Rapport de ZHPDiag v1.3.5.92 par Nicolas Coolman, Update du 17/02/2013
Run by By.keita at 19/02/2013 21:50:05
State : Nouvelle version disponible
High Elevated Privileges : OK
UAC : Deactivate by program


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 17.0.1 v17.0.1
GCIE: Google Chrome v24.0.1312.57 (Defaut)

---\\ Windows Product Information
~ Langage: Français
Windows 7 Ultimate Edition, 32-bit  (Build 7600)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : PMJBM
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: x86 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3563 MB (66% free)
System Restore: Activé (Enable)
System drive C: has 149 GB (32%) free of 466 GB

---\\ Logged in mode
~ Computer Name: BYKEITA-PC
~ User Name: By.keita
~ All Users Names: By.keita, Administrateur, 
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\By.keita\AppData\Roaming\
~ %Desktop% : C:\Users\By.keita\Desktop\
~ %Favorites% : C:\Users\By.keita\Favorites\
~ %LocalAppData% : C:\Users\By.keita\AppData\Local\
~ %StartMenu% : C:\Users\By.keita\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 149 Go of 466 Go)
D:\ CD-ROM drive (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
~ Scan Security Center in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.15BC38A7492BEFE831966ADB477CF76F] - (.Microsoft Corporation - Explorateur Windows.) (.13/07/2009 - 20:14:20.) -- C:\Windows\Explorer.exe [2613248]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.13/07/2009 - 20:14:45.) -- C:\Windows\System32\Wininit.exe [96256]
[MD5.1D94FA7C81D2FFE494AF094619BA706F] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.09/05/2012 - 18:30:51.) -- C:\Windows\System32\wininet.dll [1127424]
[MD5.8EC6A4AB12B8F3759E21F8E3A388F2CF] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.13/07/2009 - 20:14:45.) -- C:\Windows\System32\Winlogon.exe [285696]
[MD5.58C94EAE54BF0C5E2B80B2E5E7744D4C] - (.Microsoft Corporation - Bibliothèque de licences.) (.13/07/2009 - 20:16:15.) -- C:\Windows\System32\sppcomapi.dll [193024]
[MD5.DDC040FDB01EF1712A6B13E52AFB104C] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.13/07/2009 - 18:12:38.) -- C:\Windows\system32\Drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.13/07/2009 - 20:26:15.) -- C:\Windows\system32\Drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/07/2009 - 18:11:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [70656]
[MD5.BA6E70AA0E6091BC39DE29477D866A77] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.13/07/2009 - 18:11:26.) -- C:\Windows\system32\Drivers\Cdrom.sys [108544]
[MD5.8E09E52EE2E3CEB199EF3DD99CF9E3FB] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.13/07/2009 - 18:14:17.) -- C:\Windows\system32\Drivers\DfsC.sys [78336]
[MD5.717A2207FD6F13AD3E664C7D5A43C7BF] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.13/07/2009 - 18:50:56.) -- C:\Windows\system32\Drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) (.13/07/2009 - 18:11:24.) -- C:\Windows\system32\Drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.13/07/2009 - 18:54:29.) -- C:\Windows\system32\Drivers\IpNat.sys [101888]
[MD5.F4A054BE78AF7F410129C4B64B07DC9B] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.13/07/2009 - 18:14:26.) -- C:\Windows\system32\Drivers\MRxSmb.sys [123392]
[MD5.DD52A733BF4CA5AF84562A5E2F963B91] - (.Microsoft Corporation - MBT Transport driver.) (.13/07/2009 - 18:12:21.) -- C:\Windows\system32\Drivers\netBT.sys [187904]
[MD5.3795DCD21F740EE799FB7223234215AF] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.13/07/2009 - 20:20:44.) -- C:\Windows\system32\Drivers\ntfs.sys [1210432]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) (.13/07/2009 - 18:45:35.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.13/07/2009 - 18:54:34.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [78848]
[MD5.C5FF95883FFEF704D50C40D21CFB3AB5] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.13/07/2009 - 19:02:58.) -- C:\Windows\system32\Drivers\rdpdr.sys [133120]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.13/07/2009 - 18:53:41.) -- C:\Windows\system32\Drivers\smb.sys [71168]
[MD5.CB39E896A2A83702D1737BFD402B3542] - (.Microsoft Corporation - TDI Translation Driver.) (.13/07/2009 - 18:12:11.) -- C:\Windows\system32\Drivers\tdx.sys [74240]
[MD5.58DF9D2481A56EDDE167E51B334D44FD] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.13/07/2009 - 20:19:10.) -- C:\Windows\system32\Drivers\volsnap.sys [245328]
~ Scan Generic Processes in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/164
~ Mes musiques (My Musics) : 107/4478
~ Mes Videos (My Videos) : 1/4
~ Mes Favoris (My Favorites) : 1/26
~ Mes Documents (My Documents) : 6/3820
~ Mon Bureau (My Desktop) : 7/26
~ Menu demarrer (Programs) : 1/46
~ Scan Hidden Files in 00mn 11s



---\\ Processus lancés
[MD5.7853D2AB445C10F97610B2B05FA4CF0A] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe   [512360] [PID.2248]
[MD5.61D4B89D4209666849020B4B69791301] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe   [6318696] [PID.3148]
[MD5.9D197E4D8D7ED5302609808CD21D56C0] - (.Logicool Co. Ltd. - Logicool WingMan Event Monitor.) -- C:\Program Files\Logitech\Gaming Software\LWEMon.exe   [153672] [PID.3320]
[MD5.C2C1407C129D67B412ED9CC5AF75D786] - (.www.IslamicFinder.org -  Automatic Athan (Azan)  five times a day f.) -- C:\Program Files\Athan\Athan.exe   [1208320] [PID.1612]
[MD5.083649EF692A066880C9326020915AFE] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe   [4297136] [PID.2516]
[MD5.12916E0642E92561C98B18A2A2D01B14] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe   [252848] [PID.3036]
[MD5.1E09DFA4048196C9D3CC40C485A39422] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe   [299008] [PID.3652]
[MD5.5B53F8D06792D714486218C563F86656] - (.MSI - Super-Charger.) -- C:\Program Files\MSI\Super-Charger\Super-Charger.exe   [506384] [PID.3140]
[MD5.74CDE657245C114B98816E89B8D4CCD1] - (.ATI Technologies Inc. - Catalyst Control Center: Host application.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe   [299008] [PID.2688]
[MD5.F6987FF6C6D683F79FDCE707B071A997] - (.SFX TEAM - SuperCopier 2 (explorer file copy replaceme.) -- C:\Program Files\SuperCopier2\SuperCopier2.exe   [955392] [PID.2428]
[MD5.DEED42C533A452FC79E6C5E5132BDAEB] - (.L'Aventure Multimedia - Dictionnaire MediaDICO pour Windows.) -- C:\Program Files\Micro Application\36 Dictionnaires et Recueils de Correspondance\MediaDico36.exe   [280576] [PID.3584]
[MD5.CF60E846B768BA0843AC04722785B55A] - (.Nonoh - Client to make VoIP calls..) -- C:\Program Files\Nonoh.net\Nonoh\nonoh.exe   [23008656] [PID.3616]
[MD5.2F0EAAF91FC7A5C70D1F4BE9B18A1CF5] - (.Microsoft Corporation - Pense-bête.) -- C:\Windows\System32\StikyNot.exe   [354304] [PID.1048]
[MD5.ECE9413226D1C6778A9EE4DFC199C1D4] - (.Google - Google Drive.) -- C:\Program Files\Google\Drive\googledrivesync.exe   [16328976] [PID.2892]
[MD5.8196DFA43EE314CD387C3F139A74A023] - (.Microsoft Corporation - Microsoft Office Document Cache.) -- C:\Program Files\Microsoft Office\Office14\MSOSYNC.exe   [718720] [PID.1004]
[MD5.9A8568C7642B79F43DCEB0BDF9F49050] - (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files\Druide\Antidote\Gestionnaire Antidote.exe   [542136] [PID.2520]
[MD5.497F27E279C0F921E2130BB89C1CB5CA] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe   [18705664] [PID.3196]
[MD5.D52A3D6664E8BD95F8FFC6A4C0D35669] - (.AMD - HydraDM.) -- C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe   [393216] [PID.4116]
[MD5.0654E4C1F597FC07D6FC7443D4F94840] - (.Google Inc. - Google Chrome.) -- C:\Users\By.keita\AppData\Local\Google\Chrome\Application\chrome.exe   [1248208] [PID.4220]
[MD5.5C2A59CA663F3C4AEED98C3BB7E5F050] - (.L'Aventure Multimedia - Reconnaissance Automatique de Caractères.) -- C:\Program Files\Micro Application\36 Dictionnaires et Recueils de Correspondance\RAC36.exe   [217171] [PID.4788]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] - (.Google Inc. - Programme d'installation de Google.) -- C:\Users\By.keita\AppData\Local\Google\Update\GoogleUpdate.exe   [116648] [PID.1596]
[MD5.EA5B870671079786F335AC7C10846C4F] - (.Adobe Systems Incorporated - AAM Updates Notifier Application.) -- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe   [295584] [PID.5020]
[MD5.F7DB6336DEFE82D7EAE25A6B656ED64A] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe   [5685760] [PID.1056]
~ Scan Processes Running in 00mn 01s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\By.keita\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] http://www.google.com
G0 - GCSP: Preference [User Data\Default] http://www.google.com
G1 - GCS: Preference [User Data\Default] None
~ Scan Google Browser in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
C:\Users\By.keita\AppData\Roaming\Mozilla\Firefox\Profiles\7tdx18e3.default\prefs.js
M3 - MFPP: Plugins - [By.keita] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [By.keita] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [By.keita] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [By.keita] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [By.keita] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [By.keita] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [By.keita] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
M2 - MFEP: prefs.js [By.keita - 7tdx18e3.default\50356e49370ac@50356e49370e6.info] [] DownloadnSave v1.0 (.JustPlugIt.)
M2 - MFEP: prefs.js [By.keita - 7tdx18e3.default\coralietab@mozdev.org] [] IE Tab + v2.04.20110724 (.quaful@msn.com.)
M2 - MFEP: prefs.js [By.keita - 7tdx18e3.default\foxsplitter@piro.sakura.ne.jp] [] Fox Splitter v2.04.20110724 (.YUKI "Piro" Hiroshi">.)
M2 - MFEP: prefs.js [By.keita - 7tdx18e3.default\ietab@ip.cn] [] IE Tab Plus v2.0.0.0 (.quaful@msn.com.)
M2 - MFEP: prefs.js [By.keita - 7tdx18e3.default\jid1-yZwVFzbsyfMrqQ@jetpack] [] Lavasoft Search Plugin v0.6 (.Lavasoft.)
M2 - MFEP: prefs.js [By.keita - 7tdx18e3.default\{77b819fa-95ad-4f2c-ac7c-486b356188a9}] [] IE Tab v2.0.20120203 (.Hong Jen Yee (PCMan).)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_168.dll
P2 - FPN: [HKLM] [@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf] - (.Foxit Corporation - Foxit Reader Plug-In For Firefox and Netscape.) -- C:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.13.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Windows\system32\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.13.2] - (.Oracle Corporation - Next Generation Java Plug-in 10.13.2 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\Program Files\Microsoft Office\Office14\NPAUTHZ.dll
P2 - FPN: [HKLM] [@microsoft.com/SharePoint,version=14.0] - (.Microsoft Corporation - The plug-in allows you to open and edit files using Microsoft Office a.) -- C:\Program Files\Microsoft Office\Office14\NPSPWRAP.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.5] - (.VideoLAN - VLC media player Web Plugin 2.0.2.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.5.3".) -- C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
P2 - FPN: [HKCU] [@Skype Limited.com/Facebook Video Calling Plugin] - (.Skype Limited - Facebook Video Calling Plugin.) -- C:\Users\By.keita\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
P2 - FPN: [HKCU] [@talk.google.com/GoogleTalkPlugin] - (.Google - Version 3.13.2.11592.) -- C:\Users\By.keita\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
P2 - FPN: [HKCU] [@talk.google.com/O3DPlugin] - (.Pas de propriétaire - Google Talk Plugin Video Accelerator version:0.1.44.23.) -- C:\Users\By.keita\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\By.keita\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\By.keita\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [ubisoft.com/uplaypc] - (.Ubisoft - Uplay PC Plugin.) -- C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll
~ Scan Firefox Browser in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R0 - HKCU\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main,Start Page = http://allssearch.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Ubisoft - Uplay PC Plugin.) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
~ Scan IE Browser in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\Userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 96



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office\Office14\URLREDIR.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll
~ Scan BHO in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: avast! WebRep - [HKLM]{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
~ Scan Toolbar in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe 
O4 - HKLM\..\Run: [Super-Charger] . (.MSI - Super-Charger.) -- C:\Program Files\MSI\Super-Charger\StartSuperCharger.exe 
O4 - HKLM\..\Run: [BCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files\Microsoft Office\Office14\BCSSync.exe 
O4 - HKLM\..\Run: [Start WingMan Profiler] . (.Logicool Co. Ltd. - Logicool WingMan Event Monitor.) -- C:\Program Files\Logitech\Gaming Software\LWEMon.exe 
O4 - HKLM\..\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe 
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe 
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe 
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe 
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] . (.Adobe Systems Incorporated - Adobe CS5 Service Manager.) -- C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe 
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] . (.Adobe Systems Incorporated - Adobe CS6 Service Manager.) -- C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe 
O4 - HKLM\..\Run: [SwitchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe 
O4 - HKLM\..\Run: [Athan] . (.www.IslamicFinder.org -  Automatic Athan (Azan)  five times a day f.) -- C:\Program Files\Athan\Athan.exe 
O4 - HKLM\..\Run: [bdinstaller] . (.Bitdefender - Bitdefender Setup Launcher.) -- C:\Program Files\Common Files\Bitdefender\SetupInformation\downloader\setuplauncher.exe 
O4 - HKLM\..\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe 
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe 
O4 - HKLM\..\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe 
O4 - HKLM\..\Run: [CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}] C:\Users\BYA1F7~1.KEI\AppData\Local\Temp\cisC516.exe (.not file.) 
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\By.keita\AppData\Local\Google\Update\GoogleUpdate.exe 
O4 - HKCU\..\Run: [MediaDICO36] . (.L'Aventure Multimedia - Pas de description.) -- C:\Program Files\Micro Application\36 Dictionnaires et Recueils de Correspondance\LanceMediaDICO36.exe 
O4 - HKCU\..\Run: [SuperCopier2.exe] . (.SFX TEAM - SuperCopier 2 (explorer file copy replaceme.) -- C:\Program Files\SuperCopier2\SuperCopier2.exe 
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe 
O4 - HKCU\..\Run: [Nonoh] . (.Nonoh - Client to make VoIP calls..) -- C:\Program Files\Nonoh.net\Nonoh\nonoh.exe 
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\System32\StikyNot.exe 
O4 - HKCU\..\Run: [GoogleDriveSync] . (.Google - Google Drive.) -- C:\Program Files\Google\Drive\googledrivesync.exe 
O4 - HKCU\..\Run: [OfficeSyncProcess] . (.Microsoft Corporation - Microsoft Office Document Cache.) -- C:\Program Files\Microsoft Office\Office14\MSOSYNC.exe 
O4 - HKCU\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\By.keita\AppData\Local\Facebook\Update\FacebookUpdate.exe 
O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files\Druide\Antidote\Gestionnaire Antidote.exe 
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe 
O4 - HKCU\..\Run: [HydraVisionDesktopManager] . (.AMD - HydraDM.) -- C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe 
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_B7D67F305A96766D28B517DA4C64B651] . (.Google Inc. - Google Chrome.) -- C:\Users\By.keita\AppData\Local\Google\Chrome\Application\chrome.exe 
O4 - HKUS\S-1-5-18\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files\Druide\Antidote\Gestionnaire Antidote.exe 
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe 
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe 
O4 - HKUS\S-1-5-21-2499682455-473981773-2509937517-1000\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\By.keita\AppData\Local\Google\Update\GoogleUpdate.exe 
O4 - HKUS\S-1-5-21-2499682455-473981773-2509937517-1000\..\Run: [MediaDICO36] . (.L'Aventure Multimedia - Pas de description.) -- C:\Program Files\Micro Application\36 Dictionnaires et Recueils de Correspondance\LanceMediaDICO36.exe 
O4 - HKUS\S-1-5-21-2499682455-473981773-2509937517-1000\..\Run: [SuperCopier2.exe] . (.SFX TEAM - SuperCopier 2 (explorer file copy replaceme.) -- C:\Program Files\SuperCopier2\SuperCopier2.exe 
O4 - HKUS\S-1-5-21-2499682455-473981773-2509937517-1000\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe 
O4 - HKUS\S-1-5-21-2499682455-473981773-2509937517-1000\..\Run: [Nonoh] . (.Nonoh - Client to make VoIP calls..) -- C:\Program Files\Nonoh.net\Nonoh\nonoh.exe 
O4 - HKUS\S-1-5-21-2499682455-473981773-2509937517-1000\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\System32\StikyNot.exe 
O4 - HKUS\S-1-5-21-2499682455-473981773-2509937517-1000\..\Run: [GoogleDriveSync] . (.Google - Google Drive.) -- C:\Program Files\Google\Drive\googledrivesync.exe 
O4 - HKUS\S-1-5-21-2499682455-473981773-2509937517-1000\..\Run: [OfficeSyncProcess] . (.Microsoft Corporation - Microsoft Office Document Cache.) -- C:\Program Files\Microsoft Office\Office14\MSOSYNC.exe 
O4 - HKUS\S-1-5-21-2499682455-473981773-2509937517-1000\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\By.keita\AppData\Local\Facebook\Update\FacebookUpdate.exe 
O4 - HKUS\S-1-5-21-2499682455-473981773-2509937517-1000\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files\Druide\Antidote\Gestionnaire Antidote.exe 
O4 - HKUS\S-1-5-21-2499682455-473981773-2509937517-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe 
O4 - HKUS\S-1-5-21-2499682455-473981773-2509937517-1000\..\Run: [HydraVisionDesktopManager] . (.AMD - HydraDM.) -- C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe 
O4 - HKUS\S-1-5-21-2499682455-473981773-2509937517-1000\..\Run: [GoogleChromeAutoLaunch_B7D67F305A96766D28B517DA4C64B651] . (.Google Inc. - Google Chrome.) -- C:\Users\By.keita\AppData\Local\Google\Chrome\Application\chrome.exe 
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe 
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe 
~ Scan Application in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\By.keita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\By.keita\Desktop\Adobe Dreamweaver CS5.lnk . (.Adobe Systems, Inc..)  -- C:\Program Files\Adobe\Adobe Dreamweaver CS5\Dreamweaver.exe
O4 - Global Startup: C:\Users\By.keita\Desktop\Adobe Fireworks CS6.lnk . (.Adobe Systems Incorporated.)  -- C:\Program Files\Adobe\Adobe Fireworks CS6\Fireworks.exe
O4 - Global Startup: C:\Users\By.keita\Desktop\Adobe Photoshop CS6.lnk . (.Adobe Systems, Incorporated.)  -- C:\Program Files\Adobe\Adobe Photoshop CS6\Photoshop.exe
O4 - Global Startup: C:\Users\By.keita\Desktop\bf3 - Raccourci.lnk . (.EA Digital Illusions CE AB.)  -- C:\Program Files\Battlefield 3\bf3.exe
O4 - Global Startup: C:\Users\By.keita\Desktop\CDisplay.lnk . (.David Ayton.)  -- C:\Program Files\CDisplay\CDisplay.exe
O4 - Global Startup: C:\Users\By.keita\Desktop\FC3Updater - Raccourci.lnk . (.Ubisoft.)  -- C:\Program Files\Ubisoft\FarCry 3\bin\FC3Updater.exe
O4 - Global Startup: C:\Users\By.keita\Desktop\Glary Utilities.lnk . (.Glarysoft Ltd.)  -- C:\Program Files\Glary Utilities\Integrator.exe
O4 - Global Startup: C:\Users\By.keita\Desktop\LMSOFT Web Creator Pro 5.lnk . (.LMSOFT.)  -- C:\Program Files\LMSOFT\Web Creator Pro 5\WebCreatorPro5.exe
O4 - Global Startup: C:\Users\By.keita\Desktop\LogoMaker.lnk . (.Studio V5 Corp..)  -- C:\Program Files\Studio V5\LogoMaker\LogoMaker.exe
O4 - Global Startup: C:\Users\By.keita\Desktop\pes2012 - Raccourci.lnk . (.Konami Digital Entertainment Co., Ltd..)  -- C:\Program Files\KONAMI\Pro Evolution Soccer 2012\pes2012.exe
O4 - Global Startup: C:\Users\By.keita\Desktop\Rayman Origins.lnk - Clé orpheline
O4 - Global Startup: C:\Users\By.keita\Desktop\SUPER STREET FIGHTER IV ARCADE EDITION - Raccourci.lnk - Clé orpheline
O4 - Global Startup: C:\Users\By.keita\Desktop\UpLauncher - Raccourci.lnk . (.Eden Games.)  -- C:\Program Files\Atari\TDU2\UpLauncher.exe
O4 - Global Startup: C:\Users\By.keita\Desktop\XAMPP Control Panel.lnk . (...)  -- C:\xampp\xampp-control.exe
O4 - Global Startup: C:\Users\By.keita\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\BitTorrent.lnk . (.BitTorrent, Inc..)  -- C:\Program Files\BitTorrent\BitTorrent.exe
O4 - Global Startup: C:\Users\By.keita\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Foxit Reader.lnk . (...)  -- C:\Program Files\Foxit Software\Foxit Reader\Foxit Reader.exe
O4 - Global Startup: C:\Users\By.keita\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Internet Explorer\iexplore.exe
~ Scan Global Startup in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~2\Office14\ONBttnIE.dll
O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~2\Office14\ONBTTN~1.dll
~ Scan IE Extra Buttons in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000009\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
~ Scan Winsock in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{C17DF8D1-2EB8-4BB1-B3B4-4519CCADB056}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{C17DF8D1-2EB8-4BB1-B3B4-4519CCADB056}: DhcpDomain = no-domain-set-bellcanada
O17 - HKLM\System\CS1\Services\Tcpip\..\{C17DF8D1-2EB8-4BB1-B3B4-4519CCADB056}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{C17DF8D1-2EB8-4BB1-B3B4-4519CCADB056}: DhcpDomain = no-domain-set-bellcanada
O17 - HKLM\System\CS2\Services\Tcpip\..\{C17DF8D1-2EB8-4BB1-B3B4-4519CCADB056}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{C17DF8D1-2EB8-4BB1-B3B4-4519CCADB056}: DhcpDomain = no-domain-set-bellcanada
~ Scan Domain in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service:  (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Management and Security Applica (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service:  (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service:  (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: PnkBstrA (PnkBstrA) . (...) - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Intel(R) Management and Security Applica (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
~ Scan Services in 00mn 08s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
~ Scan Desktop Component in 00mn 00s



---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2499682455-473981773-2509937517-1000Core.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2499682455-473981773-2509937517-1000UA.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GlaryInitialize.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2499682455-473981773-2509937517-1000Core.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2499682455-473981773-2509937517-1000UA.job
[MD5.00000000000000000000000000000000] [APT] [Ad-Aware Antivirus Scheduled Scan] (...) -- C:\Program Files\AD-AWA~1\AdAwareLauncher.exe (.not file.)
[MD5.563CDCFEEAEF97163E206AF71A61AA6E] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
[MD5.1315C5C5C54CE2AA37A155F97027DB59] [APT] [AdobeAAMUpdater-1.0-Bykeita-PC-By.keita] (.Adobe Systems Incorporated.) -- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
[MD5.7F19838AC317C34FCED020BE529AF71E] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
[MD5.BE66B026CF488C87B4D0EA9E616FFA4A] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-2499682455-473981773-2509937517-1000Core] (.Facebook Inc..) -- C:\Users\By.keita\AppData\Local\Facebook\Update\FacebookUpdate.exe
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-2499682455-473981773-2509937517-1000UA] (.Facebook Inc..) -- C:\Users\By.keita\AppData\Local\Facebook\Update\FacebookUpdate.exe
[MD5.095516791C381206B134525B68A480D8] [APT] [GlaryInitialize] (.Glarysoft Ltd.) -- C:\Program Files\Glary Utilities\initialize.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-2499682455-473981773-2509937517-1000Core] (.Google Inc..) -- C:\Users\By.keita\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-2499682455-473981773-2509937517-1000UA] (.Google Inc..) -- C:\Users\By.keita\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.00000000000000000000000000000000] [APT] [{07BF5B6A-5D69-432F-AA40-D46B587E7543}] (...) -- D:\Autorun.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{EBA189EA-9942-459D-8156-F0C2B2022CC3}] (...) -- D:\Autorun.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{F94A5A03-6F68-4931-85B5-EEAFCB13CAD4}] (...) -- D:\Autorun.exe (.not file.)
~ Scan Scheduled Task in 00mn 02s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn 00s



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver:  (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\Drivers\aswrdr2.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver:  (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver:  (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys
O41 - Driver:  (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (SBRE) . (. - .) - C:\Windows\system32\drivers\SBREdrv.sys (.not file.)
O41 - Driver:  (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver:  (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver:  (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM] -- {A25FF1C0-80B6-4B8B-A551-DC525697A408}
O42 - Logiciel: AMD Accelerated Video Transcoding - (.Advanced Micro Devices, Inc..) [HKLM] -- {8A6EB60F-BC70-101B-CACE-9D7794767A3C}
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM] -- {3825F8BD-F784-6FBB-A5CD-857559148007}
O42 - Logiciel: AMD Drag and Drop Transcoding - (.ATI Technologies Inc..) [HKLM] -- {B0228A47-8A56-6AA7-BE83-910BBDD19CB4}
O42 - Logiciel: AMD Media Foundation Decoders - (.Advanced Micro Devices, Inc..) [HKLM] -- {F47F1D92-F4DF-4113-80B0-B58F2EB10F28}
O42 - Logiciel: ATI AVIVO Codecs - (.ATI Technologies Inc..) [HKLM] -- {912CD7C9-BA8B-615B-4169-7D356461D6BC}
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM] -- com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM] -- {77DCDCE3-2DED-62F3-8154-05E745472D07}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {FE23D063-934D-4829-A0D8-00634CE79B4A}
O42 - Logiciel: Adobe Dreamweaver CS5 - (.Adobe Systems Incorporated.) [HKLM] -- {C79312BD-3E76-4474-A10C-1435D1856A4B}
O42 - Logiciel: Adobe Fireworks CS6 - (.Adobe Systems Incorporated.) [HKLM] -- {CA7C485C-7A89-11E1-B2C8-CD54B377BC52}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM] -- {AF37176A-78CA-545B-34EF-8B6A21514DD1}
O42 - Logiciel: Adobe Photoshop CS6 - (.Adobe Systems Incorporated.) [HKLM] -- {74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}
O42 - Logiciel: Adobe Reader 9.5.3 - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1033-7B44-A95000000001}
O42 - Logiciel: Alan Wake - (.Pas de propriétaire.) [HKLM] -- Alan Wake_is1
O42 - Logiciel: Angry Birds Space - (.Rovio.) [HKLM] -- {3F2A323E-60C4-41E8-8CCB-9715D1D750C3}
O42 - Logiciel: Antidote RX v7 - (.Druide informatique inc..) [HKLM] -- {A474EA56-5DBD-4181-8230-806A4762EA7F}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {EB879750-CCBD-4013-BFD5-0294D4DA5BD0}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {EFC04D3F-A152-47E7-8517-EE0F6201AFEF}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: ArcGIS Desktop 10 - (.Environmental Systems Research Institute, Inc..) [HKLM] -- ArcGIS Desktop 10
O42 - Logiciel: ArcGIS Desktop 10 French Supplement - (.Environmental Systems Research Institute, Inc..) [HKLM] -- ArcGIS Desktop 10 French Supplement
O42 - Logiciel: ArcGIS Desktop 10 French Supplement - (.Environmental Systems Research Institute, Inc..) [HKLM] -- {1E3BD9C6-538D-411D-8EA7-9E7073A6AB3B}
O42 - Logiciel: Astroburn Lite - (.DT Soft Ltd.) [HKLM] -- Astroburn Lite
O42 - Logiciel: Athan Basic 4.3 - (.Pas de propriétaire.) [HKLM] -- Athan
O42 - Logiciel: Battlefield 3™ - (.Electronic Arts.) [HKLM] -- {76285C16-411A-488A-BCE3-C83CB933D8CF}
O42 - Logiciel: BitTorrent - (.BitTorrent Inc..) [HKLM] -- BitTorrent
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {79155F2B-9895-49D7-8612-D92580E0DE5B}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: CDisplay 1.8 - (.dvd8n.) [HKLM] -- CDisplay_is1
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM] -- {E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU] -- Dropbox
O42 - Logiciel: Fable III - (.Microsoft Game Studios.) [HKLM] -- {4D53090A-CE35-42BD-B377-831000018301}
O42 - Logiciel: Facebook Video Calling 1.2.0.287 - (.Skype Limited.) [HKLM] -- {B92C5909-1D37-4C51-8397-A28BB28E5DC3}
O42 - Logiciel: Far Cry 3 - (.Ubisoft.) [HKLM] -- {E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}
O42 - Logiciel: Foxit Reader - (.Foxit Corporation.) [HKLM] -- Foxit Reader_is1
O42 - Logiciel: Free Video to MP3 Converter version 5.0.15.706 - (.DVDVideoSoft Ltd..) [HKLM] -- Free Video to MP3 Converter_is1
O42 - Logiciel: Free YouTube Download version 3.0.22.221 - (.DVDVideoSoft Ltd..) [HKLM] -- Free YouTube Download_is1
O42 - Logiciel: French App Name - (.Adobe Systems Incorporated.) [HKLM] -- com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: French App Name - (.Adobe Systems Incorporated.) [HKLM] -- {DE3A9DC5-9A5D-6485-9662-347162C7E4CA}
O42 - Logiciel: Glary Utilities 2.53.0.1726 - (.Glarysoft Ltd.) [HKLM] -- Glary Utilities_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome
O42 - Logiciel: Google Drive - (.Google, Inc..) [HKLM] -- {7A21C722-F259-4976-B7AA-6658E5FDEDAF}
O42 - Logiciel: Google Earth Plug-in - (.Google.) [HKLM] -- {33286280-8617-11E1-8FF6-B8AC6F97B88E}
O42 - Logiciel: Google Talk Plugin - (.Google.) [HKLM] -- {D952C4F9-2488-3723-84BE-1BFA907DCAC9}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Grand Theft Auto IV - (.Rockstar Games Inc..) [HKLM] -- {5454083B-1308-4485-BF17-1110000B8301}
O42 - Logiciel: HydraVision - (.ATI Technologies Inc..) [HKLM] -- {1C284C44-B8E0-2ED3-8154-52133AAFF538}
O42 - Logiciel: Incomedia WebSite X5 v9 - Free - (.Incomedia s.r.l..) [HKLM] -- {9570A579-88E2-4B73-A28F-3ED8FCB8C0D8}_is1
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Java 7 Update 13 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217013FF}
O42 - Logiciel: JavaFX 2.1.1 - (.Oracle Corporation.) [HKLM] -- {1111706F-666A-4037-7777-211328764D10}
O42 - Logiciel: LMSOFT Web Creator Pro 5 - (.Pas de propriétaire.) [HKLM] -- Web Creator Pro 5
O42 - Logiciel: Logiciel d'archivage WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Logitech Gaming Software 5.10 - (.Logitech.) [HKLM] -- {60D32CDC-E3BE-4578-BA10-29322307CDDC}
O42 - Logiciel: LogoMaker 3.0 - (.Studio V5.) [HKLM] -- LogoMaker_is1
O42 - Logiciel: Malwarebytes Anti-Malware version 1.70.0.1100 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Micro Application - 36 Dictionnaires et Recueils de Correspondance - (.Pas de propriétaire.) [HKLM] -- {B410328C-0E8C-4DD2-9DB4-DE7766D0DFE0}
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM] -- {832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}
O42 - Logiciel: Microsoft Games for Windows Marketplace - (.Microsoft Corporation.) [HKLM] -- {4CB0307C-565E-4441-86BE-0DF2E4FB828C}
O42 - Logiciel: Mozilla Firefox 17.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 17.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService
O42 - Logiciel: Nonoh - (.Finarea S.A. Switzerland.) [HKLM] -- Nonoh_is1
O42 - Logiciel: Norton Internet Security - (.Symantec Corporation.) [HKLM] -- {7B15D70E-9449-4CFB-B9BC-798465B2BD5C}
O42 - Logiciel: Notepad++ - (.Pas de propriétaire.) [HKLM] -- Notepad++
O42 - Logiciel: PDF Settings CS6 - (.Adobe Systems Incorporated.) [HKLM] -- {BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}
O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}
O42 - Logiciel: Pro Evolution Soccer 2012 - (.KONAMI.) [HKLM] -- {E737A098-F161-4B6F-AF22-86AAE34F6FBD}
O42 - Logiciel: Rayman Origins - (.Ubisoft.) [HKLM] -- {DE491AB9-1D47-4FED-A8F5-4D4325B2EB4B}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: SIGIS™ pour Windows© 95/98/NT/2000/XP/Vista/7 version 4.0 Gratu - (.Pas de propriétaire.) [HKLM] -- SIGIS™ pour Windows© 95/98/NT/2000/XP/Vista/7_is1
O42 - Logiciel: Screenseven! GAME CENTER - (.Pas de propriétaire.) [HKLM] -- FranceGPlayer
O42 - Logiciel: Skype™ 6.1 - (.Skype Technologies S.A..) [HKLM] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: Street Fighter X Tekken - (.CAPCOM U.S.A., INC.) [HKLM] -- {43430FA5-AF68-4A2D-A7D4-891000008200}
O42 - Logiciel: Super Street Fighter IV: Arcade Edition - (.CAPCOM U.S.A., INC.) [HKLM] -- GFWL_{43430FA0-49F0-4B13-B4C5-611000008100}
O42 - Logiciel: Super Street Fighter IV: Arcade Edition - (.CAPCOM U.S.A., INC.) [HKLM] -- {43430FA0-49F0-4B13-B4C5-611000008100}
O42 - Logiciel: Super-Charger - (.MSI.) [HKLM] -- {7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1
O42 - Logiciel: SuperCopier2 - (.Pas de propriétaire.) [HKLM] -- SuperCopier2
O42 - Logiciel: Test Drive Unlimited 2 - (.Atari.) [HKLM] -- Test Drive Unlimited 2_is1
O42 - Logiciel: Uplay - (.Ubisoft.) [HKLM] -- Uplay
O42 - Logiciel: VLC media player 2.0.5 - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: Winki - (.MSI.) [HKLM] -- {81CF5153-38CF-41e2-AC3C-3D477C987D96}_is1
O42 - Logiciel: XAMPP 1.8.0 - (.Pas de propriétaire.) [HKLM] -- xampp
O42 - Logiciel: ZTE Driver pour mobile - (.ZTE Corporation.) [HKLM] -- {D2D77DC2-8299-11D1-8949-444553540000}_is1
O42 - Logiciel: avast! Free Antivirus v7.0.1474.0 - (.AVAST Software.) [HKLM] -- avast

---\\ HKCU & HKLM Software Keys
[HKCU\Software\AMD]
[HKCU\Software\ATI]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Avast Software]
[HKCU\Software\BitTorrent]
[HKCU\Software\Bitdefender]
[HKCU\Software\CDisplay]
[HKCU\Software\Caphyon]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Convar]
[HKCU\Software\DSS]
[HKCU\Software\DT Soft]
[HKCU\Software\DVDVideoSoft]
[HKCU\Software\Dashlane]
[HKCU\Software\Druide informatique inc.]
[HKCU\Software\ESRI]
[HKCU\Software\Facebook]
[HKCU\Software\Foxit Software]
[HKCU\Software\GlarySoft]
[HKCU\Software\Google]
[HKCU\Software\HookNetwork]
[HKCU\Software\IM Providers]
[HKCU\Software\Image-Line]
[HKCU\Software\JavaSoft]
[HKCU\Software\LAventure]
[HKCU\Software\LMSOFT]
[HKCU\Software\Licenses]
[HKCU\Software\LogMeIn]
[HKCU\Software\Logitech]
[HKCU\Software\LtdStrInfo]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\NCH Software]
[HKCU\Software\NCH Swift Sound]
[HKCU\Software\Netscape]
[HKCU\Software\Nonoh]
[HKCU\Software\Norton]
[HKCU\Software\ODBC]
[HKCU\Software\OXXOgames]
[HKCU\Software\PDFCreator]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\Rockstar Games]
[HKCU\Software\SFX TEAM]
[HKCU\Software\SecuROM]
[HKCU\Software\SkypeRS]
[HKCU\Software\Skype]
[HKCU\Software\SoftVoice]
[HKCU\Software\StudioV5]
[HKCU\Software\SubSystems]
[HKCU\Software\Summitsoft]
[HKCU\Software\Symantec]
[HKCU\Software\Trolltech]
[HKCU\Software\Ubisoft]
[HKCU\Software\Usbfix]
[HKCU\Software\Valve]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wintertree]
[HKCU\Software\ZebHelpProcess Helper]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\AVAST Software]
[HKLM\Software\Adobe]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Atari]
[HKLM\Software\Belarc]
[HKLM\Software\Bunndle]
[HKLM\Software\CAPCOM]
[HKLM\Software\Caphyon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\DT Soft]
[HKLM\Software\DTS]
[HKLM\Software\DVDVideoSoft]
[HKLM\Software\Dolby]
[HKLM\Software\Druide informatique inc.]
[HKLM\Software\EA Games]
[HKLM\Software\ESRI]
[HKLM\Software\Electronic Arts]
[HKLM\Software\Even Balance]
[HKLM\Software\Foxit Software]
[HKLM\Software\GlarySoft]
[HKLM\Software\Google]
[HKLM\Software\IM Providers]
[HKLM\Software\Image-Line]
[HKLM\Software\Incomedia]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\KONAMI]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\LMSOFT]
[HKLM\Software\Logitech]
[HKLM\Software\MSI]
[HKLM\Software\Macromedia]
[HKLM\Software\Macrovision]
[HKLM\Software\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\Oracle]
[HKLM\Software\Outsim]
[HKLM\Software\PDFCreator]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Propellerhead Software]
[HKLM\Software\Python]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Sigisco]
[HKLM\Software\Skype]
[HKLM\Software\SoftVoice]
[HKLM\Software\SonicFocus]
[HKLM\Software\Sonic]
[HKLM\Software\Symantec]
[HKLM\Software\Systweak]
[HKLM\Software\UBISOFT]
[HKLM\Software\VST]
[HKLM\Software\Vantage Software Technologies]
[HKLM\Software\VideoLAN]
[HKLM\Software\Volatile]
[HKLM\Software\WinRAR]
[HKLM\Software\Wow6432Node]
[HKLM\Software\mozilla.org]
[HKLM\Software\oxxogames]
~ Scan Softwares in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 10/02/2013 - 18:50:16 - [0,014] ----D C:\Program Files\A-FF Find and Mount
O43 - CFD: 04/11/2012 - 11:28:06 - [618,665] ----D C:\Program Files\Ad-Aware Antivirus
O43 - CFD: 19/07/2012 - 22:28:15 - [1488,568] ----D C:\Program Files\Adobe
O43 - CFD: 15/07/2012 - 19:43:45 - [2,665] ----D C:\Program Files\Adobe Media Player
O43 - CFD: 06/02/2013 - 00:13:01 - [1,711] ----D C:\Program Files\AMD APP
O43 - CFD: 06/02/2013 - 00:13:56 - [0,397] ----D C:\Program Files\AMD AVT
O43 - CFD: 29/05/2012 - 16:46:40 - [2,316] ----D C:\Program Files\Apple Software Update
O43 - CFD: 10/05/2012 - 00:07:49 - [-1906,237] ----D C:\Program Files\ArcGIS
O43 - CFD: 26/10/2012 - 15:33:17 - [12,893] ----D C:\Program Files\Astroburn Lite
O43 - CFD: 23/05/2012 - 12:58:56 - [-1841,870] ----D C:\Program Files\Atari
O43 - CFD: 20/11/2012 - 11:37:19 - [18,843] ----D C:\Program Files\Athan
O43 - CFD: 09/05/2012 - 13:17:46 - [20,405] ----D C:\Program Files\ATI
O43 - CFD: 06/02/2013 - 00:10:26 - [65,298] ----D C:\Program Files\ATI Technologies
O43 - CFD: 30/10/2012 - 13:09:25 - [385,510] ----D C:\Program Files\AVAST Software
O43 - CFD: 12/05/2012 - 13:06:03 - [-255,437] ----D C:\Program Files\Battlefield 3
O43 - CFD: 02/06/2012 - 17:11:42 - [6,085] ----D C:\Program Files\BitTorrent
O43 - CFD: 29/05/2012 - 16:46:11 - [0,602] ----D C:\Program Files\Bonjour
O43 - CFD: 02/06/2012 - 13:06:39 - [1789,007] ----D C:\Program Files\Capcom
O43 - CFD: 30/09/2012 - 02:40:58 - [4,795] ----D C:\Program Files\CCleaner
O43 - CFD: 15/02/2013 - 14:09:16 - [1,953] ----D C:\Program Files\CDisplay
O43 - CFD: 04/07/2012 - 01:00:34 - [0,055] ----D C:\Program Files\Chrome
O43 - CFD: 18/02/2013 - 21:03:07 - [1380,536] ----D C:\Program Files\Common Files
O43 - CFD: 18/02/2013 - 15:25:19 - [0] ----D C:\Program Files\Comodo
O43 - CFD: 10/02/2013 - 18:50:44 - [0] ----D C:\Program Files\Convar
O43 - CFD: 09/05/2012 - 22:53:27 - [24,667] ----D C:\Program Files\DAEMON Tools Lite
O43 - CFD: 21/11/2012 - 02:39:21 - [149,919] ----D C:\Program Files\Druide
O43 - CFD: 14/07/2009 - 04:01:30 - [79,371] ----D C:\Program Files\DVD Maker
O43 - CFD: 20/07/2012 - 14:50:27 - [28,868] ----D C:\Program Files\DVDVideoSoft
O43 - CFD: 09/05/2012 - 12:49:18 - [0] ----D C:\Program Files\Fichiers communs
O43 - CFD: 29/05/2012 - 05:12:29 - [42,872] ----D C:\Program Files\Foxit Software
O43 - CFD: 05/02/2013 - 22:56:58 - [18,812] ----D C:\Program Files\Glary Utilities
O43 - CFD: 16/09/2012 - 02:00:36 - [86,057] ----D C:\Program Files\Google
O43 - CFD: 03/07/2012 - 20:35:24 - [0,150] ----D C:\Program Files\GreenTree Applications
O43 - CFD: 09/12/2012 - 10:52:16 - [7,970] ----D C:\Program Files\Image-Line
O43 - CFD: 31/12/2012 - 00:06:32 - [77,181] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 09/05/2012 - 13:03:17 - [8,854] ----D C:\Program Files\Intel
O43 - CFD: 09/05/2012 - 18:35:57 - [4,933] ----D C:\Program Files\Internet Explorer
O43 - CFD: 03/02/2013 - 10:08:57 - [121,959] ----D C:\Program Files\Java
O43 - CFD: 10/02/2013 - 17:39:09 - [-480,688] ----D C:\Program Files\KONAMI
O43 - CFD: 02/01/2013 - 18:16:26 - [6,577] ----D C:\Program Files\Lavalys
O43 - CFD: 15/06/2012 - 22:28:58 - [260,458] ----D C:\Program Files\LMSOFT
O43 - CFD: 15/05/2012 - 10:21:08 - [39,143] ----D C:\Program Files\Logitech
O43 - CFD: 18/02/2013 - 13:44:45 - [12,156] ----D C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 09/05/2012 - 17:07:23 - [246,034] ----D C:\Program Files\Micro Application
O43 - CFD: 09/05/2012 - 22:56:35 - [38,002] ----D C:\Program Files\Microsoft Analysis Services
O43 - CFD: 06/07/2012 - 23:14:34 - [140,965] ----D C:\Program Files\Microsoft Games
O43 - CFD: 29/07/2012 - 10:17:59 - [8,929] ----D C:\Program Files\Microsoft Games for Windows - LIVE
O43 - CFD: 09/05/2012 - 22:58:10 - [950,623] ----D C:\Program Files\Microsoft Office
O43 - CFD: 10/05/2012 - 00:11:34 - [0,054] ----D C:\Program Files\Microsoft SQL Server
O43 - CFD: 09/05/2012 - 22:58:09 - [1,722] ----D C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 09/05/2012 - 22:58:09 - [0,757] ----D C:\Program Files\Microsoft Sync Framework
O43 - CFD: 09/05/2012 - 22:58:26 - [0,312] ----D C:\Program Files\Microsoft Synchronization Services
O43 - CFD: 09/05/2012 - 22:57:26 - [1,314] ----D C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 27/10/2012 - 10:56:12 - [7,789] ----D C:\Program Files\Microsoft.NET
O43 - CFD: 18/02/2013 - 14:44:00 - [87,250] ----D C:\Program Files\Mozilla Firefox
O43 - CFD: 05/01/2013 - 10:49:46 - [0,212] ----D C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 06/06/2012 - 23:28:50 - [0,025] ----D C:\Program Files\MSBuild
O43 - CFD: 09/05/2012 - 13:03:33 - [15,074] ----D C:\Program Files\MSI
O43 - CFD: 18/06/2012 - 05:25:26 - [42,699] ----D C:\Program Files\Nonoh.net
O43 - CFD: 15/07/2012 - 22:05:05 - [11,808] ----D C:\Program Files\Notepad++
O43 - CFD: 03/07/2012 - 20:35:33 - [33,205] ----D C:\Program Files\Oracle
O43 - CFD: 09/12/2012 - 10:51:59 - [3,453] ----D C:\Program Files\Outsim
O43 - CFD: 07/11/2012 - 03:31:29 - [32,619] ----D C:\Program Files\PDFCreator
O43 - CFD: 09/05/2012 - 13:03:11 - [36,376] ----D C:\Program Files\Realtek
O43 - CFD: 13/07/2009 - 23:52:30 - [36,805] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 03/06/2012 - 01:58:04 - [614,512] ----D C:\Program Files\Remedy Entertainment
O43 - CFD: 05/06/2012 - 08:41:06 - [35,145] ----D C:\Program Files\Rovio
O43 - CFD: 01/01/2013 - 15:46:42 - [4,793] ----D C:\Program Files\SIGISCO
O43 - CFD: 27/01/2013 - 14:31:15 - [18,091] R---D C:\Program Files\Skype
O43 - CFD: 10/02/2013 - 20:03:28 - [323,554] ----D C:\Program Files\Studio V5
O43 - CFD: 10/02/2013 - 20:21:54 - [1067,478] ----D C:\Program Files\Summitsoft
O43 - CFD: 09/05/2012 - 17:14:35 - [1,169] ----D C:\Program Files\SuperCopier2
O43 - CFD: 09/05/2012 - 13:02:14 - [0] --H-D C:\Program Files\Temp
O43 - CFD: 28/05/2012 - 00:22:30 - [83,428] ----D C:\Program Files\THQ
O43 - CFD: 31/12/2012 - 00:17:39 - [426,012] ----D C:\Program Files\Ubisoft
O43 - CFD: 13/07/2009 - 23:53:23 - [0] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 06/07/2012 - 23:05:48 - [94,578] ----D C:\Program Files\VideoLAN
O43 - CFD: 10/02/2013 - 18:48:32 - [0] ----D C:\Program Files\VstPlugins
O43 - CFD: 25/12/2012 - 10:00:42 - [57,691] ----D C:\Program Files\WebSite X5 v9 - Free
O43 - CFD: 14/07/2009 - 03:39:39 - [2,909] ----D C:\Program Files\Windows Defender
O43 - CFD: 14/07/2009 - 04:01:29 - [6,689] ----D C:\Program Files\Windows Journal
O43 - CFD: 14/07/2009 - 03:39:39 - [5,895] ----D C:\Program Files\Windows Mail
O43 - CFD: 14/07/2009 - 03:39:39 - [6,302] ----D C:\Program Files\Windows Media Player
O43 - CFD: 09/05/2012 - 12:49:18 - [11,630] ----D C:\Program Files\Windows NT
O43 - CFD: 14/07/2009 - 03:39:39 - [4,213] ----D C:\Program Files\Windows Photo Viewer
O43 - CFD: 13/07/2009 - 23:52:32 - [0,181] ----D C:\Program Files\Windows Portable Devices
O43 - CFD: 14/07/2009 - 03:39:39 - [6,558] ----D C:\Program Files\Windows Sidebar
O43 - CFD: 12/10/2012 - 12:38:50 - [4,875] ----D C:\Program Files\WinRAR
O43 - CFD: 19/02/2013 - 21:50:22 - [15,131] ----D C:\Program Files\ZHPDiag
O43 - CFD: 18/05/2012 - 08:47:40 - [8,086] ----D C:\Program Files\ZTE Handset USB Driver
O43 - CFD: 19/07/2012 - 22:27:32 - [720,701] ----D C:\Program Files\Common Files\Adobe
O43 - CFD: 19/07/2012 - 13:43:25 - [37,554] ----D C:\Program Files\Common Files\Adobe AIR
O43 - CFD: 10/05/2012 - 06:37:38 - [8,219] ----D C:\Program Files\Common Files\AnswerWorks 4.0
O43 - CFD: 31/12/2012 - 11:53:27 - [84,043] ----D C:\Program Files\Common Files\Apple
O43 - CFD: 10/05/2012 - 00:50:29 - [99,039] ----D C:\Program Files\Common Files\ArcGIS
O43 - CFD: 09/05/2012 - 13:18:23 - [2,972] ----D C:\Program Files\Common Files\ATI Technologies
O43 - CFD: 25/10/2012 - 04:49:10 - [5,041] ----D C:\Program Files\Common Files\Bitdefender
O43 - CFD: 10/05/2012 - 00:48:22 - [14,559] ----D C:\Program Files\Common Files\Data Dynamics
O43 - CFD: 06/06/2012 - 23:28:12 - [0,095] ----D C:\Program Files\Common Files\DESIGNER
O43 - CFD: 20/07/2012 - 14:50:29 - [86,203] ----D C:\Program Files\Common Files\DVDVideoSoft
O43 - CFD: 12/05/2012 - 13:07:07 - [0,957] --H-D C:\Program Files\Common Files\EAInstaller
O43 - CFD: 09/05/2012 - 13:01:25 - [3,452] ----D C:\Program Files\Common Files\InstallShield
O43 - CFD: 12/10/2012 - 15:00:25 - [1,184] ----D C:\Program Files\Common Files\Java
O43 - CFD: 15/05/2012 - 10:21:19 - [0,995] ----D C:\Program Files\Common Files\Logitech
O43 - CFD: 10/05/2012 - 01:04:08 - [0,827] ----D C:\Program Files\Common Files\Macrovision Shared
O43 - CFD: 01/11/2012 - 14:33:58 - [241,845] ----D C:\Program Files\Common Files\microsoft shared
O43 - CFD: 09/05/2012 - 13:03:20 - [0,155] ----D C:\Program Files\Common Files\postureAgent
O43 - CFD: 13/07/2009 - 21:37:05 - [0,003] ----D C:\Program Files\Common Files\Services
O43 - CFD: 27/01/2013 - 14:31:15 - [2,056] ----D C:\Program Files\Common Files\Skype
O43 - CFD: 13/07/2009 - 21:37:05 - [39,200] ----D C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 06/06/2012 - 23:24:59 - [10,222] ----D C:\Program Files\Common Files\System
O43 - CFD: 10/05/2012 - 00:48:13 - [21,216] ----D C:\Program Files\Common Files\Tom Sawyer Software
O43 - CFD: 01/11/2012 - 16:19:52 - [0,000] ----D C:\ProgramData\Ad-Aware Antivirus
O43 - CFD: 17/02/2013 - 21:49:10 - [531,293] ----D C:\ProgramData\Adobe
O43 - CFD: 06/02/2013 - 00:13:57 - [0,810] ----D C:\ProgramData\AMD
O43 - CFD: 29/05/2012 - 16:46:32 - [33,049] ----D C:\ProgramData\Apple
O43 - CFD: 29/05/2012 - 16:47:22 - [0,001] ----D C:\ProgramData\Apple Computer
O43 - CFD: 13/07/2009 - 23:53:55 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 26/10/2012 - 15:33:16 - [0,001] ----D C:\ProgramData\Astroburn Lite
O43 - CFD: 06/02/2013 - 00:16:14 - [0,000] ----D C:\ProgramData\ATI
O43 - CFD: 30/10/2012 - 13:09:25 - [40,927] ----D C:\ProgramData\AVAST Software
O43 - CFD: 09/05/2012 - 12:49:18 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 07/10/2012 - 11:22:15 - [0] ----D C:\ProgramData\Caphyon
O43 - CFD: 18/02/2013 - 15:31:22 - [40,037] ----D C:\ProgramData\COMODO
O43 - CFD: 10/02/2013 - 12:12:21 - [0] ----D C:\ProgramData\Comodo Downloader
O43 - CFD: 09/05/2012 - 22:52:57 - [0,001] ----D C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 13/07/2009 - 23:53:55 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 13/07/2009 - 23:53:55 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 23/05/2012 - 17:31:44 - [0,106] -SH-D C:\ProgramData\DSS
O43 - CFD: 11/05/2012 - 17:19:22 - [0] ----D C:\ProgramData\EA Core
O43 - CFD: 11/05/2012 - 17:19:22 - [0,001] ----D C:\ProgramData\Electronic Arts
O43 - CFD: 23/10/2012 - 17:19:06 - [0,000] ----D C:\ProgramData\ESRI
O43 - CFD: 09/05/2012 - 12:49:18 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 13/07/2009 - 23:53:55 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 10/05/2012 - 00:22:06 - [0,001] ----D C:\ProgramData\FLEXnet
O43 - CFD: 05/02/2013 - 14:56:30 - [154,500] ----D C:\ProgramData\KONAMI
O43 - CFD: 01/11/2012 - 14:33:59 - [0,665] ----D C:\ProgramData\Lavasoft
O43 - CFD: 10/05/2012 - 00:07:50 - [0,008] ----D C:\ProgramData\Macrovision
O43 - CFD: 18/02/2013 - 13:44:43 - [5,762] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 09/05/2012 - 12:49:18 - [0] --H-D C:\ProgramData\Menu Démarrer
O43 - CFD: 17/05/2012 - 23:55:57 - [275,930] -S--D C:\ProgramData\Microsoft
O43 - CFD: 06/06/2012 - 23:30:34 - [0,061] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 09/05/2012 - 12:49:18 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 15/07/2012 - 20:41:28 - [0,025] ----D C:\ProgramData\Mozilla
O43 - CFD: 08/02/2013 - 21:29:40 - [0] ----D C:\ProgramData\NCH Swift Sound
O43 - CFD: 30/10/2012 - 13:05:33 - [0,043] ---AD C:\ProgramData\Norton
O43 - CFD: 08/07/2012 - 15:51:34 - [16,809] ---AD C:\ProgramData\NortonInstaller
O43 - CFD: 18/02/2013 - 14:50:50 - [0,115] ----D C:\ProgramData\OptimizerPro1
O43 - CFD: 31/12/2012 - 00:24:52 - [0,099] ----D C:\ProgramData\Orbit
O43 - CFD: 11/05/2012 - 17:29:24 - [0] ----D C:\ProgramData\Origin
O43 - CFD: 19/07/2012 - 22:28:50 - [0,006] ----D C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 04/07/2012 - 01:01:56 - [0,000] ----D C:\ProgramData\Registry Helper
O43 - CFD: 29/07/2012 - 00:45:14 - [0,278] -SH-D C:\ProgramData\SecuROM
O43 - CFD: 27/01/2013 - 14:31:21 - [58,304] ----D C:\ProgramData\Skype
O43 - CFD: 11/05/2012 - 00:11:32 - [0] ----D C:\ProgramData\Solidshield
O43 - CFD: 13/07/2009 - 23:53:55 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 10/02/2013 - 20:31:18 - [0] ----D C:\ProgramData\Summitsoft
O43 - CFD: 07/10/2012 - 10:20:54 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 09/05/2012 - 13:09:06 - [0] ----D C:\ProgramData\Symantec
O43 - CFD: 13/07/2009 - 23:53:55 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 03/07/2012 - 20:35:35 - [0,074] ----D C:\ProgramData\YTD Video Downloader
O43 - CFD: 29/05/2012 - 16:47:49 - [0,004] ----D C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
O43 - CFD: 07/10/2012 - 17:17:06 - [0,234] ----D C:\Users\By.keita\AppData\Roaming\.spotflux
O43 - CFD: 03/11/2012 - 22:41:47 - [0,007] ----D C:\Users\By.keita\AppData\Roaming\Ad-Aware Antivirus
O43 - CFD: 19/07/2012 - 22:31:04 - [130,284] ----D C:\Users\By.keita\AppData\Roaming\Adobe
O43 - CFD: 31/08/2012 - 15:13:33 - [0,771] ----D C:\Users\By.keita\AppData\Roaming\Apple Computer
O43 - CFD: 09/05/2012 - 13:20:41 - [0] ----D C:\Users\By.keita\AppData\Roaming\ATI
O43 - CFD: 15/02/2013 - 14:11:56 - [5,857] ----D C:\Users\By.keita\AppData\Roaming\BitTorrent
O43 - CFD: 15/06/2012 - 22:44:40 - [0] ----D C:\Users\By.keita\AppData\Roaming\CACHE
O43 - CFD: 11/05/2012 - 23:05:09 - [0,000] ----D C:\Users\By.keita\AppData\Roaming\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O43 - CFD: 26/10/2012 - 00:02:23 - [1,502] ----D C:\Users\By.keita\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 22/01/2013 - 17:15:17 - [31,763] ----D C:\Users\By.keita\AppData\Roaming\Dropbox
O43 - CFD: 28/06/2012 - 17:58:13 - [0,002] ----D C:\Users\By.keita\AppData\Roaming\Druide
O43 - CFD: 19/07/2012 - 15:25:26 - [0] ----D C:\Users\By.keita\AppData\Roaming\dvdcss
O43 - CFD: 20/07/2012 - 14:50:46 - [2,535] ----D C:\Users\By.keita\AppData\Roaming\DVDVideoSoft
O43 - CFD: 20/07/2012 - 12:46:10 - [0,000] ----D C:\Users\By.keita\AppData\Roaming\DVDVideoSoftIEHelpers
O43 - CFD: 29/10/2012 - 20:15:09 - [7,442] ----D C:\Users\By.keita\AppData\Roaming\ESRI
O43 - CFD: 12/06/2012 - 07:15:50 - [15,871] ----D C:\Users\By.keita\AppData\Roaming\Foxit Software
O43 - CFD: 29/05/2012 - 05:11:40 - [0] ----D C:\Users\By.keita\AppData\Roaming\GetRightToGo
O43 - CFD: 05/02/2013 - 23:26:40 - [0,067] ----D C:\Users\By.keita\AppData\Roaming\GlarySoft
O43 - CFD: 09/05/2012 - 12:55:14 - [0] ----D C:\Users\By.keita\AppData\Roaming\Identities
O43 - CFD: 30/10/2012 - 13:02:02 - [0,001] ----D C:\Users\By.keita\AppData\Roaming\LavasoftStatistics
O43 - CFD: 23/05/2012 - 17:29:38 - [0,319] ----D C:\Users\By.keita\AppData\Roaming\Lionhead Studios
O43 - CFD: 15/06/2012 - 22:39:53 - [0,025] ----D C:\Users\By.keita\AppData\Roaming\LMSOFT
O43 - CFD: 10/02/2013 - 20:06:52 - [0,000] ----D C:\Users\By.keita\AppData\Roaming\LogoMaker
O43 - CFD: 09/05/2012 - 13:06:43 - [0,044] ----D C:\Users\By.keita\AppData\Roaming\Macromedia
O43 - CFD: 18/02/2013 - 13:44:52 - [7,430] ----D C:\Users\By.keita\AppData\Roaming\Malwarebytes
O43 - CFD: 14/07/2009 - 04:00:32 - [0] ----D C:\Users\By.keita\AppData\Roaming\Media Center Programs
O43 - CFD: 21/01/2013 - 00:34:03 - [24,974] -S--D C:\Users\By.keita\AppData\Roaming\Microsoft
O43 - CFD: 05/02/2013 - 20:34:14 - [29,004] ----D C:\Users\By.keita\AppData\Roaming\Mozilla
O43 - CFD: 08/02/2013 - 21:35:56 - [0,105] ----D C:\Users\By.keita\AppData\Roaming\NCH Software
O43 - CFD: 04/08/2012 - 19:27:05 - [0,021] ----D C:\Users\By.keita\AppData\Roaming\Nonoh
O43 - CFD: 15/07/2012 - 22:06:52 - [0,407] ----D C:\Users\By.keita\AppData\Roaming\Notepad++
O43 - CFD: 11/05/2012 - 16:40:39 - [0,002] ----D C:\Users\By.keita\AppData\Roaming\Origin
O43 - CFD: 28/09/2012 - 15:26:46 - [0,060] ----D C:\Users\By.keita\AppData\Roaming\QuickScan
O43 - CFD: 05/06/2012 - 08:41:58 - [0,004] ----D C:\Users\By.keita\AppData\Roaming\Rovio
O43 - CFD: 20/01/2013 - 23:29:32 - [0,083] ----D C:\Users\By.keita\AppData\Roaming\ScreenSeven
O43 - CFD: 28/06/2012 - 23:28:08 - [0,010] R-H-D C:\Users\By.keita\AppData\Roaming\SecuROM
O43 - CFD: 22/08/2012 - 17:43:14 - [0] ----D C:\Users\By.keita\AppData\Roaming\SendSpace
O43 - CFD: 19/02/2013 - 21:45:00 - [9,278] ----D C:\Users\By.keita\AppData\Roaming\Skype
O43 - CFD: 07/10/2012 - 11:22:19 - [2,764] ----D C:\Users\By.keita\AppData\Roaming\Spotflux
O43 - CFD: 10/02/2013 - 19:01:09 - [0] ----D C:\Users\By.keita\AppData\Roaming\Summitsoft
O43 - CFD: 17/02/2013 - 02:11:10 - [0,389] ----D C:\Users\By.keita\AppData\Roaming\vlc
O43 - CFD: 15/10/2012 - 18:43:22 - [1,180] ----D C:\Users\By.keita\AppData\Roaming\WinRAR
O43 - CFD: 15/05/2012 - 18:47:54 - [0] ----D C:\Users\By.keita\AppData\Local\Activision
O43 - CFD: 19/02/2013 - 21:45:39 - [2,230] ----D C:\Users\By.keita\AppData\Local\Adobe
O43 - CFD: 29/05/2012 - 16:46:45 - [0] ----D C:\Users\By.keita\AppData\Local\Apple
O43 - CFD: 29/05/2012 - 16:48:08 - [15,538] ----D C:\Users\By.keita\AppData\Local\Apple Computer
O43 - CFD: 09/05/2012 - 12:49:26 - [0] ----D C:\Users\By.keita\AppData\Local\Application Data
O43 - CFD: 09/05/2012 - 13:43:31 - [1,507] ----D C:\Users\By.keita\AppData\Local\Apps
O43 - CFD: 09/05/2012 - 13:20:41 - [0,088] ----D C:\Users\By.keita\AppData\Local\ATI
O43 - CFD: 10/02/2013 - 12:12:37 - [6,925] ----D C:\Users\By.keita\AppData\Local\Comodo
O43 - CFD: 10/02/2013 - 19:50:18 - [86,013] ----D C:\Users\By.keita\AppData\Local\CrashDumps
O43 - CFD: 14/05/2012 - 20:22:23 - [0] ----D C:\Users\By.keita\AppData\Local\CrashRpt
O43 - CFD: 09/05/2012 - 13:43:54 - [0] ----D C:\Users\By.keita\AppData\Local\Deployment
O43 - CFD: 28/07/2012 - 23:00:24 - [0] ----D C:\Users\By.keita\AppData\Local\Diagnostics
O43 - CFD: 10/02/2013 - 20:19:38 - [1008,405] ----D C:\Users\By.keita\AppData\Local\Downloaded Installations
O43 - CFD: 14/02/2013 - 22:02:00 - [0,658] ----D C:\Users\By.keita\AppData\Local\ElevatedDiagnostics
O43 - CFD: 10/05/2012 - 07:00:41 - [1,898] ----D C:\Users\By.keita\AppData\Local\ESRI
O43 - CFD: 29/10/2012 - 20:45:35 - [7,390] ----D C:\Users\By.keita\AppData\Local\Facebook
O43 - CFD: 16/09/2012 - 02:00:37 - [1082,972] ----D C:\Users\By.keita\AppData\Local\Google
O43 - CFD: 09/05/2012 - 12:49:26 - [0] ----D C:\Users\By.keita\AppData\Local\Historique
O43 - CFD: 09/05/2012 - 18:37:34 - [0,576] ----D C:\Users\By.keita\AppData\Local\Hook Network
O43 - CFD: 23/12/2012 - 11:34:41 - [0,746] ----D C:\Users\By.keita\AppData\Local\Incomedia
O43 - CFD: 24/09/2012 - 10:31:22 - [0] ----D C:\Users\By.keita\AppData\Local\LogMeIn Rescue Applet
O43 - CFD: 31/07/2012 - 06:29:12 - [0] ----D C:\Users\By.keita\AppData\Local\Macromedia
O43 - CFD: 16/12/2012 - 19:51:17 - [406,812] ----D C:\Users\By.keita\AppData\Local\Microsoft
O43 - CFD: 03/06/2012 - 18:30:12 - [0,519] ----D C:\Users\By.keita\AppData\Local\Microsoft Games
O43 - CFD: 03/01/2013 - 08:33:18 - [0,069] ----D C:\Users\By.keita\AppData\Local\Microsoft Help
O43 - CFD: 15/07/2012 - 20:41:37 - [116,118] ----D C:\Users\By.keita\AppData\Local\Mozilla
O43 - CFD: 07/11/2012 - 03:29:48 - [0] ----D C:\Users\By.keita\AppData\Local\Programs
O43 - CFD: 31/12/2012 - 00:25:15 - [2,733] ----D C:\Users\By.keita\AppData\Local\PunkBuster
O43 - CFD: 07/07/2012 - 00:24:08 - [5,666] ----D C:\Users\By.keita\AppData\Local\Rockstar Games
O43 - CFD: 03/06/2012 - 02:23:28 - [0,248] ----D C:\Users\By.keita\AppData\Local\SKIDROW
O43 - CFD: 19/02/2013 - 21:51:38 - [273,674] ----D C:\Users\By.keita\AppData\Local\Temp
O43 - CFD: 09/05/2012 - 12:49:26 - [0] ----D C:\Users\By.keita\AppData\Local\Temporary Internet Files
O43 - CFD: 31/12/2012 - 11:46:42 - [0,000] ----D C:\Users\By.keita\AppData\Local\Ubisoft Game Launcher
O43 - CFD: 10/05/2012 - 16:31:24 - [195,076] ----D C:\Users\By.keita\AppData\Local\VirtualStore
O43 - CFD: 13/07/2009 - 23:42:04 - [0,014] R---D C:\Users\By.keita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 09/05/2012 - 12:55:22 - [0,000] R---D C:\Users\By.keita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 21/11/2012 - 02:39:00 - [0] ----D C:\Users\By.keita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Antidote
O43 - CFD: 15/07/2012 - 21:51:48 - [0,004] ----D C:\Users\By.keita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Apache Friends
O43 - CFD: 10/05/2012 - 00:07:46 - [0,002] ----D C:\Users\By.keita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ArcGIS License Manager 10 CRACKED
O43 - CFD: 10/02/2013 - 18:49:20 - [0,001] ----D C:\Users\By.keita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
O43 - CFD: 05/01/2013 - 10:52:16 - [0,002] ----D C:\Users\By.keita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
O43 - CFD: 15/01/2013 - 10:41:29 - [0,002] ----D C:\Users\By.keita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 15/06/2012 - 22:33:18 - [0,010] ----D C:\Users\By.keita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LMSOFT
O43 - CFD: 13/07/2009 - 23:37:42 - [0,001] R---D C:\Users\By.keita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 15/07/2012 - 22:05:02 - [0] ----D C:\Users\By.keita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 10/05/2012 - 00:07:46 - [0,002] R---D C:\Users\By.keita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 09/05/2012 - 17:14:37 - [0,007] ----D C:\Users\By.keita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SuperCopier2
O43 - CFD: 31/12/2012 - 00:17:43 - [0,002] ----D C:\Users\By.keita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
O43 - CFD: 12/10/2012 - 01:36:26 - [0,003] ----D C:\Users\By.keita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ Scan Program Folder in 01mn 51s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.063D051FDE9DEF9D4D62D668A06E6A47] - 19/02/2013 - 21:45:09 ---A- . (...) -- C:\Windows\WindowsUpdate.log   [819486]
O44 - LFC:[MD5.B5C71854C6BF06E97E144A99324AB79B] - 19/02/2013 - 21:44:54 -S-A- . (...) -- C:\Windows\bootstat.dat   [67584]
O44 - LFC:[MD5.80BDC2240B716EDD4A1FEA5EA149A61B] - 18/02/2013 - 21:57:16 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI   [1576940]
O44 - LFC:[MD5.17A2BC9B47289FB2DCD0D3BC0BCE945B] - 18/02/2013 - 21:57:16 ---A- . (...) -- C:\Windows\System32\perfc009.dat   [110082]
O44 - LFC:[MD5.4DAA8CC3B600ECB920F26436920D2289] - 18/02/2013 - 21:57:16 ---A- . (...) -- C:\Windows\System32\perfc00C.dat   [135046]
O44 - LFC:[MD5.B991CDA78E72E397F412DE8499951342] - 18/02/2013 - 21:57:16 ---A- . (...) -- C:\Windows\System32\perfh009.dat   [619894]
O44 - LFC:[MD5.CD3C56F961DB2691F306E1C69F944252] - 18/02/2013 - 21:57:16 ---A- . (...) -- C:\Windows\System32\perfh00C.dat   [718336]
O44 - LFC:[MD5.D9F4FEAA298843A3D300FD240F52EB27] - 18/02/2013 - 21:04:15 ---A- . (...) -- C:\Windows\setupact.log   [7618]
O44 - LFC:[MD5.1988D4B04EC45AC2B059476800A7F72F] - 18/02/2013 - 14:52:47 ---A- . (...) -- C:\Windows\PFRO.log   [687520]
O44 - LFC:[MD5.629CABB0421668C9D3D402A3C3D77E14] - 18/02/2013 - 13:44:42 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys   [21104]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 18/02/2013 - 07:51:54 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin   [0]
O44 - LFC:[MD5.983977EC8C287E3B1EE25028F534DCB9] - 17/02/2013 - 21:48:49 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerApp.exe   [691568]
O44 - LFC:[MD5.B729FD55C49419A4B18EB160905D9374] - 17/02/2013 - 21:48:49 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerCPLApp.cpl   [71024]
O44 - LFC:[MD5.4FACD0879AAD58E36EA76F48F5B75396] - 14/02/2013 - 22:57:37 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT   [3960424]
O44 - LFC:[MD5.6C4D491C1970112AD0861B9F53DC17E5] - 10/02/2013 - 19:09:59 ---A- . (...) -- C:\.rnd   [1024]
O44 - LFC:[MD5.629610C7C04165E36704153EBCF4DCBB] - 10/02/2013 - 19:05:28 ---A- . (...) -- C:\Windows\Logo Design Studio Trial Uninstall Log.txt   [438501]
O44 - LFC:[MD5.FF50EE902847C7CED9FFD157851A8678] - 10/02/2013 - 19:00:21 ---A- . (...) -- C:\Windows\Logo Design Studio Trial Setup Log.txt   [959848]
O44 - LFC:[MD5.9FED4602659211E63AB6148ADA077159] - 10/02/2013 - 11:06:21 ---A- . (...) -- C:\Windows\System32\Drivers\PnkBstrK.sys   [138032]
O44 - LFC:[MD5.5564EE004708EBB76086F6D66ACF60FF] - 10/02/2013 - 11:06:07 ---A- . (...) -- C:\Windows\System32\PnkBstrB.exe   [281688]
O44 - LFC:[MD5.5564EE004708EBB76086F6D66ACF60FF] - 10/02/2013 - 11:06:07 ---A- . (...) -- C:\Windows\System32\PnkBstrB.xtr   [281688]
O44 - LFC:[MD5.5564EE004708EBB76086F6D66ACF60FF] - 06/02/2013 - 16:55:08 ---A- . (...) -- C:\Windows\System32\PnkBstrB.ex0   [281688]
O44 - LFC:[MD5.E828134279A6BB5EF3032F9B88D335F9] - 03/02/2013 - 10:09:01 ---A- . (.Oracle Corporation - Pas de description.) -- C:\Windows\System32\WindowsAccessBridge.dll   [94112]
O44 - LFC:[MD5.4951D2D49B400A1A722BC48FADEBD6F4] - 03/02/2013 - 10:09:00 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\System32\java.exe   [174496]
O44 - LFC:[MD5.ABC4230E67C8E68E070A22C1E4A8F673] - 03/02/2013 - 10:09:00 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\System32\javaw.exe   [174496]
O44 - LFC:[MD5.FBE59F564DFEEBBFCDBBDFAB54C64501] - 03/02/2013 - 10:09:00 ---A- . (.Oracle Corporation - Java(TM) Web Start Launcher.) -- C:\Windows\System32\javaws.exe   [262560]
O44 - LFC:[MD5.BB8996FE972847B5879FDE24F24F034E] - 03/02/2013 - 10:08:59 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\System32\deployJava1.dll   [782240]
O44 - LFC:[MD5.2616B4D6D04F18C579B7861F02B0B592] - 03/02/2013 - 10:08:59 ---A- . (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(T.) -- C:\Windows\System32\npDeployJava1.dll   [861088]
O44 - LFC:[MD5.9AC5B3550AA14513C5449FDEE13A5DB1] - 22/01/2013 - 18:37:32 ---A- . (...) -- C:\UsbFix.txt   [21149]
~ Scan Files in 00mn 06s



---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
~ Scan ShellExecuteHooks in 00mn 00s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - LiveSSP.) -- C:\Windows\System32\livessp.dll
~ Scan Keys in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s



---\\ MountPoints2 Shell Key (O51) (None)

---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll
O52 - TDSD: \Drivers32\"msacm.vorbis"="vorbis.acm" . (.HMS http://hp.vector.co.jp/authors/VA012897 - Ogg Vorbis CODEC for MSACM.) -- C:\Windows\System32\vorbis.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"vorbis.acm"="Ogg Vorbis Audio CODEC" . (.HMS http://hp.vector.co.jp/authors/VA012897 - Ogg Vorbis CODEC for MSACM.) -- C:\Windows\System32\vorbis.acm
~ Scan Keys in 00mn 00s



---\\ ShareTools MSconfig StartupReg (O53)
O53 - SMSR:HKLM\...\startupreg\BitTorrent  [Key] . (.BitTorrent, Inc. - BitTorrent.) -- C:\Program Files\BitTorrent\BitTorrent.exe
O53 - SMSR:HKLM\...\startupreg\Skype  [Key] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
~ Scan SMSR Keys in 00mn 00s



---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutoRun"=3
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=3
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=0
~ Scan Keys in 00mn 00s



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 13/07/2009 - 20:26:15 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys   [422976]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13/07/2009 - 16:40:41 ---A- . (...) -- C:\Windows\System32\ANSI.SYS   [9029]
~ Scan Drivers in 00mn 00s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: UsbFix By El Desaparecido - (.El Desaparecido.) [HKLM] -- Usbfix
O63 - Logiciel: ZHPDiag 1.3.5 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s



---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 19/12/2012 - C:\Windows\System32\DRIVERS\atikmdag.sys (amdkmdag)  .(.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) - LEGACY_AMDKMDAG
O64 - Services: CurCS - 30/10/2012 - C:\Windows\System32\Drivers\aswFsBlk.sys (aswFsBlk)  .(.AVAST Software - avast! File System Access Blocking Driver.) - LEGACY_ASWFSBLK
O64 - Services: CurCS - 30/10/2012 - C:\Windows\system32\drivers\aswMonFlt.sys (aswMonFlt)  .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT
O64 - Services: CurCS - 15/10/2012 - C:\Windows\system32\Drivers\aswrdr2.sys (aswRdr)  .(.AVAST Software - avast! WFP Redirect Driver.) - LEGACY_ASWRDR
O64 - Services: CurCS - 30/10/2012 - C:\Windows\System32\Drivers\aswSnx.sys (aswSnx)  .(.AVAST Software - avast! Virtualization Driver.) - LEGACY_ASWSNX
O64 - Services: CurCS - 30/10/2012 - C:\Windows\System32\Drivers\aswSP.sys (aswSP)  .(.AVAST Software - avast! self protection module.) - LEGACY_ASWSP
O64 - Services: CurCS - 30/10/2012 - C:\Windows\System32\Drivers\aswTdi.sys (aswTdi)  .(.AVAST Software - avast! TDI Filter Driver.) - LEGACY_ASWTDI
O64 - Services: CurCS - 14/12/2012 - C:\Windows\system32\drivers\mbam.sys (MBAMProtector)  .(.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - LEGACY_MBAMPROTECTOR
O64 - Services: CurCS - 13/07/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv)  .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
~ Scan Services in 00mn 01s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <jsfile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\By.keita\AppData\Local\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCR\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\By.keita\AppData\Local\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js> <jsfile>[HKCR\..\open\Command] (.Adobe Systems, Inc. - Adobe Dreamweaver CS5.) -- C:\Program Files\Adobe\Adobe Dreamweaver CS5\Dreamweaver.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
~ Scan Keys in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\By.keita\AppData\Local\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Scan Keys in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (@ieframe.dll,-12512) - http://search.live.com
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (@ieframe.dll,-12512) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {8EEAC88A-079B-4b2c-80C1-7836F79EB40A} - (Yahoo! Search) - http://fr.search.yahoo.com
O69 - SBI: SearchScopes [HKCU] {9D5BD211-422C-4164-9298-BB4186A30F31} - (Bing) - http://www.bing.com
~ Scan Keys in 00mn 00s



---\\ Recherche des services démarrés par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll   [62464]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [67584]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [67584]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll   [168448]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll   [591360]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll   [667136]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll   [473088]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll   [90624]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll   [285184]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll   [75264]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll   [49664]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll   [300544]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll   [241664]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll   [543232]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll   [1929952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll   [589312]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll   [328192]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll   [497152]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll   [21504]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll   [46592]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll   [114688]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll   [49664]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll   [61440]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll   [98304]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll   [162816]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll   [743424]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll   [71168]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll   [99328]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll   [168960]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll   [102400]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll   [37376]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll   [76800]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll   [149504]
~ Scan Services in 00mn 00s



---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.F92067543402AF7026A45B413646ACBF] [SPRF][30/08/2012] (.Foxit Corporation - Foxit Updater.) -- C:\Users\By.keita\AppData\Local\Temp\Foxit Updater.exe   [4327024]
[MD5.403DA8628C89287DE1EEE4BF5CD2C582] [SPRF][08/02/2013] (...) -- C:\Users\By.keita\AppData\Local\Temp\mp3el.exe   [122880]
[MD5.B04F0E0352DB5B0FEE4C4A93630838B7] [SPRF][05/02/2013] (.Advanced Micro Devices, Inc. - 13-1_vista_win7_win8_32_dd_ccc_whql.) -- C:\Users\By.keita\AppData\Local\Temp\tmp9FF6.exe   [99315736]
[MD5.DAC55804225089A15D9F21BBE5031284] [SPRF][08/02/2013] (.NCH Software - WavePad - Logiciel d'édition audio.) -- C:\Users\By.keita\AppData\Local\Temp\uninst.exe   [2025476]
[MD5.034C3FBDE00A3A0E7AFC2E89ACC11970] [SPRF][05/02/2013] (...) -- C:\Users\By.keita\AppData\Local\Temp\~gu-ver.dat   [112]
[MD5.46DA30476B579584ED6A6FA8CC0D09B8] [SPRF][18/02/2013] (.Nicolas Coolman - ZHPDiag.) -- C:\Users\By.keita\Desktop\ZHPDiag2.exe   [5400486]
~ Scan Files in 00mn 20s



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "{06AFF6D8-6948-493C-A9F3-2E0B6E854214}" | In - None - P6 - TRUE | .(.BitTorrent, Inc. - BitTorrent.) -- C:\Program Files\BitTorrent\BitTorrent.exe
O87 - FAEL: "{6E1B0C56-9735-4DF3-B682-9C3E1A94ACA6}" | In - None - P17 - TRUE | .(.BitTorrent, Inc. - BitTorrent.) -- C:\Program Files\BitTorrent\BitTorrent.exe
O87 - FAEL: "TCP Query User{48ED0E21-929E-46BE-8B1D-161F189B078C}C:\cracked license manager 10\lmgrd.exe" | In - Private - P6 - TRUE | .(.Acresso Software Inc. - Acresso Software Inc..) -- C:\cracked license manager 10\lmgrd.exe
O87 - FAEL: "UDP Query User{B8ADFFDC-5194-43EB-9882-3766FDB66F12}C:\cracked license manager 10\lmgrd.exe" | In - Private - P17 - TRUE | .(.Acresso Software Inc. - Acresso Software Inc..) -- C:\cracked license manager 10\lmgrd.exe
O87 - FAEL: "TCP Query User{AE66A696-9912-4370-A2D4-54B33A26C6FD}C:\cracked license manager 10\arcgis.exe" | In - Private - P6 - TRUE | .(...) -- C:\cracked license manager 10\arcgis.exe
O87 - FAEL: "UDP Query User{CBBA648D-9A81-4836-8C9E-A3E2831ECE05}C:\cracked license manager 10\arcgis.exe" | In - Private - P17 - TRUE | .(...) -- C:\cracked license manager 10\arcgis.exe
O87 - FAEL: "{A8120831-1CAC-460F-B7A7-37CDE513A784}" | In - Private - P6 - TRUE | .(.CAPCOM U.S.A, INC. - SUPER STREET FIGHTER IV ARCADE EDITION.) -- C:\Program Files\Capcom\Super Street Fighter IV\SSFIV.exe
O87 - FAEL: "{C76DCD9E-7656-4298-A517-4C7CB57D100A}" | In - Private - P17 - TRUE | .(.CAPCOM U.S.A, INC. - SUPER STREET FIGHTER IV ARCADE EDITION.) -- C:\Program Files\Capcom\Super Street Fighter IV\SSFIV.exe
O87 - FAEL: "{7A3F7C51-4EF4-4510-8915-A98C581EA3E0}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O87 - FAEL: "{276F32ED-5512-434F-BFCA-F0617634769D}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
O87 - FAEL: "{A232CF34-98E3-4D1A-AEB9-B4F93EAC19F8}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{97088761-0CAB-4440-9A29-2914274CE5EE}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{840DE83B-8A0A-41EC-89B8-8CAD5BD56744}" | In - Private - P6 - TRUE | .(.CAPCOM U.S.A, INC. - Street Fighter X Tekken.) -- C:\Program Files\Capcom\Street Fighter X Tekken\SFTK.exe
O87 - FAEL: "{ABA4CAA5-2F0D-44EB-89A2-60BD36898D9C}" | In - Private - P17 - TRUE | .(.CAPCOM U.S.A, INC. - Street Fighter X Tekken.) -- C:\Program Files\Capcom\Street Fighter X Tekken\SFTK.exe
O87 - FAEL: "{CC646218-24E4-4556-8523-A7957BB0561B}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files\Ubisoft\Rayman Origins\Rayman Origins.exe
O87 - FAEL: "{9D2FAF69-B33A-433C-84E6-DCBD5ACC4302}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files\Ubisoft\Rayman Origins\Rayman Origins.exe
O87 - FAEL: "{8465CBA3-678C-440C-B34D-C2B1E20E7E54}" | In - Private - P6 - TRUE | .(.Ubisoft - Autopatch system.) -- C:\Program Files\Ubisoft\Rayman Origins\gu.exe
O87 - FAEL: "{72EBAAB2-5DA2-4534-A66E-30B9CA1C5DE9}" | In - Private - P17 - TRUE | .(.Ubisoft - Autopatch system.) -- C:\Program Files\Ubisoft\Rayman Origins\gu.exe
O87 - FAEL: "TCP Query User{64D9FD69-209D-4D39-86D3-6FDF2CE77E34}C:\cracked license manager 10\lmgrd.exe" | In - Public - P6 - TRUE | .(.Acresso Software Inc. - Acresso Software Inc..) -- C:\cracked license manager 10\lmgrd.exe
O87 - FAEL: "UDP Query User{1BBFB9DD-7388-41D9-963A-114FF247F1FE}C:\cracked license manager 10\lmgrd.exe" | In - Public - P17 - TRUE | .(.Acresso Software Inc. - Acresso Software Inc..) -- C:\cracked license manager 10\lmgrd.exe
O87 - FAEL: "TCP Query User{6BA76B2F-D945-4F80-B78C-C18F5DB93135}C:\program files\nonoh.net\nonoh\nonoh.exe" | In - Private - P6 - TRUE | .(.Nonoh - Client to make VoIP calls..) -- C:\program files\nonoh.net\nonoh\nonoh.exe
O87 - FAEL: "UDP Query User{05F814CB-7A24-4091-A5C8-15F41226480A}C:\program files\nonoh.net\nonoh\nonoh.exe" | In - Private - P17 - TRUE | .(.Nonoh - Client to make VoIP calls..) -- C:\program files\nonoh.net\nonoh\nonoh.exe
O87 - FAEL: "TCP Query User{A99B2424-65AB-472C-A903-6D9EC00FE541}C:\program files\nonoh.net\nonoh\nonoh.exe" | In - Public - P6 - TRUE | .(.Nonoh - Client to make VoIP calls..) -- C:\program files\nonoh.net\nonoh\nonoh.exe
O87 - FAEL: "UDP Query User{16D45BAC-A773-4F2D-97AE-AB96D9B372DC}C:\program files\nonoh.net\nonoh\nonoh.exe" | In - Public - P17 - TRUE | .(.Nonoh - Client to make VoIP calls..) -- C:\program files\nonoh.net\nonoh\nonoh.exe
O87 - FAEL: "TCP Query User{6543CF60-9005-477A-AE61-F6B7757466EE}C:\cracked license manager 10\arcgis.exe" | In - Public - P6 - TRUE | .(...) -- C:\cracked license manager 10\arcgis.exe
O87 - FAEL: "UDP Query User{6AC18BF8-2038-45BC-9E11-1A02AC54CD0C}C:\cracked license manager 10\arcgis.exe" | In - Public - P17 - TRUE | .(...) -- C:\cracked license manager 10\arcgis.exe
O87 - FAEL: "TCP Query User{EAAC49A7-E1CF-4C3C-91C3-A3834D14DFC2}C:\program files\atari\tdu2\uplauncher.exe" | In - Private - P6 - FALSE | .(.Eden Games - UpLauncher.) -- C:\program files\atari\tdu2\uplauncher.exe
O87 - FAEL: "UDP Query User{929750AD-F2A3-4198-A126-E6FEB6188386}C:\program files\atari\tdu2\uplauncher.exe" | In - Private - P17 - TRUE | .(.Eden Games - UpLauncher.) -- C:\program files\atari\tdu2\uplauncher.exe
O87 - FAEL: "{724711E0-729B-40CE-999C-17C843E44FF0}" | Out - None - P17 - TRUE | .(.Eden Games - UpLauncher.) -- C:\Program Files\Atari\TDU2\UpLauncher.exe
O87 - FAEL: "TCP Query User{010B6782-0F8B-4762-BB33-FA10C017C4DA}C:\program files\atari\tdu2\testdrive2.exe" | In - Private - P6 - TRUE | .(.Eden Games - Test Drive Unlimited 2.) -- C:\program files\atari\tdu2\testdrive2.exe
O87 - FAEL: "UDP Query User{6D87E4E7-6369-47BE-AE0A-B3254A2CF7BA}C:\program files\atari\tdu2\testdrive2.exe" | In - Private - P17 - TRUE | .(.Eden Games - Test Drive Unlimited 2.) -- C:\program files\atari\tdu2\testdrive2.exe
O87 - FAEL: "{17AD70AD-DF2D-48E4-BE24-B26A302225AF}" | In - Private - P6 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\By.keita\AppData\Roaming\Dropbox\bin\Dropbox.exe
O87 - FAEL: "{B6233774-94B1-4CC8-BDC1-F1245862C415}" | In - Private - P17 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\Users\By.keita\AppData\Roaming\Dropbox\bin\Dropbox.exe
O87 - FAEL: "TCP Query User{099D689A-16F7-4A34-9B24-B109E331F894}C:\users\by.keita\appdata\roaming\dropbox\bin\dropbox.exe" | In - Public - P6 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\users\by.keita\appdata\roaming\dropbox\bin\dropbox.exe
O87 - FAEL: "UDP Query User{66A43E3D-A079-493D-8158-5BD623F2CA51}C:\users\by.keita\appdata\roaming\dropbox\bin\dropbox.exe" | In - Public - P17 - TRUE | .(.Dropbox, Inc. - Dropbox.) -- C:\users\by.keita\appdata\roaming\dropbox\bin\dropbox.exe
O87 - FAEL: "TCP Query User{DF3B964A-CC02-4314-A176-11DF43A2F176}C:\program files\dell voice\dellvoice.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files\dell voice\dellvoice.exe (.not file.)
O87 - FAEL: "UDP Query User{CF32F4B3-517C-423A-A3FA-70974492BE4E}C:\program files\dell voice\dellvoice.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files\dell voice\dellvoice.exe (.not file.)
O87 - FAEL: "TCP Query User{33BF8FBC-7785-4FB8-8703-668923691217}C:\program files\dell voice\dellvoice.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files\dell voice\dellvoice.exe (.not file.)
O87 - FAEL: "UDP Query User{7E9687CA-4B26-4979-BFAD-8BEF29732BF1}C:\program files\dell voice\dellvoice.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files\dell voice\dellvoice.exe (.not file.)
O87 - FAEL: "{A8467C22-9D76-4C62-8289-0BAFAD1DC6DD}" | In - None - P17 - TRUE | .(.Skype Limited - Facebook Video Calling.) -- C:\Users\By.keita\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
O87 - FAEL: "TCP Query User{088B848C-7C63-4BE2-9F2D-8EEDD1ED2E7D}C:\program files\atari\tdu2\_uplauncher.exe" |In - Private - P6 - FALSE | .(...) -- C:\program files\atari\tdu2\_uplauncher.exe (.not file.)
O87 - FAEL: "UDP Query User{755F195C-89DC-407D-AF12-D230151E0180}C:\program files\atari\tdu2\_uplauncher.exe" |In - Private - P17 - FALSE | .(...) -- C:\program files\atari\tdu2\_uplauncher.exe (.not file.)
O87 - FAEL: "{13C6B725-F7A8-40A5-97BC-BF039160E79C}" | In - Private - P6 - TRUE | .(...) -- C:\Windows\System32\PnkBstrA.exe
O87 - FAEL: "{FC68D4F2-ADA6-4C44-8F2C-A8A4B9546B99}" | In - Private - P17 - TRUE | .(...) -- C:\Windows\System32\PnkBstrA.exe
O87 - FAEL: "{5773F8FB-0F47-4BDA-A281-0B4906A584E3}" | In - Private - P6 - TRUE | .(...) -- C:\Windows\System32\PnkBstrB.exe
O87 - FAEL: "{055CEF3E-C2EF-448E-A507-F13775D78298}" | In - Private - P17 - TRUE | .(...) -- C:\Windows\System32\PnkBstrB.exe
O87 - FAEL: "{E268A179-41ED-412A-9CD9-BB716875DAC2}" | In - Private - P6 - TRUE | .(.Ubisoft Entertainment - Far Cry 3.) -- C:\Program Files\Ubisoft\FarCry 3\bin\farcry3.exe
O87 - FAEL: "{3A0F4C0D-2DFA-406C-B5B5-88FFD521F940}" | In - Private - P17 - TRUE | .(.Ubisoft Entertainment - Far Cry 3.) -- C:\Program Files\Ubisoft\FarCry 3\bin\farcry3.exe
O87 - FAEL: "{9F9D6068-8A3E-4E60-A126-7D4C70EC8A40}" | In - Private - P6 - TRUE | .(.Ubisoft Entertainment - Far Cry 3.) -- C:\Program Files\Ubisoft\FarCry 3\bin\farcry3_d3d11.exe
O87 - FAEL: "{EDB94CAB-D6B7-4F3C-8BCB-DBCC8E1E8E15}" | In - Private - P17 - TRUE | .(.Ubisoft Entertainment - Far Cry 3.) -- C:\Program Files\Ubisoft\FarCry 3\bin\farcry3_d3d11.exe
O87 - FAEL: "{97A6F0C6-8F94-40DE-ABA5-64C77B62CF56}" | In - Private - P6 - TRUE | .(.Ubisoft - Autopatch system.) -- C:\Program Files\Ubisoft\FarCry 3\bin\FC3Updater.exe
O87 - FAEL: "{D09C9209-B6FF-4D5B-A3E5-6FF89AC68529}" | In - Private - P17 - TRUE | .(.Ubisoft - Autopatch system.) -- C:\Program Files\Ubisoft\FarCry 3\bin\FC3Updater.exe
O87 - FAEL: "{DC9DFB7C-AEE5-4510-A665-C7D571D73B71}" | In - Private - P6 - TRUE | .(.Ubisoft - FC3Editor.) -- C:\Program Files\Ubisoft\FarCry 3\bin\FC3Editor.exe
O87 - FAEL: "{5518B617-29EE-4670-BA21-FDAD6D6F14FE}" | In - Private - P17 - TRUE | .(.Ubisoft - FC3Editor.) -- C:\Program Files\Ubisoft\FarCry 3\bin\FC3Editor.exe
O87 - FAEL: "{0030B8C1-8749-4229-8031-073462FEB319}" | In - Private - P6 - TRUE | .(.Konami Digital Entertainment Co., Ltd. - Pro Evolution Soccer 2012.) -- C:\Program Files\KONAMI\Pro Evolution Soccer 2012\pes2012.exe
O87 - FAEL: "{4B36C3E0-E65B-4026-9C28-94490FAFB01E}" | In - Private - P17 - TRUE | .(.Konami Digital Entertainment Co., Ltd. - Pro Evolution Soccer 2012.) -- C:\Program Files\KONAMI\Pro Evolution Soccer 2012\pes2012.exe
O87 - FAEL: "TCP Query User{61EB0206-A421-4EEE-B7A5-251E22C75773}C:\program files\konami\pro evolution soccer 2013\pes2013.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files\konami\pro evolution soccer 2013\pes2013.exe (.not file.)
O87 - FAEL: "UDP Query User{D973DEE7-8DE9-4664-A6E3-C5B9FD674A00}C:\program files\konami\pro evolution soccer 2013\pes2013.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files\konami\pro evolution soccer 2013\pes2013.exe (.not file.)
O87 - FAEL: "TCP Query User{8AC1C25C-CF9F-4229-A77B-DC6B276E7D78}E:\crack\pes2013.exe" |In - Private - P6 - TRUE | .(...) -- E:\crack\pes2013.exe (.not file.)
O87 - FAEL: "UDP Query User{24F00664-75F4-4B7A-B915-5CD79FD98C07}E:\crack\pes2013.exe" |In - Private - P17 - TRUE | .(...) -- E:\crack\pes2013.exe (.not file.)
O87 - FAEL: "{8705B984-E653-4B45-8295-AA2E7EAA6664}" | In - None - P17 - TRUE | .(.Eden Games - UpLauncher.) -- C:\Program Files\Atari\TDU2\UpLauncher.exe
O87 - FAEL: "{E23DB75F-400E-444C-BBC0-E0022B58C031}" | In - None - P17 - TRUE | .(.Eden Games - Test Drive Unlimited 2.) -- C:\Program Files\Atari\TDU2\TestDrive2.exe
O87 - FAEL: "{822CAF55-54CD-412D-875B-0C7F56BD6A2B}" | In - None - P17 - TRUE | .(.Eden Games - UpLauncher.) -- C:\Program Files\Atari\TDU2\UpLauncher.exe
O87 - FAEL: "{DC5BB53E-0051-48DE-84E9-2A509331C6FF}" | Out - None - P17 - TRUE | .(.Eden Games - UpLauncher.) -- C:\Program Files\Atari\TDU2\UpLauncher.exe
O87 - FAEL: "{A0630CC6-580B-43A1-9AC5-E5C836549117}" | Out - None - P17 - TRUE | .(.Eden Games - UpLauncher.) -- C:\Program Files\Atari\TDU2\UpLauncher.exe
O87 - FAEL: "{51585C97-1DD9-4DBF-AA6C-E9AEC14CAC44}" | Out - None - P17 - TRUE | .(.Eden Games - Test Drive Unlimited 2.) -- C:\Program Files\Atari\TDU2\TestDrive2.exe
O87 - FAEL: "{A41F7D46-7ADF-496E-878A-539DD693CFAB}" | Out - None - P17 - TRUE | .(.Eden Games - UpLauncher.) -- C:\Program Files\Atari\TDU2\UpLauncher.exe
O87 - FAEL: "{0E36B27A-A896-4AD6-BD39-3EE06DEF77FD}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files\Common Files\Comodo\GeekBuddyRSP.exe (.not file.)
O87 - FAEL: "{4D344528-7BC9-4F3E-8786-073050C7ED21}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files\Common Files\Comodo\GeekBuddyRSP.exe (.not file.)
~ Scan Firewall in 00mn 01s



---\\ Scan Additionnel (O88)
Database Version : v2.10777 - (17/02/2013)
Clés trouvées (Keys found) : 2
Valeurs trouvées (Values found) : 0
Dossiers trouvés  (Folders found) : 0
Fichiers trouvés  (Files found) : 0

[HKLM\Software\Classes\esriEditorExt.FeatureFromAreaContainsPointErrorCommand]   =>Adware.SPointer
[HKLM\Software\Classes\esriEditorExt.FeatureFromAreaContainsPointErrorCommand.1]   =>Adware.SPointer
~ Scan Additionnel in 00mn 38s



---\\ Product Upgrade Codes (O90)
O90 - PUC: "057978BEDBCC3104FB5D20494DADB50D" . (.Apple Application Support.) -- C:\Windows\Installer\{EB879750-CCBD-4013-BFD5-0294D4DA5BD0}\WinInstall.ico
O90 - PUC: "0826823371681E11F86F8BCAF6798BE8" . (.Google Earth Plug-in.) -- C:\Windows\Installer\{33286280-8617-11E1-8FF6-B8AC6F97B88E}\ARPPRODUCTICON.exe
O90 - PUC: "0C1FF52A6B08B8B45A15CD2565794A80" . (.AMD APP SDK Runtime.) -- C:\Windows\Installer\{A25FF1C0-80B6-4B8B-A551-DC525697A408}\ARPPRODUCTICON.exe
O90 - PUC: "0ED9D238CFA898648991D4BBEDDBE3F4" . (.Microsoft Games for Windows - LIVE Redistributable.) -- C:\Windows\Installer\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}\GameForWindowsLiveRedist.exe
O90 - PUC: "121E2D80A6F7BE3479DF26B944094330" . (.Microsoft_VC90_CRT_x86.) -- C:\Windows\Installer\{08D2E121-7F6A-43EB-97FD-629B44903403}\ARPPRODUCTICON.exe
O90 - PUC: "20B91A1DE71869244AB57058F37DD475" . (.Microsoft_VC80_MFC_x86.) -- C:\Windows\Installer\{D1A19B02-817E-4296-A45B-07853FD74D57}\ARPPRODUCTICON.exe
O90 - PUC: "227C12A7952F67947BAA66855EDFDEFA" . (.Google Drive.) -- C:\Windows\Installer\{7A21C722-F259-4976-B7AA-6658E5FDEDAF}\DriveIcon
O90 - PUC: "25BBB29DFF28DE24A8C3E460F249A47B" . (.Microsoft_VC80_MFCLOC_x86.) -- C:\Windows\Installer\{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}\ARPPRODUCTICON.exe
O90 - PUC: "29D1F74FFD4F3114080B5BF8E21BF082" . (.AMD Media Foundation Decoders.) -- C:\Windows\Installer\{F47F1D92-F4DF-4113-80B0-B58F2EB10F28}\ARPPRODUCTICON.exe
O90 - PUC: "2B754B4DF062165CAC7807B33D7B42AC" . (.Catalyst Control Center Graphics Previews Common.) -- C:\Windows\Installer\{D4B457B2-260F-C561-CA87-703BD3B724CA}\ARPPRODUCTICON.exe
O90 - PUC: "32FA0F2EF2EF2224A934556EC34CE11F" . (.Catalyst Control Center - Branding.) -- C:\Windows\Installer\{E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}\ARPPRODUCTICON.exe
O90 - PUC: "42962336FAC3858CA3F858898C07917D" . (.Catalyst Control Center.) -- C:\Windows\Installer\{63326924-3CAF-C858-3A8F-8598C87019D7}\ARPPRODUCTICON.exe
O90 - PUC: "44C482C10E8B3DE218452531A3FA5F83" . (.HydraVision.) -- C:\Windows\Installer\{1C284C44-B8E0-2ED3-8154-52133AAFF538}\ARPPRODUCTICON.exe
O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico
O90 - PUC: "4FF2CB855A86A8D40B0B332CDCACF2D2" . (.Logo Design Studio Pro.) -- C:\Windows\Installer\{58BC2FF4-68A5-4D8A-B0B0-33C2CDCA2F2D}\ARPPRODUCTICON.exe
O90 - PUC: "67B3FB7D9FEE8684B9B224BA6FB072A9" . (.Microsoft_VC80_CRT_x86.) -- C:\Windows\Installer\{D7BF3B76-EEF9-4868-9B2B-42ABF60B279A}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA73301B7449A0500000010" . (.Adobe Reader 9.5.3.) -- C:\Windows\Installer\{AC76BA86-7AD7-1033-7B44-A95000000001}\SC_Reader.ico
O90 - PUC: "6D4B04801DD7781458326ECF0070FE7B" . (.Windows Live ID Sign-in Assistant.) -- C:\Windows\Installer\{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}\prodicon.ico
O90 - PUC: "74A8220B65A87AA6EB3819B0DB1DC94B" . (.AMD Drag and Drop Transcoding.) -- C:\Windows\Installer\{B0228A47-8A56-6AA7-BE83-910BBDD19CB4}\ARPPRODUCTICON.exe
O90 - PUC: "890A737E161FF6B4FA2268AA3EF4F6DB" . (.Pro Evolution Soccer 2012.) -- C:\Windows\Installer\{E737A098-F161-4B6F-AF22-86AAE34F6FBD}\ARPPRODUCTICON.exe
O90 - PUC: "91785D291CBB3CC40AB8659C8E48CCC2" . (.Microsoft_VC80_CRT_x86.) -- C:\Windows\Installer\{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}\ARPPRODUCTICON.exe
O90 - PUC: "9C7DC219B8ABB5161496D75346166DCB" . (.ATI AVIVO Codecs.) -- C:\Windows\Installer\{912CD7C9-BA8B-615B-4169-7D356461D6BC}\ARPPRODUCTICON.exe
O90 - PUC: "B2F5519759897D9468219D52080EEDB5" . (.Bonjour.) -- C:\Windows\Installer\{79155F2B-9895-49D7-8612-D92580E0DE5B}\Bonjour.ico
O90 - PUC: "B4A2F9673A486849DA2DE9A54B4B1E3E" . (.Catalyst Control Center InstallProxy.) -- C:\Windows\Installer\{769F2A4B-84A3-9486-ADD2-9E5AB4B4E1E3}\ARPPRODUCTICON.exe
O90 - PUC: "B5DEF536D6C2EB94786EA7F6DC22CBA5" . (.Microsoft_VC90_MFC_x86.) -- C:\Windows\Installer\{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}\ARPPRODUCTICON.exe
O90 - PUC: "C7030BC4E565144468EBD02F4EBF28C8" . (.Microsoft Games for Windows Marketplace.) -- C:\Windows\Installer\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}\GameForWindowsLiveDash.exe
O90 - PUC: "CDC23D06EB3E8754AB0192233270DCCD" . (.Logitech Gaming Software 5.10.) -- C:\Windows\Installer\{60D32CDC-E3BE-4578-BA10-29322307CDDC}\ARPPRODUCTICON.exe
O90 - PUC: "DB8F5283487FBBF65ADC585795410870" . (.AMD Catalyst Install Manager.) -- C:\Windows\Installer\{3825F8BD-F784-6FBB-A5CD-857559148007}\ARPPRODUCTICON.exe
O90 - PUC: "E323A2F34C068E14C8BC79511D7D053C" . (.Angry Birds Space.) -- C:\Windows\Installer\{3F2A323E-60C4-41E8-8CCB-9715D1D750C3}\AngryBirdsSpace.exe
O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype™ 6.1.) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
O90 - PUC: "E805DFCE2A862B1964DDD1307D389DB4" . (.Catalyst Control Center Localization All.) -- C:\Windows\Installer\{ECFD508E-68A2-91B2-46DD-1D03D783D94B}\ARPPRODUCTICON.exe
O90 - PUC: "E873E3303DA65DA4DBBEBC6DB91340C6" . (.Microsoft_VC90_ATL_x86.) -- C:\Windows\Installer\{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}\ARPPRODUCTICON.exe
O90 - PUC: "EA5B44F46A28A8A43A3E2ED48479823E" . (.Microsoft SQL Server 2008 Native Client.) -- C:\Windows\Installer\{4F44B5AE-82A6-4A8A-A3E3-E24D489728E3}\ARPIco
O90 - PUC: "ECA69F379429D40D5E96D116D19028BB" . (.ccc-utility.) -- C:\Windows\Installer\{73F96ACE-9249-D04D-E569-1D611D0982BB}\ARPPRODUCTICON.exe
O90 - PUC: "F06BE6A807CBB101ACECD9774967A7C3" . (.AMD Accelerated Video Transcoding.) -- C:\Windows\Installer\{8A6EB60F-BC70-101B-CACE-9D7794767A3C}\ARPPRODUCTICON.exe
O90 - PUC: "F3D40CFE251A7E745871EEF02610FAFE" . (.Apple Mobile Device Support.) -- C:\Windows\Installer\{EFC04D3F-A152-47E7-8517-EE0F6201AFEF}\Installer.ico
O90 - PUC: "F6071111A6667304777712318267D401" . (.JavaFX 2.1.1.) -- C:\Windows\Installer\{1111706F-666A-4037-7777-211328764D10}\javaIcon.ico
~ Scan Files in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 17/02/2013 251248 |  (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 19/12/2012 219136 |  (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe
SR - | Auto 26/02/2012 55144 |  (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 30/10/2012 44808 |  (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Disabled  0 |  (avast! Firewall) . (...) - C:\Program Files\AVAST Software\Avast\afwServ.exe
SR - | Auto 30/08/2011 390504 |  (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SS - | Demand  7168 |  (EverestDriver) . (...) - C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt
SS - | Demand 10/05/2012 867080 |  (FLEXnet Licensing Service) . (.Acresso Software Inc..) - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
SS - | Auto 21/05/2012 116648 |  (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 21/05/2012 116648 |  (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SR - | Auto 06/07/2011 326424 |  (LMS) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 14/12/2012 398184 |  (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
SR - | Auto 14/12/2012 682344 |  (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
SS - | Demand 02/01/2013 115168 |  (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto  76888 |  (PnkBstrA) . (...) - C:\Windows\system32\PnkBstrA.exe
SS - | Auto 08/01/2013 161536 |  (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe
SS - | Demand 19/02/2010 517096 |  (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
SR - | Auto 06/07/2011 2656536 |  (UNS) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 13/07/2009 20992 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 13/07/2009 20992 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Scan Services in 00mn 03s



---\\ Liste des émulateurs de CD/DVD (Hook du MBR)
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite
~ Scan Emulateurs in 00mn 03s



End of the scan (1382 lines in 03mn 41s)(0)