKLM] -- {68763C27-235D-4165-A961-FDEA228CE504} ©
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {A83279FD-CA4B-4206-9535-90974DE76654} ©
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} ©
O42 - Logiciel: Asus ACPI Driver - (.AsusTek Computer.) [HKLM] -- {19F5658D-92E8-4A08-8657-D38ABB1574B2} ©
O42 - Logiciel: ASUS VIBE - (.Ecareme, Inc..) [HKLM] -- ASUS VIBE
O42 - Logiciel: ASUSUpdate for Eee PC - (.ASUSTeK Computer Inc..) [HKLM] -- {587178E7-B1DF-494E-9838-FA4DD36E873C} ©
O42 - Logiciel: Atheros Client Installation Program - (.Atheros.) [HKLM] -- {28006915-2739-4EBE-B5E8-49B25D32EB33} ©
O42 - Logiciel: Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver - (.Atheros Communications Inc..) [HKLM] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549} ©
O42 - Logiciel: Avira Antivirus v15.0.13.210 - (.Avira Operations GmbH & Co. KG.) [HKLM] -- Avira Antivirus ©
O42 - Logiciel: Avira Launcher v1.1.47.11018 - (.Avira Operations GmbH & Co. KG.) [HKLM] -- {5dfbeba9-9f22-463d-8c95-c861911810a2} ©
O42 - Logiciel: Avira Launcher v1.1.48.9049 - (.Avira Operations GmbH & Co. KG.) [HKLM] -- {d6a7cfcc-1f1c-4638-8f9e-0f184696fcdb} ©
O42 - Logiciel: Avira Launcher v1.1.49.18939 - (.Avira Operations GmbH & Co. KG.) [HKLM] -- {18BD67B4-2BB3-4D1B-A33A-1B57A3BB7A1C} ©
O42 - Logiciel: Avira Launcher v1.1.49.18939 - (.Avira Operations GmbH & Co. KG.) [HKLM] -- {59c4462d-a177-4d44-a95b-deda1be79844} ©
O42 - Logiciel: Avira SearchFree Toolbar v12.10.0.2949 - (.APN, LLC.) [HKLM] -- {41564952-412D-5637-00A7-A758B70C0A00} =>PUP.Optional.Bandoo
O42 - Logiciel: Boingo Wi-Fi - (.Boingo Wireless, Inc..) [HKLM] -- {7E49ED48-B67E-4A27-839D-EE08590A96BB}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {79155F2B-9895-49D7-8612-D92580E0DE5B} ©
O42 - Logiciel: BufferChm - (.Hewlett-Packard.) [HKLM] -- {45B8A76B-57EC-4242-B019-066400CD8428} ©
O42 - Logiciel: C3100 - (.Hewlett-Packard.) [HKLM] -- {EB8C9964-09AC-48bf-8B98-027609C78251} ©
O42 - Logiciel: c3100_Help - (.Hewlett-Packard.) [HKLM] -- {9FC8D8F8-AF3A-4488-98AF-51C6DEC732F2} ©
O42 - Logiciel: CapsHook - (.AsusTek Computer.) [HKLM] -- {4B5092B6-F231-4D18-83BC-2618B729CA45} ©
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner ©
O42 - Logiciel: CustomerResearchQFolder - (.Hewlett-Packard.) [HKLM] -- {6F5E2F4A-377D-4700-B0E3-8F7F7507EA15} ©
O42 - Logiciel: CustoPackTools - (.neOceane.) [HKLM] -- CustoPackTools ©
O42 - Logiciel: Data Sync - (.ASUS.) [HKLM] -- {D806E63B-0C11-4061-8DA9-1E980FB9A9EB} ©
O42 - Logiciel: Destinations - (.Hewlett-Packard.) [HKLM] -- {FB15E224-67C3-491F-9F5C-F257BC418412} ©
O42 - Logiciel: DeviceManagementQFolder - (.Hewlett-Packard.) [HKLM] -- {AB5D51AE-EBC3-438D-872C-705C7C2084B0} ©
O42 - Logiciel: DocProc - (.Hewlett-Packard.) [HKLM] -- {8A4CE7FD-9657-4B06-9943-E1819F3D5D67} ©
O42 - Logiciel: DocProcQFolder - (.Hewlett-Packard.) [HKLM] -- {87E2B986-07E8-477a-93DC-AF0B6758B192} ©
O42 - Logiciel: ebi.BookReader3J - (.eBOOK Initiative Japan Co., Ltd..) [HKLM] -- {F3D2DEDC-4732-4188-8A3A-1A3FFBD4D6C8}
O42 - Logiciel: Eee Docking 1.3.12.0 - (.ASUSTeK Computer Inc..) [HKLM] -- Eee Docking_is1 ©
O42 - Logiciel: EeeSplendid - (.ASUS.) [HKLM] -- {6333FC29-BFE5-4024-AC78-958A1A7555D1} ©
O42 - Logiciel: EeeSplendid - (.ASUS.) [HKLM] -- {D802DD00-16A8-4A58-AFC9-020C2380ECDA} ©
O42 - Logiciel: ESET Online Scanner v3 - (...) [HKLM] -- ESET Online Scanner
O42 - Logiciel: eSupportQFolder - (.Hewlett-Packard.) [HKLM] -- {66E6CE0C-5A1E-430C-B40A-0C90FF1804A8} ©
O42 - Logiciel: EzMessenger - (.ASUS.) [HKLM] -- {C72CA49A-9237-4810-8449-45DA3BD26D64} ©
O42 - Logiciel: Facebook Video Calling 3.1.0.521 - (.Skype Limited.) [HKLM] -- {2091F234-EB58-4B80-8C96-8EB78C808CF7} ©
O42 - Logiciel: facemoods - (...) [HKLM] -- facemoods =>PUP.Optional.Facemoods
O42 - Logiciel: Fax_CDA - (.Hewlett-Packard.) [HKLM] -- {F6076EF9-08E1-442F-B6A2-BFB61B295A14} ©
O42 - Logiciel: FontResizer - (.ASUSTek.) [HKLM] -- {17780F99-A9DF-450B-81B3-6781B20A17A8} ©
O42 - Logiciel: FontResizer - (.ASUSTek.) [HKLM] -- InstallShield_{17780F99-A9DF-450B-81B3-6781B20A17A8} ©
O42 - Logiciel: Game Park Console - (.Oberon Media, Inc..) [HKLM] -- {D44AA979-47C2-4BC0-A860-09A54224EA44}_is1 ©
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399 ©
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5 ©
O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5 ©
O42 - Logiciel: HP Customer Participation Program 7.0 - (.HP.) [HKLM] -- HPExtendedCapabilities ©
O42 - Logiciel: HP Imaging Device Functions 7.0 - (.HP.) [HKLM] -- HP Imaging Device Functions ©
O42 - Logiciel: HP Photosmart Essential - (.HP.) [HKLM] -- {6994491D-D491-48F1-AE1F-E179C1FFFC2F} ©
O42 - Logiciel: HP Photosmart, Officejet and Deskjet 7.0.A - (.HP.) [HKLM] -- {BDBE2F3E-42DB-4d4a-8CB1-19BA765DBC6C} ©
O42 - Logiciel: HP Software Update - (.Hewlett-Packard.) [HKLM] -- {BB85ED9C-AFC9-43BD-B8DC-258C3C7DF72E} ©
O42 - Logiciel: HP Solution Center 7.0 - (.HP.) [HKLM] -- HP Solution Center & Imaging Support Tools ©
O42 - Logiciel: HPPhotoSmartExpress - (.Hewlett-Packard.) [HKLM] -- {2376813B-2E5A-4641-B7B3-A0D5ADB55229} ©
O42 - Logiciel: HPProductAssistant - (.Hewlett-Packard.) [HKLM] -- {4EA684E9-5C81-4033-A696-3019EC57AC3A} ©
O42 - Logiciel: Iminent - (.Iminent.) [HKLM] -- {A6E71E28-43CB-423E-B415-B7C00D77902E} =>PUP.Optional.IMBooster
O42 - Logiciel: IMinent Toolbar - (.IMinent.) [HKLM] -- {A76AA284-E52D-47E6-9E4F-B85DBF8E35C3} =>PUP.Optional.IMBooster
O42 - Logiciel: InstantShareDevicesMFC - (.Hewlett-Packard.) [HKLM] -- {F157460F-720E-482f-8625-AD7843891E5F} ©
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- HDMI ©
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {29ED20C9-5E15-4969-9279-25BF3727A3DA} ©
O42 - Logiciel: Java Auto Updater - (.Sun Microsystems, Inc..) [HKLM] -- {4A03706F-666A-4037-7777-5F2748764D10} ©
O42 - Logiciel: Java(TM) 6 Update 24 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216018FF} ©
O42 - Logiciel: Lecteur Windows Media 11 - (...) [HKLM] -- Windows Media Player
O42 - Logiciel: LiveUpdate - (.Asus.) [HKLM] -- {38E5A3B1-ADF1-47E0-8024-76310A30EB36} ©
O42 - Logiciel: MarketResearch - (.Hewlett-Packard.) [HKLM] -- {E1B80DEE-A795-4258-8445-074C06AE3AB8} ©
O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM] -- {95120000-00B9-0409-0000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1 ©
O42 - Logiciel: Microsoft Kernel-Mode Driver Framework Feature Pack 1.7 - (.Microsoft Corporation.) [HKLM] -- Wdf01007 ©
O42 - Logiciel: Microsoft Kernel-Mode Driver Framework Feature Pack 1.9 - (.Microsoft Corporation.) [HKLM] -- Wdf01009 ©
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
O42 - Logiciel: Microsoft Software Update for Web Folders (French) 12 - (.Microsoft Corporation.) [HKLM] -- {90120000-0010-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5} ©
O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB} ©
O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000 ©
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {3B160861-7250-451E-B5EE-8B92BF30A710} ©
O42 - Logiciel: Microsoft Xbox 360 Accessories 1.2 - (.Microsoft.) [HKLM] -- {046AB4DC-0B95-41A7-8DF7-98680297CC03} ©
O42 - Logiciel: Mobile PhoneTools - (.BVRP Software.) [HKLM] -- {7D39E592-F19F-4B4F-A786-B1DF34775E0B}
O42 - Logiciel: Mozilla Firefox 26.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 26.0 (x86 fr) ©
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService ©
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} ©
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2721691) - (.Microsoft Corporation.) [HKLM] -- {355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36} ©
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E} ©
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB973685) - (.Microsoft Corporation.) [HKLM] -- {859DFA95-E4A6-48CD-B88E-A3E483E89B44} ©
O42 - Logiciel: NewCopy_CDA - (.Hewlett-Packard.) [HKLM] -- {FBB980B0-63F8-4B48-8D65-90F1D9F81D9F} ©
O42 - Logiciel: OCR Software by I.R.I.S 7.0 - (.HP.) [HKLM] -- HPOCR ©
O42 - Logiciel: OfferBox Browser - (.Secure Digital Services Limited.) [HKLM] -- OfferBox Browser =>PUP.Optional.OfferBox
O42 - Logiciel: PanoStandAlone - (.Hewlett-Packard.) [HKLM] -- {363790D2-DA98-41DD-9C9F-69FA36B169DE} ©
O42 - Logiciel: ProductContextNPI - (.Hewlett-Packard.) [HKLM] -- {7E7B7865-6C80-4373-8BC1-C2EB9431F9DE} ©
O42 - Logiciel: Ralink RT2860 Wireless LAN Card - (.Ralink.) [HKLM] -- {8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF} ©
O42 - Logiciel: Readme - (.Hewlett-Packard.) [HKLM] -- {736C803C-DD3B-4015-BC51-AFB9E67B9076} ©
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©
O42 - Logiciel: Scan - (.Hewlett-Packard.) [HKLM] -- {F3760724-B29D-465B-BC53-E5D72095BCC4} ©
O42 - Logiciel: ScannerCopy - (.Hewlett-Packard.) [HKLM] -- {996512CF-F35B-48DE-9291-557FA5316967} ©
O42 - Logiciel: Skyhook Wireless Wi-Fi Service - (...) [HKLM] -- Skyhook Wireless Wi-Fi Service
O42 - Logiciel: Smart PC Recorder - by freebird - (.Freebird.) [HKLM] -- SmartPCRecorder
O42 - Logiciel: SolutionCenter - (.Hewlett-Packard.) [HKLM] -- {C7F54CF8-D6FB-4E0A-93A3-E68AE0D6C476} ©
O42 - Logiciel: Status - (.Hewlett-Packard.) [HKLM] -- {8331C3EA-0C91-43AA-A4D4-27221C631139} ©
O42 - Logiciel: Super Hybrid Engine - (.ASUS.) [HKLM] -- {88F08F98-12BC-4613-81A2-8F9B88CFC73E} ©
O42 - Logiciel: SweetIM for Messenger 3.4 - (.SweetIM Technologies Ltd..) [HKLM] -- {F70AE624-2B41-476F-BC9C-0A7F158C3F15} =>PUP.Optional.SweetIM
O42 - Logiciel: SweetIM Toolbar for Internet Explorer 4.1 - (.SweetIM Technologies Ltd..) [HKLM] -- {A1194237-547A-461d-BD44-B97B1574A7DA} =>PUP.Optional.SweetIM
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM] -- SynTPDeinstKey ©
O42 - Logiciel: Toolbox - (.Hewlett-Packard.) [HKLM] -- {6909F917-5499-482e-9AA1-FAD06A99F231} ©
O42 - Logiciel: TrayApp - (.Hewlett-Packard.) [HKLM] -- {DBC20735-34E6-4E97-A9E5-2066B66B243D} ©
O42 - Logiciel: Unload - (.Hewlett-Packard.) [HKLM] -- {8CE4E6E9-9D55-43FB-9DDB-688C976BFC05} ©
O42 - Logiciel: USB2.0 UVC VGA WebCam - (.Realtek Semiconductor Corp..) [HKLM] -- {E0A7ED39-8CD6-4351-93C3-69CCA00D12B4} ©
O42 - Logiciel: Usenet.nl - (...) [HKLM] -- Usenet.nl_is1
O42 - Logiciel: uTorrentBar_FR Toolbar - (.uTorrentBar_FR.) [HKLM] -- uTorrentBar_FR Toolbar =>PUP.Optional.uTorrentBar
O42 - Logiciel: Version Checker for Funmoods - (...) [HKCU] -- Funmoods
O42 - Logiciel: VLC media player 1.1.9 - (.VideoLAN.) [HKLM] -- VLC media player ©
O42 - Logiciel: Wakfu - (.Ankama Games.) [HKLM] -- Wakfu ©
O42 - Logiciel: WebFldrs XP - (.Microsoft Corporation.) [HKLM] -- {350C940c-3D7C-4EE8-BAA9-00BCB3D54227} ©
O42 - Logiciel: WebReg - (.Hewlett-Packard.) [HKLM] -- {66910000-8B30-4973-A159-6371345AFFA5} ©
O42 - Logiciel: Windows Genuine Advantage Notifications (KB905474) - (.Microsoft Corporation.) [HKLM] -- WgaNotify ©
O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8 ©
O42 - Logiciel: Windows Management Framework Core - (.Microsoft Corporation.) [HKLM] -- KB968930 ©
O42 - Logiciel: Windows Media Format 11 runtime - (...) [HKLM] -- Windows Media Format Runtime
O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- WMFDist11 ©
O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.) [HKLM] -- wmp11 ©
O42 - Logiciel: WinRAR 4.20 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver ©

---\\ HKCU & HKLM Software Keys (121) - 37s
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\ALWIL Software
HKLM\SOFTWARE\Ankama
HKLM\SOFTWARE\Apple Computer, Inc.
HKLM\SOFTWARE\Apple Inc.
HKLM\SOFTWARE\ASUS
HKLM\SOFTWARE\AsusTek Computer
HKLM\SOFTWARE\Atheros
HKLM\SOFTWARE\Atheros Communications Inc.
HKLM\SOFTWARE\AVAST Software
HKLM\SOFTWARE\Avira
HKLM\SOFTWARE\Bunndle
HKLM\SOFTWARE\C07ft5Y
HKLM\SOFTWARE\CoreSecurity
HKLM\SOFTWARE\Creative Tech
HKLM\SOFTWARE\Digital River
HKLM\SOFTWARE\Dofus 2
HKLM\SOFTWARE\Dofus2
HKLM\SOFTWARE\EBI
HKLM\SOFTWARE\ECAREME
HKLM\SOFTWARE\Eset
HKLM\SOFTWARE\facemoods.com =>PUP.Optional.Facemoods
HKLM\SOFTWARE\GEAR Software
HKLM\SOFTWARE\Gemplus
HKLM\SOFTWARE\GoBoingo
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\Hewlett-Packard
HKLM\SOFTWARE\HP
HKLM\SOFTWARE\Hudson
HKLM\SOFTWARE\ICE
HKLM\SOFTWARE\InstalledOptions
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\JreMetrics
HKLM\SOFTWARE\Licenses
HKLM\SOFTWARE\Loader
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\neOceane
HKLM\SOFTWARE\Notepad
HKLM\SOFTWARE\Oberon Media
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\OfferBox =>PUP.Optional.OfferBox
HKLM\SOFTWARE\Piriform
HKLM\SOFTWARE\Program Groups
HKLM\SOFTWARE\Ralink
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\Realtek Semiconductor Corp.
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\Schlumberger
HKLM\SOFTWARE\Secure
HKLM\SOFTWARE\SecureDigitalServices
HKLM\SOFTWARE\Skyhook Wireless
HKLM\SOFTWARE\Skype
HKLM\SOFTWARE\SymNRT
HKLM\SOFTWARE\Synaptics
HKLM\SOFTWARE\uTorrentBar_FR =>PUP.Optional.uTorrentBar
HKLM\SOFTWARE\VideoLAN
HKLM\SOFTWARE\Windows
HKLM\SOFTWARE\Windows 3.1 Migration Status
HKLM\SOFTWARE\WinRAR
HKLM\SOFTWARE\Wow6432Node
HKLM\SOFTWARE\X-AVCSD
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\ALWIL Software
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\ASUS
HKCU\SOFTWARE\AVAST Software
HKCU\SOFTWARE\Avira
HKCU\SOFTWARE\BabSolution =>PUP.Optional.BabSolution
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\BVRP Software
HKCU\SOFTWARE\EasyBits
HKCU\SOFTWARE\EBI
HKCU\SOFTWARE\ECAREME
HKCU\SOFTWARE\ej-technologies
HKCU\SOFTWARE\Enterbrain
HKCU\SOFTWARE\ESET
HKCU\SOFTWARE\Facebook
HKCU\SOFTWARE\facemoods.com =>PUP.Optional.Facemoods
HKCU\SOFTWARE\freebird
HKCU\SOFTWARE\Funmoods =>PUP.Optional.Funmoods
HKCU\SOFTWARE\GoBoingo
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Grand Virtual =>PUP.Optional.GrandVirtual
HKCU\SOFTWARE\HDSoft
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Magnet
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\OfferBox =>PUP.Optional.OfferBox
HKCU\SOFTWARE\PartyFrance =>Casino.OnlineGames
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\PriceGong =>PUP.Optional.PriceGong
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\RocketDock
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\SkypeRS
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\Synaptics
HKCU\SOFTWARE\TBSB01620 =>PUP.Optional.Conduit
HKCU\SOFTWARE\TeleCharger =>Superfluous.Downloader
HKCU\SOFTWARE\uTorrentBar_FR =>PUP.Optional.uTorrentBar
HKCU\SOFTWARE\Widcomm
HKCU\SOFTWARE\WideStream =>PUP.Optional.SPointer
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\YahooPartnerToolbar =>Toolbar.YahooPartner
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software

---\\ Liste des services NT non Microsoft et non désactivés (9) - 2s
O23 - Service: Avira Protection e-mail (AntiVirMailService) . (.Avira Operations GmbH & Co. KG - Antivirus MailScanner LSP Service.) - C:\Program Files\Avira\AntiVir Desktop\avmailc.exe ©
O23 - Service: Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe ©
O23 - Service: Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe ©
O23 - Service: Avira Protection Web (AntiVirWebService) . (.Avira Operations GmbH & Co. KG - AntiVir WebGuard Service.) - C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe ©
O23 - Service: Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG - Avira.ServiceHost.) - C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe ©
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe ©
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe ©
O23 - Service: Pml Driver HPZ12 (Pml Driver HPZ12) . (.HP - PML Driver.) - C:\WINDOWS\system32\HPZipm12.exe ©

---\\ Processus lancés (16) - 3s
[MD5.18B0643B3B504E0FDCFCE0C8743B29C7] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [461672] [PID.1616] ©
[MD5.18B0643B3B504E0FDCFCE0C8743B29C7] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [461672] [PID.2012] ©
[MD5.DB5BEA73EDAF19AC68B2C0FAD0F92B1A] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [390504] [PID.232] ©
[MD5.5E06A9D23727DAF96FAA796F1135FDCD] - (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376] [PID.576] ©
[MD5.D31F88C5F19EEFA366A415D6BC5F2ABC] - (.HP - PML Driver.) -- C:\WINDOWS\system32\HPZipm12.exe [69632] [PID.624] ©
[MD5.6C4B9A2FF6924405E9ABFB558049D4DD] - (.Avira Operations GmbH & Co. KG - Avira.ServiceHost.) -- C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [243968] [PID.1284] ©
[MD5.C1A86A6D6847DEFF009EAE85BA0C1F20] - (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [782520] [PID.420] ©
[MD5.926A397334FE426A6C7657096FE681DB] - (.Hewlett-Packard Development Company, L.P. - Hewlett-Packard Product Assistant.) -- C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49152] [PID.448] ©
[MD5.E49FD011745BFC5621C586CCD07FF81E] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe [6564776] [PID.504] ©
[MD5.4522792B6F9525DA41E5C95761F7736A] - (.Avira Operations GmbH & Co. KG - AntiVir shadow copy service.) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe [433400] [PID.3220] ©
[MD5.8B588AF403C9D68EDFF154E3A73A1514] - (.Avira Operations GmbH & Co. KG - Avira Launcher.) -- C:\Program Files\Avira\Launcher\Avira.Systray.exe [137360] [PID.3576] ©
[MD5.C5F837D6C30A81B7352382B461684D8B] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [741704] [PID.2028] ©
[MD5.C5F837D6C30A81B7352382B461684D8B] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [741704] [PID.3940] ©
[MD5.C5F837D6C30A81B7352382B461684D8B] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [741704] [PID.2132] ©
[MD5.C5F837D6C30A81B7352382B461684D8B] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [741704] [PID.3300] ©
[MD5.445314773746F320CEA0D6975A075CA4] - (.Copyright (C) 2015 Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\florian baudry\Mes documents\Downloads\ZHPDiag3.exe [1979392] [PID.4020] ©

---\\ Google Chrome, Démarrage,Recherche,Extensions (3) - 76s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://search.conduit.com/ =>PUP.Optional.Conduit
G2 - GCE: Preference [User Data\Default] [aaaaacalgebmfelllfiaoknifldpngjh] [http://apnmedia.ask.com/media/toolbar/everest/part] Avira SearchFree Toolbar plus Web Protection =>Hijacker.Browser
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (18) - 7s
M0 - MFSP: prefs.js [florian baudry - rwgke814.default] http://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SPD9529309-1183-4190-8CC1-11982ED687C0&SSPV= =>PUP.Optional.Conduit
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - EXT FILE: (...) -- C:\Documents and Settings\florian baudry\Application Data\Mozilla\Firefox\Profiles\rwgke814.default\extensions\toolbar_AVIRA-V7@apn.ask.com.xpi =>Toolbar.Ask
P2 - EXT FILE: (...) -- C:\Documents and Settings\florian baudry\Application Data\Mozilla\Firefox\Profiles\rwgke814.default\extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}.xpi
P2 - EXT FILE: (...) -- C:\Documents and Settings\florian baudry\Application Data\Mozilla\Firefox\Profiles\rwgke814.default\searchplugins\conduit-search.xml =>PUP.Optional.Conduit
P2 - EXT FILE: (...) -- C:\Documents and Settings\florian baudry\Application Data\Mozilla\Firefox\Profiles\rwgke814.default\searchplugins\conduit.xml =>PUP.Optional.Conduit
P2 - EXT FILE: (...) -- C:\Documents and Settings\florian baudry\Application Data\Mozilla\Firefox\Profiles\rwgke814.default\searchplugins\SearchTheWeb.xml =>PUP.Optional.IMBooster
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\amazon-france.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\eBay-france.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\yahoo-france.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ©
P2 - EXT: (.Plus HD - Plus-HD-3.5.) -- C:\Documents and Settings\florian baudry\Application Data\Mozilla\Firefox\Profiles\rwgke814.default\extensions\d8222698-19e5-4827-b79e-0a077ea8eb7a@7b662f6d-3899-41e4-8864-6393447568da.com
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_19_0_0_245.dll ©
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ©

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (15) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://safesearch.avira.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://safesearch.avira.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://safesearch.avira.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://safesearch.avira.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://safesearch.avira.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://safesearch.avira.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: (no name) - {EEE6C35D-6118-11DC-9C72-001320C79847} Orphean
R3 - URLSearchHook: (no name) - {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} Orphean
R3 - URLSearchHook: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} Orphean
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer,Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\Userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (20)

---\\ Browser Helper Object de navigateur (BHO) (2) - 0s
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll ©
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll ©

---\\ Internet Explorer, Barre d'outil (7) - 1s
O3 - Toolbar: 0xEF44FA216D37534D9B0F8A89D3229068 - [HKCU]{21FA44EF-376D-4D53-9B0F-8A89D3229068} . (...) -- (.not file.)
O3 - Toolbar: 0x5BC3E6EE1861DC119C72001320C79847 - [HKCU]{EEE6C35B-6118-11DC-9C72-001320C79847} . (...) -- (.not file.)
O3 - Toolbar: 0x1AB9EE05F7AE8A4F978FFB83E7B03F8E - [HKCU]{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E} . (...) -- (.not file.)
O3 - Toolbar: 0xCCE97A9783AFE8459E03E2798216E2D5 - [HKCU]{977AE9CC-AF83-45E8-9E03-E2798216E2D5} . (...) -- (.not file.)
O3 - Toolbar: 0x524956412D41375600A77A786E7484D7 - [HKCU]{41564952-412D-5637-00A7-7A786E7484D7} . (...) -- (.not file.)
O3 - Toolbar: uTorrentBar_FR Toolbar - [HKLM]{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} . (...) -- (.not file.) =>PUP.Optional.Conduit
O3 - Toolbar: (no name) - [HKLM]{41564952-412D-5637-00A7-7A786E7484D7} (Orphean) (.not file.)

---\\ Applications lancées au démarrage du système (16) - 7s
O4 - HKLM\..\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe ©
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] . (.Avira Operations GmbH & Co. KG - Avira.SystrayStartTrigger.) -- C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe ©
O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard Development Company, L.P. - Hewlett-Packard Product Assistant.) -- C:\Program Files\HP\HP Software Update\HPWuSchd2.exe ©
O4 - HKLM\..\Run: [{d6a7cfcc-1f1c-4638-8f9e-0f184696fcdb}] . (.Avira Operations GmbH & Co. KG - Avira Launcher.) -- C:\Documents and Settings\All Users\Application Data\Package Cache\{d6a7cfcc-1f1c-4638-8f9e-0f184696fcdb}\Avira.OE.Setup.Bundle.exe ©
O4 - HKLM\..\Run: [{59c4462d-a177-4d44-a95b-deda1be79844}] . (.Avira Operations GmbH & Co. KG - Avira Launcher.) -- C:\Documents and Settings\All Users\Application Data\Package Cache\{59c4462d-a177-4d44-a95b-deda1be79844}\Avira.OE.Setup.Bundle.exe ©
O4 - HKLM\..\Run: [KernelFaultCheck] C:\WINDOWS\system32\dumprep 0 -k (.not file.)
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Documents and Settings\florian baudry\Application Data\uTorrent\uTorrent.exe
O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe ©
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe ©
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe ©
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe ©
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe ©
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe ©
O4 - HKUS\S-1-5-21-2505824345-2497665685-3451658653-1006\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Documents and Settings\florian baudry\Application Data\uTorrent\uTorrent.exe
O4 - HKUS\S-1-5-21-2505824345-2497665685-3451658653-1006\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe ©
O4 - HKUS\S-1-5-21-2505824345-2497665685-3451658653-1006\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe ©

---\\ Modification Domaine/Adresses DNS (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

---\\ Protocole additionnel (31) - 2s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll ©
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\system32\msvidctl.dll ©
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll ©
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll ©
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll ©
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API.) -- C:\WINDOWS\system32\inetcomm.dll ©
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll ©
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll ©
O18 - Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\msitss.dll ©
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll ©
O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll ©
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\system32\msvidctl.dll ©
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll ©
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll ©
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll ©
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll ©
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll ©
O18 - Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Filter: lzdhtml - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll ©
O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll ©
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL ©

---\\ Contenu des dossiers Programmes (203) - 30s
O43 - CFD: 13/12/2013 - [] D -- C:\Program Files\Adobe
O43 - CFD: 24/12/2010 - [] D -- C:\Program Files\Alwil Software
O43 - CFD: 20/10/2011 - [] D -- C:\Program Files\Apple Software Update
O43 - CFD: 30/09/2013 - [] D -- C:\Program Files\AskPartnerNetwork =>Toolbar.AskBar
O43 - CFD: 30/06/2010 - [] D -- C:\Program Files\ASUS
O43 - CFD: 10/03/2010 - [] D -- C:\Program Files\Atheros
O43 - CFD: 05/10/2015 - [] D -- C:\Program Files\Avira
O43 - CFD: 10/03/2010 - [] D -- C:\Program Files\Boingo
O43 - CFD: 20/10/2011 - [] D -- C:\Program Files\Bonjour
O43 - CFD: 13/11/2013 - [] D -- C:\Program Files\CCleaner
O43 - CFD: 15/12/2009 - [0] D -- C:\Program Files\ComPlus Applications
O43 - CFD: 02/10/2015 - [0] D -- C:\Program Files\Conduit
O43 - CFD: 08/02/2012 - [] D -- C:\Program Files\CustoPackTools
O43 - CFD: 25/08/2012 - [] D -- C:\Program Files\Dofus
O43 - CFD: 25/12/2010 - [] D -- C:\Program Files\Dofus 2
O43 - CFD: 25/08/2012 - [] D -- C:\Program Files\Dofus2
O43 - CFD: 10/03/2010 - [] D -- C:\Program Files\EBI
O43 - CFD: 30/06/2010 - [] D -- C:\Program Files\EeePC
O43 - CFD: 13/11/2013 - [] D -- C:\Program Files\ESET
O43 - CFD: 15/05/2011 - [] D -- C:\Program Files\facemoods.com =>PUP.Optional.Facemoods
O43 - CFD: 18/10/2015 - [] D -- C:\Program Files\Fichiers communs
O43 - CFD: 02/03/2012 - [] D -- C:\Program Files\freebird
O43 - CFD: 16/08/2012 - [] D -- C:\Program Files\Google
O43 - CFD: 15/05/2002 - [0] D -- C:\Program Files\GUM46.tmp
O43 - CFD: 18/10/2015 - [] D -- C:\Program Files\Hewlett-Packard
O43 - CFD: 18/10/2015 - [] D -- C:\Program Files\HP
O43 - CFD: 25/12/2010 - [] HD -- C:\Program Files\InstallShield Installation Information
O43 - CFD: 10/03/2010 - [] D -- C:\Program Files\Intel
O43 - CFD: 11/12/2013 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 20/10/2011 - [] D -- C:\Program Files\iPod
O43 - CFD: 20/10/2011 - [] D -- C:\Program Files\iTunes
O43 - CFD: 24/03/2011 - [] D -- C:\Program Files\Java
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files\LimeWire
O43 - CFD: 10/03/2010 - [] D -- C:\Program Files\Messenger
O43 - CFD: 15/12/2009 - [] D -- C:\Program Files\microsoft frontpage
O43 - CFD: 08/02/2012 - [] D -- C:\Program Files\Microsoft Office
O43 - CFD: 10/03/2010 - [] D -- C:\Program Files\Microsoft Office Suite Activation Assistant
O43 - CFD: 02/10/2015 - [] D -- C:\Program Files\Microsoft Silverlight
O43 - CFD: 10/03/2010 - [] D -- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 10/03/2010 - [] D -- C:\Program Files\Microsoft Sync Framework
O43 - CFD: 15/10/2012 - [] D -- C:\Program Files\Microsoft Works
O43 - CFD: 16/08/2012 - [] D -- C:\Program Files\Microsoft Xbox 360 Accessories
O43 - CFD: 03/09/2012 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 27/12/2010 - [] D -- C:\Program Files\Movie Maker
O43 - CFD: 22/12/2013 - [] D -- C:\Program Files\Mozilla Firefox
O43 - CFD: 23/12/2013 - [] D -- C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 06/05/2010 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 15/12/2009 - [] D -- C:\Program Files\MSN Gaming Zone
O43 - CFD: 10/03/2010 - [] D -- C:\Program Files\MSXML 4.0
O43 - CFD: 15/12/2009 - [] D -- C:\Program Files\NetMeeting
O43 - CFD: 06/01/2014 - [] D -- C:\Program Files\OfferBox =>PUP.Optional.OfferBox
O43 - CFD: 27/12/2010 - [] D -- C:\Program Files\Outlook Express
O43 - CFD: 06/10/2013 - [] D -- C:\Program Files\PartyFrance
O43 - CFD: 25/12/2010 - [] D -- C:\Program Files\Realtek
O43 - CFD: 06/05/2010 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 15/12/2009 - [] D -- C:\Program Files\Services en ligne
O43 - CFD: 10/03/2010 - [] D -- C:\Program Files\Skyhook Wireless
O43 - CFD: 01/07/2013 - [] D -- C:\Program Files\Skype Recorder
O43 - CFD: 22/05/2011 - [] D -- C:\Program Files\SweetIM =>PUP.Optional.SweetIM
O43 - CFD: 25/12/2010 - [] D -- C:\Program Files\Synaptics
O43 - CFD: 15/12/2009 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 15/05/2011 - [] D -- C:\Program Files\Usenet.nl
O43 - CFD: 09/10/2015 - [0] D -- C:\Program Files\uTorrent
O43 - CFD: 09/10/2015 - [] D -- C:\Program Files\uTorrentBar_FR =>PUP.Optional.uTorrentBar
O43 - CFD: 28/12/2010 - [] D -- C:\Program Files\VideoLAN
O43 - CFD: 17/08/2013 - [] D -- C:\Program Files\Wakfu
O43 - CFD: 15/05/2011 - [] D -- C:\Program Files\Widestream6 =>PUP.Optional.SPointer
O43 - CFD: 01/07/2013 - [] D -- C:\Program Files\Windows Live
O43 - CFD: 10/03/2010 - [] D -- C:\Program Files\Windows Media Connect 2
O43 - CFD: 10/03/2010 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 15/12/2009 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 15/12/2009 - [0] HD -- C:\Program Files\WindowsUpdate
O43 - CFD: 16/08/2012 - [] D -- C:\Program Files\WinRAR
O43 - CFD: 15/12/2009 - [] D -- C:\Program Files\xerox
O43 - CFD: 30/06/2010 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Accessoires
O43 - CFD: 30/06/2010 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ASUS
O43 - CFD: 07/11/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Avira
O43 - CFD: 10/03/2010 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Boingo
O43 - CFD: 07/11/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\CCleaner
O43 - CFD: 08/02/2012 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\CustoPackTools
O43 - CFD: 19/10/2015 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
O43 - CFD: 03/01/2011 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Everest Poker.fr
O43 - CFD: 06/05/2010 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Game Park
O43 - CFD: 01/07/2013 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Google Chrome
O43 - CFD: 18/10/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HP
O43 - CFD: 03/09/2012 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Iminent =>PUP.Optional.IMBooster
O43 - CFD: 20/10/2011 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\iTunes
O43 - CFD: 15/12/2009 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Jeux
O43 - CFD: 11/09/2013 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft Office
O43 - CFD: 01/10/2015 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft Silverlight
O43 - CFD: 15/10/2012 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft Works
O43 - CFD: 16/08/2012 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft Xbox 360 Accessories
O43 - CFD: 10/03/2010 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Outils d'administration
O43 - CFD: 15/05/2011 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Usenet.nl
O43 - CFD: 02/06/2011 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\VideoLAN
O43 - CFD: 16/08/2012 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WinRAR
O43 - CFD: 02/10/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Adobe
O43 - CFD: 24/12/2010 - [] D -- C:\Documents and Settings\All Users\Application Data\Alwil Software
O43 - CFD: 30/09/2013 - [] D -- C:\Documents and Settings\All Users\Application Data\APN =>Toolbar.Ask
O43 - CFD: 09/03/2011 - [] D -- C:\Documents and Settings\All Users\Application Data\Apple
O43 - CFD: 20/10/2011 - [] D -- C:\Documents and Settings\All Users\Application Data\Apple Computer
O43 - CFD: 30/09/2013 - [] D -- C:\Documents and Settings\All Users\Application Data\AskPartnerNetwork =>Toolbar.YahooPartner
O43 - CFD: 10/03/2010 - [] D -- C:\Documents and Settings\All Users\Application Data\Atheros
O43 - CFD: 06/10/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Avira
O43 - CFD: 30/09/2013 - [0] D -- C:\Documents and Settings\All Users\Application Data\Babylon =>PUP.Optional.Babylon
O43 - CFD: 10/03/2010 - [0] D -- C:\Documents and Settings\All Users\Application Data\EBI
O43 - CFD: 10/03/2010 - [] D -- C:\Documents and Settings\All Users\Application Data\GoBoingo
O43 - CFD: 08/01/2011 - [] D -- C:\Documents and Settings\All Users\Application Data\Google
O43 - CFD: 18/10/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\HP
O43 - CFD: 03/09/2012 - [] D -- C:\Documents and Settings\All Users\Application Data\Iminent =>PUP.Optional.IMBooster
O43 - CFD: 06/10/2013 - [] SD -- C:\Documents and Settings\All Users\Application Data\Microsoft
O43 - CFD: 11/11/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Microsoft Help
O43 - CFD: 16/08/2012 - [] D -- C:\Documents and Settings\All Users\Application Data\Mozilla
O43 - CFD: 06/05/2010 - [] D -- C:\Documents and Settings\All Users\Application Data\OberonGameConsole
O43 - CFD: 07/11/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Package Cache
O43 - CFD: 10/03/2010 - [] D -- C:\Documents and Settings\All Users\Application Data\Ralink Driver
O43 - CFD: 10/03/2010 - [0] D -- C:\Documents and Settings\All Users\Application Data\RSMR
O43 - CFD: 01/07/2013 - [] D -- C:\Documents and Settings\All Users\Application Data\Skype
O43 - CFD: 21/03/2011 - [] D -- C:\Documents and Settings\All Users\Application Data\Sun
O43 - CFD: 22/05/2011 - [] D -- C:\Documents and Settings\All Users\Application Data\SweetIM =>PUP.Optional.SweetIM
O43 - CFD: 01/07/2013 - [0] AD -- C:\Documents and Settings\All Users\Application Data\TEMP
O43 - CFD: 10/03/2010 - [] D -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
O43 - CFD: 09/03/2011 - [] D -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
O43 - CFD: 13/12/2013 - [] D -- C:\Program Files\Fichiers communs\Adobe
O43 - CFD: 23/10/2012 - [] D -- C:\Program Files\Fichiers communs\Adobe AIR
O43 - CFD: 06/10/2013 - [] D -- C:\Program Files\Fichiers communs\Apple
O43 - CFD: 01/10/2015 - [] D -- C:\Program Files\Fichiers communs\DESIGNER
O43 - CFD: 18/10/2015 - [] D -- C:\Program Files\Fichiers communs\Hewlett-Packard
O43 - CFD: 18/10/2015 - [] D -- C:\Program Files\Fichiers communs\HP
O43 - CFD: 30/06/2010 - [] D -- C:\Program Files\Fichiers communs\InstallShield
O43 - CFD: 24/03/2011 - [] D -- C:\Program Files\Fichiers communs\Java
O43 - CFD: 01/07/2013 - [] D -- C:\Program Files\Fichiers communs\Microsoft Shared
O43 - CFD: 15/12/2009 - [] D -- C:\Program Files\Fichiers communs\MSSoap
O43 - CFD: 14/12/2009 - [] D -- C:\Program Files\Fichiers communs\ODBC
O43 - CFD: 15/12/2009 - [] D -- C:\Program Files\Fichiers communs\Services
O43 - CFD: 14/12/2009 - [] D -- C:\Program Files\Fichiers communs\SpeechEngines
O43 - CFD: 15/12/2009 - [] D -- C:\Program Files\Fichiers communs\System
O43 - CFD: 10/03/2010 - [] D -- C:\Program Files\Fichiers communs\Windows Live
O43 - CFD: 02/10/2015 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Adobe
O43 - CFD: 25/12/2010 - [] D -- C:\Documents and Settings\florian baudry\Application Data\app
O43 - CFD: 09/03/2011 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Apple Computer
O43 - CFD: 06/10/2015 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Avira
O43 - CFD: 30/09/2013 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Babylon =>PUP.Optional.Babylon
O43 - CFD: 03/05/2011 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Dofus 2
O43 - CFD: 25/12/2010 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Dofus-2.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 26/12/2010 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Dofus-3.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 12/04/2011 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Dofus-4.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 15/04/2011 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Dofus-5.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 26/12/2010 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Dofus.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 28/10/2012 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Dofus2
O43 - CFD: 15/05/2011 - [] D -- C:\Documents and Settings\florian baudry\Application Data\facemoods.com =>PUP.Optional.Facemoods
O43 - CFD: 02/07/2013 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Funmoods
O43 - CFD: 02/12/2015 - [] D -- C:\Documents and Settings\florian baudry\Application Data\HP
O43 - CFD: 15/12/2009 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Identities
O43 - CFD: 06/03/2012 - [] D -- C:\Documents and Settings\florian baudry\Application Data\iFree
O43 - CFD: 18/10/2015 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Image Zone Express
O43 - CFD: 03/09/2012 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Iminent =>PUP.Optional.IMBooster
O43 - CFD: 10/03/2010 - [] D -- C:\Documents and Settings\florian baudry\Application Data\InstallShield
O43 - CFD: 24/12/2010 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Macromedia
O43 - CFD: 11/11/2015 - [] SD -- C:\Documents and Settings\florian baudry\Application Data\Microsoft
O43 - CFD: 08/02/2012 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Mozilla
O43 - CFD: 12/03/2011 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Mozilla-Cache
O43 - CFD: 14/07/2013 - [] D -- C:\Documents and Settings\florian baudry\Application Data\OfferBox =>PUP.Optional.OfferBox
O43 - CFD: 06/10/2013 - [] D -- C:\Documents and Settings\florian baudry\Application Data\PriceGong =>PUP.Optional.PriceGong
O43 - CFD: 25/12/2010 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Reg.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 01/07/2013 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Skype
O43 - CFD: 30/08/2012 - [] D -- C:\Documents and Settings\florian baudry\Application Data\skypePM
O43 - CFD: 21/03/2011 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Sun
O43 - CFD: 11/11/2015 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Template
O43 - CFD: 03/09/2012 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Toolbar4 =>PUP.Optional.SocialSkinz
O43 - CFD: 15/05/2011 - [] D -- C:\Documents and Settings\florian baudry\Application Data\Usenet.nl
O43 - CFD: 04/12/2015 - [] D -- C:\Documents and Settings\florian baudry\Application Data\uTorrent
O43 - CFD: 17/07/2013 - [] D -- C:\Documents and Settings\florian baudry\Application Data\vlc
O43 - CFD: 15/05/2011 - [0] D -- C:\Documents and Settings\florian baudry\Application Data\widestream =>PUP.Optional.SPointer
O43 - CFD: 16/08/2012 - [] D -- C:\Documents and Settings\florian baudry\Application Data\WinRAR
O43 - CFD: 04/12/2015 - [] D -- C:\Documents and Settings\florian baudry\Application Data\ZHP
O43 - CFD: 13/12/2013 - [] D -- C:\Documents and Settings\florian baudry\Local Settings\Application Data\Adobe
O43 - CFD: 09/03/2011 - [] D -- C:\Documents and Settings\florian baudry\Local Settings\Application Data\Apple
O43 - CFD: 09/03/2011 - [] D -- C:\Documents and Settings\florian baudry\Local Settings\Application Data\Apple Computer
O43 - CFD: 06/05/2010 - [] D -- C:\Documents and Settings\florian baudry\Local Settings\Application Data\ApplicationHistory
O43 - CFD: 30/09/2013 - [] D -- C:\Documents and Settings\florian baudry\Local Settings\Application Data\AskPartnerNetwork =>Toolbar.AskBar
O43 - CFD: 02/10/2015 - [] D -- C:\Documents and Settings\florian baudry\Local Settings\Application Data\Conduit
O43 - CFD: 31/08/2013 - [] D -- C:\Documents and Settings\florian baudry\Local Settings\Application Data\Facebook
O43 - CFD: 02/10/2015 - [] D -- C:\Documents and Settings\florian baudry\Local Settings\Application Data\Google
O43 - CFD: 24/12/2010 - [] D -- C:\Documents and Settings\florian baudry\Local Settings\Application Data\Identities
O43 - CFD: 21/05/2011 - [] D -- C:\Documents and Settings\florian baudry\Local Settings\Application Data\LogMeIn Hamachi
O43 - CFD: 12/01/2014 - [] D -- C:\Documents and Settings\florian baudry\Local Settings\Application Data\Microsoft
O43 - CFD: 10/03/2010 - [0] D -- C:\Documents and Settings\florian baudry\Local Settings\Application Data\Microsoft Help
O43 - CFD: 08/02/2012 - [] D -- C:\Documents and Settings\florian baudry\Local Settings\Application Data\Mozilla
O43 - CFD: 27/12/2010 - [] D -- C:\Documents and Settings\florian baudry\Local Settings\Application Data\PCHealth
O43 - CFD: 10/03/2010 - [] D -- C:\Documents and Settings\florian baudry\Local Settings\Application Data\Skyhook Wireless
O43 - CFD: 02/10/2015 - [] D -- C:\Documents and Settings\florian baudry\Local Settings\Application Data\Temp
O43 - CFD: 09/10/2015 - [] D -- C:\Documents and Settings\florian baudry\Local Settings\Application Data\uTorrentBar_FR =>PUP.Optional.uTorrentBar
O43 - CFD: 15/05/2011 - [] D -- C:\Documents and Settings\florian baudry\Local Settings\Application Data\widestream6 Air =>PUP.Optional.SPointer
O43 - CFD: 16/04/2011 - [0] D -- C:\Documents and Settings\florian baudry\Local Settings\Application Data\WMTools Downloaded Files
O43 - CFD: 10/03/2010 - [] RD -- C:\Documents and Settings\florian baudry\Menu Démarrer\Programmes\Accessoires
O43 - CFD: 25/12/2010 - [] D -- C:\Documents and Settings\florian baudry\Menu Démarrer\Programmes\Dofus 2
O43 - CFD: 25/08/2012 - [] D -- C:\Documents and Settings\florian baudry\Menu Démarrer\Programmes\Dofus2
O43 - CFD: 12/04/2011 - [] RD -- C:\Documents and Settings\florian baudry\Menu Démarrer\Programmes\Démarrage
O43 - CFD: 06/10/2013 - [0] D -- C:\Documents and Settings\florian baudry\Menu Démarrer\Programmes\Games
O43 - CFD: 02/03/2012 - [] D -- C:\Documents and Settings\florian baudry\Menu Démarrer\Programmes\Smart PC Recorder
O43 - CFD: 28/04/2011 - [] D -- C:\Documents and Settings\florian baudry\Menu Démarrer\Programmes\Wakfu
O43 - CFD: 16/08/2012 - [] D -- C:\Documents and Settings\florian baudry\Menu Démarrer\Programmes\WinRAR

---\\ ShellIconOverlayIdentifiers (SIOI) (1) - 0s
O106 - SIOI: Offline Files Menu [Fichiers hors connexion] - {750fdf0e-2a26-11d1-a3ea-080036587f03}. (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\system32\cscui.dll ©

---\\ Enumération des clés StartupReg (30) - 8s
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe ©
O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (...) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\ApnTBMon [Key] . (...) -- C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe (.not file.) =>Toolbar.AskBar
O53 - SMSR:HKLM\...\startupreg\APSDaemon [Key] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Fichiers communs\Apple\Apple Application Support\APSDaemon.exe ©
O53 - SMSR:HKLM\...\startupreg\AsusACPIServer [Key] . (.ASUSTeK Computer Inc. - Asus Eee PC ACPI Service.) -- C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe ©
O53 - SMSR:HKLM\...\startupreg\AsusEPCMonitor [Key] . (.ASUSTeK Computer Inc. - AsEPCMon.) -- C:\Program Files\EeePC\ACPI\AsEPCMon.exe ©
O53 - SMSR:HKLM\...\startupreg\AsusTray [Key] . (.ASUSTeK Computer Inc. - Eee PC Tray Utility.) -- C:\Program Files\EeePC\ACPI\AsTray.exe ©
O53 - SMSR:HKLM\...\startupreg\Boingo Wi-Fi [Key] . (...) -- C:\Program Files\Boingo\Boingo Wi-Fi\Boingo.lnk
O53 - SMSR:HKLM\...\startupreg\CapsHook [Key] . (.ASUS - CapsAndNumKeyNotify.) -- C:\Program Files\EeePC\CapsHook\CapsHook.exe ©
O53 - SMSR:HKLM\...\startupreg\ctfmon.exe [Key] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe ©
O53 - SMSR:HKLM\...\startupreg\Facebook Update [Key] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Documents and Settings\florian baudry\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe ©
O53 - SMSR:HKLM\...\startupreg\facemoods [Key] . (...) -- C:\Program Files\facemoods.com\facemoods\1.4.17.3\facemoodssrv.exe (.not file.) =>PUP.Optional.Facemoods
O53 - SMSR:HKLM\...\startupreg\HotKeysCmds [Key] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe ©
O53 - SMSR:HKLM\...\startupreg\IgfxTray [Key] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe ©
O53 - SMSR:HKLM\...\startupreg\Iminent [Key] . (...) -- C:\Program Files\Iminent\Iminent.exe (.not file.) =>PUP.Optional.IMBooster
O53 - SMSR:HKLM\...\startupreg\IminentMessenger [Key] . (...) -- C:\Program Files\Iminent\Iminent.Messengers.exe (.not file.) =>PUP.Optional.IMBooster
O53 - SMSR:HKLM\...\startupreg\IMJPMIG8.1 [Key] . (.Microsoft Corporation - Microsoft IME.) -- C:\WINDOWS\ime\imjp8_1\imjpmig.exe ©
O53 - SMSR:HKLM\...\startupreg\iTunesHelper [Key] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe ©
O53 - SMSR:HKLM\...\startupreg\LiveUpdate [Key] . (...) -- C:\Program Files\ASUS\LiveUpdate\LiveUpdate.exe
O53 - SMSR:HKLM\...\startupreg\MsnMsgr [Key] . (...) -- ~"C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background (.not file.)
O53 - SMSR:HKLM\...\startupreg\MSPY2002 [Key] . (...) -- C:\WINDOWS\system32\IME\PINTLGNT\IMSCINST.EXE
O53 - SMSR:HKLM\...\startupreg\Persistence [Key] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe ©
O53 - SMSR:HKLM\...\startupreg\PHIME2002A [Key] . (.Microsoft Corporation - 微軟新注音輸入法 2002a.) -- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE ©
O53 - SMSR:HKLM\...\startupreg\PHIME2002ASync [Key] . (.Microsoft Corporation - 微軟新注音輸入法 2002a.) -- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE ©
O53 - SMSR:HKLM\...\startupreg\RocketDock [Key] . (...) -- C:\Program Files\CustoPackTools\utils\RocketDock\RocketDock.exe
O53 - SMSR:HKLM\...\startupreg\RTHDCPL [Key] . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- RTHDCPL.EXE (.not file.) ©
O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe ©
O53 - SMSR:HKLM\...\startupreg\SweetIM [Key] . (...) -- C:\Program Files\SweetIM\Messenger\SweetIM.exe (.not file.) =>PUP.Optional.SweetIM
O53 - SMSR:HKLM\...\startupreg\SynAsusAcpi [Key] . (.Synaptics Incorporated - Asus Custom Acpi Monitor Application.) -- C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe ©
O53 - SMSR:HKLM\...\startupreg\SynTPEnh [Key] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ©

---\\ Liste des pilotes du système (55) - 31s
O58 - SDL:2009/11/18 00:16:00 A . (.Creative - Creative WDM 3D Audio Driver.) -- C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480] ©
O58 - SDL:2010/03/31 02:40:20 A . (...) -- C:\WINDOWS\System32\drivers\AsUpIO.sys [11520]
O58 - SDL:2008/04/08 17:59:28 A . (.ASUSTeK Computer Inc. - ASUS ACPI Device Driver.) -- C:\WINDOWS\System32\drivers\ASUSACPI.SYS [10752] ©
O58 - SDL:1999/03/06 13:38:28 A . (...) -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS [6144]
O58 - SDL:2009/08/12 01:04:30 A . (.Atheros Communications, Inc. - Driver for Atheros Wireless Network Adapter.) -- C:\WINDOWS\System32\drivers\athw.sys [1582624] ©
O58 - SDL:2015/10/27 16:31:31 A . (.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) -- C:\WINDOWS\System32\drivers\avgntflt.sys [108448] ©
O58 - SDL:2015/10/06 12:01:56 A . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) -- C:\WINDOWS\System32\drivers\avipbb.sys [136728] ©
O58 - SDL:2013/11/28 15:32:18 A . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) -- C:\WINDOWS\System32\drivers\avkmgr.sys [37352] ©
O58 - SDL:2008/09/26 01:30:12 A . (.Broadcom Corporation. - Broadcom Bluetooth IT Manager Filter.) -- C:\WINDOWS\System32\drivers\btwsecfl.sys [91176] ©
O58 - SDL:2008/04/14 13:00:00 A . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\System32\drivers\cinemst2.sys [262528] ©
O58 - SDL:2008/04/14 13:00:00 A . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\System32\drivers\cpqdap01.sys [11776] ©
O58 - SDL:2008/04/14 13:00:00 A . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) -- C:\WINDOWS\System32\drivers\dmboot.sys [800256] ©
O58 - SDL:2008/04/14 13:00:00 A . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\System32\drivers\dmio.sys [154496] ©
O58 - SDL:2008/04/14 13:00:00 A . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\drivers\dmload.sys [5888] ©
O58 - SDL:2009/05/18 12:17:00 A . (.GEAR Software Inc. - CD DVD Filter.) -- C:\WINDOWS\System32\drivers\GEARAspiWDM.sys [26600] ©
O58 - SDL:2010/02/03 14:56:56 AH . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\WINDOWS\System32\drivers\hamachi.sys [26176] ©
O58 - SDL:2008/04/14 13:00:00 A . (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\System32\drivers\hdaudbus.sys [144384]
O58 - SDL:2006/04/13 01:04:39 A . (.HP - IEEE-1284.4-1999 Driver (Windows 2000).) -- C:\WINDOWS\System32\drivers\HPZid412.sys [49664] ©
O58 - SDL:2006/04/13 01:04:39 A . (.HP - IEEE-1284.4-1999 Print Class Driver.) -- C:\WINDOWS\System32\drivers\HPZipr12.sys [16496] ©
O58 - SDL:2006/04/13 01:04:39 A . (.HP - 1284.4<->Usb Datalink Driver (Windows 2000).) -- C:\WINDOWS\System32\drivers\HPZius12.sys [21568] ©
O58 - SDL:2009/06/04 11:43:16 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\WINDOWS\System32\drivers\iaStor.sys [330264] ©
O58 - SDL:2009/09/24 10:55:32 A . (.Intel Corporation - Intel Graphics Miniport Driver.) -- C:\WINDOWS\System32\drivers\igxpmp32.sys [6301696] ©
O58 - SDL:2008/11/03 08:03:28 A . (. - Keyboard Filter Driver.) -- C:\WINDOWS\System32\drivers\kbfiltr.sys [13880]
O58 - SDL:2009/07/27 08:09:52 A . (.Atheros Communications, Inc. - Atheros AR813x/AR815x PCI-E Ethernet Contro.) -- C:\WINDOWS\System32\drivers\l1c51x86.sys [44032] ©
O58 - SDL:2009/11/18 00:17:00 A . (.Creative Technology Ltd. - Creative WDM Audio Driver (32-bit).) -- C:\WINDOWS\System32\drivers\Monfilt.sys [1395800] ©
O58 - SDL:2008/04/14 13:00:00 A . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\nikedrv.sys [12032] ©
O58 - SDL:2008/04/24 09:56:22 A . (.Printing Communications Assoc., Inc. (PCAUSA) - PCAUSA NDIS 5.0 SPR Protocol Driver.) -- C:\WINDOWS\System32\drivers\PCASp50.sys [20096] ©
O58 - SDL:2008/04/14 13:00:00 A . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Lib.) -- C:\WINDOWS\System32\drivers\ptilink.sys [17792] ©
O58 - SDL:2008/04/14 13:00:00 A . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\System32\drivers\rio8drv.sys [12032] ©
O58 - SDL:2008/04/14 13:00:00 A . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\riodrv.sys [12032] ©
O58 - SDL:2010/04/27 09:10:52 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys [6031904] ©
O58 - SDL:2010/02/04 16:08:30 A . (.Realtek Semiconductor Corp. - Realtek UVC Driver for XP/Vista/Win7.) -- C:\WINDOWS\System32\drivers\rtsuvc.sys [73088] ©
O58 - SDL:2008/04/14 13:00:00 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\WINDOWS\System32\drivers\secdrv.sys [20480] ©
O58 - SDL:2015/10/06 12:01:56 A . (.Avira Operations GmbH & Co. KG - AVIRA SnapShot Driver.) -- C:\WINDOWS\System32\drivers\ssmdrv.sys [31848] ©
O58 - SDL:2009/11/19 14:45:08 A . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\WINDOWS\System32\drivers\SynTP.sys [230448] ©
O58 - SDL:2008/04/14 13:00:00 A . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\System32\drivers\tsbvcap.sys [21376] ©
O58 - SDL:2008/04/14 13:00:00 A . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\System32\drivers\vdmindvd.sys [58112] ©
O58 - SDL:2010/03/10 14:57:40 A . (.Skyhook Wireless - WPS NDIS User Mode I/O Driver.) -- C:\WINDOWS\System32\drivers\wpsnuio.sys [13696]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS\System32\ansi.sys [9037]
O58 - SDL:2009/08/12 01:04:30 A . (.Atheros Communications, Inc. - Driver for Atheros Wireless Network Adapter.) -- C:\WINDOWS\System32\athw.sys [1582624] ©
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS\System32\country.sys [27097]
O58 - SDL:2009/03/18 16:35:40 AH . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\WINDOWS\System32\hamachi.sys [26176] ©
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS\System32\himem.sys [4912]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS\System32\key01.sys [42809]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS\System32\keyboard.sys [42537]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS\System32\ntdos.sys [27916]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS\System32\ntdos404.sys [29146]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS\System32\ntdos411.sys [29370]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS\System32\ntdos412.sys [29274]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS\System32\ntdos804.sys [29146]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS\System32\ntio.sys [34000]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS\System32\ntio404.sys [34560]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS\System32\ntio411.sys [35648]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS\System32\ntio412.sys [35424]
O58 - SDL:2008/04/14 13:00:00 A . (...) -- C:\WINDOWS\System32\ntio804.sys [34560]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (3) - 20s
O61 - LFC: 2015/12/01 23:42:24 A . (.BitTorrent Inc..) -- C:\Documents and Settings\florian baudry\Application Data\uTorrent\uTorrent.exe [2026520]
O61 - LFC: 2015/12/01 23:42:24 A . (.BitTorrent Inc..) -- C:\Documents and Settings\florian baudry\Application Data\uTorrent\updates\3.4.5_41372.exe [2026520]
O61 - LFC: 2015/12/02 07:10:58 A . (.BitTorrent Inc..) -- C:\Documents and Settings\florian baudry\Application Data\uTorrent\updates\3.4.5_41372\utorrentie.exe [336896]

---\\ Associations Shell Spawning (9) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll ©
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\system32\wscript.exe ©
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe ©
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Menu de démarrage Internet (11) - 0s
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe ©

---\\ Recherche d'infection sur les navigateurs (115) - 30s
O69 - SBI: C:\Documents and Settings\florian baudry\Application Data\Mozilla\Firefox\Profiles\rwgke814.default\searchplugins\conduit.xml
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.1000234.TWC_TMP_city", "NICE"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.1000234.TWC_TMP_country", "FR"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"true\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.FirstTime", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.FirstTimeFF3", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2851639&SearchSource=2&q="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.UserID", "UN64666806004562848"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.addressBarTakeOverEnabledInHidden", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.autoDisableScopes", -1); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.browser.search.defaultthis.engineName", true); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.cbcountry_001", "FR"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.cbfirsttime", "Mon Sep 03 2012 23:57:50 GMT+0200"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.embeddedsData", "[{\"appId\":\"129351529700743801\",\"apiPermissions\":{\"crossDomainAjax\":true,\"getMainFra[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.enableAlerts", "always"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.enableSearchFromAddressBar", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.firstTimeDialogOpened", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.fixPageNotFoundError", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.fixPageNotFoundErrorInHidden", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.fixUrls", true); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.installId", "fft434.tmp.exe"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.installType", "XPE"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.isNewTabEnabled", true); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.isPerformedSmartBarTransition", "true"); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.isWelcomPage", "{\"dataType\":\"boolean\",\"data\":\"true\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.keyword", true); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.navigationAliasesJson", "{\"EB_MAIN_FRAME_URL\":\"http%3A%2F%2Fsearch.conduit.com%2F%3Fctid%3DCT2851639%26Sea[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.openThankYouPage", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.openUninstallPage", "FALSE"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.scriptSource", "http://127.0.0.1:10000/gui/"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.search.searchAppId", "129351529700743801"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.search.searchCount", "0"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.searchInNewTabEnabledInHidden", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT2851639\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"http://uTorrent[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"uTorrentBar_FR\[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data\":\"1\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1346709454010"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.serviceLayer_services_appsMetadata_lastUpdate", "1346709453550"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1346709459873"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.serviceLayer_services_login_10.10.27.6_lastUpdate", "1346877201837"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1346709460118"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.serviceLayer_services_searchAPI_lastUpdate", "1346709448156"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.serviceLayer_services_serviceMap_lastUpdate", "1346821285858"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.serviceLayer_services_toolbarContextMenu_lastUpdate", "1346709459634"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.serviceLayer_services_toolbarSettings_lastUpdate", "1346877201506"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.serviceLayer_services_translation_lastUpdate", "1346821286850"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.settingsINI", true); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.shouldFirstTimeDialog", "false"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.smartbar.CTID", "CT2851639"); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.smartbar.Uninstall", "0"); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.smartbar.homepage", true); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.smartbar.toolbarName", "uTorrentBar_FR "); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.startPage", "TRUE"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.toolbarBornServerTime", "4-9-2012"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.toolbarCurrentServerTime", "5-9-2012"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("CT2851639.url_history0001", "http://www.cpasbien.com/films/comedies/:::clickhandler:::1346757083752,,,http://xhamster.c[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("Smartbar.ConduitHomepagesList", "http://search.conduit.com/?ctid=CT2851639&SearchSource=13"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("Smartbar.ConduitSearchEngineList", "uTorrentBar_FR Customized Web Search"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("Smartbar.ConduitSearchUrlList", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2851639&SearchSource=2&q="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("Smartbar.keywordURLSelectedCTID", "CT2851639"); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.ad822269819e54827b79e0a077ea8eb7a7b662f6d389941e488646393447568dacom37180.37180.name", "Plus-HD-3.5"); =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.crossrider.bic", "141e71fcd73f7f3b3b3ab93908bb6393"); =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.delta.admin", false); =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.delta.aflt", "babsst"); =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}"); =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.delta.autoRvrt", "false"); =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.delta.dfltLng", "fr"); =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.delta.excTlbr", false); =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.delta.ffxUnstlRst", true); =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.delta.id", "bccde69500000000000020cf306944a8"); =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.delta.instlDay", "15978"); =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.delta.instlRef", "sst"); =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.delta.newTab", false); =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.delta.prdct", "delta"); =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.delta.prtnrId", "delta"); =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.delta.rvrt", "false"); =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.delta.smplGrp", "none"); =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.delta.tlbrId", "base"); =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.delta.tlbrSrchUrl", ""); =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.delta.vrsn", "1.8.24.6"); =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.delta.vrsnTs", "1.8.24.620:16:15"); =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.delta.vrsni", "1.8.24.6"); =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.delta_i.babExt", ""); =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.delta_i.babTrack", "affID=119357&tsp=5021"); =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("extensions.delta_i.srcExt", "ss"); =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("id_imbooster4web_v6.Var1", "0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("id_imbooster4web_v6.Var10", "0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("id_imbooster4web_v6.Var2", "0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("id_imbooster4web_v6.Var3", "0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("id_imbooster4web_v6.Var4", "0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("id_imbooster4web_v6.Var5", "0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("id_imbooster4web_v6.Var6", "0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("id_imbooster4web_v6.Var7", "0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("id_imbooster4web_v6.Var8", "0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("id_imbooster4web_v6.Var9", "0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("id_imbooster4web_v6.cache.tbs_include_xml_006938", "45/22/5/8/112"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("id_imbooster4web_v6.firstlaunch", "0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("id_imbooster4web_v6.guid", "%7B3DD4D79A-A8B8-A2B4-FD3B-C55DB217B845%7D"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("id_imbooster4web_v6.userId", "%12"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("id_imbooster4web_v6_installed_version", "1.0.1018.0"); =>PUP.Optional.Boost
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("browser.startup.homepage", "http://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("browser.search.selectedEngine", "Conduit Search"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [florian baudry - rwgke814.default] user_pref("browser.newtab.url", "http://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=69&CUI=&SSPV=&Lay=1[...] =>PUP.Optional.Conduit
O69 - SBI: SearchScopes [HKCU] {0D7562AE-8EF6-416d-A838-AB665251703A} - (Search) - http://start.facemoods.com/
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (SearchGol) - http://www.searchgol.com/
O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} [DefaultScope] - (uTorrentBar_FR Customized Web Search) - http://search.conduit.com/
O69 - SBI: SearchScopes [HKCU] {EEE6C360-6118-11DC-9C72-001320C79847} - (SweetIM Search) - http://search.sweetim.com/

---\\ Enumère les services démarrés par Svchost (39) - 5s
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (...) -- C:\WINDOWS\System32\appmgmts.dll [0]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\WINDOWS\system32\audiosrv.dll [42496] ©
O83 - Search Svchost Services: Browser (Browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\system32\browser.dll [78336] ©
O83 - Search Svchost Services: CryptSvc (CryptSvc) . (.Microsoft Corporation - Cryptographic Services.) -- C:\WINDOWS\system32\cryptsvc.dll [62464] ©
O83 - Search Svchost Services: DMServer (DMServer) . (.Microsoft Corp. - DLL Service gestionnaire de disque logique.) -- C:\WINDOWS\system32\dmserver.dll [24576] ©
O83 - Search Svchost Services: DHCP (DHCP) . (.Microsoft Corporation - Service client DHCP.) -- C:\WINDOWS\system32\dhcpcsvc.dll [127488] ©
O83 - Search Svchost Services: ERSvc (ERSvc) . (.Microsoft Corporation - Windows Error Reporting Service.) -- C:\WINDOWS\system32\ersvc.dll [23040] ©
O83 - Search Svchost Services: EventSystem (EventSystem) . (.Microsoft Corporation - .) -- C:\WINDOWS\system32\es.dll [253952] ©
O83 - Search Svchost Services: FastUserSwitchingCompatibility (FastUserSwitchingCompatibility) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] ©
O83 - Search Svchost Services: HidServ (HidServ) . (.Microsoft Corporation - HID Audio Service.) -- C:\WINDOWS\system32\hidserv.dll [21504] ©
O83 - Search Svchost Services: LanmanServer (LanmanServer) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [99840] ©
O83 - Search Svchost Services: LanmanWorkstation (LanmanWorkstation) . (.Microsoft Corporation - Workstation Service DLL.) -- C:\WINDOWS\system32\wkssvc.dll [132096] ©
O83 - Search Svchost Services: Messenger (Messenger) . (.Microsoft Corporation - NT Messenger Service.) -- C:\WINDOWS\system32\msgsvc.dll [33792] ©
O83 - Search Svchost Services: Netman (Netman) . (.Microsoft Corporation - Gestionnaire de connexions réseau.) -- C:\WINDOWS\system32\netman.dll [198144] ©
O83 - Search Svchost Services: Nla (Nla) . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Micro.) -- C:\WINDOWS\system32\mswsock.dll [247808] ©
O83 - Search Svchost Services: Ntmssvc (Ntmssvc) . (.Microsoft Corporation - Gestionnaire de stockage amovible.) -- C:\WINDOWS\system32\ntmssvc.dll [438272] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\system32\rasauto.dll [88576] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\system32\rasmans.dll [186368] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\system32\mprdim.dll [53248] ©
O83 - Search Svchost Services: Schedule (Schedule) . (.Microsoft Corporation - Moteur du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [194560] ©
O83 - Search Svchost Services: Seclogon (Seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [18944] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\system32\sens.dll [39424] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à.) -- C:\WINDOWS\system32\ipnathlp.dll [332800] ©
O83 - Search Svchost Services: SRService (SRService) . (.Microsoft Corporation - Service de restauration du système.) -- C:\WINDOWS\system32\srsvc.dll [171520] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\WINDOWS\system32\tapisrv.dll [249856] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] ©
O83 - Search Svchost Services: TrkWks (TrkWks) . (.Microsoft Corporation - Distributed Link Tracking Client.) -- C:\WINDOWS\system32\trkwks.dll [90112] ©
O83 - Search Svchost Services: W32Time (W32Time) . (.Microsoft Corporation - Service de temps Windows.) -- C:\WINDOWS\system32\w32time.dll [178176] ©
O83 - Search Svchost Services: WZCSVC (WZCSVC) . (.Microsoft Corporation - Service configuration automatique sans fil.) -- C:\WINDOWS\system32\wzcsvc.dll [483840] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\wmisvc.dll [145408] ©
O83 - Search Svchost Services: wscsvc (wscsvc) . (.Microsoft Corporation - Windows Security Center Service.) -- C:\WINDOWS\system32\wscsvc.dll [80896] ©
O83 - Search Svchost Services: xmlprov (xmlprov) . (.Microsoft Corporation - Network Provisioning Service.) -- C:\WINDOWS\system32\xmlprov.dll [129024] ©
O83 - Search Svchost Services: napagent (napagent) . (.Microsoft Corporation - Exécution du service Agent de quarantaine.) -- C:\WINDOWS\system32\qagentrt.dll [293376] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\WINDOWS\system32\kmsvc.dll [61440] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\system32\qmgr.dll [409088] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update AutoUpdate Service.) -- C:\WINDOWS\system32\wuauserv.dll [6656] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] ©
O83 - Search Svchost Services: helpsvc (helpsvc) . (.Microsoft Corporation - Microsoft PCHealth Service Holder.) -- C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll [38400] ©
O83 - Search Svchost Services: WmdmPmSN (WmdmPmSN) . (.Microsoft Corporation - Microsoft Media Device Service Provider.) -- C:\WINDOWS\system32\mspmsnsv.dll [27136] ©

---\\ Enumère les codes produits des logiciels (4) - 6s
O90 - PUC: "426EA07F14B2F674CBC9A0F751C8F351" . (.SweetIM for Messenger 3.4.) -- C:\WINDOWS\Installer\{F70AE624-2B41-476F-BC9C-0A7F158C3F15}\ARPPRODUCTICON.exe =>PUP.Optional.SweetIM
O90 - PUC: "482AA67AD25E6E74E9F48BD5FBE8533C" . (.IMinent Toolbar.) -- C:\Documents and Settings\CATA\My Documents\My Received Files\icon.ico =>PUP.Optional.IMBooster
O90 - PUC: "7324911AA745d164DB449BB751477AAD" . (.SweetIM Toolbar for Internet Explorer 4.1.) -- C:\WINDOWS\Installer\{A1194237-547A-461d-BD44-B97B1574A7DA}\ARPPRODUCTICON.exe =>PUP.Optional.SweetIM
O90 - PUC: "82E17E6ABC34E3244B517B0CD07709E2" . (.Iminent.) -- C:\WINDOWS\Installer\{A6E71E28-43CB-423E-B415-B7C00D77902E}\imbooster.ico =>PUP.Optional.IMBooster

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (14) - 47s

SS - Demand [11/11/2015] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe ©
SS - Auto [27/10/2015] [ 916968] Avira Protection e-mail (AntiVirMailService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\avmailc.exe ©
SR - Auto [27/10/2015] [ 461672] Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe ©
SR - Auto [27/10/2015] [ 461672] Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe ©
SS - Auto [27/10/2015] [ 1210512] Avira Protection Web (AntiVirWebService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe ©
SR - Auto [14/10/2015] [ 243968] Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe ©
SR - Auto [30/08/2011] [ 390504] Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe ©
SS - Auto [15/05/2002] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
SS - Demand [15/05/2002] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
SS - Demand [09/10/2011] [ 821608] Service de l’iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe ©
SR - Auto [02/02/2011] [ 153376] Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc..) - C:\Program Files\Java\jre6\bin\jqs.exe ©
SS - Demand [22/12/2013] [ 119408] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe ©
SR - Auto [03/03/2006] [ 69632] Pml Driver HPZ12 (Pml Driver HPZ12) . (.HP.) - C:\WINDOWS\system32\HPZipm12.exe ©

---\\ Scan Additionnel (61) - 0s
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\facemoods =>PUP.Optional.Facemoods
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\OfferBox Browser =>PUP.Optional.OfferBox
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\uTorrentBar_FR Toolbar =>PUP.Optional.uTorrentBar
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{41564952-412D-5637-00A7-A758B70C0A00} =>PUP.Optional.Bandoo
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A1194237-547A-461d-BD44-B97B1574A7DA} =>PUP.Optional.SweetIM
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A6E71E28-43CB-423E-B415-B7C00D77902E} =>PUP.Optional.IMBooster
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3} =>PUP.Optional.IMBooster
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{F70AE624-2B41-476F-BC9C-0A7F158C3F15} =>PUP.Optional.SweetIM
HKLM\SOFTWARE\facemoods.com =>PUP.Optional.Facemoods
HKLM\SOFTWARE\OfferBox =>PUP.Optional.OfferBox
HKLM\SOFTWARE\uTorrentBar_FR =>PUP.Optional.uTorrentBar
HKCU\SOFTWARE\BabSolution =>PUP.Optional.BabSolution
HKCU\SOFTWARE\facemoods.com =>PUP.Optional.Facemoods
HKCU\SOFTWARE\Funmoods =>PUP.Optional.Funmoods
HKCU\SOFTWARE\Grand Virtual =>PUP.Optional.GrandVirtual
HKCU\SOFTWARE\OfferBox =>PUP.Optional.OfferBox
HKCU\SOFTWARE\PartyFrance =>Casino.OnlineGames
HKCU\SOFTWARE\PriceGong =>PUP.Optional.PriceGong
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\TBSB01620 =>PUP.Optional.Conduit
HKCU\SOFTWARE\TeleCharger =>Superfluous.Downloader
HKCU\SOFTWARE\uTorrentBar_FR =>PUP.Optional.uTorrentBar
HKCU\SOFTWARE\WideStream =>PUP.Optional.SPointer
HKCU\SOFTWARE\YahooPartnerToolbar =>Toolbar.YahooPartner
C:\Documents and Settings\florian baudry\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aaaaacalgebmfelllfiaoknifldpngjh =>Hijacker.Browser
C:\Documents and Settings\florian baudry\Application Data\Mozilla\Firefox\Profiles\rwgke814.default\extensions\toolbar_AVIRA-V7@apn.ask.com.xpi =>Toolbar.Ask
C:\Documents and Settings\florian baudry\Application Data\Mozilla\Firefox\Profiles\rwgke814.default\searchplugins\conduit-search.xml =>PUP.Optional.Conduit
C:\Documents and Settings\florian baudry\Application Data\Mozilla\Firefox\Profiles\rwgke814.default\searchplugins\conduit.xml =>PUP.Optional.Conduit
C:\Documents and Settings\florian baudry\Application Data\Mozilla\Firefox\Profiles\rwgke814.default\searchplugins\SearchTheWeb.xml =>PUP.Optional.IMBooster
C:\Program Files\AskPartnerNetwork =>Toolbar.AskBar
C:\Program Files\facemoods.com =>PUP.Optional.Facemoods
C:\Program Files\OfferBox =>PUP.Optional.OfferBox
C:\Program Files\SweetIM =>PUP.Optional.SweetIM
C:\Program Files\uTorrentBar_FR =>PUP.Optional.uTorrentBar
C:\Program Files\Widestream6 =>PUP.Optional.SPointer
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Iminent =>PUP.Optional.IMBooster
C:\Documents and Settings\All Users\Application Data\APN =>Toolbar.Ask
C:\Documents and Settings\All Users\Application Data\AskPartnerNetwork =>Toolbar.YahooPartner
C:\Documents and Settings\All Users\Application Data\Babylon =>PUP.Optional.Babylon
C:\Documents and Settings\All Users\Application Data\Iminent =>PUP.Optional.IMBooster
C:\Documents and Settings\All Users\Application Data\SweetIM =>PUP.Optional.SweetIM
C:\Documents and Settings\florian baudry\Application Data\Babylon =>PUP.Optional.Babylon
C:\Documents and Settings\florian baudry\Application Data\facemoods.com =>PUP.Optional.Facemoods
C:\Documents and Settings\florian baudry\Application Data\Iminent =>PUP.Optional.IMBooster
C:\Documents and Settings\florian baudry\Application Data\OfferBox =>PUP.Optional.OfferBox
C:\Documents and Settings\florian baudry\Application Data\PriceGong =>PUP.Optional.PriceGong
C:\Documents and Settings\florian baudry\Application Data\Toolbar4 =>PUP.Optional.SocialSkinz
C:\Documents and Settings\florian baudry\Application Data\widestream =>PUP.Optional.SPointer
C:\Documents and Settings\florian baudry\Local Settings\Application Data\AskPartnerNetwork =>Toolbar.AskBar
C:\Documents and Settings\florian baudry\Local Settings\Application Data\uTorrentBar_FR =>PUP.Optional.uTorrentBar
C:\Documents and Settings\florian baudry\Local Settings\Application Data\widestream6 Air =>PUP.Optional.SPointer
C:\WINDOWS\Installer\{F70AE624-2B41-476F-BC9C-0A7F158C3F15}\ARPPRODUCTICON.exe =>PUP.Optional.SweetIM
HKLM\Software\Classes\Installer\Products\426EA07F14B2F674CBC9A0F751C8F351 =>PUP.Optional.SweetIM
HKLM\Software\Classes\Installer\Features\426EA07F14B2F674CBC9A0F751C8F351 =>PUP.Optional.SweetIM
HKLM\Software\Classes\Installer\Products\482AA67AD25E6E74E9F48BD5FBE8533C =>PUP.Optional.IMBooster
HKLM\Software\Classes\Installer\Features\482AA67AD25E6E74E9F48BD5FBE8533C =>PUP.Optional.IMBooster
C:\WINDOWS\Installer\{A1194237-547A-461d-BD44-B97B1574A7DA}\ARPPRODUCTICON.exe =>PUP.Optional.SweetIM
HKLM\Software\Classes\Installer\Products\7324911AA745d164DB449BB751477AAD =>PUP.Optional.SweetIM
HKLM\Software\Classes\Installer\Features\7324911AA745d164DB449BB751477AAD =>PUP.Optional.SweetIM
HKLM\Software\Classes\Installer\Products\82E17E6ABC34E3244B517B0CD07709E2 =>PUP.Optional.IMBooster
HKLM\Software\Classes\Installer\Features\82E17E6ABC34E3244B517B0CD07709E2 =>PUP.Optional.IMBooster

---\\ Récapitulatif des éléments trouvés sur votre station (25) - 0s
http://www.nicolascoolman.fr/?p=681 =>PUP.Optional.Facemoods
http://www.nicolascoolman.fr/?p=345 =>PUP.Optional.OfferBox
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.uTorrentBar
http://www.nicolascoolman.fr/?p=237 =>PUP.Optional.Bandoo
http://www.nicolascoolman.fr/?p=332 =>PUP.Optional.SweetIM
http://www.nicolascoolman.fr/?p=224 =>PUP.Optional.IMBooster
http://www.nicolascoolman.fr/?p=440 =>PUP.Optional.BabSolution
http://www.nicolascoolman.fr/?p=362 =>PUP.Optional.Funmoods
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.GrandVirtual
http://www.nicolascoolman.fr/?p=4664 =>Casino.OnlineGames
http://www.nicolascoolman.fr/?p=387 =>PUP.Optional.PriceGong
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Softonic
http://www.nicolascoolman.fr/?p=210 =>PUP.Optional.Conduit
http://www.nicolascoolman.fr/?p=4664 =>Superfluous.Downloader
http://www.nicolascoolman.fr/?p=205 =>PUP.Optional.SPointer
http://www.nicolascoolman.fr/?p=4664 =>Toolbar.YahooPartner
http://www.nicolascoolman.fr/?p=180 =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/?p=4664 =>Hijacker.Browser
http://www.nicolascoolman.fr/?p=235 =>Toolbar.Ask
http://www.nicolascoolman.fr/?p=4664 =>Toolbar.AskBar
http://www.nicolascoolman.fr/?p=170 =>PUP.Optional.Babylon
http://www.nicolascoolman.fr/?p=195 =>PUP.Optional.SocialSkinz
http://www.nicolascoolman.fr/?p=308 =>PUP.Optional.SmartBar
http://www.nicolascoolman.fr/?p=273 =>Toolbar.DeltaSearch
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Boost

~ End of the scan, 90226 items in 443 seconds (1038)(0)

Publicité


Signaler le contenu de ce document

Publicité