cjoint

Publicité

Priorité au Logiciel Libre! Je soutiens l'April.

Publicité

Priorité au Logiciel Libre! Je soutiens l'April.

Format du document : text/plain

Prévisualisation

Rapport de ZHPDiag v1.3.5.113 par Nicolas Coolman, Update du 21/02/2013
Run by christian at 22/02/2013 18:20:25
State : Version � jour.
High Elevated Privileges : OK
UAC : Deactivate by user


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421

---\\ Windows Product Information
~ Langage: Fran�ais
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 7QJB7
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: AMD64 Family 16 Model 6 Stepping 2, AuthenticAMD
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3839 MB (55% free)
System Restore: Activ� (Enable)
System drive C: has 246 GB (42%) free of 576 GB

---\\ Logged in mode
~ Computer Name: CHRISTIAN-PC
~ User Name: christian
~ All Users Names: christian, Administrateur,
~ Unselected Option: O45,O61,O62
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\christian\AppData\Roaming\
~ %Desktop% : C:\Users\christian\Desktop\
~ %Favorites% : C:\Users\christian\Favorites\
~ %LocalAppData% : C:\Users\christian\AppData\Local\
~ %StartMenu% : C:\Users\christian\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 246 Go of 576 Go)
D:\ CD-ROM drive (Not Inserted)
E:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn 00s



---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.435E9C764E1EF70058580996452BE6A2] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.09/01/2013 - 02:12:03.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.20/11/2010 - 14:25:30.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Biblioth�que de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.E453ACF4E7D44E5530B5D5F2B9CA8563] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.31/08/2012 - 19:19:35.) -- C:\Windows\system32\Drivers\ntfs.sys [1659760]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parall�le.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Scan Generic Processes in 00mn 00s



---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 2/6347
~ Mes musiques (My Musics) : 329/3044
~ Mes Videos (My Videos) : 129/519
~ Mes Favoris (My Favorites) : 1/77
~ Mes Documents (My Documents) : 3/14322
~ Mon Bureau (My Desktop) : 1/17
~ Menu demarrer (Programs) : 1/27
~ Scan Hidden Files in 00mn 27s



---\\ Processus lanc�s
[MD5.7853D2AB445C10F97610B2B05FA4CF0A] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [512360] [PID.952]
[MD5.0654E4C1F597FC07D6FC7443D4F94840] - (.Google Inc. - Google Chrome.) -- C:\Users\christian\AppData\Local\Google\Chrome\Application\chrome.exe [1248208] [PID.2224]
[MD5.E20433DAC42F0351F237F87D8ADC4E8A] - (.Samsung - KiesPDLR.) -- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844296] [PID.2560]
[MD5.334206173B1DF9D68817E5F07789E955] - (.Samsung Electronics - Pas de description.) -- C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe [578560] [PID.2956]
[MD5.8E7AF6DD4E43C14D957C0AD7CA0A7B89] - (.Samsung - Kies.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe [1476104] [PID.2636]
[MD5.9DB0C7F8D5975D21750034A3AF497625] - (.ACD Systems - Device Detector.) -- C:\Program Files (x86)\Common Files\ACD Systems\FR\DevDetect.exe [451920] [PID.1344]
[MD5.D9F7991FF1557C97411E8778C3E5A30F] - (.Smartbar - Smartbar.) -- C:\Users\christian\AppData\Local\Smartbar\Application\QuickShare.exe [13824] [PID.3108]
[MD5.ECF45E3FC8C63E44ED45D38A8672E7F1] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [275768] [PID.3200]
[MD5.A2C1288BD3DEDE03B2327E5972678C2E] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files (x86)\McAfee Security Scan\3.0.285\SSScheduler.exe [271808] [PID.3304]
[MD5.083649EF692A066880C9326020915AFE] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4297136] [PID.3368]
[MD5.D0D99257DDDCDDBE998AF7CA14E85BD0] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe [168960] [PID.3352]
[MD5.9843F58DF3E2908D1FED4DF4B8747E51] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe [559104] [PID.3800]
[MD5.883008A9B5BFF94A153D99DBA54CB5C1] - (.Hewlett-Packard - GPCore COM object.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe [362496] [PID.3808]
[MD5.F18E51E0C244E50B43036012900A3C57] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [5693440] [PID.3900]
[MD5.8FA553E9AE69808D99C164733A0F9590] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [44808] [PID.1212]
[MD5.3927397AC60D943DAF8808AFFED582B7] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65192] [PID.1712]
[MD5.1ACAA67676E9E7BDA5E0C41B6E0DECAF] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [398184] [PID.1844]
[MD5.916B8954AC3E06DC9E898AFFB41F3FB6] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [682344] [PID.1924]
~ Scan Processes Running in 00mn 00s



---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Users\christian\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] http://search.fbdownloader.com
G0 - GCSP: Preference [User Data\Default] http://www.google.fr
G1 - GCS: Preference [User Data\Default] http://search.fbdownloader.com
~ Scan Google Browser in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\christian\AppData\Roaming\Mozilla\Firefox\Profiles\do1rewal.default\prefs.js
C:\Users\christian\AppData\Roaming\Mozilla\Firefox\Profiles\do1rewal.default\user.js
M3 - MFPP: Plugins - [christian] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\babylon.xml
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.4.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN:Firefox Plugin Navigator . (.Nullsoft, Inc. - Winamp Application Detector.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npwachk.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_4_402_287.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.10411.0.) -- c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\christian\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\christian\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS - Unity Player 3.4.2f3.) -- C:\Users\christian\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
~ Scan Firefox Browser in 00mn 00s



---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.fbdownloader.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.emachines.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://feed.snap.do
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.emachines.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.snap.do
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\SysWOW64\ieframe.dll
R3 - URLSearchHook: (no name) [64Bits] - {249d74a3-bd19-4657-b6ce-e62f480a20de} . (.Microsoft Corporation - Navigateur Internet.) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride =
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 03s
~ Nombre de lignes (Lines number): 15297



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: (no name) [64Bits] - {02478D38-C3F9-4efb-9B51-7695ECA05670} Cl� orpheline
O2 - BHO: HP Print Enhancer [64Bits] - {0347C33E-8762-4905-BF09-768834316C61} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Cl� orpheline
O2 - BHO: QuickShare WidgetEngine [64Bits] - {31ad400d-1b06-4e33-a59a-90c2c140cba0} . (...) -- mscoree.dll (.not file.)
O2 - BHO: Web Assistant Helper [64Bits] - {336D0C35-8A85-403a-B9D2-65C292C39087} . (...) -- C:\Program Files\Web Assistant\Extension32.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: avast! WebRep [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft� Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\
O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Skype Technologies S.A. - Skype Click to Call for Internet Explorer.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: DVDVideoSoft.WebPageAdjuster [64Bits] - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} . (.DVDVideoSoft Ltd. - DVDVideoSoft IE Extension.) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
O2 - BHO: Yontoo Layers [64Bits] - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} . (.Yontoo LLC - Yontoo Runtime.) -- C:\Program Files (x86)\Yontoo\YontooIEClient.dll
O2 - BHO: SingleInstance Class [64Bits] - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} . (...) -- C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (.not file.)
O2 - BHO: HP Smart BHO Class [64Bits] - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
~ Scan BHO in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) [64Bits] - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Cl� orpheline
O3 - Toolbar: QuickShare Widget [64Bits] - [HKLM]{ae07101b-46d4-4a98-af68-0333ea26e113} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
~ Scan Toolbar in 00mn 00s



---\\ Applications d�marr�es par registre & par dossier (O4)
O4 - HKCU\..\Run: [609FA28432D7822418505F591F4023EB5571070A._service_run] . (.Google Inc. - Google Chrome.) -- C:\Users\christian\AppData\Local\Google\Chrome\Application\chrome.exe
O4 - HKCU\..\Run: [KiesPDLR] . (.Samsung - KiesPDLR.) -- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [KiesAirMessage] . (.Samsung Electronics - Pas de description.) -- C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe
O4 - HKCU\..\Run: [KiesPreload] . (.Samsung - Kies.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe
O4 - HKCU\..\Run: [Device Detector] DevDetect.exe
O4 - HKCU\..\Run: [Bubble Dock] C:\Users\christian\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe (.not file.)
O4 - HKCU\..\Run: [SCheck] . (.Pas de propri�taire - Lua Launcher.) -- C:\Users\christian\AppData\Roaming\SCheck\SCheck.exe
O4 - HKCU\..\Run: [SSync] . (.Pas de propri�taire - Lua Launcher.) -- C:\Users\christian\AppData\Roaming\SSync\SSync.exe
O4 - HKCU\..\Run: [DataMgr] . (.HTTO Group, Ltd. - Updater.) -- C:\Users\christian\AppData\Roaming\DataMgr\DataMgr.exe
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\christian\AppData\Local\Google\Update\GoogleUpdate.exe
O4 - HKCU\..\Run: [Browser Infrastructure Helper] . (.Smartbar - Smartbar.) -- C:\Users\christian\AppData\Local\Smartbar\Application\QuickShare.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-1921792681-2279291345-4021548378-1001\..\Run: [609FA28432D7822418505F591F4023EB5571070A._service_run] . (.Google Inc. - Google Chrome.) -- C:\Users\christian\AppData\Local\Google\Chrome\Application\chrome.exe
O4 - HKUS\S-1-5-21-1921792681-2279291345-4021548378-1001\..\Run: [KiesPDLR] . (.Samsung - KiesPDLR.) -- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKUS\S-1-5-21-1921792681-2279291345-4021548378-1001\..\Run: [KiesAirMessage] . (.Samsung Electronics - Pas de description.) -- C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe
O4 - HKUS\S-1-5-21-1921792681-2279291345-4021548378-1001\..\Run: [KiesPreload] . (.Samsung - Kies.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe
O4 - HKUS\S-1-5-21-1921792681-2279291345-4021548378-1001\..\Run: [Device Detector] DevDetect.exe
O4 - HKUS\S-1-5-21-1921792681-2279291345-4021548378-1001\..\Run: [Bubble Dock] C:\Users\christian\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe (.not file.)
O4 - HKUS\S-1-5-21-1921792681-2279291345-4021548378-1001\..\Run: [SCheck] . (.Pas de propri�taire - Lua Launcher.) -- C:\Users\christian\AppData\Roaming\SCheck\SCheck.exe
O4 - HKUS\S-1-5-21-1921792681-2279291345-4021548378-1001\..\Run: [SSync] . (.Pas de propri�taire - Lua Launcher.) -- C:\Users\christian\AppData\Roaming\SSync\SSync.exe
O4 - HKUS\S-1-5-21-1921792681-2279291345-4021548378-1001\..\Run: [DataMgr] . (.HTTO Group, Ltd. - Updater.) -- C:\Users\christian\AppData\Roaming\DataMgr\DataMgr.exe
O4 - HKUS\S-1-5-21-1921792681-2279291345-4021548378-1001\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\christian\AppData\Local\Google\Update\GoogleUpdate.exe
O4 - HKUS\S-1-5-21-1921792681-2279291345-4021548378-1001\..\Run: [Browser Infrastructure Helper] . (.Smartbar - Smartbar.) -- C:\Users\christian\AppData\Local\Smartbar\Application\QuickShare.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iGoogle.lnk . (.Google Inc..) -- C:\Users\christian\AppData\Local\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\christian\Desktop\Audacity.lnk . (...) -- C:\Program Files (x86)\Audacity\audacity.exe
O4 - Global Startup: C:\Users\christian\Desktop\DVDVideoSoft Free Studio.lnk . (.DvdVideoSoft Ltd..) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe
O4 - Global Startup: C:\Users\christian\Desktop\eMachines Games.lnk . (.WildTangent, Inc..) -- C:\Program Files (x86)\eMachines Games\eMachines Game Console\GameConsole-wt.exe
O4 - Global Startup: C:\Users\christian\Desktop\Free YouTube Download.lnk . (.DVDVideoSoft Ltd..) -- C:\Program Files (x86)\DVDVideoSoft\Free YouTube Download\FreeYTVDownloader.exe
O4 - Global Startup: C:\Users\christian\Desktop\Google Chrome.lnk . (.Google Inc..) -- C:\Users\christian\AppData\Local\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\christian\Desktop\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\christian\Desktop\Mahjong.lnk - Cl� orpheline
O4 - Global Startup: C:\Users\christian\Desktop\PhotoFiltre 7.lnk . (.Antonio Da Cruz.) -- C:\Program Files (x86)\PhotoFiltre 7\PhotoFiltre7.exe
O4 - Global Startup: C:\Users\christian\Desktop\Pinball.lnk . (.Cinematronics.) -- C:\Program Files (x86)\Microsoft Games\Pinball\pinball.exe
O4 - Global Startup: C:\Users\christian\Desktop\Samsung Kies (Lite).lnk . (...) -- C:\Program Files (x86)\Samsung\Kies\KiesAgent.exe
O4 - Global Startup: C:\Users\christian\Desktop\SimpleDriver.lnk . (.Opsilog.) -- C:\Program Files (x86)\SimpleDriver\SimpleDriver.exe
O4 - Global Startup: C:\Users\christian\Desktop\Solitaire (2).lnk - Cl� orpheline
O4 - Global Startup: C:\Users\christian\Desktop\Solitaire.lnk - Cl� orpheline
O4 - Global Startup: C:\Users\christian\Desktop\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Users\christian\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\eMachines Games.lnk . (.WildTangent, Inc..) -- C:\Program Files (x86)\eMachines Games\eMachines Game Console\GameConsole-wt.exe
O4 - Global Startup: C:\Users\christian\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\IncrediMail 2.0.lnk . (.IncrediMail, Ltd..) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
O4 - Global Startup: C:\Users\christian\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\christian\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Picasa 3.lnk . (.Google Inc..) -- C:\Program Files (x86)\Google\Picasa3\Picasa3.exe
O4 - Global Startup: C:\Users\christian\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Samsung Kies.lnk . (...) -- C:\Program Files (x86)\Samsung\Kies\KiesAgent.exe
O4 - Global Startup: C:\Users\christian\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Winamp.lnk . (.Nullsoft, Inc..) -- C:\Program Files (x86)\Winamp\winamp.exe
O4 - Global Startup: C:\Users\christian\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\�Torrent.lnk . (.BitTorrent, Inc..) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
~ Scan Global Startup in 00mn 00s



---\\ Invisibilit� de l'ic�ne d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s



---\\ Boutons situ�s sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Free YouTube Download [64Bits] - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} . (...) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\dvdvideosoft.ico
~ Scan IE Extra Buttons in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d�affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft� Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft� Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
~ Scan Winsock in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{4995FEBE-96C1-4391-A4A0-10A006D142C4}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{4995FEBE-96C1-4391-A4A0-10A006D142C4}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{4995FEBE-96C1-4391-A4A0-10A006D142C4}: DhcpNameServer = 192.168.0.254
~ Scan Domain in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn 00s



---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s



---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
~ Scan Services in 00mn 07s



---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s



---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s



---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1921792681-2279291345-4021548378-1001Core.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1921792681-2279291345-4021548378-1001UA.job
[MD5.563CDCFEEAEF97163E206AF71A61AA6E] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
[MD5.7F19838AC317C34FCED020BE529AF71E] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
[MD5.9CE3B11704038F711481ACD6BD9A9A5A] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe
[MD5.00000000000000000000000000000000] [APT] [DealPly] (...) -- C:\Users\christian\AppData\Roaming\DealPly\UPDATE~1\UPDATE~1.exe (.not file.)
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-1921792681-2279291345-4021548378-1001Core] (.Google Inc..) -- C:\Users\christian\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-1921792681-2279291345-4021548378-1001UA] (.Google Inc..) -- C:\Users\christian\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.00000000000000000000000000000000] [APT] [YourFile Update] (...) -- C:\Program Files (x86)\YourFileDownloader\YourFileUpdater.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{1D0ADD7C-239F-4817-BAB0-27C9810E8453}] (...) -- C:\Users\christian\AppData\Local\Temp\INCRED~1\IMINST~1\binaries\imsetup.exe (.not file.)
[MD5.DA6A30C602A0E3B5C8651A65BD2EA417] [APT] [{6AA2DE02-A89F-4F97-9CF8-5103D0005AFD}] (...) -- C:\Program Files (x86)\Samsung\Kies\KiesAgent.exe
[MD5.00000000000000000000000000000000] [APT] [{6D3D5ED0-4D57-425C-9A02-3E07B5E04D43}] (...) -- D:\SETUPSE.exe (.not file.)
[MD5.7A383F5395F1AD8F9C079FAF7193419E] [APT] [{84596DA5-A2B9-46E4-9FD6-83A5CA6AFFBE}] (...) -- C:\Program Files (x86)\IncrediMail\bin\IMSetup.exe
~ Scan Scheduled Task in 00mn 03s



---\\ Composants install�s (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d�IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn 00s



---\\ Pilotes lanc�s au d�marrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\Drivers\aswrdr2.sys
O41 - Driver: (avgtp) . (.AVG Technologies - Pas de description.) - C:\Windows\system32\drivers\avgtpx64.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-syst�me de mise en m�moire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s



---\\ Logiciels install�s (O42)
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {FF21C3E6-97FD-474F-9518-8DCBE94C2854}
O42 - Logiciel: 7x8 version 0.97.01 configur� pour la maison - (.� 1997-2010 Patrick Pradeau.) [HKLM][64Bits] -- 7x8_is1
O42 - Logiciel: ACDSee Gestionnaire de photos 2009 - (.ACD Systems International.) [HKLM][64Bits] -- {300578F9-9EFF-4B93-9AB1-C0E5707EF463}
O42 - Logiciel: ACDSee Image Decoder Update - (.ACD Systems.) [HKLM][64Bits] -- {047A167B-0C6B-41F3-B5E6-E968F92468C1}
O42 - Logiciel: ACDSee RAW Image Decoder Plug-In Update 4.0 - (.ACD Systems.) [HKLM][64Bits] -- {1BF38C77-E678-49AF-885A-BBD10AED2FF3}
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {FE23D063-934D-4829-A0D8-00634CE79B4A}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader X (10.1.6) - Fran�ais - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM][64Bits] -- {B2EC4A38-B545-4A00-8214-13FE0E915E6D}
O42 - Logiciel: Audacity 1.2.6 - (.Pas de propri�taire.) [HKLM][64Bits] -- Audacity_is1
O42 - Logiciel: Bejeweled 2 Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT078910
O42 - Logiciel: Bob the Builder Can-Do-Zoo - (.WildTangent.) [HKLM][64Bits] -- WT078962
O42 - Logiciel: Build-a-lot 2 - (.WildTangent.) [HKLM][64Bits] -- WT079283
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Chicken Invaders 3 - Revenge of the Yolk - (.WildTangent.) [HKLM][64Bits] -- WT079296
O42 - Logiciel: CyberLink PowerDVD 9 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}
O42 - Logiciel: CyberLink PowerDVD 9 - (.CyberLink Corp..) [HKLM][64Bits] -- {A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: D�tection de l'application Winamp - (.Nullsoft, Inc.) [HKCU][64Bits] -- Winamp Detect
O42 - Logiciel: Escape Rosecliff Island - (.WildTangent.) [HKLM][64Bits] -- WT079316
O42 - Logiciel: Faerie Solitaire - (.WildTangent.) [HKLM][64Bits] -- WT079018
O42 - Logiciel: FileZilla Client 3.6.0.2 - (.FileZilla Project.) [HKLM][64Bits] -- FileZilla Client
O42 - Logiciel: FoxTab PDF Creator - (.Pas de propri�taire.) [HKCU][64Bits] -- FoxTab PDF Creator
O42 - Logiciel: Free YouTube Download version 3.2.0.128 - (.DVDVideoSoft Ltd..) [HKLM][64Bits] -- Free YouTube Download_is1
O42 - Logiciel: Freeplayer - (.Free.) [HKLM][64Bits] -- Freeplayer
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google�Earth - (.Google.) [HKLM][64Bits] -- {28E82311-8616-11E1-BEB0-B8AC6F97B88E}
O42 - Logiciel: HP Customer Participation Program 13.0 - (.HP.) [HKLM][64Bits] -- HPExtendedCapabilities
O42 - Logiciel: HP Document Manager 2.0 - (.HP.) [HKLM][64Bits] -- HP Document Manager
O42 - Logiciel: HP Imaging Device Functions 13.0 - (.HP.) [HKLM][64Bits] -- HP Imaging Device Functions
O42 - Logiciel: HP Officejet 4500 G510g-m - (.HP.) [HKLM][64Bits] -- {E5083D57-D93F-404C-A91F-1C50D67C2BEB}
O42 - Logiciel: HP Smart Web Printing 4.5 - (.HP.) [HKLM][64Bits] -- HP Smart Web Printing
O42 - Logiciel: HP Solution Center 13.0 - (.HP.) [HKLM][64Bits] -- HP Solution Center & Imaging Support Tools
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}
O42 - Logiciel: HPDiagnosticAlert - (.Microsoft.) [HKLM][64Bits] -- {846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}
O42 - Logiciel: IncrediMail - (.IncrediMail.) [HKLM][64Bits] -- {2CF22C94-1369-4C04-9A5F-A4BC6D91B508}
O42 - Logiciel: IncrediMail 2.0 - (.IncrediMail Ltd..) [HKLM][64Bits] -- IncrediMail
O42 - Logiciel: Insaniquarium Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT078919
O42 - Logiciel: Installation de Microsoft Works Suite 2001 - (.Pas de propri�taire.) [HKLM][64Bits] -- Works2001Setup
O42 - Logiciel: Java(TM) 6 Update 30 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216030FF}
O42 - Logiciel: Jewel Quest Solitaire 3 - (.WildTangent.) [HKLM][64Bits] -- WT079066
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: MSVC80_x64_v2 - (.Nokia.) [HKLM][64Bits] -- {4D668D4F-FAA2-4726-834C-31F4614F312E}
O42 - Logiciel: MSVC80_x86_v2 - (.Nokia.) [HKLM][64Bits] -- {6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}
O42 - Logiciel: MSVC90_x64 - (.Nokia.) [HKLM][64Bits] -- {AB071C8B-873C-459F-ACA9-9EBE03C3E89B}
O42 - Logiciel: MSVC90_x86 - (.Nokia.) [HKLM][64Bits] -- {AF111648-99A1-453E-81DD-80DBBF6DAD0D}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM][64Bits] -- {1B19A54C-3692-4D12-BFD9-1362DD34CE78}
O42 - Logiciel: MaCalculatrice 2.3 - (.MLSofts.) [HKLM][64Bits] -- {48D87CF2-9E6A-47B3-980B-2C1D3EF56819}
O42 - Logiciel: Mahjongg Artifacts - (.WildTangent.) [HKLM][64Bits] -- WT079329
O42 - Logiciel: Malwarebytes Anti-Malware version 1.70.0.1100 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: McAfee Security Scan Plus - (.McAfee, Inc..) [HKLM][64Bits] -- McAfee Security Scan
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {0214A441-A4AB-43A8-8DEF-2F73C5364673}
O42 - Logiciel: Microsoft Works 6.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {75DEB69B-4B6C-11D4-B0CE-00AA00BCC218}
O42 - Logiciel: Mon Carnet d'Adresses - (.db2p.) [HKLM][64Bits] -- Mon Carnet d'Adresses_is1
O42 - Logiciel: Mp3tag v2.52 - (.Florian Heidenreich.) [HKLM][64Bits] -- Mp3tag
O42 - Logiciel: MyFreeCodec - (.Pas de propri�taire.) [HKCU][64Bits] -- MyFreeCodec
O42 - Logiciel: NVIDIA Display Control Panel - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Display Control Panel
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Drivers
O42 - Logiciel: NVIDIA ForceWare Network Access Manager - (.NVIDIA Corporation.) [HKLM][64Bits] -- InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}
O42 - Logiciel: NVIDIA ForceWare Network Access Manager - (.NVIDIA Corporation.) [HKLM][64Bits] -- {7CFA46E3-CC2F-4355-82AE-6012DC3633FD}
O42 - Logiciel: Nero 9 Essentials - (.Nero AG.) [HKLM][64Bits] -- {c5eedd0a-4d94-4af4-a1f6-55c6a13d7cc9}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {F4041DCE-3FE1-4E18-8A9E-9DE65231EE36}
O42 - Logiciel: Nero DiscSpeed - (.Nero AG.) [HKLM][64Bits] -- {869200DB-287A-4DC0-B02B-2B6787FBCD4C}
O42 - Logiciel: Nero DiscSpeed Help - (.Nero AG.) [HKLM][64Bits] -- {CC019E3F-59D2-4486-8D4B-878105B62A71}
O42 - Logiciel: Nero DriveSpeed - (.Nero AG.) [HKLM][64Bits] -- {33CF58F5-48D8-4575-83D6-96F574E4D83A}
O42 - Logiciel: Nero DriveSpeed Help - (.Nero AG.) [HKLM][64Bits] -- {E5C7D048-F9B4-4219-B323-8BDB01A2563D}
O42 - Logiciel: Nero Express Help - (.Nero AG.) [HKLM][64Bits] -- {83202942-84B3-4C50-8622-B8C0AA2D2885}
O42 - Logiciel: Nero InfoTool - (.Nero AG.) [HKLM][64Bits] -- {FBCDFD61-7DCF-4E71-9226-873BA0053139}
O42 - Logiciel: Nero InfoTool Help - (.Nero AG.) [HKLM][64Bits] -- {20400DBD-E6DB-45B8-9B6B-1DD7033818EC}
O42 - Logiciel: Nero Installer - (.Nero AG.) [HKLM][64Bits] -- {E8A80433-302B-4FF1-815D-FCC8EAC482FF}
O42 - Logiciel: Nero Online Upgrade - (.Nero AG.) [HKLM][64Bits] -- {C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}
O42 - Logiciel: Nero StartSmart - (.Nero AG.) [HKLM][64Bits] -- {7748AC8C-18E3-43BB-959B-088FAEA16FB2}
O42 - Logiciel: Nero StartSmart Help - (.Nero AG.) [HKLM][64Bits] -- {2348B586-C9AE-46CE-936C-A68E9426E214}
O42 - Logiciel: Nero StartSmart OEM - (.Nero AG.) [HKLM][64Bits] -- {4D43D635-6FDA-4FA5-AA9B-23CF73D058EA}
O42 - Logiciel: NeroExpress - (.Nero AG.) [HKLM][64Bits] -- {595A3116-40BB-4E0F-A2E8-D7951DA56270}
O42 - Logiciel: Nokia Connectivity Cable Driver - (.Nokia.) [HKLM][64Bits] -- {A57025CC-5F2E-4D01-B387-06DB10500D43}
O42 - Logiciel: Nokia PC Suite - (.Nokia.) [HKLM][64Bits] -- Nokia PC Suite
O42 - Logiciel: Nokia PC Suite - (.Nokia.) [HKLM][64Bits] -- {41313863-5170-4D7E-AD60-3CDF4DEBA81F}
O42 - Logiciel: Nokia Suite - (.Nokia.) [HKLM][64Bits] -- Nokia Suite
O42 - Logiciel: Nokia Suite - (.Nokia.) [HKLM][64Bits] -- {7964AE02-9127-42C0-A917-2CE4CD4EFE3B}
O42 - Logiciel: OCR Software by I.R.I.S. 13.0 - (.HP.) [HKLM][64Bits] -- HPOCR
O42 - Logiciel: PDF Creator - (.Pas de propri�taire.) [HKLM][64Bits] -- PDF Creator
O42 - Logiciel: PL-2303 USB-to-Serial - (.Prolific Technology INC.) [HKLM][64Bits] -- {ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}
O42 - Logiciel: PVSonyDll - (.NVIDIA Corporation.) [HKLM][64Bits] -- {3D3E663D-4E7E-4577-A560-7ECDDD45548A}
O42 - Logiciel: Package de pilotes Windows - Nokia Modem (02/25/2011 4.7) - (.Nokia.) [HKLM][64Bits] -- E0AC723A3DE3A04256288CADBBB011B112AED454
O42 - Logiciel: Package de pilotes Windows - Nokia Modem (02/25/2011 7.01.0.9) - (.Nokia.) [HKLM][64Bits] -- 72A50F48CC5601190B9C4E74D81161693133E7F7
O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM][64Bits] -- WT079106
O42 - Logiciel: Photo Notifier and Animation Creator - (.IncrediMail Ltd..) [HKLM][64Bits] -- Photo Notifier and Animation Creator
O42 - Logiciel: Photo Notifier and Animation Creator - (.Nom de votre soci�t�.) [HKLM][64Bits] -- {6B7F28D4-160E-40C6-B7C8-5EC6B9734DA7}
O42 - Logiciel: PhotoFiltre 7 - (.Pas de propri�taire.) [HKCU][64Bits] -- PhotoFiltre 7
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM][64Bits] -- Picasa 3
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WT079114
O42 - Logiciel: Polar Golfer - (.WildTangent.) [HKLM][64Bits] -- WT079118
O42 - Logiciel: Polar Pool - (.WildTangent.) [HKLM][64Bits] -- WT079122
O42 - Logiciel: QuickShare - (.Linkury Inc..) [HKLM][64Bits] -- {55532499-5676-4DAE-9A57-AEB907A0A1DD}
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {0E64B098-8018-4256-BA23-C316A43AD9B0}
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44}
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- InstallShield_{758C8301-2696-4855-AF45-534B1200980A}
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {758C8301-2696-4855-AF45-534B1200980A}
O42 - Logiciel: Shop for HP Supplies - (.HP.) [HKLM][64Bits] -- Shop for HP Supplies
O42 - Logiciel: SimpleDriver 1.2.3 - (.Opsilog.) [HKLM][64Bits] -- SimpleDriver_is1
O42 - Logiciel: Skype Click to Call - (.Skype Technologies S.A..) [HKLM][64Bits] -- {B6CF2967-C81E-40C0-9815-C05774FEF120}
O42 - Logiciel: Solitaire - (.Pas de propri�taire.) [HKLM][64Bits] -- Solitaire_is1
O42 - Logiciel: TP-LINK TL-WN821N Driver - (.TP-LINK.) [HKLM][64Bits] -- {26B52E5B-1620-4676-9B46-B6C56B8105CE}
O42 - Logiciel: TP-LINK Wireless Configuration Utility - (.TP-LINK.) [HKLM][64Bits] -- {319D91C6-3D44-436C-9F79-36C0D22372DC}
O42 - Logiciel: TeamViewer 7 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer 7
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer
O42 - Logiciel: VLC media player 1.1.11 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Virtual COM Port Driver - (.STMicroelectronics.) [HKLM][64Bits] -- InstallShield_{9853299F-7AD8-4560-9896-60650BD8ACBF}
O42 - Logiciel: Virtual Families - (.WildTangent.) [HKLM][64Bits] -- WT079418
O42 - Logiciel: Virtual Villagers - A New Home - (.WildTangent.) [HKLM][64Bits] -- WT079175
O42 - Logiciel: Web Assistant 2.0.0.457 - (.IncrediBar.) [HKLM][64Bits] -- {336D0C35-8A85-403a-B9D2-65C292C39087}_is1
O42 - Logiciel: WinZip 16.5 - (.WinZip Computing, S.L. .) [HKLM][64Bits] -- {CD95F661-A5C4-44F5-A6AA-ECDD91C240D3}
O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM][64Bits] -- Winamp
O42 - Logiciel: Yahtzee - (.WildTangent.) [HKLM][64Bits] -- WT079180
O42 - Logiciel: Yontoo 1.12.02 - (.Yontoo LLC.) [HKLM][64Bits] -- {889DF117-14D1-44EE-9F31-C5FB5D47F68B}
O42 - Logiciel: Zuma Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT078930
O42 - Logiciel: avast! Free Antivirus v7.0.1474.0 - (.AVAST Software.) [HKLM][64Bits] -- avast
O42 - Logiciel: eMachines Game Console - (.WildTangent.) [HKLM][64Bits] -- eMachines Game Console
O42 - Logiciel: eMachines Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent emachines Master Uninstall
O42 - Logiciel: eMachines Recovery Management - (.Acer Incorporated.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9}
O42 - Logiciel: eMachines Registration - (.Acer Incorporated.) [HKLM][64Bits] -- eMachines Registration
O42 - Logiciel: eMachines ScreenSaver - (.eMachines Incorporated.) [HKLM][64Bits] -- eMachines Screensaver
O42 - Logiciel: eMachines Updater - (.Acer Incorporated.) [HKLM][64Bits] -- {EE171732-BEB4-4576-887D-CB62727F01CA}
O42 - Logiciel: eMule - (.Pas de propri�taire.) [HKLM][64Bits] -- eMule
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {840A3BAA-4C68-4581-9C7A-6F8D6CF531B9}
O42 - Logiciel: la version 1.11 - (.� 1997-2004 Patrick Pradeau.) [HKLM][64Bits] -- "MOINS par MOINS"_is1
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM][64Bits] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
O42 - Logiciel: �Torrent - (.BitTorrent Inc..) [HKLM][64Bits] -- uTorrent

---\\ HKCU & HKLM Software Keys
[HKCU\Software\53558ad8b63cbe12]
[HKCU\Software\ACD Systems]
[HKCU\Software\AcerUtil]
[HKCU\Software\Acer]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Conduit]
[HKCU\Software\AppDataLow\Software\Crossrider]
[HKCU\Software\AppDataLow\Software\Google]
[HKCU\Software\AppDataLow\Software\I Want This]
[HKCU\Software\AppDataLow\Software\IncrediMail_MediaBar_Francais_2]
[HKCU\Software\AppDataLow\Software\MarkAny]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\PriceGong]
[HKCU\Software\AppDataLow\Software\Smartbar]
[HKCU\Software\AppDataLow\Software\Unity]
[HKCU\Software\AppDataLow\Software\Yahoo]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Audacity]
[HKCU\Software\Avast Software]
[HKCU\Software\BVRP Software]
[HKCU\Software\BitTorrent]
[HKCU\Software\Bitdefender]
[HKCU\Software\Bugsplat]
[HKCU\Software\CH]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Conduit]
[HKCU\Software\CyberLink]
[HKCU\Software\DVDVideoSoft]
[HKCU\Software\DataMngr]
[HKCU\Software\DataMngr_Toolbar]
[HKCU\Software\FastReport]
[HKCU\Software\Freeplayer]
[HKCU\Software\GlarySoft]
[HKCU\Software\Google]
[HKCU\Software\HP]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\HipSoft]
[HKCU\Software\I.R.I.S.]
[HKCU\Software\IM Providers]
[HKCU\Software\IM]
[HKCU\Software\ImInstaller]
[HKCU\Software\Iminent]
[HKCU\Software\IncrediMail]
[HKCU\Software\InstallCore]
[HKCU\Software\Iris]
[HKCU\Software\JavaSoft]
[HKCU\Software\Lake]
[HKCU\Software\Licenses]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\MCAFEE]
[HKCU\Software\Macromedia]
[HKCU\Software\MainConcept]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Myfree Codec]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\Nico Mak Computing]
[HKCU\Software\Nokia]
[HKCU\Software\Norton]
[HKCU\Software\Nosibay]
[HKCU\Software\Novell]
[HKCU\Software\ODBC]
[HKCU\Software\OEM]
[HKCU\Software\OfferBox]
[HKCU\Software\Opsilog]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Protector]
[HKCU\Software\Samsung]
[HKCU\Software\SearchProtect]
[HKCU\Software\Skype]
[HKCU\Software\SmartbarBackup]
[HKCU\Software\SmartbarLog]
[HKCU\Software\Smartbar]
[HKCU\Software\Softonic]
[HKCU\Software\TeamViewer]
[HKCU\Software\Trolltech]
[HKCU\Software\UPH]
[HKCU\Software\Unity]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\WildTangent]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinZip Computing]
[HKCU\Software\Winamp]
[HKCU\Software\Wow6432Node]
[HKCU\Software\Yahoo]
[HKCU\Software\YourFileDownloader]
[HKCU\Software\csvconverter]
[HKCU\Software\cybelsoft]
[HKCU\Software\eMule]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AcerUtil]
[HKLM\Software\Acer]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Audible]
[HKLM\Software\CUSTPDF Writer]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Cyberlink]
[HKLM\Software\DVDVideoSoft]
[HKLM\Software\FileZilla 3]
[HKLM\Software\GEAR Software]
[HKLM\Software\Geonaute]
[HKLM\Software\Google]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\MLSoft]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nico Mak Computing]
[HKLM\Software\Nokia]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\OOBEOffer]
[HKLM\Software\OemSetup]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SAMSUNG]
[HKLM\Software\SRS Labs]
[HKLM\Software\Sonic]
[HKLM\Software\Tarma Installer]
[HKLM\Software\Waves Audio]
[HKLM\Software\Web Assistant]
[HKLM\Software\WildTangent]
[HKLM\Software\Wow6432Node\53558ad8b63cbe12]
[HKLM\Software\Wow6432Node\ACD Systems]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\BVRP Software]
[HKLM\Software\Wow6432Node\Babylon]
[HKLM\Software\Wow6432Node\Bunndle]
[HKLM\Software\Wow6432Node\CDDB]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Conduit]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\DVDVideoSoft]
[HKLM\Software\Wow6432Node\DataMngr]
[HKLM\Software\Wow6432Node\Digital River]
[HKLM\Software\Wow6432Node\DivXNetworks]
[HKLM\Software\Wow6432Node\FileZilla 3]
[HKLM\Software\Wow6432Node\Florian Heidenreich]
[HKLM\Software\Wow6432Node\FullCircle]
[HKLM\Software\Wow6432Node\GPL Ghostscript]
[HKLM\Software\Wow6432Node\GlarySoft]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\I.R.I.S.]
[HKLM\Software\Wow6432Node\ICE]
[HKLM\Software\Wow6432Node\ImInstaller]
[HKLM\Software\Wow6432Node\Iminent]
[HKLM\Software\Wow6432Node\IncrediMail_MediaBar_Francais_2]
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Lake]
[HKLM\Software\Wow6432Node\MLSoft]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\McAfee.com]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\Myfree Codec]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\Nico Mak Computing]
[HKLM\Software\Wow6432Node\Nokia Mobile Phones]
[HKLM\Software\Wow6432Node\Nokia]
[HKLM\Software\Wow6432Node\Novell]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OEM]
[HKLM\Software\Wow6432Node\OfferBox]
[HKLM\Software\Wow6432Node\PC Connectivity Solution]
[HKLM\Software\Wow6432Node\PCSuite]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Roozz.com]
[HKLM\Software\Wow6432Node\RtWlan]
[HKLM\Software\Wow6432Node\SOFTWARE]
[HKLM\Software\Wow6432Node\Safer Networking Limited]
[HKLM\Software\Wow6432Node\Samsung]
[HKLM\Software\Wow6432Node\SharingMax]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\TP-LINK]
[HKLM\Software\Wow6432Node\TeamViewer]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\Web Assistant]
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node\Yahoo]
[HKLM\Software\Wow6432Node\YourFileDownloader]
[HKLM\Software\Wow6432Node\YoutubeDownloader]
[HKLM\Software\Wow6432Node\cybelsoft]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
~ Scan Softwares in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 09/11/2012 - 18:49:25 - [3,162] ----D C:\Program Files (x86)\7x8
O43 - CFD: 03/12/2012 - 14:15:30 - [64,687] ----D C:\Program Files (x86)\ACD Systems
O43 - CFD: 15/02/2012 - 17:29:56 - [115,268] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 19/01/2012 - 13:22:28 - [8,444] ----D C:\Program Files (x86)\Audacity
O43 - CFD: 27/10/2012 - 11:08:53 - [1,137] ----D C:\Program Files (x86)\Boxore
O43 - CFD: 21/02/2013 - 12:47:57 - [736,500] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 01/08/2012 - 13:40:04 - [0,609] ----D C:\Program Files (x86)\Conduit
O43 - CFD: 21/12/2011 - 05:52:37 - [111,879] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 22/02/2013 - 16:05:40 - [5,964] ----D C:\Program Files (x86)\DVDVideoSoft
O43 - CFD: 01/08/2012 - 13:40:01 - [0,024] ----D C:\Program Files (x86)\DVDVideoSoftTB
O43 - CFD: 27/10/2012 - 11:25:00 - [26,266] ----D C:\Program Files (x86)\eMachines
O43 - CFD: 11/03/2010 - 14:47:02 - [704,542] ----D C:\Program Files (x86)\eMachines Games
O43 - CFD: 02/03/2012 - 14:22:06 - [10,401] ----D C:\Program Files (x86)\eMule
O43 - CFD: 01/02/2013 - 16:41:56 - [16,769] ----D C:\Program Files (x86)\FileZilla FTP Client
O43 - CFD: 15/03/2012 - 13:42:46 - [13,850] ----D C:\Program Files (x86)\FoxTabPDFConverter
O43 - CFD: 23/04/2012 - 14:29:01 - [38,763] ----D C:\Program Files (x86)\Freeplayer
O43 - CFD: 09/11/2012 - 19:19:00 - [207,014] ----D C:\Program Files (x86)\Google
O43 - CFD: 28/04/2012 - 11:33:00 - [7,701] ----D C:\Program Files (x86)\GPLGS
O43 - CFD: 13/01/2013 - 20:32:42 - [305,109] ----D C:\Program Files (x86)\HP
O43 - CFD: 10/03/2012 - 15:14:37 - [26,501] ----D C:\Program Files (x86)\IncrediMail
O43 - CFD: 09/01/2013 - 12:59:52 - [39,434] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 14/02/2013 - 09:14:17 - [6,303] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 24/07/2012 - 14:32:17 - [145,570] ----D C:\Program Files (x86)\iTunes
O43 - CFD: 21/12/2011 - 13:58:14 - [86,015] ----D C:\Program Files (x86)\Java
O43 - CFD: 21/04/2012 - 10:09:47 - [6,206] ----D C:\Program Files (x86)\ma-config.com
O43 - CFD: 22/02/2013 - 12:44:39 - [12,170] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 02/04/2012 - 10:50:24 - [2,414] ----D C:\Program Files (x86)\MarkAny
O43 - CFD: 22/02/2013 - 15:49:17 - [2,647] ----D C:\Program Files (x86)\McAfee Security Scan
O43 - CFD: 26/01/2012 - 15:19:32 - [0,000] ----D C:\Program Files (x86)\Micro Application
O43 - CFD: 04/02/2013 - 19:46:27 - [2,448] ----D C:\Program Files (x86)\Microsoft Games
O43 - CFD: 09/05/2012 - 15:00:41 - [679,963] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 11/03/2010 - 14:52:37 - [7,431] ----D C:\Program Files (x86)\Microsoft Office Suite Activation Assistant
O43 - CFD: 08/01/2013 - 17:40:16 - [0,142] ----D C:\Program Files (x86)\Microsoft Picture It!
O43 - CFD: 03/01/2013 - 17:33:40 - [40,838] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 21/12/2011 - 05:56:47 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 09/11/2012 - 18:49:25 - [0,627] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 09/11/2012 - 18:22:53 - [158,626] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 01/02/2012 - 12:12:56 - [3,288] ----D C:\Program Files (x86)\Microsoft Works Suite 2001
O43 - CFD: 23/12/2011 - 09:38:14 - [7,789] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 21/12/2011 - 06:46:30 - [2,238] ----D C:\Program Files (x86)\MLSofts
O43 - CFD: 17/04/2012 - 14:46:55 - [0,876] ----D C:\Program Files (x86)\MOINS par MOINS
O43 - CFD: 06/01/2013 - 20:05:58 - [2,754] ----D C:\Program Files (x86)\Mon Carnet d'Adresses
O43 - CFD: 09/11/2012 - 18:49:25 - [2,047] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 22/02/2013 - 12:32:30 - [0,002] ----D C:\Program Files (x86)\Mozilla Thunderbird
O43 - CFD: 07/10/2012 - 14:52:17 - [8,321] ----D C:\Program Files (x86)\Mp3tag
O43 - CFD: 14/07/2009 - 06:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 21/01/2012 - 13:18:23 - [26,600] ----D C:\Program Files (x86)\MSECache
O43 - CFD: 02/04/2012 - 12:07:07 - [10,585] ----D C:\Program Files (x86)\MyFree Codec
O43 - CFD: 11/03/2010 - 14:59:27 - [360,150] ----D C:\Program Files (x86)\Nero
O43 - CFD: 24/06/2012 - 17:24:55 - [182,867] ----D C:\Program Files (x86)\Nokia
O43 - CFD: 04/02/2013 - 20:01:26 - [0] ----D C:\Program Files (x86)\Nosibay
O43 - CFD: 20/12/2011 - 20:04:58 - [24,172] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 28/04/2012 - 11:32:53 - [11,806] ----D C:\Program Files (x86)\PDFCreator
O43 - CFD: 21/12/2011 - 07:06:15 - [2,630] ----D C:\Program Files (x86)\Photo Notifier and Animation Creator
O43 - CFD: 24/02/2012 - 13:17:53 - [7,792] ----D C:\Program Files (x86)\PhotoFiltre 7
O43 - CFD: 29/01/2012 - 20:08:16 - [12,603] ----D C:\Program Files (x86)\QCAD Professional Demo
O43 - CFD: 09/11/2012 - 18:49:25 - [72,431] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 21/02/2013 - 12:51:46 - [0,358] ----D C:\Program Files (x86)\RadioMee
O43 - CFD: 14/07/2009 - 06:32:38 - [37,357] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 09/08/2012 - 14:20:56 - [-781,722] ----D C:\Program Files (x86)\RomStation
O43 - CFD: 27/10/2012 - 11:20:37 - [0,792] ----D C:\Program Files (x86)\Roozz
O43 - CFD: 20/10/2012 - 12:21:00 - [237,101] ----D C:\Program Files (x86)\Samsung
O43 - CFD: 01/03/2012 - 04:59:02 - [23,123] ----D C:\Program Files (x86)\SimpleDriver
O43 - CFD: 29/10/2012 - 18:49:02 - [31,025] R---D C:\Program Files (x86)\Skype
O43 - CFD: 09/11/2012 - 18:49:26 - [0] ----D C:\Program Files (x86)\Software
O43 - CFD: 17/09/2012 - 10:23:42 - [4,372] ----D C:\Program Files (x86)\Spybot - Search & Destroy
O43 - CFD: 23/09/2012 - 15:29:59 - [3,309] ----D C:\Program Files (x86)\STMicroelectronics
O43 - CFD: 29/01/2012 - 20:08:16 - [85,417] ----D C:\Program Files (x86)\Sweet Home 3D
O43 - CFD: 14/09/2012 - 11:57:28 - [16,025] ----D C:\Program Files (x86)\TeamViewer
O43 - CFD: 27/10/2012 - 11:21:18 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 09/01/2013 - 12:59:52 - [4,976] ----D C:\Program Files (x86)\TP-LINK
O43 - CFD: 14/07/2009 - 05:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 19/10/2012 - 12:16:24 - [0,919] ----D C:\Program Files (x86)\uTorrent
O43 - CFD: 21/12/2011 - 06:42:21 - [81,010] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 06/04/2012 - 09:46:34 - [38,983] ----D C:\Program Files (x86)\Winamp
O43 - CFD: 06/04/2012 - 09:44:38 - [0,148] ----D C:\Program Files (x86)\Winamp Detect
O43 - CFD: 21/12/2011 - 04:26:36 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 10/02/2013 - 16:53:38 - [0,314] ----D C:\Program Files (x86)\Windows Games
O43 - CFD: 20/02/2012 - 19:00:17 - [113,834] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 09/01/2012 - 09:23:47 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 09/11/2012 - 18:49:26 - [4,791] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 06:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 09/01/2012 - 09:23:47 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 09/01/2012 - 09:23:47 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 09/11/2012 - 18:49:26 - [5,717] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 22/02/2013 - 12:36:56 - [0] ----D C:\Program Files (x86)\Yahoo!
O43 - CFD: 07/02/2013 - 16:15:32 - [0,326] ----D C:\Program Files (x86)\Yontoo
O43 - CFD: 22/02/2013 - 18:21:15 - [15,559] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 03/12/2012 - 14:22:11 - [18,548] ----D C:\Program Files (x86)\Common Files\ACD Systems
O43 - CFD: 23/01/2012 - 15:31:31 - [3,797] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 15/02/2012 - 17:29:54 - [37,554] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 27/10/2012 - 11:13:42 - [25,972] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 21/12/2011 - 05:52:37 - [0,132] ----D C:\Program Files (x86)\Common Files\CyberLink
O43 - CFD: 11/03/2010 - 14:49:13 - [0,089] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 22/02/2013 - 16:05:31 - [63,297] ----D C:\Program Files (x86)\Common Files\DVDVideoSoft
O43 - CFD: 21/12/2011 - 16:45:41 - [0,329] ----D C:\Program Files (x86)\Common Files\Hewlett-Packard
O43 - CFD: 13/01/2013 - 20:30:43 - [1,530] ----D C:\Program Files (x86)\Common Files\HP
O43 - CFD: 23/09/2012 - 15:29:22 - [4,193] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 21/12/2011 - 13:58:38 - [1,201] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 08/01/2013 - 17:40:09 - [354,004] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 11/03/2010 - 15:00:42 - [117,852] ----D C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 24/06/2012 - 17:27:10 - [14,051] ----D C:\Program Files (x86)\Common Files\Nokia
O43 - CFD: 01/01/2012 - 00:51:58 - [0,084] ----D C:\Program Files (x86)\Common Files\PCSuite
O43 - CFD: 06/04/2012 - 09:44:11 - [4,559] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 14/07/2009 - 04:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 14/07/2009 - 04:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 11/07/2012 - 18:21:57 - [50,109] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 21/12/2011 - 05:54:02 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 03/01/2012 - 17:15:22 - [0,187] ----D C:\ProgramData\ACD Systems
O43 - CFD: 11/03/2010 - 14:47:12 - [0,000] ----D C:\ProgramData\Acer
O43 - CFD: 22/02/2013 - 15:48:16 - [168,149] ----D C:\ProgramData\Adobe
O43 - CFD: 09/11/2012 - 18:49:26 - [30,042] ----D C:\ProgramData\Apple
O43 - CFD: 24/07/2012 - 14:31:27 - [75,270] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 21/12/2011 - 07:01:40 - [38,132] ----D C:\ProgramData\AVAST Software
O43 - CFD: 04/02/2013 - 19:46:29 - [0] ----D C:\ProgramData\Babylon
O43 - CFD: 21/12/2011 - 05:34:42 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 03/01/2012 - 17:09:19 - [0,000] ----D C:\ProgramData\BVRP Software
O43 - CFD: 09/11/2012 - 18:49:26 - [0,028] ----D C:\ProgramData\CyberLink
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 11/03/2010 - 14:56:20 - [1,098] ----D C:\ProgramData\eMachines
O43 - CFD: 26/12/2012 - 18:15:36 - [2,470] ----D C:\ProgramData\eMule
O43 - CFD: 21/12/2011 - 05:34:42 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 20/02/2013 - 14:37:34 - [0] ----D C:\ProgramData\firebird
O43 - CFD: 27/10/2012 - 11:25:15 - [0,988] ----D C:\ProgramData\Google
O43 - CFD: 10/02/2013 - 20:03:23 - [0,186] ----D C:\ProgramData\HipSoft
O43 - CFD: 13/01/2013 - 20:32:18 - [22,348] ----D C:\ProgramData\HP
O43 - CFD: 13/01/2013 - 20:32:10 - [0,009] ----D C:\ProgramData\HP Product Assistant
O43 - CFD: 21/12/2011 - 07:06:20 - [0,000] ----D C:\ProgramData\IM
O43 - CFD: 21/12/2011 - 07:05:35 - [8,581] ----D C:\ProgramData\IncrediMail
O43 - CFD: 04/06/2012 - 17:17:01 - [190,770] ----D C:\ProgramData\Installations
O43 - CFD: 09/11/2012 - 18:49:26 - [1,199] ----D C:\ProgramData\ma-config.com
O43 - CFD: 14/05/2012 - 10:09:51 - [17,794] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 22/02/2013 - 15:49:17 - [0,015] ----D C:\ProgramData\McAfee
O43 - CFD: 22/02/2013 - 15:49:19 - [0,001] ----D C:\ProgramData\McAfee Security Scan
O43 - CFD: 21/12/2011 - 05:34:42 - [0] --H-D C:\ProgramData\Menu D�marrer
O43 - CFD: 13/01/2013 - 20:36:31 - [598,858] -S--D C:\ProgramData\Microsoft
O43 - CFD: 13/02/2013 - 21:35:11 - [0,218] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 21/12/2011 - 05:34:42 - [0] --H-D C:\ProgramData\Mod�les
O43 - CFD: 29/05/2012 - 11:21:46 - [0,000] ----D C:\ProgramData\Mozilla
O43 - CFD: 11/03/2010 - 14:58:41 - [10,570] ----D C:\ProgramData\Nero
O43 - CFD: 09/11/2012 - 18:49:27 - [4,627] ----D C:\ProgramData\Nokia
O43 - CFD: 13/03/2012 - 16:27:18 - [386,923] ----D C:\ProgramData\NokiaInstallerCache
O43 - CFD: 21/12/2011 - 13:26:33 - [0,000] ----D C:\ProgramData\Norton
O43 - CFD: 11/03/2010 - 15:03:18 - [9,407] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 09/11/2012 - 18:22:54 - [0,261] ----D C:\ProgramData\NVIDIA
O43 - CFD: 03/01/2013 - 17:35:40 - [0,498] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 09/11/2012 - 18:49:27 - [0,000] ----D C:\ProgramData\OEM
O43 - CFD: 21/12/2011 - 05:54:24 - [9,203] ----D C:\ProgramData\Opsilog
O43 - CFD: 12/01/2012 - 05:19:49 - [0,001] ----D C:\ProgramData\Partner
O43 - CFD: 09/11/2012 - 18:49:27 - [0,016] ----D C:\ProgramData\PC Suite
O43 - CFD: 21/12/2011 - 07:06:15 - [0,982] ----D C:\ProgramData\Photo Notifier and Animation Creator
O43 - CFD: 17/09/2012 - 10:15:02 - [19,944] ----D C:\ProgramData\Samsung
O43 - CFD: 29/10/2012 - 18:49:04 - [31,836] ----D C:\ProgramData\Skype
O43 - CFD: 17/09/2012 - 10:23:42 - [5,078] ----D C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 21/12/2011 - 13:58:39 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 22/02/2013 - 12:37:21 - [2,571] ----D C:\ProgramData\Tarma Installer
O43 - CFD: 21/12/2011 - 05:51:31 - [0,051] ----D C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 09/01/2013 - 12:59:36 - [0,007] ----D C:\ProgramData\TP-LINK
O43 - CFD: 21/12/2011 - 16:59:05 - [0,000] ----D C:\ProgramData\WEBREG
O43 - CFD: 10/02/2013 - 18:25:17 - [7,863] ----D C:\ProgramData\Wild Tangent
O43 - CFD: 16/02/2013 - 13:46:54 - [970,340] ----D C:\ProgramData\WildTangent
O43 - CFD: 17/01/2013 - 17:11:41 - [0,002] ----D C:\ProgramData\Windows Genuine Advantage
O43 - CFD: 01/10/2012 - 12:04:02 - [2,302] ----D C:\ProgramData\WinZip
O43 - CFD: 22/02/2013 - 12:36:39 - [0] ----D C:\ProgramData\Yahoo!
O43 - CFD: 10/04/2012 - 12:40:23 - [0,852] ----D C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
O43 - CFD: 03/01/2012 - 17:17:15 - [2,565] ----D C:\Users\christian\AppData\Roaming\ACD Systems
O43 - CFD: 15/02/2012 - 17:29:25 - [14,533] ----D C:\Users\christian\AppData\Roaming\Adobe
O43 - CFD: 27/10/2012 - 11:13:43 - [0,209] ----D C:\Users\christian\AppData\Roaming\Apple Computer
O43 - CFD: 25/10/2012 - 14:52:14 - [0,022] ----D C:\Users\christian\AppData\Roaming\Babylon
O43 - CFD: 05/02/2013 - 19:02:16 - [2,568] ----D C:\Users\christian\AppData\Roaming\Common
O43 - CFD: 23/01/2012 - 16:14:07 - [0,002] ----D C:\Users\christian\AppData\Roaming\CyberLink
O43 - CFD: 05/02/2013 - 19:02:26 - [0,161] ----D C:\Users\christian\AppData\Roaming\DataMgr
O43 - CFD: 22/02/2013 - 16:05:17 - [1,115] ----D C:\Users\christian\AppData\Roaming\DVDVideoSoft
O43 - CFD: 22/02/2013 - 16:05:41 - [0,000] ----D C:\Users\christian\AppData\Roaming\DVDVideoSoftIEHelpers
O43 - CFD: 26/01/2012 - 18:53:21 - [0,310] ----D C:\Users\christian\AppData\Roaming\eTeks
O43 - CFD: 22/02/2013 - 12:50:07 - [0] ----D C:\Users\christian\AppData\Roaming\FBDownloader
O43 - CFD: 22/02/2013 - 15:49:49 - [0,023] ----D C:\Users\christian\AppData\Roaming\FileZilla
O43 - CFD: 09/11/2012 - 18:22:54 - [0] ----D C:\Users\christian\AppData\Roaming\GetRightToGo
O43 - CFD: 21/02/2013 - 12:49:58 - [0] ----D C:\Users\christian\AppData\Roaming\GlarySoft
O43 - CFD: 26/01/2012 - 15:25:03 - [0,527] ----D C:\Users\christian\AppData\Roaming\Google
O43 - CFD: 22/12/2011 - 17:29:41 - [0,244] ----D C:\Users\christian\AppData\Roaming\HP
O43 - CFD: 09/11/2012 - 18:22:54 - [0,003] ----D C:\Users\christian\AppData\Roaming\HpUpdate
O43 - CFD: 21/12/2011 - 05:40:19 - [0] ----D C:\Users\christian\AppData\Roaming\Identities
O43 - CFD: 26/01/2012 - 14:39:27 - [0,001] ----D C:\Users\christian\AppData\Roaming\LiveCAD3
O43 - CFD: 21/12/2011 - 06:08:10 - [0,055] ----D C:\Users\christian\AppData\Roaming\Macromedia
O43 - CFD: 14/05/2012 - 10:09:56 - [19,986] ----D C:\Users\christian\AppData\Roaming\Malwarebytes
O43 - CFD: 14/07/2009 - 08:44:38 - [0] ----D C:\Users\christian\AppData\Roaming\Media Center Programs
O43 - CFD: 04/02/2013 - 19:48:08 - [5,219] -S--D C:\Users\christian\AppData\Roaming\Microsoft
O43 - CFD: 21/12/2011 - 17:54:53 - [0] ----D C:\Users\christian\AppData\Roaming\Microsoft Web Folders
O43 - CFD: 09/01/2012 - 19:22:29 - [20,071] ----D C:\Users\christian\AppData\Roaming\Mozilla
O43 - CFD: 07/10/2012 - 15:01:15 - [0,067] ----D C:\Users\christian\AppData\Roaming\Mp3tag
O43 - CFD: 03/04/2012 - 16:09:29 - [0,078] ----D C:\Users\christian\AppData\Roaming\Nero
O43 - CFD: 23/01/2012 - 15:27:12 - [1,594] ----D C:\Users\christian\AppData\Roaming\Nokia
O43 - CFD: 11/01/2012 - 19:34:56 - [0,067] ----D C:\Users\christian\AppData\Roaming\Nokia Suite
O43 - CFD: 04/02/2013 - 19:48:08 - [0] ----D C:\Users\christian\AppData\Roaming\Nosibay
O43 - CFD: 21/12/2011 - 06:07:55 - [0] ----D C:\Users\christian\AppData\Roaming\OEM
O43 - CFD: 27/10/2012 - 11:21:37 - [0,691] ----D C:\Users\christian\AppData\Roaming\OfferBox
O43 - CFD: 22/02/2013 - 16:05:16 - [33,727] ----D C:\Users\christian\AppData\Roaming\OpenCandy
O43 - CFD: 17/02/2012 - 17:50:55 - [1,428] ----D C:\Users\christian\AppData\Roaming\OpenOffice.org
O43 - CFD: 01/02/2012 - 19:44:53 - [5,257] ----D C:\Users\christian\AppData\Roaming\PC Suite
O43 - CFD: 01/08/2012 - 13:40:09 - [0,003] ----D C:\Users\christian\AppData\Roaming\PhotoFiltre 7
O43 - CFD: 28/01/2012 - 16:49:40 - [0] ----D C:\Users\christian\AppData\Roaming\Pixia
O43 - CFD: 29/04/2012 - 13:55:19 - [0,056] ----D C:\Users\christian\AppData\Roaming\QuickScan
O43 - CFD: 15/02/2012 - 17:30:21 - [0,000] ----D C:\Users\christian\AppData\Roaming\RadioMee
O43 - CFD: 17/09/2012 - 09:47:42 - [529,574] ----D C:\Users\christian\AppData\Roaming\Samsung
O43 - CFD: 05/02/2013 - 19:02:18 - [0,058] ----D C:\Users\christian\AppData\Roaming\SCheck
O43 - CFD: 09/11/2012 - 18:22:54 - [3,550] ----D C:\Users\christian\AppData\Roaming\Skype
O43 - CFD: 05/02/2013 - 19:02:24 - [0,059] ----D C:\Users\christian\AppData\Roaming\SSync
O43 - CFD: 02/06/2012 - 12:56:46 - [0,004] ----D C:\Users\christian\AppData\Roaming\Talkback
O43 - CFD: 01/02/2013 - 16:40:43 - [0,009] ----D C:\Users\christian\AppData\Roaming\TeamViewer
O43 - CFD: 21/07/2012 - 22:33:29 - [0] ----D C:\Users\christian\AppData\Roaming\Temp
O43 - CFD: 06/04/2012 - 16:17:53 - [0,008] ----D C:\Users\christian\AppData\Roaming\Template
O43 - CFD: 20/02/2012 - 16:38:33 - [218,899] ----D C:\Users\christian\AppData\Roaming\Thunderbird
O43 - CFD: 06/04/2012 - 09:44:13 - [0,144] ----D C:\Users\christian\AppData\Roaming\Todae
O43 - CFD: 10/01/2013 - 06:47:14 - [0,001] ----D C:\Users\christian\AppData\Roaming\TP-LINK
O43 - CFD: 02/02/2012 - 05:50:45 - [0,000] ----D C:\Users\christian\AppData\Roaming\Unity
O43 - CFD: 06/11/2012 - 18:43:13 - [2,531] ----D C:\Users\christian\AppData\Roaming\uTorrent
O43 - CFD: 01/08/2012 - 13:40:09 - [1,554] ----D C:\Users\christian\AppData\Roaming\vlc
O43 - CFD: 10/02/2013 - 18:21:18 - [0,001] ----D C:\Users\christian\AppData\Roaming\WildTangent
O43 - CFD: 17/09/2012 - 18:42:22 - [1,600] ----D C:\Users\christian\AppData\Roaming\Winamp
O43 - CFD: 20/02/2012 - 19:12:18 - [0] ----D C:\Users\christian\AppData\Roaming\Windows Live Writer
O43 - CFD: 20/10/2012 - 04:42:16 - [0,138] ----D C:\Users\christian\AppData\Roaming\WinZip
O43 - CFD: 03/12/2012 - 14:16:00 - [0] ----D C:\Users\christian\AppData\Roaming\Yahoo!
O43 - CFD: 20/10/2012 - 12:25:20 - [0] ----D C:\Users\christian\AppData\Roaming\YourFileDownloader
O43 - CFD: 03/01/2012 - 17:17:17 - [69,628] ----D C:\Users\christian\AppData\Local\ACD Systems
O43 - CFD: 15/02/2012 - 17:28:27 - [14,868] ----D C:\Users\christian\AppData\Local\Adobe
O43 - CFD: 17/04/2012 - 17:41:21 - [0,164] ----D C:\Users\christian\AppData\Local\APN
O43 - CFD: 10/04/2012 - 12:39:00 - [0] ----D C:\Users\christian\AppData\Local\Apple
O43 - CFD: 10/04/2012 - 12:40:53 - [5,891] ----D C:\Users\christian\AppData\Local\Apple Computer
O43 - CFD: 21/12/2011 - 05:35:00 - [0] ----D C:\Users\christian\AppData\Local\Application Data
O43 - CFD: 27/10/2012 - 11:51:40 - [0,063] ----D C:\Users\christian\AppData\Local\Conduit
O43 - CFD: 25/10/2012 - 18:02:25 - [3,309] ----D C:\Users\christian\AppData\Local\CRE
O43 - CFD: 23/01/2012 - 16:15:39 - [0,002] ----D C:\Users\christian\AppData\Local\Cyberlink
O43 - CFD: 20/10/2012 - 12:42:46 - [0,012] ----D C:\Users\christian\AppData\Local\DigitalVolcano
O43 - CFD: 03/12/2012 - 14:25:13 - [253,155] ----D C:\Users\christian\AppData\Local\Downloaded Installations
O43 - CFD: 22/02/2013 - 15:19:27 - [0,364] ----D C:\Users\christian\AppData\Local\ElevatedDiagnostics
O43 - CFD: 27/10/2012 - 11:25:15 - [1276,167] ----D C:\Users\christian\AppData\Local\Google
O43 - CFD: 21/12/2011 - 05:35:00 - [0] ----D C:\Users\christian\AppData\Local\Historique
O43 - CFD: 21/12/2011 - 19:20:53 - [0,036] ----D C:\Users\christian\AppData\Local\HP
O43 - CFD: 21/12/2011 - 18:17:22 - [0] ----D C:\Users\christian\AppData\Local\IM
O43 - CFD: 12/09/2012 - 18:47:39 - [0] ----D C:\Users\christian\AppData\Local\Macromedia
O43 - CFD: 04/01/2013 - 18:02:40 - [211,602] ----D C:\Users\christian\AppData\Local\Microsoft
O43 - CFD: 10/02/2013 - 17:27:38 - [0,393] ----D C:\Users\christian\AppData\Local\Microsoft Games
O43 - CFD: 21/12/2011 - 06:02:02 - [0] ----D C:\Users\christian\AppData\Local\Microsoft Help
O43 - CFD: 21/12/2011 - 13:51:52 - [0,003] ----D C:\Users\christian\AppData\Local\MLSofts
O43 - CFD: 09/01/2012 - 19:22:11 - [32,749] ----D C:\Users\christian\AppData\Local\Mozilla
O43 - CFD: 11/01/2012 - 19:31:21 - [4,392] ----D C:\Users\christian\AppData\Local\Nokia
O43 - CFD: 11/01/2012 - 19:34:10 - [0,001] ----D C:\Users\christian\AppData\Local\NokiaAccount
O43 - CFD: 22/02/2013 - 12:44:22 - [0] ----D C:\Users\christian\AppData\Local\Programs
O43 - CFD: 15/06/2012 - 11:15:48 - [72,465] ----D C:\Users\christian\AppData\Local\Roozz
O43 - CFD: 17/09/2012 - 10:18:47 - [0,093] ----D C:\Users\christian\AppData\Local\Samsung
O43 - CFD: 22/02/2013 - 16:06:39 - [18,587] ----D C:\Users\christian\AppData\Local\Smartbar
O43 - CFD: 17/04/2012 - 17:38:41 - [0] ----D C:\Users\christian\AppData\Local\Software
O43 - CFD: 22/02/2013 - 12:34:15 - [0,000] ----D C:\Users\christian\AppData\Local\SwvUpdater
O43 - CFD: 22/02/2013 - 18:21:20 - [13,135] ----D C:\Users\christian\AppData\Local\Temp
O43 - CFD: 21/12/2011 - 05:35:00 - [0] ----D C:\Users\christian\AppData\Local\Temporary Internet Files
O43 - CFD: 29/05/2012 - 10:53:55 - [8,408] ----D C:\Users\christian\AppData\Local\Thunderbird
O43 - CFD: 02/02/2012 - 05:45:05 - [0,200] ----D C:\Users\christian\AppData\Local\Unity
O43 - CFD: 21/12/2011 - 05:40:41 - [0] ----D C:\Users\christian\AppData\Local\VirtualStore
O43 - CFD: 22/02/2013 - 12:36:08 - [0,003] ----D C:\Users\christian\AppData\Local\WahOO
O43 - CFD: 20/02/2012 - 19:12:06 - [0,031] ----D C:\Users\christian\AppData\Local\Windows Live
O43 - CFD: 20/02/2012 - 19:12:34 - [0,618] ----D C:\Users\christian\AppData\Local\Windows Live Writer
O43 - CFD: 01/10/2012 - 12:02:22 - [0,251] ----D C:\Users\christian\AppData\Local\WinZip
O43 - CFD: 20/02/2012 - 19:13:14 - [0] ----D C:\Users\christian\AppData\Local\{012D0656-C4A8-430C-90BC-DE6765F8AE8C}
O43 - CFD: 20/02/2012 - 18:59:08 - [0] ----D C:\Users\christian\AppData\Local\{BDB30692-9160-4272-B183-227AAE338E2A}
O43 - CFD: 20/02/2012 - 19:12:43 - [0] ----D C:\Users\christian\AppData\Local\{DB1BFC22-5F66-471D-BB43-B636C8E56FF3}
O43 - CFD: 05/02/2013 - 18:15:49 - [0] ----D C:\Users\christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\123 Free Solitaire for Children
O43 - CFD: 14/07/2009 - 05:54:32 - [0,014] R---D C:\Users\christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 11/07/2012 - 19:50:41 - [0,000] R---D C:\Users\christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 22/02/2013 - 12:57:25 - [0] ----D C:\Users\christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Duplicate Cleaner
O43 - CFD: 06/04/2012 - 09:44:38 - [0,001] ----D C:\Users\christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\D�tection de l'application Winamp
O43 - CFD: 04/02/2013 - 19:46:28 - [0,001] ----D C:\Users\christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 15/01/2013 - 22:04:16 - [0,002] ----D C:\Users\christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 14/07/2009 - 05:49:38 - [0,001] R---D C:\Users\christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 24/02/2012 - 13:17:53 - [0] ----D C:\Users\christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre 7
O43 - CFD: 15/06/2012 - 11:14:16 - [0,000] ----D C:\Users\christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roozz
O43 - CFD: 11/07/2012 - 19:50:41 - [0,000] R---D C:\Users\christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
~ Scan Program Folder in 00mn 24s



---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.2B9DED83034B3ECE1D6546D49D7ACA13] - 22/02/2013 - 18:07:13 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1778252]
O44 - LFC:[MD5.D61B6CB10EAA48596C35EF2B3196CD6D] - 22/02/2013 - 18:04:03 ---A- . (...) -- C:\Windows\setupact.log [1752]
O44 - LFC:[MD5.2C4E33C9173CA362876B852B4AA9D0D6] - 22/02/2013 - 18:04:03 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.863482BD595B359142E0A3EFDB5F02DA] - 22/02/2013 - 16:31:29 ---A- . (...) -- C:\Windows\PFRO.log [618]
O44 - LFC:[MD5.ED8498B9DAC65B61A9F0CB0733D99E90] - 22/02/2013 - 15:45:45 . (...) -- C:\Windows\System32\FNTCACHE.DAT []
O44 - LFC:[MD5.ED8498B9DAC65B61A9F0CB0733D99E90] - 22/02/2013 - 15:45:45 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [379792]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 22/02/2013 - 15:44:03 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.04886A351744F0C0EDBB6DBB77D30E86] - 13/02/2013 - 21:28:12 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1571478]
O44 - LFC:[MD5.962C32EC630A5E79739D9999E2B64F27] - 13/02/2013 - 21:28:12 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [106412]
O44 - LFC:[MD5.6809F699AF15970B59B929C09F616A4B] - 13/02/2013 - 21:28:12 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [130770]
O44 - LFC:[MD5.ADE93C5E688AD905980826977A768F13] - 13/02/2013 - 21:28:12 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [616032]
O44 - LFC:[MD5.433340455256DC9F753553C9900963F9] - 13/02/2013 - 21:28:12 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [704464]
~ Scan Files in 00mn 22s



---\\ D�ni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l��diteur de configuration de s�curit� Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de s�curit� Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll
~ Scan Keys in 00mn 00s



---\\ Contr�le du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s



---\\ MountPoints2 Shell Key (O51) (None)

---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ Scan Keys in 00mn 00s



---\\ ShareTools MSconfig StartupReg (O53)
O53 - SMSR:HKLM\...\startupreg\609FA28432D7822418505F591F4023EB5571070A._service_run [Key] . (.Google Inc. - Google Chrome.) -- C:\Users\christian\AppData\Local\Google\Chrome\Application\chrome.exe
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O53 - SMSR:HKLM\...\startupreg\ApnUpdater [Key] . (...) -- C:\Program Files (x86)\Ask.com\Updater\Updater.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\APSDaemon [Key] . (...) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Boxore Client [Key] . (...) -- C:\Program Files (x86)\Boxore\BoxoreClient\boxore.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\chromium [Key] . (.Google Inc. - Google Chrome.) -- C:\Users\christian\AppData\Local\Google\Chrome\Application\chrome.exe
O53 - SMSR:HKLM\...\startupreg\FixCamera [Key] . (.Pas de propri�taire - CameraFixer MFC Application.) -- C:\Windows\FixCamera.exe
O53 - SMSR:HKLM\...\startupreg\Google Update [Key] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\christian\AppData\Local\Google\Update\GoogleUpdate.exe
O53 - SMSR:HKLM\...\startupreg\Hotkey Utility [Key] . (...) -- C:\Program Files (x86)\eMachines\Hotkey Utility\HotkeyUtility.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\HP Software Update [Key] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O53 - SMSR:HKLM\...\startupreg\Iminent [Key] . (...) -- C:\Program Files (x86)\Iminent\Iminent.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\iTunesHelper [Key] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O53 - SMSR:HKLM\...\startupreg\KiesAirMessage [Key] . (.Samsung Electronics - Pas de description.) -- C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe
O53 - SMSR:HKLM\...\startupreg\KiesHelper [Key] . (...) -- C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\KiesPDLR [Key] . (.Samsung - KiesPDLR.) -- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O53 - SMSR:HKLM\...\startupreg\KiesPreload [Key] . (.Samsung - Kies.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe
O53 - SMSR:HKLM\...\startupreg\KiesTrayAgent [Key] . (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O53 - SMSR:HKLM\...\startupreg\Microsoft Works Portfolio [Key] . (.Microsoft� Corporation - Microsoft� Works PortFolio.) -- C:\Program Files (x86)\Microsoft Works\WksSb.exe
O53 - SMSR:HKLM\...\startupreg\Microsoft Works Update Detection [Key] . (.Microsoft� Corporation - D�tection Microsoft� Works Update.) -- C:\Program Files (x86)\Microsoft Works\WkDetect.exe
O53 - SMSR:HKLM\...\startupreg\NokiaSuite.exe [Key] . (.Nokia - Nokia Suite.) -- C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
O53 - SMSR:HKLM\...\startupreg\QuickTime Task [Key] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O53 - SMSR:HKLM\...\startupreg\ROC_ROC_NT [Key] . (...) -- C:\Program Files (x86)\AVG Secure Search\ROC_ROC_NT.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\RtHDVCpl [Key] . (...) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\snp325 [Key] . (...) -- C:\Windows\vsnp325.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O53 - SMSR:HKLM\...\startupreg\Sweetpacks Communicator [Key] . (...) -- C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\swg [Key] . (...) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Tango [Key] . (...) -- C:\Program Files (x86)\Tango\Tango.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\tsnp325 [Key] . (...) -- C:\Windows\tsnp325.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\vProt [Key] . (...) -- C:\Program Files (x86)\AVG Secure Search\vprot.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Wahoo [Key] . (...) -- C:\Users\christian\AppData\Local\WahOO\WahOO.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\WinampAgent [Key] . (.Nullsoft, Inc. - Winamp Agent.) -- C:\Program Files (x86)\Winamp\winampa.exe
O53 - SMSR:HKLM\...\startupreg\WorksFUD [Key] . (.Microsoft� Corporation - Microsoft� Works Marketing Feature.) -- C:\Program Files (x86)\Microsoft Works\wkfud.exe
O53 - SMSR:HKLM\...\startupreg\YMailAdvisor [Key] . (...) -- C:\Program Files (x86)\Yahoo!\Common\YMailAdvisor.exe (.not file.)
~ Scan SMSR Keys in 00mn 00s



---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
~ Scan Keys in 00mn 00s



---\\ Liste des Drivers Syst�me (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]
O58 - SDL:[MD5.7461D3DA1AABB5F703504E958455A900] - 14/05/2012 - 17:41:32 ---A- . (.Realtek Semiconductor Corporation - Realtek RTL8192C USB NDIS Driver.) -- C:\Windows\System32\rtl8192cu.sys [926824]
O58 - SDL:[MD5.A16FB34E56C781DC56BE7492315655B9] - 03/08/2005 - 15:05:02 ---A- . (.Prolific Technology Inc. - USB-Serial USB Driver.) -- C:\Windows\SysWOW64\SER9PL.sys [35892]
~ Scan Drivers in 00mn 00s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.3.5 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s



---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 30/10/2012 - C:\Windows\System32\Drivers\aswFsBlk.sys (aswFsBlk) .(.AVAST Software - avast! File System Access Blocking Driver.) - LEGACY_ASWFSBLK
O64 - Services: CurCS - 30/10/2012 - C:\Windows\system32\drivers\aswMonFlt.sys (aswMonFlt) .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT
O64 - Services: CurCS - 15/10/2012 - C:\Windows\system32\Drivers\aswrdr2.sys (aswRdr) .(.AVAST Software - avast! WFP Redirect Driver.) - LEGACY_ASWRDR
O64 - Services: CurCS - 30/10/2012 - C:\Windows\System32\Drivers\aswSnx.sys (aswSnx) .(.AVAST Software - avast! Virtualization Driver.) - LEGACY_ASWSNX
O64 - Services: CurCS - 30/10/2012 - C:\Windows\System32\Drivers\aswSP.sys (aswSP) .(.AVAST Software - avast! self protection module.) - LEGACY_ASWSP
O64 - Services: CurCS - 30/10/2012 - C:\Windows\System32\Drivers\aswTdi.sys (aswTdi) .(.AVAST Software - avast! TDI Filter Driver.) - LEGACY_ASWTDI
O64 - Services: CurCS - 01/10/2012 - C:\Windows\system32\drivers\avgtpx64.sys (avgtp) .(.AVG Technologies - Pas de description.) - LEGACY_AVGTP
O64 - Services: CurCS - 21/07/2011 - C:\Program Files (x86)\ma-config.com\Drivers\driverhardwarev2x64.sys (driverhardwarev2x64) .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2X64
O64 - Services: CurCS - 14/12/2012 - C:\Windows\system32\drivers\mbam.sys (MBAMProtector) .(.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - LEGACY_MBAMPROTECTOR
O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
~ Scan Services in 00mn 00s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\christian\AppData\Local\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.bat> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKCR\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\christian\AppData\Local\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js> [HKCR\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKCR\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
~ Scan Keys in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\christian\AppData\Local\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Scan Keys in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {006ee092-9658-4fd6-bd8e-a21a348e59f5} - (Web Search) - http://feed.snap.do
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Delta Search) - http://www.yhs.delta-search.com
O69 - SBI: SearchScopes [HKCU] {95B7759C-8C7F-4BF1-B163-73684A933233} [DefaultScope] - (Search) - http://search.fbdownloader.com
~ Scan Keys in 00mn 00s



---\\ Recherche des services d�marr�s par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Exp�rience d�application.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de strat�gie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [853504]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [679424]
O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Moniteur infrarouge.) -- C:\Windows\System32\irmon.dll [23552]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de num�rotation automatique d�acc�s distant.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d�acc�s distant.) -- C:\Windows\System32\rasmans.dll [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d�interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d��v�nements syst�me (SENS).) -- C:\Windows\System32\sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l�application d�assistance � Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de t�l�phonie Microsoft� Windows(TM).) -- C:\Windows\System32\tapisrv.dll [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur h�te de session Burea.) -- C:\Windows\System32\termsrv.dll [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise � jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arri�re-plan.) -- C:\Windows\System32\qmgr.dll [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivit� IPv6 sur un r�seau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d�ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d�application.) -- C:\Windows\System32\appinfo.dll [70656]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de d�couverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multim�dias.) -- C:\Windows\System32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau � distance.) -- C:\Windows\System32\sessenv.dll [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) -- C:\Windows\System32\browser.dll [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de t�ches.) -- C:\Windows\System32\schedsvc.dll [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des cl�s.) -- C:\Windows\System32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux probl�mes.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des th�mes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]
~ Scan Services in 00mn 00s



---\\ Recherche particuliere � la racine de certains dossiers (O84)
[MD5.3BC09C39241237FD1EDA89697CFCECBD] [SPRF][01/10/2012] (.Pas de propri�taire - ToolbarUnInstaller.) -- C:\Users\christian\AppData\Local\Temp\UNINSTALL.exe [1066592]
[MD5.B2442E25949A5EA619A44B2AC213503D] [SPRF][07/02/2013] (.Amonetize ltd. - Software version updater.) -- C:\Users\christian\AppData\Local\Temp\UpdUninstall.exe [300584]
[MD5.FF70F1CBE0D68632D0983E7393EF39FE] [SPRF][12/02/2013] (...) -- C:\Users\christian\AppData\Roaming\wklnhst.dat [480]
[MD5.2670A7ECDAB26460F5217FFE43BA4279] [SPRF][04/02/2013] (...) -- C:\Users\christian\Desktop\3d_pinball_for_windows_-_space_cadet.exe [1399727]
[MD5.90B0B7E446FE4B8F25650D8C08637FB1] [SPRF][28/08/2012] (.Softbyte Labs, Inc. - CloneMaster Setup.) -- C:\Users\christian\Desktop\CloneMaster_Setup.exe [1585858]
~ Scan Files in 00mn 00s



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{4B600C43-9D3C-4A36-A99F-BE908AC025E6}" |Out - Private - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{E37144BC-FB2D-48B4-9EE2-3FD3AB403206}" |In - Private - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{14AEF681-0366-4E2C-B9F0-1868F64D104B}" |Out - Private - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{3B77AA25-F2F8-4491-B3E3-8732C10977D7}" |In - Private - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{F468B7B1-3980-4368-A0AC-D1067E8D0A01}" | In - None - P6 - TRUE | .(.CyberLink Corp. - PowerDVD 9.0.) -- C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.exe
O87 - FAEL: "{19625F6F-6E2F-41B4-A05D-17DAC55C2248}" |In - None - P17 - TRUE | .(...) -- D:\setup\hpznui40.exe (.not file.)
O87 - FAEL: "{816D7C06-4C0F-48BE-990E-59EF024DAF72}" | In - None - P17 - TRUE | .(.Hewlett-Packard - HP Update Client.) -- C:\Program Files (x86)\HP\hp software update\hpwucli.exe
O87 - FAEL: "TCP Query User{9A75C97D-C097-4A60-8868-7E379B16EC4D}C:\users\christian\appdata\local\google\chrome\application\chrome.exe" | In - Private - P6 - TRUE | .(.Google Inc..) -- C:\users\christian\appdata\local\google\chrome\application\chrome.exe
O87 - FAEL: "UDP Query User{F6C02E54-D3B4-419A-AB14-8A8D79520146}C:\users\christian\appdata\local\google\chrome\application\chrome.exe" | In - Private - P17 - TRUE | .(.Google Inc..) -- C:\users\christian\appdata\local\google\chrome\application\chrome.ex
O87 - FAEL: "{B46FF642-F4CD-4B04-B718-21D13B289A69}" | In - None - P17 - TRUE | .(.Nokia - Nokia Suite.) -- C:\Program Files (x86)\nokia\nokia suite\nokiasuite.exe
O87 - FAEL: "{25339ECE-8C4B-406F-88B5-22EA5D48D126}" | In - None - P17 - TRUE | .(.Nokia - Nokia Suite.) -- C:\Program Files (x86)\nokia\nokia suite\nokiasuite.exe
O87 - FAEL: "TCP Query User{D5B00ECD-21A7-4E10-A7EA-DB607A7AE687}C:\program files (x86)\radiomee\vlc\vlc.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\radiomee\vlc\vlc.exe (.not file.)
O87 - FAEL: "UDP Query User{8FADA9DE-DCA9-41A0-B100-AE871F686A34}C:\program files (x86)\radiomee\vlc\vlc.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\radiomee\vlc\vlc.exe (.not file.)
O87 - FAEL: "TCP Query User{5F9D3F7C-56C7-4E09-AF8E-D311B85E84A7}C:\program files (x86)\emule\emule.exe" | In - Private - P6 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files (x86)\emule\emule.exe
O87 - FAEL: "UDP Query User{2DB77FE5-CC1C-4C4E-AB3D-73B72A675922}C:\program files (x86)\emule\emule.exe" | In - Private - P17 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files (x86)\emule\emule.exe
O87 - FAEL: "{2DA2B7BB-225B-4F9E-9CF4-A172DB189923}" | In - Private - P6 - TRUE | .(.CybelSoft - Service de d�tection mat�riel.) -- C:\Program Files (x86)\ma-config.com\maconfservice.exe
O87 - FAEL: "{7888A979-0781-4928-9E77-B708119DD177}" | In - Private - P17 - TRUE | .(.CybelSoft - Service de d�tection mat�riel.) -- C:\Program Files (x86)\ma-config.com\maconfservice.exe
O87 - FAEL: "TCP Query User{E7876507-9CFA-4396-BCA5-677ACDD9401E}C:\program files (x86)\roozz\roozznhostsvc.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\roozz\roozznhostsvc.exe (.not file.)
O87 - FAEL: "UDP Query User{8F482E0A-8B6D-405B-A03B-5367097150E6}C:\program files (x86)\roozz\roozznhostsvc.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\roozz\roozznhostsvc.exe (.not file.)
O87 - FAEL: "{89EAC9E5-8559-4915-8CB9-1E7282179D7A}" | In - None - P17 - TRUE | .(.Nokia - Nokia Suite.) -- C:\Program Files (x86)\nokia\nokia suite\nokiasuite.exe
O87 - FAEL: "{C28EB0B4-67F0-4C8C-8482-79783A21A20F}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe
O87 - FAEL: "{003AA0B8-875F-411E-B72E-241BF554DB65}" | In - Private - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer Remote Control Application.) -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer.exe
O87 - FAEL: "{328B15A9-4D25-4861-A4C5-5D672928E067}" | In - Private - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer Remote Control Application.) -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer.exe
O87 - FAEL: "{139C7D8D-4BCD-4D52-9884-93A1A4AB2E0F}" | In - Private - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer Remote Control Application.) -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O87 - FAEL: "{DC71B444-E052-4454-8943-828D728D9BD2}" | In - Private - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer Remote Control Application.) -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O87 - FAEL: "{8671971E-2FA4-4BD8-86E2-6FB3EB769919}" | In - Private - P6 - TRUE | .(.Musiccity Co.Ltd. - MUZAoDApp Module.) -- C:\Windows\SysWOW64\muzapp.exe
O87 - FAEL: "{40B78357-3D0F-42D5-AF83-6B33350FBDC1}" | In - Private - P17 - TRUE | .(.Musiccity Co.Ltd. - MUZAoDApp Module.) -- C:\Windows\SysWOW64\muzapp.exe
O87 - FAEL: "{B0E468E0-8236-43D4-809F-E919427B2542}" | In - None - P6 - TRUE | .(.BitTorrent, Inc. - �Torrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
O87 - FAEL: "{F02771E8-9044-4221-9E15-3AE7E08E0A99}" | In - None - P17 - TRUE | .(.BitTorrent, Inc. - �Torrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
O87 - FAEL: "{5E764541-E83D-47E5-BFF0-704BDB7D1567}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Tango\Tango.exe (.not file.)
O87 - FAEL: "{C4F1CA49-2877-4991-9B81-365DFF354FA5}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Tango\Tango.exe (.not file.)
O87 - FAEL: "{360334C6-E3E6-4471-8D76-97C34275528C}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\YourFileDownloader\Downloader.exe (.not file.)
O87 - FAEL: "{25FD683B-1B40-47F0-A26A-8D4B511FB61C}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\YourFileDownloader\Downloader.exe (.not file.)
O87 - FAEL: "{57816A43-B46A-469F-88FD-2954B2428810}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\YourFileDownloader\YourFile.exe (.not file.)
O87 - FAEL: "{5F27835D-344D-44EC-AC23-99E2AE37B6E6}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\YourFileDownloader\YourFile.exe (.not file.)
O87 - FAEL: "{DF9AED7C-619B-4D10-A08D-55FB69DC87BC}" | In - Public - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
O87 - FAEL: "{986D53E6-7D1E-48BE-BEEA-25639220325E}" | In - Public - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
O87 - FAEL: "{71D81DE3-C0B9-42A8-9191-31BE7F585561}" | In - Public - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
O87 - FAEL: "{B483C60A-D4AC-4A75-B795-4735BD905EB6}" | In - Public - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
O87 - FAEL: "{536DA2F6-3A8D-48E9-A5A2-70086A278030}" | In - Private - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{AA58FDF2-4F8F-4819-8F4E-DE88FEE1D179}" | In - Private - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Content Importer.) -- C:\Program Files (x86)\IncrediMail\Bin\ImpCnt.exe
O87 - FAEL: "{03A54483-2CE1-48D8-835B-242E5AA0346A}" | In - Private - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
O87 - FAEL: "{D8079678-876C-4C20-A2AA-B296AE3CED59}" | In - Private - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
O87 - FAEL: "{21BC52EF-3D2D-4A4D-8716-0227FE17039B}" | In - Private - P6 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
O87 - FAEL: "{9DA1EEB5-BB55-44BD-955D-1B1B59A91D9B}" | In - Private - P17 - FALSE | .(.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
~ Scan Firewall in 00mn 00s



---\\ Scan Additionnel (O88)
Database Version : v2.10828 - (21/02/2013)
Cl�s trouv�es (Keys found) : 296
Valeurs trouv�es (Values found) : 3
Dossiers trouv�s (Folders found) : 20
Fichiers trouv�s (Files found) : 0

[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}] =>Toolbar.Agent
[HKLM\Software\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{0F54B66A-21CF-4548-AE59-A6B83EE6676F}] =>Toolbar.Winamp
[HKLM\Software\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}] =>Adware.Yontoo
[HKLM\Software\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{151867D5-7359-40AF-8764-66E58D06283C}] =>Toolbar.Agent
[HKLM\Software\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}] =>Adware.Yontoo
[HKLM\Software\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13}] =>Toolbar.Expresso
[HKLM\Software\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}] =>Toolbar.Agent
[HKLM\Software\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}] =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\{32451DFC-C23B-4E12-866C-FC7982238504}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{32451DFC-C23B-4E12-866C-FC7982238504}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}] =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403a-B9D2-65C292C39087}] =>Adware.IncrediBar
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403a-B9D2-65C292C39087}] =>Adware.IncrediBar
[HKLM\Software\Classes\CLSID\{336D0C35-8A85-403a-B9D2-65C292C39087}] =>Adware.IncrediBar
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087}] =>Adware.IncrediBar
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087}] =>Adware.IncrediBar
[HKLM\Software\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}] =>Toolbar.Agent
[HKLM\Software\Classes\Interface\{51A971CA-D36E-4D13-A799-2CF0A491D04D}] =>Toolbar.Winamp
[HKLM\Software\Classes\Interface\{56FBEA9F-EF93-4318-B75F-A96FC7C7BD7B}] =>Toolbar.Winamp
[HKLM\Software\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}] =>PUP.Whitesmoke
[HKLM\Software\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}] =>PUP.Whitesmoke
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{736EF78E-5A04-46F9-893E-EDEC6EA5DF45}] =>Adware.Agent
[HKLM\Software\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7555B87D-D711-48B2-B97D-04DF700652BA}] =>Adware.Boxore
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7555B87D-D711-48B2-B97D-04DF700652BA}] =>Adware.Boxore
[HKLM\Software\Classes\Interface\{78B3C85E-44FF-4DC8-B3AD-156F39DC75E5}] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\Interface\{7A1BCE27-099C-4628-B63A-AEC00C6376B3}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{8216BD4A-4DC2-4DCE-9AFF-C86C5ACC6757}] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}] =>Adware.Yontoo
[HKLM\Software\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Agent
[HKLM\Software\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4ccf-834A-2DDA4E29E39E}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49dd-99D7-DC866BE87DBC}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}] =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}] =>Toolbar.Agent
[HKLM\Software\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}] =>Toolbar.Agent
[HKLM\Software\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}] =>PUP.Software.Updater
[HKLM\Software\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}] =>Toolbar.Expresso
[HKLM\Software\Wow6432Node\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}] =>Toolbar.Expresso
[HKLM\Software\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113}] =>Adware.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Interface\{AF3AFF7C-B9E9-48DD-9002-212B6DEAAC02}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}] =>Toolbar.Agent
[HKLM\Software\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}] =>Spyware.Soft2PC
[HKLM\Software\Wow6432Node\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}] =>Spyware.Soft2PC
[HKLM\Software\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}] =>Adware.CDNHelper
[HKLM\Software\Wow6432Node\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}] =>Adware.CDNHelper
[HKLM\Software\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}] =>Toolbar.Babylon
[HKLM\Software\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}] =>Toolbar.Conduit
[HKLM\Software\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}] =>Adware.Yontoo
[HKLM\Software\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}] =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}] =>Adware.Yontoo
[HKLM\Software\Classes\Interface\{D4D390BE-98E6-4633-AD1B-B18B54BE5E76}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D6533F74-218B-41BE-9D91-5BD471FECFFD}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}] =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{DBE82879-914A-422F-BAE9-2ECC80BE536F}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}] =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}] =>Adware.Yontoo
[HKLM\Software\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{E1164984-B567-47BD-A7FF-240C2594404A}] =>Toolbar.Winamp
[HKLM\Software\Wow6432Node\Classes\Interface\{E12D7149-73EF-45E4-A1E9-99FD7DAE62D3}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{E19FDA06-5BDF-43C2-B794-BCD8A4C2051F}] =>Toolbar.Winamp
[HKLM\Software\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}] =>Adware.Yontoo
[HKLM\Software\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}] =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Interface\{F2B184F1-547C-4EE9-BFC4-AC489C7077D9}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{FAB076F5-E4DD-4EA4-AFEE-F18BF972B057}] =>Toolbar.Winamp
[HKLM\Software\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}] =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}] =>Adware.Yontoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}] =>Adware.Yontoo
[HKLM\Software\Classes\AppID\Extension.DLL] =>Toolbar.Expresso
[HKLM\Software\Wow6432Node\Microsoft\Tracing\YourFile_RASAPI32] =>PUP.YourFileDownloader
[HKLM\Software\Classes\AppID\ScriptHelper.EXE] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Tracing\YourFileUpdater_RASAPI32] =>PUP.YourFileDownloader
[HKLM\Software\Classes\Extension.ExtensionHelperObject] =>Toolbar.Expresso
[HKLM\Software\Classes\Extension.ExtensionHelperObject.1] =>Toolbar.Expresso
[HKLM\Software\Classes\ScriptHelper.ScriptHelperApi] =>Toolbar.Agent
[HKLM\Software\Classes\ScriptHelper.ScriptHelperApi.1] =>Toolbar.Agent
[HKLM\Software\Classes\ViProtocol.ViProtocolOLE] =>Toolbar.Agent
[HKLM\Software\Classes\ViProtocol.ViProtocolOLE.1] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Tracing\YourFileUpdater_RASMANCS] =>PUP.YourFileDownloader
[HKLM\Software\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd] =>Adware.IncrediBar
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd] =>Adware.IncrediBar
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\ehdmaehkiiampolokajdcelladmnopgp] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\fjglfdldpdljgfjkfgieaocdapejkdlh] =>Adware.Boxore
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\paoponfhfdfnjgddpnpjkambkcgdaaib] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\BA086F2D38A8E1A47912955A68B3AD24] =>Adware.PredictAd
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\ApnUpdater] =>Toolbar.Ask
[HKCU\Software\DataMngr] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\DataMngr] =>Adware.Bandoo
[HKCU\Software\AppDataLow\Software\I Want This] =>PUP.RewardsArcade
[HKCU\Software\Iminent] =>Adware.IMBooster
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Iminent] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Iminent] =>Adware.IMBooster
[HKCU\Software\OfferBox] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\OfferBox] =>PUP.OfferBox
[HKCU\Software\AppDataLow\Software\PriceGong] =>Adware.PriceGong
[HKCU\Software\SmartbarBackup] =>Hijacker.SmartBar
[HKCU\Software\SmartbarLog] =>Hijacker.SmartBar
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKLM\Software\Tarma Installer] =>Toolbar.Agent
[HKLM\Software\Web Assistant] =>Adware.IncrediBar
[HKLM\Software\Wow6432Node\Web Assistant] =>Adware.IncrediBar
[HKLM\Software\Wow6432Node\Microsoft\Tracing\Iminent_RASAPI32] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Tracing\Iminent_RASMANCS] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASAPI32] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASMANCS] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1] =>Adware.IncrediBar
[HKLM\Software\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}] =>Toolbar.Conduit
[HKLM\Software\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}] =>PUP.Funmoods
[HKLM\Software\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}] =>Toolbar.Conduit
[HKLM\Software\Classes\Prod.cap] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Tracing\offerbox_RASAPI32] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Microsoft\Tracing\offerbox_RASMANCS] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Microsoft\Tracing\OfferBoxHTTPProxy_RASAPI32] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Microsoft\Tracing\OfferBoxHTTPProxy_RASMANCS] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Microsoft\Tracing\OfferBoxUpdateService_RASAPI32] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Microsoft\Tracing\OfferBoxUpdateService_RASMANCS] =>PUP.OfferBox
[HKLM\Software\Classes\Installer\Features\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKLM\Software\Classes\Installer\Products\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKLM\Software\Wow6432Node\Classes\Installer\Features\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKLM\Software\Wow6432Node\Classes\Installer\Products\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings] =>PUP.BProtector
[HKLM\Software\Classes\AppID\secman.DLL] =>Toolbar.Babylon
[HKLM\SYSTEM\CurrentControlSet\Services\Web Assistant Updater] =>Adware.IncrediBar
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403A-B9D2-65C292C39087}] =>Adware.IncrediBar
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403A-B9D2-65C292C39087}] =>Adware.IncrediBar
[HKLM\Software\Classes\CLSID\{336D0C35-8A85-403A-B9D2-65C292C39087}] =>Adware.IncrediBar
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403A-B9D2-65C292C39087}] =>Adware.IncrediBar
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403A-B9D2-65C292C39087}] =>Adware.IncrediBar
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] =>Toolbar.Yahoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\3192AA38321C641458DBDAF83979D193] =>Toolbar.Babylon
[HKCU\Software\Protector] =>PUP.AdvancedSystemProtector
[HKLM\Software\Wow6432Node\Microsoft\Tracing\QuickShare_RASAPI32] =>PUP.QuickShare
[HKLM\Software\Wow6432Node\Microsoft\Tracing\QuickShare_RASMANCS] =>PUP.QuickShare
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
[HKLM\Software\Classes\Toolbar.CT2851639] =>Toolbar.Conduit
[HKLM\Software\Classes\Toolbar.CT3128284] =>Toolbar.Conduit
[HKLM\Software\Classes\YontooIEClient.Api] =>Adware.Yontoo
[HKLM\Software\Classes\YontooIEClient.Api.1] =>Adware.Yontoo
[HKLM\Software\Classes\YontooIEClient.Layers] =>Adware.Yontoo
[HKLM\Software\Classes\YontooIEClient.Layers.1] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\Toolbar.CT2851639] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Toolbar.CT3128284] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Api] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Api.1] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Layers] =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Layers.1] =>Adware.Yontoo
[HKLM\Software\Classes\AppID\YontooIEClient.DLL] =>Adware.Yontoo
[HKLM\Software\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}] =>PUP.SweetIM^
[HKLM\Software\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}] =>PUP.SweetIM^
[HKLM\Software\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{8E5025C2-8EA3-430D-80B8-A14151068A6D} =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Run]:Bubble Dock =>Adware.SPointer
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar]:{249D74A3-BD19-4657-B6CE-E62F480A20DE} =>Toolbar.Conduit
C:\Program Files (x86)\yontoo =>Adware.Yontoo
C:\Program Files (x86)\Boxore =>Adware.Boxore
C:\Program Files (x86)\Conduit =>Toolbar.Conduit
C:\Program Files (x86)\Software =>Adware.Boxore
C:\ProgramData\Babylon =>Toolbar.Babylon
C:\ProgramData\Partner =>Spyware.Partner
C:\Users\christian\AppData\Roaming\yourfiledownloader =>PUP.YourFileDownloader
C:\Users\christian\AppData\Roaming\Babylon =>Toolbar.Babylon
C:\Users\christian\AppData\Roaming\OfferBox =>PUP.OfferBox
C:\Users\christian\AppData\Roaming\OpenCandy =>Adware.OpenCandy
C:\Users\christian\AppData\Roaming\DataMgr =>PUP.Datamngr
C:\Users\christian\AppData\Local\Conduit =>Toolbar.Conduit
C:\Users\christian\AppData\Local\Smartbar =>Hijacker.SmartBar
C:\Users\christian\AppData\Local\Software =>Adware.Boxore
C:\Users\christian\AppData\Local\SwvUpdater =>PUP.Software.Updater
C:\Users\christian\AppData\LocalLow\AVG Secure Search =>Toolbar.AVGSearch
C:\Users\christian\AppData\LocalLow\BabylonToolbar =>Toolbar.Babylon
C:\Users\christian\AppData\LocalLow\Conduit =>Toolbar.Conduit
C:\Users\christian\AppData\LocalLow\IncrediMail_MediaBar_Francais_2 =>Toolbar.Conduit
C:\Users\christian\AppData\Local\Temp\Smartbar =>Hijacker.SmartBar
~ Scan Additionnel in 00mn 22s



---\\ Recherche d�tournement de DNS routeur (O89) (None)

---\\ Product Upgrade Codes (O90)
O90 - PUC: "000021090200C0400000000000F01FEC" . (.Module de compatibilit� pour Microsoft Office System 2007.) -- c:\Windows\Installer\{90120000-0020-040C-0000-0000000FF1CE}\O12ConvIcon.exe
O90 - PUC: "00002159FA00C0400000000000F01FEC" . (.Microsoft Office PowerPoint Viewer 2007 (French).) -- c:\Windows\Installer\{95120000-00AF-040C-0000-0000000FF1CE}\ppvwicon.exe,0
O90 - PUC: "076CFAAAB965F2A4284B2449E5D03EFE" . (.Windows Live Writer.) -- C:\Windows\Installer\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}\ApplicationIcon.ico
O90 - PUC: "1038C85769625584FA5435B4210089A0" . (.Samsung Kies.) -- C:\Windows\Installer\{758C8301-2696-4855-AF45-534B1200980A}\ARPPRODUCTICON.exe
O90 - PUC: "11328E8261681E11EB0B8BCAF6798BE8" . (.Google�Earth.) -- C:\Windows\Installer\{28E82311-8616-11E1-BEB0-B8AC6F97B88E}\ARPPRODUCTICON.exe
O90 - PUC: "144A4120BA4A8A34D8FEF2375C636437" . (.Microsoft Works.) -- c:\Windows\Installer\{0214A441-A4AB-43A8-8DEF-2F73C5364673}\MSWorks.exe
O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
O90 - PUC: "20EA469772190C249A71C24EDCE4EFB3" . (.Nokia Suite.) -- C:\Windows\Installer\{7964AE02-9127-42C0-A917-2CE4CD4EFE3B}\ARPPRODUCTICON.exe
O90 - PUC: "2FC78D84A6E93B7489B0C2D1E35F8691" . (.MaCalculatrice 2.3.) -- C:\Windows\Installer\{48D87CF2-9E6A-47B3-980B-2C1D3EF56819}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "368313140715E7D4DA06C3FDD4BE8AF1" . (.Nokia PC Suite.) -- C:\Windows\Installer\{41313863-5170-4D7E-AD60-3CDF4DEBA81F}\ARPPRODUCTICON.exe
O90 - PUC: "3E64AFC7F2CC553428EA0621CD6333DF" . (.NVIDIA ForceWare Network Access Manager.) -- C:\Windows\Installer\{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}\ARPPRODUCTICON.exe
O90 - PUC: "487EA05EEBAFAD641A8FB7B665CD2BE2" . (.Microsoft Office Suite Activation Assistant.) -- C:\Windows\Installer\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}\ARPPRODUCTICON.exe
O90 - PUC: "49C22FC2963140C4A9F54ACBD6195B80" . (.IncrediMail.) -- C:\Windows\Installer\{2CF22C94-1369-4C04-9A5F-A4BC6D91B508}\ARPPRODUCTICON.exe
O90 - PUC: "4D82F7B6E0616C047B8CE56C9B37D47A" . (.Photo Notifier and Animation Creator.) -- C:\Windows\Installer\{6B7F28D4-160E-40C6-B7C8-5EC6B9734DA7}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA76301B744AA0100000010" . (.Adobe Reader X (10.1.6) - Fran�ais.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico
O90 - PUC: "7692FC6BE18C0C0489510C7547EF1F02" . (.Skype Click to Call.) -- C:\Windows\Installer\{B6CF2967-C81E-40C0-9815-C05774FEF120}\IconUninstallIco
O90 - PUC: "77C83FB1876EFA9488A5BB1DA0DEF23F" . (.ACDSee RAW Image Decoder Plug-In Update 4.0.) -- C:\Windows\Installer\{1BF38C77-E678-49AF-885A-BBD10AED2FF3}\ARPPRODUCTICON.exe
O90 - PUC: "890B46E081086524AB323C614AA39D0B" . (.QuickTime.) -- C:\Windows\Installer\{0E64B098-8018-4256-BA23-C316A43AD9B0}\Installer.ico
O90 - PUC: "9CA6158A1FAA9F747966302E4DDCCB8F" . (.PowerDVD.) -- C:\Windows\Installer\{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}\ARPPRODUCTICON.exe
O90 - PUC: "9F875003FFE939B4A91B0C5E07E74F36" . (.ACDSee Gestionnaire de photos 2009.) -- C:\Windows\Installer\{300578F9-9EFF-4B93-9AB1-C0E5707EF463}\ARPPRODUCTICON.exe
O90 - PUC: "A0BC5702F62DAAD44B42059792B634AB" . (.Windows Live FolderShare.) -- C:\Windows\Installer\{2075CB0A-D26F-4DAA-B424-5079296B43BA}\FolderShare48x48.ico
O90 - PUC: "AAB3A04886C41854C9A7F6D8C65F139B" . (.iTunes.) -- C:\Windows\Installer\{840A3BAA-4C68-4581-9C7A-6F8D6CF531B9}\Installer.ico
O90 - PUC: "B761A740B6C03F145B6E9E869F42861C" . (.ACDSee Image Decoder Update.) -- C:\Windows\Installer\{047A167B-0C6B-41F3-B5E6-E968F92468C1}\ARPPRODUCTICON.exe
O90 - PUC: "B96BED57C6B44D110BEC00AA00CB2C81" . (.Microsoft Works 6.0.) -- C:\Windows\Installer\{75DEB69B-4B6C-11D4-B0CE-00AA00BCC218}\Win2Kico.ico
O90 - PUC: "C45A91B1296321D4FB9D3126DD43EC87" . (.Ma-Config.com.) -- C:\Windows\Installer\{1B19A54C-3692-4D12-BFD9-1362DD34CE78}\maconfico
O90 - PUC: "C4E4AFE2F5B77F841A0CA18A287B9A3C" . (.HP Update.) -- C:\Windows\Installer\{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}\ARPPRODUCTICON.exe
O90 - PUC: "CC52075AE2F510D43B7860BD0105D034" . (.Nokia Connectivity Cable Driver.) -- C:\Windows\Installer\{A57025CC-5F2E-4D01-B387-06DB10500D43}\ARPPRODUCTICON.exe
O90 - PUC: "D366E3D3E7E477545A06E7DCDD5445A8" . (.PVSonyDll.) -- C:\Windows\Installer\{3D3E663D-4E7E-4577-A560-7ECDDD45548A}\ARPPRODUCTICON.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
~ Scan Files in 00mn 00s



---\\ Random Export Key (O91)
[HKCU\Software\53558ad8b63cbe12\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1095.52]:dllName="BrowserProtect.dll"
[HKCU\Software\53558ad8b63cbe12\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1095.52]:exeName="BrowserProtect.exe"
[HKCU\Software\53558ad8b63cbe12\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1095.52]:folderName="BrowserProtect"
[HKCU\Software\53558ad8b63cbe12\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1095.52]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}"
[HKCU\Software\53558ad8b63cbe12\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1095.52]:serviceName="BrowserProtect"
[HKCU\Software\53558ad8b63cbe12\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1095.52]:version="2.6.1095.52"
[HKLM\Software\Wow6432Node\53558ad8b63cbe12] => Cl� orpheline
~ Scan Export Key Software in 00mn 00s



---\\ MyComputer Name Space (O92)
O92 - MNS: Nokia Phone Browser - {416651E4-9C3C-11D9-8BDE-F66BAD1E3F3A}
~ Scan MNS in 00mn 00s



---\\ Etat g�n�ral des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 18/12/2012 65192 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Disabled 22/02/2013 251248 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 30/10/2012 44808 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Disabled 0 | (avast! Firewall) . (...) - C:\Program Files\AVAST Software\Avast\afwServ.exe
SS - | Disabled 626208 | (ForceWare Intelligent Application Manager (IAM)) . (...) - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
SS - | Disabled 10/10/2009 238328 | (GameConsoleService) . (.WildTangent, Inc..) - C:\Program Files (x86)\eMachines Games\eMachines Game Console\GameConsoleService.exe
SS - | Disabled 28/08/2009 1150496 | (Greg_Service) . (.Acer Incorporated.) - C:\Program Files (x86)\eMachines\Registration\GregHSRW.exe
SS - | Auto 21/12/2011 135664 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 21/12/2011 135664 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Disabled 12/08/2012 194032 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SR - | Demand 14/07/2009 27136 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll (hpqcxs08) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll (hpqddsvc) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.dll (HPSLPSVC) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe
SS - | Disabled 07/06/2012 936848 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SS - | Disabled 25/11/2011 311928 | (maconfservice) . (.CybelSoft.) - C:\Program Files (x86)\ma-config.com\maconfservice.exe
SR - | Auto 14/12/2012 398184 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
SR - | Auto 14/12/2012 682344 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
SS - | Demand 05/09/2012 234776 | (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files (x86)\McAfee Security Scan\3.0.285\McCHSvc.exe
SS - | Disabled 15/01/2010 935208 | (Nero BackItUp Scheduler 4.0) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SS - | Disabled 206880 | (nSvcIp) . (...) - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
SS - | Disabled 09/07/2010 159336 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SS - | Disabled 02/10/2012 3064000 | (Skype C2C Service) . (.Skype Technologies S.A..) - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
SS - | Disabled 31/08/2012 2754984 | (TeamViewer7) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
SS - | Disabled 29/01/2010 243232 | (Updater Service) . (.Acer Group.) - C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe
SS - | Disabled 0 | (vToolbarUpdater12.2.6) . (...) - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
SS - | Disabled 185856 | (Web Assistant Updater) . (...) - C:\Program Files\Web Assistant\ExtensionUpdaterService.exe
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Scan Services in 00mn 01s



---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
~ Scan MBR in 00mn 02s



---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by christian at 22/02/2013 18:24:03

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ Scan MBR in 00mn 04s



End of the scan (1825 lines in 03mn 37s)(0)

Publicité

Soutenons La Quadrature du Net ! Soutenons La Quadrature du Net !

Signaler le contenu de ce document

Publicité

Soutenons La Quadrature du Net !