cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2016.3.5.66 Par Nicolas Coolman (2016/03/05)
~ Démarré par EARL des savelons (Administrator) (2016/03/06 17:50:35)
~ Site: http://www.nicolascoolman.com
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\EARL des savelons\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\EARL des savelons\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)

---\\ Navigateurs Internet (3) - 0s
GCIE: Google Chrome v49.0.2623.75
MFIE: Mozilla Firefox 30.0 (x86 fr)
MSIE: Internet Explorer v11.0.9600.18204

---\\ Informations sur les produits Windows (4) - 3s
~ Windows Server License Manager Script : OK
System - VBScript Engine not found
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection (1) - 0s
Malwarebytes Anti-Malware version 2.2.0.1024

---\\ Surveillance de Logiciels (2) - 0s
Adobe Flash Player 20 ActiveX
Adobe Reader X

---\\ Informations sur le système (6) - 0s
~ Operating System: AMD64 Family 16 Model 6 Stepping 3, AuthenticAMD
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4192.732 MB (43% free)
System Restore: Activé (Enable)
System drive C: has 301 GB () free of 476 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: EARLDESSAVELONS
~ User Name: EARL des savelons
~ Logged in as Administrator

---\\ Enumération des unités disques (2) - 1s
~ Drive C: has 301 GB free of 476 GB (System)
~ Drive E: has GB free of 2 GB

---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (25) - 1s
[MD5.9D77CC4A36FEEA644D002CFB9B2D42C0] - 22/01/2016 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [3231232] =>.Microsoft Corporation
[MD5.DD81D91FF3B0763C392422865C9AC12E] - 14/07/2009 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [45568] =>.Microsoft Corporation
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - 14/07/2009 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [129024] =>.Microsoft Corporation
[MD5.CB10939701B2B334E5AC019823FD43EF] - 22/01/2016 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [2597376] =>.Microsoft Corporation
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - 17/07/2014 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [455168] =>.Microsoft Corporation
[MD5.067FA52BFB59A56110A12312EF9AF243] - 21/11/2010 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [232448] =>.Microsoft Corporation
[MD5.492D07D79E7024CA310867B526D9636D] - 03/03/2011 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [357888] =>.Microsoft Corporation
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 03/03/2011 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\Syswow64\dnsapi.dll [270336] =>.Microsoft Corporation
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - 12/04/2011 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] =>.Microsoft Corporation
[MD5.9A4A1EEE802BF2F878EE8EAB407B21B7] - 13/10/2015 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [497664] =>.Microsoft Corporation
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] =>.Microsoft Windows®
[MD5.B8BD2BB284668C84865658C77574381A] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92160] =>.Microsoft Corporation
[MD5.F036CE71586E93D94DAB220D7BDF4416] - 21/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [147456] =>.Microsoft Corporation
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - 21/11/2010 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [102400] =>.Microsoft Corporation
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - 21/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [122368] =>.Microsoft Corporation
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 14/07/2009 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] =>.Microsoft Corporation
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [116224] =>.Microsoft Corporation
[MD5.355DF71D1DD1999E8AEDF986534B233C] - 22/01/2016 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [159232] =>.Microsoft Corporation
[MD5.09594D1089C523423B32A4229263F068] - 21/11/2010 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [261632] =>.Microsoft Corporation
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - 24/01/2014 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1684928] =>.Microsoft Windows®
[MD5.0086431C29C35BE1DBC43F52CC273887] - 14/07/2009 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [97280] =>.Microsoft Corporation
[MD5.471815800AE33E6F1C32FB1B97C490CA] - 21/11/2010 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] =>.Microsoft Corporation
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] =>.Microsoft Corporation
[MD5.AA77EB517D2F07A947294F260E3ACA83] - 13/10/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [118272] =>.Microsoft Corporation
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - 21/11/2010 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [295808] =>.Microsoft Windows®

---\\ Liste des services NT non Microsoft et non désactivés (5) - 0s
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe =>.AMD
O23 - Service: AMD FUEL Service (AMD FUEL Service) . (.Advanced Micro Devices, Inc. - Service Fusion Utility.) - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe =>.Advanced Micro Devices, Inc.
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: (MBAMService) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (13) - 11s

SS - Disabl [27/07/2012] [ 63960] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SS - Demand [09/02/2016] [ 269504] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [16/11/2012] [ 238080] (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe =>.AMD
SR - Auto [16/11/2012] [ 361984] AMD FUEL Service (AMD FUEL Service) . (.Advanced Micro Devices, Inc..) - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe =>.Advanced Micro Devices, Inc.
SS - Auto [31/08/2015] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [31/08/2015] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Auto [05/10/2015] [ 1135416] (MBAMService) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
SS - Demand [06/06/2014] [ 119408] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SS - Demand [13/04/2007] [ 792112] NBService (NBService) . (.Nero AG.) - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe =>.Nero AG®
SS - Demand [01/06/2007] [ 271920] NMIndexingService (NMIndexingService) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe =>.Nero AG®
SS - Auto [09/07/2015] [ 327296] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
SS - Demand [04/02/2016] [ 835152] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe =>.Valve®

---\\ Tâches planifiées en automatique (13) - 3s
[MD5.785FD0E36CA75D90DD50042E2594BC63] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269504] =>.Adobe Systems Incorporated®
[MD5.5447AF432CDA61159ADDE218C468FFD9] [APT] [AdobeAAMUpdater-1.0-EARLdessavelons-EARL des savelons] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208] =>.Adobe Systems Incorporated®
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc®
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc®
[MD5.C1B6D7487C76DCD893EECAB6BD21DCFC] [APT] [sauvegarde] (...) -- C:\Users\EARL des savelons\Documents\sauvegarde\sauvegarde.bat [104]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] =>.Adobe Systems Incorporated®
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1066] =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1070] =>.Google Inc®
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3940] =>.Adobe Systems Incorporated®
O39 - APT: AdobeAAMUpdater-1.0-EARLdessavelons-EARL des savelons - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-EARLdessavelons-EARL des savelons [3540] =>.Adobe Systems Incorporated®
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3814] =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4066] =>.Google Inc®
O39 - APT: sauvegarde - (...) -- C:\Windows\System32\Tasks\sauvegarde [3692]

---\\ Processus lancés (19) - 1s
[MD5.D45D3540C5AE2A48C6112DF03F06F374] - (.AMD - AMD External Events Service Module.) -- C:\Windows\System32\atiesrxx.exe [238080] [PID.828] =>.AMD
[MD5.3B3440BFAD410EC1EC19FC4CB5C60BA2] - (.AMD - AMD External Events Client Module.) -- C:\Windows\System32\atieclxx.exe [514048] [PID.760] =>.AMD
[MD5.391C7D656EA83807DFB7B596E27B82CD] - (.Advanced Micro Devices, Inc. - Service Fusion Utility.) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984] [PID.1388] =>.Advanced Micro Devices, Inc.
[MD5.2BE3CA2006B9D362834EE59373E2A2C3] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [874648] [PID.2336] =>.Google Inc®
[MD5.CEA0461AAE4B8B6216F164501B1B5A10] - (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [4910912] [PID.2672] =>.DT Soft Ltd®
[MD5.2BE3CA2006B9D362834EE59373E2A2C3] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [874648] [PID.2516] =>.Google Inc®
[MD5.4B9949208944C50B1A16FD1F05ED0A04] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe [299008] [PID.2620] =>.Advanced Micro Devices Inc.
[MD5.A9950F1C63BA70151803C6F24CEE23F3] - (.ATI Technologies Inc. - Catalyst Control Center: Host application.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [299008] [PID.2608] =>.ATI Technologies Inc.
[MD5.2BE3CA2006B9D362834EE59373E2A2C3] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [874648] [PID.2936] =>.Google Inc®
[MD5.2BE3CA2006B9D362834EE59373E2A2C3] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [874648] [PID.2624] =>.Google Inc®
[MD5.E2E569950186A48C0393698BF872FDF8] - (.AMD - HydraDM.) -- C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [393216] [PID.2136] =>.AMD
[MD5.8D39A45ACF7E3771636A134094CD1E3A] - (.AMD - HydraDMH64.) -- C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe [282624] [PID.620] =>.AMD
[MD5.2BE3CA2006B9D362834EE59373E2A2C3] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [874648] [PID.2152] =>.Google Inc®
[MD5.2BE3CA2006B9D362834EE59373E2A2C3] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [874648] [PID.3512] =>.Google Inc®
[MD5.2BE3CA2006B9D362834EE59373E2A2C3] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [874648] [PID.3524] =>.Google Inc®
[MD5.2BE3CA2006B9D362834EE59373E2A2C3] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [874648] [PID.3536] =>.Google Inc®
[MD5.2BE3CA2006B9D362834EE59373E2A2C3] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [874648] [PID.3552] =>.Google Inc®
[MD5.2B1A97E5E3DED263EFCE549E81E5CA91] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\EARL des savelons\Desktop\ZHPDiag3.exe [2144768] [PID.3144] =>.Nicolas Coolman
[MD5.2BE3CA2006B9D362834EE59373E2A2C3] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [874648] [PID.2576] =>.Google Inc®

---\\ Google Chrome, Démarrage,Recherche,Extensions (8) - 0s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.google.fr
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [dlppkpafhbajpcmmoheippocdidnckmm] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [lneaknkopdijkpnocmklfnjbeapigfbh] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (10) - 1s
P2 - EXT FILE: (...) -- C:\Users\EARL des savelons\AppData\Roaming\Mozilla\Firefox\Profiles\f6651ucg.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\amazon-france.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\eBay-france.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo-france.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} =>.Mozilla
P2 - FPN: [HKLM] [@videolan.org/vlc,version=1.1.9] - (.the VideoLAN Team.) -- C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (16) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.msn.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer,Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Applications lancées au démarrage du système (16) - 1s
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated®
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_5867333194141879F96BE1C455613037] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd®
O4 - HKCU\..\Run: [HydraVisionDesktopManager] . (.AMD - HydraDM.) -- C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe =>.AMD
O4 - HKLM\..\Wow6432Node\Run: [amd_dc_opt] . (.AMD - AMD Dual-Core Optimizer.) -- C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe =>.AMD
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe =>.Advanced Micro Devices, Inc.®
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS5ServiceManager] . (.Adobe Systems Incorporated - Adobe CS5 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe =>.Adobe Systems Incorporated®
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1413363024-3111375034-1956476832-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1413363024-3111375034-1956476832-1000\..\Run: [GoogleChromeAutoLaunch_5867333194141879F96BE1C455613037] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - HKUS\S-1-5-21-1413363024-3111375034-1956476832-1000\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd®
O4 - HKUS\S-1-5-21-1413363024-3111375034-1956476832-1000\..\Run: [HydraVisionDesktopManager] . (.AMD - HydraDM.) -- C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe =>.AMD

---\\ Raccourcis Global Startup (18) - 3s
O4 - GS\Desktop [Administrateur]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\EARL des savelons\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\EARL des savelons\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrateur]: Mozilla Thunderbird.lnk . (.Mozilla Corporation - Thunderbird.) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe =>.Mozilla Corporation®
O4 - GS\sendTo [Administrateur]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\TaskBar [Administrateur]: Gmail.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [EARL des savelons]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\EARL des savelons\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [EARL des savelons]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\EARL des savelons\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [EARL des savelons]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [EARL des savelons]: Mozilla Thunderbird.lnk . (.Mozilla Corporation - Thunderbird.) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe =>.Mozilla Corporation®
O4 - GS\sendTo [EARL des savelons]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\TaskBar [EARL des savelons]: Gmail.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [EARL des savelons]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\CommonDesktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes - Malwarebytes Anti-Malware.) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe =>.Malwarebytes Corporation®
O4 - GS\Programs [Public]: Cygwin - Raccourci.lnk . (...) C:\cygwin64\Cygwin.bat
O4 - GS\Programs [Public]: emacs - Raccourci.lnk . (.Free Software Foundation - GNU Emacs: The extensible self-documenting.) C:\Program Files (x86)\emacs-24.3\bin\emacs.exe =>.Free Software Foundation
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc

---\\ Modification Domaine/Adresses DNS (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{622B754B-A50D-4E21-9A17-8DA754474833}: DhcpNameServer = 192.168.1.254

---\\ Protocole additionnel (22) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL =>.Microsoft Corporation®

---\\ Logiciels installés (43) - 9s
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>.BitTorrent Inc®
O42 - Logiciel: 7-Zip 9.20 - (...) [HKLM][64Bits] -- 7-Zip
O42 - Logiciel: Adobe Flash Player 20 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Illustrator CS5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {9B97EC91-B3FD-4BFF-88FC-5345A26AC2E7} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Photoshop Lightroom 2.7 64-bit - (.Adobe.) [HKLM][64Bits] -- {9B9DBB81-1F48-48B0-8CB3-051311DC73F7} =>.Adobe
O42 - Logiciel: Adobe Reader X (10.1.4) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AA1000000001} =>.Adobe Systems Incorporated
O42 - Logiciel: ALIENOR Version Euro - (...) [HKLM][64Bits] -- ST5UNST #1
O42 - Logiciel: AMD Fuel - (.Nom de votre société.) [HKLM][64Bits] -- {2BB46522-2267-8D7D-3152-687427785286}
O42 - Logiciel: AMD VISION Engine Control Center - (.Nom de votre société.) [HKLM][64Bits] -- {9D45CCE2-F5F7-BAD9-C06E-51FC0DD6CCA2}
O42 - Logiciel: ASA Personal Server Template - (...) [HKLM][64Bits] -- {237D303D-45EB-11D4-9D84-00C04F79D460}
O42 - Logiciel: Battle.net - (.Blizzard Entertainment.) [HKLM][64Bits] -- Battle.net =>.Blizzard Entertainment, Inc.®
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.DT Soft Ltd®
O42 - Logiciel: Dual-Core Optimizer - (.AMD.) [HKLM][64Bits] -- {9FD6F1A8-5550-46AF-8509-271DF0E768B5} =>.AMD
O42 - Logiciel: FileZilla Client 3.14.0 - (.Tim Kosse.) [HKLM][64Bits] -- FileZilla Client =>.Tim Kosse
O42 - Logiciel: GIMP 2.6.11 - (.The GIMP Team.) [HKLM][64Bits] -- WinGimp-2.0_is1 {0711D3} =>.The GIMP Team
O42 - Logiciel: GoldWave v5.65 - (...) [HKLM][64Bits] -- GoldWave v5.65
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>.Google Inc.
O42 - Logiciel: LinuxLive USB Creator - (.Thibaut Lauziere.) [HKLM][64Bits] -- LinuxLive USB Creator =>.Thibaut Lauziere
O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.0.1024 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 =>.Malwarebytes
O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM][64Bits] -- {95120000-00B9-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Money 2002 - (.Microsoft.) [HKLM][64Bits] -- {E7298FDC-1386-11D5-8D6C-0050DAD32D95} =>.Microsoft
O42 - Logiciel: Microsoft Money 2002 System Pack - (.Microsoft.) [HKLM][64Bits] -- {CF5193FB-6B37-11D5-B7D2-00AA00A204F1} =>.Microsoft
O42 - Logiciel: Mozilla Firefox 30.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 30.0 (x86 fr) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: Mozilla Thunderbird 17.0.8 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird 17.0.8 (x86 fr) =>.Mozilla Corporation®
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} =>.Microsoft Corporation
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} =>.Microsoft Corporation
O42 - Logiciel: Nero 7 Essentials - (.Nero AG.) [HKLM][64Bits] -- {66EBD70F-A42C-475F-AEDF-277378151036} =>.Nero AG
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM][64Bits] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B} =>.Nero AG
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B} =>.NVIDIA Corporation
O42 - Logiciel: OpenOffice.org 3.3 - (.OpenOffice.org.) [HKLM][64Bits] -- {05653DE1-6567-40C6-B930-39D399B64369} =>.OpenOffice.org
O42 - Logiciel: Oracle VM VirtualBox 5.0.8 - (.Oracle Corporation.) [HKLM][64Bits] -- {C1B8ECDB-4DB0-47ED-B9CE-61638F876B0F} =>.Oracle Corporation
O42 - Logiciel: PDF Settings CS5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A78FE97A-C0C8-49CE-89D0-EDD524A17392} =>.Adobe Systems Incorporated
O42 - Logiciel: Skype™ 7.14 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {6A0549A9-1B96-498C-ACBC-3943001FEB19} =>.Skype Technologies S.A.
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3} =>.Valve Corporation
O42 - Logiciel: System Requirements Lab Detection - (.Husdawg, LLC.) [HKLM][64Bits] -- {07290B19-9767-421E-B719-50F8512DDF8E} =>.Husdawg, LLC
O42 - Logiciel: Visionneuse Microsoft PowerPoint - (.Microsoft Corporation.) [HKLM][64Bits] -- {95140000-00AF-040C-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: VLC media player 1.1.9 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: VueScan x64 - (...) [HKLM][64Bits] -- VueScan x64 {233F0EC1E12F897C28D1CA013251744C}
O42 - Logiciel: WinRAR 4.10 bêta 5 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH
O42 - Logiciel: XnView 1.98.5 - (.Gougelet Pierre-e.) [HKLM][64Bits] -- XnView_is1 =>.Gougelet Pierre-e

---\\ HKCU & HKLM Software Keys (98) - 9s
HKLM\SOFTWARE\Wow6432Node\7-Zip
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies
HKLM\SOFTWARE\Wow6432Node\Ahead
HKLM\SOFTWARE\Wow6432Node\AMD
HKLM\SOFTWARE\Wow6432Node\ASProtect
HKLM\SOFTWARE\Wow6432Node\ATI
HKLM\SOFTWARE\Wow6432Node\ATI Technologies
HKLM\SOFTWARE\Wow6432Node\Audible
HKLM\SOFTWARE\Wow6432Node\bioware
HKLM\SOFTWARE\Wow6432Node\Blizzard Entertainment
HKLM\SOFTWARE\Wow6432Node\Braid
HKLM\SOFTWARE\Wow6432Node\DT Soft
HKLM\SOFTWARE\Wow6432Node\Electronic Arts
HKLM\SOFTWARE\Wow6432Node\EnTech
HKLM\SOFTWARE\Wow6432Node\FileZilla Client
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Installation de ASA 8.02
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\ISTEA
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\LinuxLive USB Creator
HKLM\SOFTWARE\Wow6432Node\LucasArts Entertainment Company LLC
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Nero
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OpenOffice.org
HKLM\SOFTWARE\Wow6432Node\Samsung
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Sybase
HKLM\SOFTWARE\Wow6432Node\TeamMeat
HKLM\SOFTWARE\Wow6432Node\Valve
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\warner bros
HKLM\SOFTWARE\Wow6432Node\Windows
HKLM\SOFTWARE\Wow6432Node\WinRAR
HKLM\SOFTWARE\Wow6432Node\Wow6432Node
HKLM\SOFTWARE\Wow6432Node\XnView
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Adobe Lightroom
HKCU\SOFTWARE\Ahead
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ATI
HKCU\SOFTWARE\Battle.net
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Blizzard Entertainment
HKCU\SOFTWARE\Brother
HKCU\SOFTWARE\Cavedog Entertainment
HKCU\SOFTWARE\Cygwin
HKCU\SOFTWARE\DSS
HKCU\SOFTWARE\DT Soft
HKCU\SOFTWARE\Emulators
HKCU\SOFTWARE\GoldWave
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\ISTEA
HKCU\SOFTWARE\JaboSoft
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\LinuxLive
HKCU\SOFTWARE\LockHunter
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\MountAndBladeWarbandKeys
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\N64 Emulation
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\OpenOffice.org
HKCU\SOFTWARE\Oracle
HKCU\SOFTWARE\QlikTech
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Quick And Easy
HKCU\SOFTWARE\Razer
HKCU\SOFTWARE\Rockstar Games
HKCU\SOFTWARE\Samsung
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Sysinternals
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\VueScan
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\Yankspankers
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft

---\\ Contenu des dossiers Programmes (207) - 28s
O43 - CFD: 23/01/2013 - [] D -- C:\Program Files (x86)\7-Zip
O43 - CFD: 31/01/2016 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 06/03/2016 - [] D -- C:\Program Files (x86)\AdwCleaner
O43 - CFD: 23/08/2013 - [] D -- C:\Program Files (x86)\AMD
O43 - CFD: 31/01/2015 - [] D -- C:\Program Files (x86)\ATI Technologies
O43 - CFD: 06/03/2016 - [] D -- C:\Program Files (x86)\Battle.net =>.Blizzard Entertainment, Inc.®
O43 - CFD: 09/06/2013 - [] D -- C:\Program Files (x86)\Brother
O43 - CFD: 05/03/2016 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 23/01/2016 - [] D -- C:\Program Files (x86)\DAEMON Tools Lite =>.DT Soft Ltd®
O43 - CFD: 08/10/2014 - [] D -- C:\Program Files (x86)\emacs
O43 - CFD: 17/03/2013 - [] D -- C:\Program Files (x86)\emacs-24.3
O43 - CFD: 17/10/2011 - [] D -- C:\Program Files (x86)\GIMP-2.0 {0711D3}
O43 - CFD: 29/09/2013 - [] D -- C:\Program Files (x86)\GoldWave
O43 - CFD: 10/03/2014 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 06/03/2016 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 11/02/2016 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 15/09/2012 - [] D -- C:\Program Files (x86)\LinuxLive USB Creator
O43 - CFD: 06/03/2016 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware =>.Malwarebytes Corporation®
O43 - CFD: 06/08/2014 - [] D -- C:\Program Files (x86)\MarkAny
O43 - CFD: 12/02/2012 - [] D -- C:\Program Files (x86)\Microsoft Money
O43 - CFD: 05/03/2016 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation®
O43 - CFD: 05/03/2016 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 05/03/2016 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 05/03/2016 - [] D -- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 05/03/2016 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 27/10/2014 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla Corporation®
O43 - CFD: 26/10/2014 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla Corporation®
O43 - CFD: 08/12/2013 - [] D -- C:\Program Files (x86)\Mozilla Thunderbird =>.Mozilla Corporation®
O43 - CFD: 05/03/2016 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 24/10/2011 - [] D -- C:\Program Files (x86)\MSECache
O43 - CFD: 19/10/2011 - [0] D -- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 06/03/2016 - [0] D -- C:\Program Files (x86)\NCSOFT
O43 - CFD: 17/10/2011 - [] D -- C:\Program Files (x86)\Nero =>.Nero AG®
O43 - CFD: 21/01/2012 - [] D -- C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 26/12/2014 - [0] D -- C:\Program Files (x86)\Samsung
O43 - CFD: 06/12/2015 - [] RD -- C:\Program Files (x86)\Skype =>.Skype Software Sarl®
O43 - CFD: 10/08/2014 - [] D -- C:\Program Files (x86)\Space Sniffer
O43 - CFD: 06/03/2016 - [] D -- C:\Program Files (x86)\Steam =>.Valve®
O43 - CFD: 20/12/2012 - [] D -- C:\Program Files (x86)\Sybase
O43 - CFD: 31/01/2015 - [] D -- C:\Program Files (x86)\SystemRequirementsLab
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 17/10/2011 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 17/07/2013 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 21/06/2015 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 08/01/2012 - [] D -- C:\Program Files (x86)\WinRAR
O43 - CFD: 22/12/2011 - [] D -- C:\Program Files (x86)\XnView
O43 - CFD: 23/01/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 17/10/2011 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 21/09/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center
O43 - CFD: 01/11/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
O43 - CFD: 23/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
O43 - CFD: 24/10/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Démarrage
O43 - CFD: 26/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
O43 - CFD: 25/10/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 17/10/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP
O43 - CFD: 05/03/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ISTEA_BxScAgro
O43 - CFD: 26/01/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lucasarts
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 06/03/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 05/03/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 10/05/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCSOFT
O43 - CFD: 17/10/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 7 Essentials
O43 - CFD: 01/09/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 21/01/2012 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.3
O43 - CFD: 31/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
O43 - CFD: 26/12/2014 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
O43 - CFD: 06/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 23/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Star Wars Racer
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 23/08/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 12/04/2011 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 17/10/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 08/01/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 08/03/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wow Cartographe
O43 - CFD: 22/12/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView
O43 - CFD: 01/02/2016 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 17/10/2011 - [] D -- C:\ProgramData\Ahead
O43 - CFD: 31/01/2016 - [0] D -- C:\ProgramData\ALM
O43 - CFD: 21/09/2013 - [] D -- C:\ProgramData\AMD
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 23/12/2011 - [] D -- C:\ProgramData\ATI
O43 - CFD: 06/03/2016 - [] D -- C:\ProgramData\Battle.net
O43 - CFD: 20/03/2015 - [] D -- C:\ProgramData\Blizzard Entertainment
O43 - CFD: 17/10/2011 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 23/10/2011 - [] D -- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 17/10/2011 - [0] SHD -- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 29/09/2013 - [] D -- C:\ProgramData\GoldWave
O43 - CFD: 05/03/2016 - [] D -- C:\ProgramData\LHService
O43 - CFD: 06/03/2016 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 17/10/2011 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 05/03/2016 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 05/03/2016 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 17/10/2011 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 27/10/2012 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 17/10/2011 - [] D -- C:\ProgramData\Nero
O43 - CFD: 25/10/2014 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 31/01/2016 - [] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 24/12/2014 - [] D -- C:\ProgramData\Samsung
O43 - CFD: 06/12/2015 - [] D -- C:\ProgramData\Skype
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 21/01/2012 - [] D -- C:\ProgramData\Sun
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 17/10/2011 - [] D -- C:\ProgramData\VirtualizedApplications
O43 - CFD: 31/01/2016 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 17/10/2011 - [] D -- C:\Program Files (x86)\Common Files\Ahead
O43 - CFD: 29/08/2014 - [] D -- C:\Program Files (x86)\Common Files\Blizzard Entertainment
O43 - CFD: 05/03/2016 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 20/12/2012 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 05/03/2016 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 21/01/2012 - [] D -- C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 06/12/2015 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 26/07/2014 - [] D -- C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 05/03/2016 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 01/09/2013 - [] D -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
O43 - CFD: 08/10/2014 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\.emacs.d
O43 - CFD: 31/01/2016 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\Adobe
O43 - CFD: 23/10/2011 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\Ahead
O43 - CFD: 22/12/2011 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\ATI
O43 - CFD: 06/03/2016 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\Battle.net
O43 - CFD: 27/05/2012 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\Braid
O43 - CFD: 17/10/2011 - [] RD -- C:\Users\EARL des savelons\AppData\Roaming\Brother
O43 - CFD: 23/10/2011 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 27/09/2015 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\FileZilla
O43 - CFD: 01/11/2015 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\gtk-2.0
O43 - CFD: 17/10/2011 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\Identities
O43 - CFD: 05/03/2016 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\LockHunter
O43 - CFD: 23/10/2011 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\Macromedia
O43 - CFD: 12/04/2011 - [0] D -- C:\Users\EARL des savelons\AppData\Roaming\Media Center Programs
O43 - CFD: 29/11/2015 - [] SD -- C:\Users\EARL des savelons\AppData\Roaming\Microsoft
O43 - CFD: 12/10/2013 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\Mozilla
O43 - CFD: 19/04/2014 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\NCSOFT
O43 - CFD: 03/04/2013 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\OpenOffice.org
O43 - CFD: 25/10/2014 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\Oracle
O43 - CFD: 27/12/2012 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\QlikTech
O43 - CFD: 26/12/2014 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\Samsung
O43 - CFD: 10/01/2016 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\Skype
O43 - CFD: 23/10/2011 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\SoftGrid Client
O43 - CFD: 25/08/2014 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\Thunderbird
O43 - CFD: 17/10/2011 - [0] D -- C:\Users\EARL des savelons\AppData\Roaming\TP
O43 - CFD: 21/09/2013 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\Trine2
O43 - CFD: 26/01/2014 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\uTorrent
O43 - CFD: 25/10/2014 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\vlc
O43 - CFD: 08/01/2012 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\WinRAR
O43 - CFD: 05/03/2016 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\XnView
O43 - CFD: 06/03/2016 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\ZHP
O43 - CFD: 31/01/2016 - [] D -- C:\Users\EARL des savelons\AppData\Local\Adobe
O43 - CFD: 17/10/2011 - [] D -- C:\Users\EARL des savelons\AppData\Local\Ahead
O43 - CFD: 22/12/2011 - [] D -- C:\Users\EARL des savelons\AppData\Local\AMD
O43 - CFD: 17/10/2011 - [0] SHD -- C:\Users\EARL des savelons\AppData\Local\Application Data
O43 - CFD: 10/03/2014 - [] D -- C:\Users\EARL des savelons\AppData\Local\Apps
O43 - CFD: 22/12/2011 - [] D -- C:\Users\EARL des savelons\AppData\Local\ATI
O43 - CFD: 06/03/2016 - [] D -- C:\Users\EARL des savelons\AppData\Local\Battle.net
O43 - CFD: 01/11/2013 - [] D -- C:\Users\EARL des savelons\AppData\Local\Blizzard
O43 - CFD: 01/11/2013 - [] D -- C:\Users\EARL des savelons\AppData\Local\Blizzard Entertainment
O43 - CFD: 28/11/2015 - [] D -- C:\Users\EARL des savelons\AppData\Local\CEF
O43 - CFD: 19/10/2015 - [] D -- C:\Users\EARL des savelons\AppData\Local\CrashDumps
O43 - CFD: 10/03/2014 - [0] D -- C:\Users\EARL des savelons\AppData\Local\Deployment
O43 - CFD: 28/02/2016 - [0] D -- C:\Users\EARL des savelons\AppData\Local\Diagnostics
O43 - CFD: 24/12/2014 - [] D -- C:\Users\EARL des savelons\AppData\Local\Downloaded Installations
O43 - CFD: 16/07/2013 - [0] D -- C:\Users\EARL des savelons\AppData\Local\ElevatedDiagnostics
O43 - CFD: 20/09/2014 - [] SHD -- C:\Users\EARL des savelons\AppData\Local\EmieSiteList
O43 - CFD: 20/09/2014 - [] SHD -- C:\Users\EARL des savelons\AppData\Local\EmieUserList
O43 - CFD: 18/09/2015 - [] D -- C:\Users\EARL des savelons\AppData\Local\Google
O43 - CFD: 05/06/2015 - [] D -- C:\Users\EARL des savelons\AppData\Local\GWX
O43 - CFD: 17/10/2011 - [0] SHD -- C:\Users\EARL des savelons\AppData\Local\Historique
O43 - CFD: 22/06/2015 - [] D -- C:\Users\EARL des savelons\AppData\Local\Microsoft
O43 - CFD: 19/12/2011 - [] D -- C:\Users\EARL des savelons\AppData\Local\Microsoft Games
O43 - CFD: 21/10/2011 - [0] D -- C:\Users\EARL des savelons\AppData\Local\Microsoft Help
O43 - CFD: 02/11/2013 - [] D -- C:\Users\EARL des savelons\AppData\Local\Mozilla
O43 - CFD: 19/04/2014 - [] D -- C:\Users\EARL des savelons\AppData\Local\NCSOFT
O43 - CFD: 25/10/2014 - [] D -- C:\Users\EARL des savelons\AppData\Local\Programs
O43 - CFD: 24/12/2014 - [0] D -- C:\Users\EARL des savelons\AppData\Local\Samsung
O43 - CFD: 12/07/2014 - [] D -- C:\Users\EARL des savelons\AppData\Local\Skype
O43 - CFD: 17/10/2011 - [] D -- C:\Users\EARL des savelons\AppData\Local\SoftGrid Client
O43 - CFD: 28/11/2015 - [] D -- C:\Users\EARL des savelons\AppData\Local\Steam
O43 - CFD: 05/07/2014 - [] D -- C:\Users\EARL des savelons\AppData\Local\SWTOR
O43 - CFD: 12/10/2013 - [] D -- C:\Users\EARL des savelons\AppData\Local\SWTORPerf
O43 - CFD: 06/03/2016 - [] D -- C:\Users\EARL des savelons\AppData\Local\Temp
O43 - CFD: 17/10/2011 - [0] SHD -- C:\Users\EARL des savelons\AppData\Local\Temporary Internet Files
O43 - CFD: 08/11/2011 - [] D -- C:\Users\EARL des savelons\AppData\Local\Thunderbird
O43 - CFD: 23/04/2014 - [] D -- C:\Users\EARL des savelons\AppData\Local\VirtualStore
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\EARL des savelons\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 11/02/2016 - [] RD -- C:\Users\EARL des savelons\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 24/10/2011 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Alienor III.2
O43 - CFD: 22/08/2015 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
O43 - CFD: 24/10/2011 - [0] D -- C:\Users\EARL des savelons\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Démarrage
O43 - CFD: 29/11/2015 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 29/09/2013 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GoldWave
O43 - CFD: 15/09/2012 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LinuxLive USB Creator
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\EARL des savelons\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 23/01/2016 - [0] D -- C:\Users\EARL des savelons\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Star Wars Racer
O43 - CFD: 11/02/2016 - [] RD -- C:\Users\EARL des savelons\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 06/03/2016 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 11/02/2012 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Annihilation
O43 - CFD: 08/01/2012 - [] D -- C:\Users\EARL des savelons\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ ShellIconOverlayIdentifiers (SIOI) (2) - 0s
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation

---\\ Enumération des clés StartupReg (5) - 0s
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O53 - SMSR:HKLM\...\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} [Key] . (.Nero AG - Nero Home.) -- C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe =>.Nero AG
O53 - SMSR:HKLM\...\startupreg\MoneyAgent [Key] . (.Microsoft Corporation - Microsoft Money Express.) -- C:\Program Files (x86)\Microsoft Money\System\Money Express.exe =>.Microsoft Corporation
O53 - SMSR:HKLM\...\startupreg\MoneyStartUp10.0 [Key] . (.Microsoft Corporation - Microsoft Money Startup.) -- C:\Program Files (x86)\Microsoft Money\System\Activation.exe =>.Microsoft Corporation
O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (...) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (.not file.)

---\\ Liste des pilotes du système (61) - 5s
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] =>.Microsoft Windows®
O58 - SDL:2010/02/18 09:18:24 A . (.Advanced Micro Devices - AMD IO Driver.) -- C:\Windows\System32\drivers\amdiox64.sys [46136] =>.Advanced Micro Devices, Inc.®
O58 - SDL:2011/03/11 07:41:12 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] =>.Microsoft Windows®
O58 - SDL:2011/03/11 07:41:12 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] =>.Microsoft Windows®
O58 - SDL:2010/01/28 15:33:38 A . (.ATI Technologies, Inc. - ATI High Definition Audio Function Driver.) -- C:\Windows\System32\drivers\AtiHdmi.sys [116736] =>.ATI Technologies, Inc.
O58 - SDL:2011/10/17 18:40:50 A . (.Advanced Micro Devices - AMD High Definition Audio Function Driver.) -- C:\Windows\System32\drivers\AtihdW76.sys [93712] =>.ATI Technologies, Inc®
O58 - SDL:2012/11/16 22:08:32 A . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\drivers\atikmdag.sys [11922944] =>.Advanced Micro Devices, Inc.
O58 - SDL:2012/11/16 20:39:12 A . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\System32\drivers\atikmpag.sys [359936] =>.Advanced Micro Devices, Inc.
O58 - SDL:2009/06/10 21:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] =>.Broadcom Corporation
O58 - SDL:2009/06/10 21:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] =>.Brother Industries, Ltd.
O58 - SDL:2009/06/10 21:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/14 02:19:07 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 21:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] =>.Broadcom Corporation
O58 - SDL:2008/11/24 03:06:26 N . (.Sonic Solutions - CDR4 64-bit CD and DVD Place Holder Driver.) -- C:\Windows\System32\drivers\cdr4_xp.sys [10224] =>.Sonic Solutions®
O58 - SDL:2008/11/24 03:06:26 N . (.Sonic Solutions - CDRAL 64-bit Place Holder Driver (see PxHel.) -- C:\Windows\System32\drivers\cdralw2k.sys [10224] =>.Sonic Solutions®
O58 - SDL:2009/07/14 02:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2016/01/23 22:00:39 A . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\System32\drivers\dtsoftbus01.sys [270912] =>.DT Soft Ltd®
O58 - SDL:2009/07/14 02:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] =>.Microsoft Windows®
O58 - SDL:2009/06/10 21:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] =>.Broadcom Corporation
O58 - SDL:2009/06/10 21:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] =>.Hauppauge Computer Works, Inc.
O58 - SDL:2010/11/21 04:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] =>.Microsoft Windows®
O58 - SDL:2011/03/11 07:41:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] =>.Microsoft Windows®
O58 - SDL:2009/04/29 15:28:30 A . (.Windows (R) Codename Longhorn DDK provider - KMWDFilter Driver from UASSOFT.COM.) -- C:\Windows\System32\drivers\KMWDFILTER.sys [30208] =>.MLK Technologies Limited®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] =>.Microsoft Windows®
O58 - SDL:2015/10/05 09:50:06 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816] =>.Malwarebytes Corporation®
O58 - SDL:2015/10/05 09:50:10 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [109272] =>.Malwarebytes Corporation®
O58 - SDL:2016/03/06 17:48:46 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [192216] =>.Malwarebytes Corporation®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] =>.Microsoft Windows®
O58 - SDL:2015/10/05 09:50:18 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [63704] =>.Malwarebytes Corporation®
O58 - SDL:2009/07/14 02:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] =>.Microsoft Windows®
O58 - SDL:2009/06/10 21:35:35 A . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\System32\drivers\nvm62x64.sys [408960] =>.NVIDIA Corporation
O58 - SDL:2011/03/11 07:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] =>.Microsoft Windows®
O58 - SDL:2011/03/11 07:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] =>.Microsoft Windows®
O58 - SDL:2006/09/30 10:36:14 A . (...) -- C:\Windows\System32\drivers\pstrip64.sys [13008] =>.EnTech Taiwan®
O58 - SDL:2008/11/24 03:06:26 N . (.Sonic Solutions - Px Engine Device Driver for 64-bit Windows.) -- C:\Windows\System32\drivers\PxHlpa64.sys [53488] =>.Sonic Solutions®
O58 - SDL:2009/07/14 02:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] =>.Microsoft Windows®
O58 - SDL:2009/06/10 21:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2009/07/14 02:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] =>.Microsoft Windows®
O58 - SDL:2015/10/15 15:49:50 A . (.Oracle Corporation - VirtualBox Support Driver.) -- C:\Windows\System32\drivers\VBoxDrv.sys [964928] =>.Oracle Corporation®
O58 - SDL:2015/10/15 15:49:20 A . (.Oracle Corporation - VirtualBox NDIS 6.0 Host-Only Network Adapt.) -- C:\Windows\System32\drivers\VBoxNetAdp6.sys [117768] =>.Oracle Corporation®
O58 - SDL:2015/10/15 15:49:20 A . (.Oracle Corporation - VirtualBox NDIS 6.0 Lightweight Filter Driv.) -- C:\Windows\System32\drivers\VBoxNetLwf.sys [146584] =>.Oracle Corporation®
O58 - SDL:2015/10/15 15:49:20 A . (.Oracle Corporation - VirtualBox USB Monitor Driver.) -- C:\Windows\System32\drivers\VBoxUSBMon.sys [138904] =>.Oracle Corporation®
O58 - SDL:2009/07/14 02:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2009/07/14 02:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] =>.Microsoft Windows®

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (2) - 20s
O61 - LFC: 2016/03/06 17:43:11 A . (..) -- C:\Users\EARL des savelons\AppData\Local\ATI\ACE\Manifest.Bin [30466]
O61 - LFC: 2016/03/02 19:53:25 A . (..) -- C:\Users\EARL des savelons\AppData\Local\Adobe\Acrobat\10.0\UserCache.bin [102516]

---\\ Associations Shell Spawning (10) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Menu de démarrage Internet (12) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation

---\\ Recherche d'infection sur les navigateurs (3) - 3s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {E1E5339C-0672-46F1-94C4-C7146C0D62D8} [DefaultScope] - (Google) - http://www.google.fr/
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/

---\\ Enumère les services démarrés par Svchost (32) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [236032] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [859648] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [680960] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [99328] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [344064] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [64512] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [359424] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [316928] =>.Microsoft Corporation
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [683520] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [2610176] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [849920] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [569344] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [30720] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70656] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [156672] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [121856] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136704] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [1110016] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [90624] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [210432] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [44544] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864] =>.Microsoft Corporation

---\\ Liste des exceptions du parefeu Windows (22) - 2s
O87 - FAEL: "TCP Query User{4F1CBC5C-2303-432B-8080-35DD96EB16D2}C:\program files (x86)\swtor\launcher.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\swtor\launcher.exe (.not file.)
O87 - FAEL: "UDP Query User{76FA3D44-90A8-4903-803C-E804B2CF61F5}C:\program files (x86)\swtor\launcher.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\swtor\launcher.exe (.not file.)
O87 - FAEL: "TCP Query User{C8BC684F-DF71-49EC-AF9B-64018D7E9C8C}C:\program files (x86)\swtor\betatest\retailclient\swtor.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\swtor\betatest\retailclient\swtor.exe (.not file.)
O87 - FAEL: "UDP Query User{F61A729A-25DE-4292-8991-D04125D59BCD}C:\program files (x86)\swtor\betatest\retailclient\swtor.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\swtor\betatest\retailclient\swtor.exe (.not file.)
O87 - FAEL: "TCP Query User{4EF4265C-A073-4210-9CDE-7D5832F8C5CE}C:\program files (x86)\star wars-the old republic\launcher.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\star wars-the old republic\launcher.exe (.not file.)
O87 - FAEL: "UDP Query User{2BB1D554-15C8-4FE1-9518-D185B81AE709}C:\program files (x86)\star wars-the old republic\launcher.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\star wars-the old republic\launcher.exe (.not file.)
O87 - FAEL: "TCP Query User{6FDBC230-19D5-4874-A7D3-9C41088A27E5}C:\cavedog\totala\totala.exe" [In-None-P6-TRUE] .(...) -- C:\cavedog\totala\totala.exe (.not file.)
O87 - FAEL: "UDP Query User{552928BD-00BB-48A1-8C28-649D42B985C9}C:\cavedog\totala\totala.exe" [In-None-P17-TRUE] .(...) -- C:\cavedog\totala\totala.exe (.not file.)
O87 - FAEL: "{42F68AED-67F8-414B-927B-C978AF402AB6}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\SteamApps\common\machinarium\machinarium.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{4FD2F7CF-D28F-4933-8E29-40F16E37AAE0}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\SteamApps\common\machinarium\machinarium.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{50B21948-03CD-48CD-AE0A-5586672995AA}C:\users\earl des savelons\desktop\quake iii arena\quake3.exe" [In-None-P6-TRUE] .(...) -- C:\users\earl des savelons\desktop\quake iii arena\quake3.exe (.not file.)
O87 - FAEL: "UDP Query User{851528D6-DC2F-47CF-97A4-414D0E0B6674}C:\users\earl des savelons\desktop\quake iii arena\quake3.exe" [In-None-P17-TRUE] .(...) -- C:\users\earl des savelons\desktop\quake iii arena\quake3.exe (.not file.)
O87 - FAEL: "TCP Query User{648B0E3C-82A2-4EA3-836D-3669798C398F}C:\diablo ii\diablo ii\game.exe" [In-None-P6-TRUE] .(...) -- C:\diablo ii\diablo ii\game.exe (.not file.)
O87 - FAEL: "UDP Query User{C66779BA-5FB2-42AE-8ABC-9D575FA74F45}C:\diablo ii\diablo ii\game.exe" [In-None-P17-TRUE] .(...) -- C:\diablo ii\diablo ii\game.exe (.not file.)
O87 - FAEL: "TCP Query User{33F5A2E4-7A7D-4E22-BFE2-A97A6B6F81A8}C:\program files (x86)\sybase\sql anywhere 8\win32\dbeng8.exe" [In-None-P6-TRUE] .(.iAnywhere Solutions, Inc. - Adaptive Server Anywhere Database Engine.) -- C:\program files (x86)\sybase\sql anywhere 8\win32\dbeng8.exe
O87 - FAEL: "UDP Query User{35B00279-5681-4E35-9201-D2D0181560F4}C:\program files (x86)\sybase\sql anywhere 8\win32\dbeng8.exe" [In-None-P17-TRUE] .(.iAnywhere Solutions, Inc. - Adaptive Server Anywhere Database Engine.) -- C:\program files (x86)\sybase\sql anywhere 8\win32\dbeng8.exe
O87 - FAEL: "TCP Query User{C4EFB744-BBED-4CD5-A6CC-44EFB7E78D11}C:\program files (x86)\sybase\sql anywhere 8\win32\dbeng8.exe" [In-None-P6-TRUE] .(.iAnywhere Solutions, Inc. - Adaptive Server Anywhere Database Engine.) -- C:\program files (x86)\sybase\sql anywhere 8\win32\dbeng8.exe
O87 - FAEL: "UDP Query User{09547ABF-CCDA-4F18-B5DF-23337101B18B}C:\program files (x86)\sybase\sql anywhere 8\win32\dbeng8.exe" [In-None-P17-TRUE] .(.iAnywhere Solutions, Inc. - Adaptive Server Anywhere Database Engine.) -- C:\program files (x86)\sybase\sql anywhere 8\win32\dbeng8.exe
O87 - FAEL: "{C54DD06C-A39B-492E-8E25-90B6276EBAD2}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\SteamApps\common\Batman Arkham City GOTY\RunLauncher.bat (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{30D7B1DF-8492-4F84-AE94-CEF4A33C02C5}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\SteamApps\common\Batman Arkham City GOTY\RunLauncher.bat (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{4E3D45A2-25A8-47ED-8D77-E975D355C216}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\SteamApps\common\Batman Arkham City GOTY\RunLauncher.bat (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "{279ACE71-8100-49C3-A458-D76D89C1716C}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\SteamApps\common\Batman Arkham City GOTY\RunLauncher.bat (.not file.) =>.Steam SteamApps Games

---\\ Scan Additionnel (1) - 0s
~ Aucun élément malicieux ou superflu trouvé.

---\\ Récapitulatif des éléments trouvés sur votre station (1) - 0s
~ Aucun élément malicieux ou superflu trouvé.

~ End of the scan, 23360 items in 00h01mn42s (743)(0)

Publicité


Signaler le contenu de ce document

Publicité