Publicité
Publicité
Format du document : text/plain
Prévisualisation
Rapport de ZHPDiag v1.3.5.113 par Nicolas Coolman, Update du 21/02/2013
Run by JEREMIE at 23/02/2013 13:32:45
State :
High Elevated Privileges : OK
UAC : Deactivate by program
---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 19.0 v19.0
GCIE: Google Chrome v24.0.1312.57 (Defaut)
---\\ Windows Product Information
~ Langage: Fran�ais
Windows 7 Ultimate Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, RETAIL channel
Windows ID Activation : OK
~ Windows Partial Key : BG33H
Windows License : OK
~ Windows Remaining Initializations Number : 4
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Information
~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4095 MB (43% free)
System Restore: Activ� (Enable)
System drive C: has 170 GB (57%) free of 298 GB
---\\ Logged in mode
~ Computer Name: JEREMIE-PC
~ User Name: JEREMIE
~ All Users Names: JEREMIE, HomeGroupUser$, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\JEREMIE\AppData\Roaming\
~ %Desktop% : C:\Users\JEREMIE\Desktop\
~ %Favorites% : C:\Users\JEREMIE\Favorites\
~ %LocalAppData% : C:\Users\JEREMIE\AppData\Local\
~ %StartMenu% : C:\Users\JEREMIE\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ DOS/Devices
A:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
C:\ Hard drive, Flash drive, Thumb drive (Free 170 Go of 298 Go)
D:\ CD-ROM drive (Free 0 Go of 7 Go)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.435E9C764E1EF70058580996452BE6A2] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.09/01/2013 - 02:12:03.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.20/11/2010 - 14:25:30.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Biblioth�que de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.E453ACF4E7D44E5530B5D5F2B9CA8563] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.31/08/2012 - 19:19:35.) -- C:\Windows\system32\Drivers\ntfs.sys [1659760]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parall�le.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.1B6163C503398B23FF8B939C67747683] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.20/11/2010 - 12:06:41.) -- C:\Windows\system32\Drivers\rdpdr.sys [165888]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Scan Generic Processes in 00mn 00s
---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 1/40
~ Mes musiques (My Musics) : 1/12
~ Mes Videos (My Videos) : 1/2
~ Mes Favoris (My Favorites) : 1/26
~ Mes Documents (My Documents) : 1/172
~ Mon Bureau (My Desktop) : 1/58
~ Menu demarrer (Programs) : 1/25
~ Scan Hidden Files in 00mn 00s
---\\ Processus lanc�s
[MD5.76605731B6C6DD30BB8D151832322C1C] - (.Samsung - KiesPDLR.) -- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844144] [PID.3492]
[MD5.36318C725C216E1D810C546163F859C0] - (.Samsung Electronics - Pas de description.) -- C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe [578560] [PID.3504]
[MD5.65B8106CB122142FD0A4A26783D7963F] - (.Samsung - Kies.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe [1509232] [PID.3512]
[MD5.0654E4C1F597FC07D6FC7443D4F94840] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1248208] [PID.3524]
[MD5.587EFD6A3A30A35A27904D21AE1FB882] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356376] [PID.2016]
[MD5.8E2A7F1F62467A7DCB8AB2C0642F47CA] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392] [PID.4248]
[MD5.050D1C454A49D4DF8EB5222D352B6630] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [917400] [PID.6428]
[MD5.57785A015DED82C287761CA1BD02D532] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [17304] [PID.4580]
[MD5.EB0EB16E7DC48C3D645B1E136346999B] - (.Adobe Systems, Inc. - Adobe Flash Player 11.6 r602.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_168.exe [1820016] [PID.3920]
[MD5.F18E51E0C244E50B43036012900A3C57] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [5693440] [PID.3392]
[MD5.5CE3D0E1D1B3832EE052CFC442EEE0FA] - (.Creative Technology Ltd - Creative Audio Service.) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720] [PID.768]
[MD5.3927397AC60D943DAF8808AFFED582B7] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65192] [PID.1536]
[MD5.E536856E96A7605EBF580D62A868E5FE] - (...) -- C:\Windows\SysWOW64\ASGT.exe [55296] [PID.1996]
[MD5.205E1B699FD3F2F9B036EEA2EC30C620] - (...) -- C:\Windows\SysWOW64\PnkBstrA.exe [76888] [PID.2060]
[MD5.BECDDA0990DEBD72A30096533521AD73] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe [213384] [PID.2068]
[MD5.6AF12011C88C80920D0543616E107CFF] - (...) -- C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [245760] [PID.2348]
[MD5.4FE5C6D40664AE07BE5105874357D2ED] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [57008] [PID.3800]
~ Scan Processes Running in 00mn 00s
---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Users\JEREMIE\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default] http://www.google.com
G1 - GCS: Preference [User Data\Default] None
~ Scan Google Browser in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\JEREMIE\AppData\Roaming\Mozilla\Firefox\Profiles\8alg37kx.default\prefs.js
M3 - MFPP: Plugins - [JEREMIE] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [JEREMIE] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [JEREMIE] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [JEREMIE] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [JEREMIE] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [JEREMIE] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [JEREMIE] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml
M0 - MFSP: prefs.js [JEREMIE - 8alg37kx.default] http://start.iminent.com
M2 - MFEP: prefs.js [JEREMIE - 8alg37kx.default\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}] [] Garmin Communicator v4.0.4 (.Garmin International.)
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.5.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_168.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.10411.0.) -- C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\Program Files\Microsoft Office\Office14\NPAUTHZ.dll
P2 - FPN: [HKCU] [@Skype Limited.com/Facebook Video Calling Plugin] - (.Skype Limited - Facebook Video Calling Plugin.) -- C:\Users\JEREMIE\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
P2 - FPN: [HKCU] [@talk.google.com/GoogleTalkPlugin] - (.Google - Version 3.13.2.11592.) -- C:\Users\JEREMIE\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
P2 - FPN: [HKCU] [@talk.google.com/O3DPlugin] - (.Pas de propri�taire - Google Talk Plugin Video Accelerator version:0.1.44.23.) -- C:\Users\JEREMIE\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\JEREMIE\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\JEREMIE\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
~ Scan Firefox Browser in 00mn 00s
---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.iminent.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: ContentBlockerBrowserHelperObject [64Bits] - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} . (.Kaspersky Lab ZAO - Content Blocker Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocke
O2 - BHO: Groove GFS Browser Helper [64Bits] - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.dll
O2 - BHO: VirtualKeyboardBrowserHelperObject [64Bits] - {73455575-E40C-433C-9784-C78DC7761455} . (.Kaspersky Lab ZAO - Virtual Keyboard Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_key
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft� Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\
O2 - BHO: Safe Money Plugin [64Bits] - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} . (.Kaspersky Lab ZAO - Safe Money Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Logitech Flow Scroll [64Bits] - {E11DB59D-5008-42ff-9069-535843BC0BE1} . (.Logitech, Inc. - Logitech Flow Scroll.) -- C:\Program Files\Logitech\FlowScroll\32-bit\LogiSmooth.dll
O2 - BHO: link filter bho [64Bits] - {E33CF602-D945-461A-83F0-819F76A199F8} . (.Kaspersky Lab ZAO - URL Advisor Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll
~ Scan BHO in 00mn 00s
---\\ Applications d�marr�es par registre & par dossier (O4)
O4 - HKLM\..\Run: [AsioReg] REGSVR32 \S CTASIO.dll
O4 - HKLM\..\Run: [EvtMgr6] . (.Logitech, Inc. - Logitech SetPoint Event Manager (UNICODE).) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe
O4 - HKLM\..\Run: [LogiScrollApp] . (.Logitech, Inc. - Logitech ScrollApp (UNICODE).) -- C:\Program Files\Logitech\FlowScroll\KhalScroll.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\MsnMsgr.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [KiesAirMessage] . (.Samsung Electronics - Pas de description.) -- C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe
O4 - HKCU\..\Run: [KiesPreload] . (.Samsung - Kies.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_B5ABEAE1BC17476D6C7B8ACF755978A5] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - HKCU\..\Run: [21586C6CAEC787C35FBAFCEF87444A72C55FAE26._service_run] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - HKLM\..\Wow6432Node\Run: [AsioReg] REGSVR32 \S CTASIO.dll
O4 - HKLM\..\Wow6432Node\Run: [AVP] . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst� Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-1771212374-4168810696-2002671789-1001\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\MsnMsgr.exe
O4 - HKUS\S-1-5-21-1771212374-4168810696-2002671789-1001\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-1771212374-4168810696-2002671789-1001\..\Run: [KiesAirMessage] . (.Samsung Electronics - Pas de description.) -- C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe
O4 - HKUS\S-1-5-21-1771212374-4168810696-2002671789-1001\..\Run: [KiesPreload] . (.Samsung - Kies.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe
O4 - HKUS\S-1-5-21-1771212374-4168810696-2002671789-1001\..\Run: [GoogleChromeAutoLaunch_B5ABEAE1BC17476D6C7B8ACF755978A5] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - HKUS\S-1-5-21-1771212374-4168810696-2002671789-1001\..\Run: [21586C6CAEC787C35FBAFCEF87444A72C55FAE26._service_run] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\JEREMIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\JEREMIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\JEREMIE\Desktop\F1 2011.lnk - Cl� orpheline
O4 - Global Startup: C:\Users\JEREMIE\Desktop\PhotoFiltre.lnk . (.Antonio Da Cruz.) -- C:\Program Files (x86)\PhotoFiltre\PhotoFiltre.exe
O4 - Global Startup: C:\Users\JEREMIE\Desktop\Protection des transactions bancaires.lnk . (.Kaspersky Lab ZAO.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\starter_avp.exe
O4 - Global Startup: C:\Users\JEREMIE\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\JEREMIE\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Samsung Kies.lnk . (.Samsung.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe
~ Scan Global Startup in 00mn 00s
---\\ Invisibilit� de l'ic�ne d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s
---\\ Boutons situ�s sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Clavier virtuel [64Bits] - {0C4CC089-D306-440D-9772-464E226F6539} . (...) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\kbrd.ico
O9 - Extra button: &Envoyer � OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} -- C:\Program Files (x86)\MICROS~3\Office14\ONBttnIE.dll (.not file.)
O9 - Extra button: Notes &li�es OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} -- C:\Program Files (x86)\MICROS~3\Office14\ONBTTN~1.dll (.not file.)
O9 - Extra button: Analyse des liens [64Bits] - {CCF151D8-D089-449F-A5A4-D9909053F20F} . (...) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\logo.ico
~ Scan IE Extra Buttons in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d�affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft� Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft� Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000009\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Scan Winsock in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{0F5485BD-FC13-4959-94B0-EBA470AC7EE3}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CCS\Services\Tcpip\..\{BB9CF4FF-12E9-4E57-B867-FD77FEB6CC1E}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{0F5485BD-FC13-4959-94B0-EBA470AC7EE3}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CS1\Services\Tcpip\..\{BB9CF4FF-12E9-4E57-B867-FD77FEB6CC1E}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{0F5485BD-FC13-4959-94B0-EBA470AC7EE3}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CS2\Services\Tcpip\..\{BB9CF4FF-12E9-4E57-B867-FD77FEB6CC1E}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: LBTWlgn . (.Logitech, Inc. - Logitech Bluetooth Service.) -- c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
~ Scan Winlogon in 00mn 00s
---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s
---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASGT (ASGT) . (...) - C:\Windows\SysWOW64\ASGT.exe
O23 - Service: Kaspersky Anti-Virus Service (AVP) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Creative Audio Service (CTAudSvcService) . (.Creative Technology Ltd - Creative Audio Service.) - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: PnkBstrA (PnkBstrA) . (...) - C:\Windows\SysWOW64\PnkBstrA.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: UsbClientService (UsbClientService) . (...) - C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
O23 - Service: (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
~ Scan Services in 00mn 10s
---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s
---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\AutoKMS.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1771212374-4168810696-2002671789-1001Core.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1771212374-4168810696-2002671789-1001UA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1771212374-4168810696-2002671789-1001Core.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1771212374-4168810696-2002671789-1001UA.job
[MD5.563CDCFEEAEF97163E206AF71A61AA6E] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
[MD5.07605ABEB10FC533881C91F19DECF69A] [APT] [AutoKMS] (...) -- C:\Windows\AutoKMS\AutoKMS.exe
[MD5.74660C1E9139D95F4E006E8E49EA4986] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-1771212374-4168810696-2002671789-1001Core] (.Facebook Inc..) -- C:\Users\JEREMIE\AppData\Local\Facebook\Update\FacebookUpdate.exe
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-1771212374-4168810696-2002671789-1001UA] (.Facebook Inc..) -- C:\Users\JEREMIE\AppData\Local\Facebook\Update\FacebookUpdate.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-1771212374-4168810696-2002671789-1001Core] (.Google Inc..) -- C:\Users\JEREMIE\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-1771212374-4168810696-2002671789-1001UA] (.Google Inc..) -- C:\Users\JEREMIE\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
~ Scan Scheduled Task in 00mn 03s
---\\ Composants install�s (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d�IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn 00s
---\\ Pilotes lanc�s au d�marrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (AsIO) . (...) - C:\Windows\Syswow64\drivers\AsIO.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (KLIF) . (.Kaspersky Lab - Klif Mini-Filter [fre_wlh_x64].) - C:\Windows\System32\DRIVERS\klif.sys
O41 - Driver: (KLIM6) . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) - C:\Windows\System32\DRIVERS\klim6.sys
O41 - Driver: (kltdi) . (.Kaspersky Lab - Network filtering component.) - C:\Windows\System32\DRIVERS\kltdi.sys
O41 - Driver: (kneps) . (.Kaspersky Lab - KNEPS Power.) - C:\Windows\System32\DRIVERS\kneps.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-syst�me de mise en m�moire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de p�riph�rique s�rie.) - C:\Windows\System32\DRIVERS\serial.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s
---\\ Logiciels install�s (O42)
O42 - Logiciel: 7-Zip 9.20 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0920-000001000000}
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441}
O42 - Logiciel: AMD Accelerated Video Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {89EE4A30-080F-2C95-6F78-C98D18FBD74D}
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {5E03A267-415E-5383-FA8F-3CE4145663B9}
O42 - Logiciel: AMD Drag and Drop Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {3ABFAF33-D6EE-9348-CE96-AF51E9D6D2FF}
O42 - Logiciel: AMD Media Foundation Decoders - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {4975DE61-6BF6-B9BC-1FDE-C04C5EC78E4C}
O42 - Logiciel: ASUS GPU Tweak - (.ASUSTek COMPUTER INC..) [HKLM][64Bits] -- InstallShield_{532F6E8A-AF97-41C3-915F-39F718EC07D1}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader X (10.1.5) - Fran�ais - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: Akamai NetSession Interface - (.Akamai Technologies, Inc.) [HKCU][64Bits] -- Akamai
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {45C56AA7-ED1B-4800-A97F-EDDF3F3520B1}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {2F72F540-1F60-4266-9506-952B21D6640D}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Battlefield 3� - (.Electronic Arts.) [HKLM][64Bits] -- {76285C16-411A-488A-BCE3-C83CB933D8CF}
O42 - Logiciel: Battlelog Web Plugins - (.EA Digital Illusions CE AB.) [HKLM][64Bits] -- Battlelog Web Plugins
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}
O42 - Logiciel: Creative ALchemy - (.Creative Technology Limited.) [HKLM][64Bits] -- ALchemy
O42 - Logiciel: Creative Console Launcher - (.Creative Technology Limited.) [HKLM][64Bits] -- Console Launcher
O42 - Logiciel: Creative Diagnostics - (.Creative Technology Limited.) [HKLM][64Bits] -- Diagnostics 4_5
O42 - Logiciel: Creative Media Toolbox 6 (Shared Components) - (.Creative Labs.) [HKLM][64Bits] -- Uninstaller_B4736000_Creative Media Toolbox 6
O42 - Logiciel: Creative Media Toolbox 6 - (.Creative Technology Limited.) [HKLM][64Bits] -- {F1A14CB2-A048-45A6-AFDA-3571296E1D76}
O42 - Logiciel: Creative MediaSource 5 - (.Creative Technology Limited.) [HKLM][64Bits] -- {BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}
O42 - Logiciel: Creative Software AutoUpdate - (.Creative Technology Limited.) [HKLM][64Bits] -- Creative Software AutoUpdate
O42 - Logiciel: Creative Sound Blaster Properties x64 Edition - (.Creative Technology Limited.) [HKLM][64Bits] -- Creative Sound Blaster Properties x64 Edition
O42 - Logiciel: Creative WaveStudio 7 - (.Creative Technology Limited.) [HKLM][64Bits] -- WaveStudio 7
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DTS Connect Pack - (.Creative Technology Limited.) [HKLM][64Bits] -- DTS Connect Pack
O42 - Logiciel: Dolby Digital Live Pack - (.Creative Technology Limited.) [HKLM][64Bits] -- Dolby Digital Live Pack
O42 - Logiciel: ESN Sonar - (.ESN Social Software AB.) [HKLM][64Bits] -- ESN Sonar-0.70.4
O42 - Logiciel: F1 2011 - (.Codemasters.) [HKLM][64Bits] -- GFWL_{434D0FA1-3E0C-4D03-A5D4-5E1000008100}
O42 - Logiciel: F1 2011 - (.Codemasters.) [HKLM][64Bits] -- {434D0FA1-3E0C-4D03-A5D4-5E1000008100}
O42 - Logiciel: F1 2011 - (.Codemasters.) [HKLM][64Bits] -- {434D0FA1-A4CC-401A-9E74-621000028101}
O42 - Logiciel: Facebook Video Calling 1.2.0.287 - (.Skype Limited.) [HKLM][64Bits] -- {B92C5909-1D37-4C51-8397-A28BB28E5DC3}
O42 - Logiciel: Fraps - (.Pas de propri�taire.) [HKLM][64Bits] -- Fraps
O42 - Logiciel: Garmin Communicator Plugin x64 - (.Garmin Ltd or its subsidiaries.) [HKLM][64Bits] -- {550331CC-C34B-494F-BCDA-37CE4EF6E924}
O42 - Logiciel: Garmin Lifetime Updater - (.Garmin.) [HKLM][64Bits] -- {9AAD03E8-4F65-4DE2-8F6C-1B079C0C8521}
O42 - Logiciel: GoPro CineForm Studio 1.2.1 - (.CineForm, Inc & GoPro, Inc..) [HKLM][64Bits] -- GoPro CineForm Studio
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Talk Plugin - (.Google.) [HKLM][64Bits] -- {D952C4F9-2488-3723-84BE-1BFA907DCAC9}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Grand Theft Auto IV - (.Rockstar.) [HKLM][64Bits] -- Steam App 12210
O42 - Logiciel: Grand Theft Auto: Episodes from Liberty City - (.Rockstar.) [HKLM][64Bits] -- Steam App 12220
O42 - Logiciel: Java 7 Update 9 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217007FF}
O42 - Logiciel: JavaFX 2.1.1 - (.Oracle Corporation.) [HKLM][64Bits] -- {1111706F-666A-4037-7777-211328764D10}
O42 - Logiciel: Kaspersky Internet Security 2013 - (.Kaspersky Lab.) [HKLM][64Bits] -- InstallWIX_{560985FB-4B76-4121-9189-7A2CDC7886D6}
O42 - Logiciel: Kaspersky Internet Security 2013 - (.Kaspersky Lab.) [HKLM][64Bits] -- {560985FB-4B76-4121-9189-7A2CDC7886D6}
O42 - Logiciel: Lecteur 3D MIDI Creative - (.Creative Technology Limited.) [HKLM][64Bits] -- 3DMIDI
O42 - Logiciel: Logitech - Assistant pour jeux vid�os 8.20 - (.Logitech Inc..) [HKLM][64Bits] -- Logitech Gaming Software
O42 - Logiciel: Logitech Flow Scroll 4.0 - (.Logitech.) [HKLM][64Bits] -- Sn1
O42 - Logiciel: Logitech Gaming Software - (.Logitech Inc..) [HKLM][64Bits] -- {690285C2-2481-44FB-8402-162EA970A6DD}
O42 - Logiciel: Logitech SetPoint 6.32 - (.Logitech.) [HKLM][64Bits] -- sp6
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {49F6DFDE-8DF7-11E1-9E5F-F04DA23A5C58}
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {D4761C4F-5ED9-11E1-9202-F04DA23A5C58}
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}
O42 - Logiciel: Microsoft Games for Windows Marketplace - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CB0307C-565E-4441-86BE-0DF2E4FB828C}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: MotioninJoy Gamepad tool 0.7.1001 - (.www.motioninjoy.com.) [HKLM][64Bits] -- {330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1
O42 - Logiciel: Mozilla Firefox 19.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 19.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: MyFreeCodec - (.Pas de propri�taire.) [HKCU][64Bits] -- MyFreeCodec
O42 - Logiciel: Numark VirtualVinyl (Atomix Productions) - (.Pas de propri�taire.) [HKLM][64Bits] -- Numark VirtualVinyl (Atomix Productions)
O42 - Logiciel: OpenAL - (.Pas de propri�taire.) [HKLM][64Bits] -- OpenAL
O42 - Logiciel: Origin - (.Electronic Arts, Inc..) [HKLM][64Bits] -- Origin
O42 - Logiciel: Panneau de configuration audio Creative - (.Creative Technology Limited.) [HKLM][64Bits] -- AudioCS
O42 - Logiciel: PhotoFiltre - (.Pas de propri�taire.) [HKLM][64Bits] -- PhotoFiltre
O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM][64Bits] -- PunkBusterSvc
O42 - Logiciel: Rapture3D 2.4.9 Game - (.Blue Ripple Sound.) [HKLM][64Bits] -- {D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44}
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- InstallShield_{758C8301-2696-4855-AF45-534B1200980A}
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {758C8301-2696-4855-AF45-534B1200980A}
O42 - Logiciel: Skype� 6.1 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}
O42 - Logiciel: Synology Assistant (remove only) - (.Pas de propri�taire.) [HKLM][64Bits] -- Synology Assistant
O42 - Logiciel: System Requirements Lab CYRI - (.Husdawg, LLC.) [HKLM][64Bits] -- {943A8D28-80D6-41DC-AE94-81FEB42041BF}
O42 - Logiciel: Total Immersion D'Fusion @Home Web Plug-In - (.Total Immersion.) [HKLM][64Bits] -- D'Fusion @Home Web Plug-In
O42 - Logiciel: VLC media player 2.0.1 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Vegas Pro 11.0 (64-bit) - (.Sony.) [HKLM][64Bits] -- {44544F00-8DF7-11E1-B1D0-F04DA23A5C58}
O42 - Logiciel: VoiceOver Kit - (.Apple Inc..) [HKLM][64Bits] -- {6B4AD1A9-E73A-4184-9D6B-072F8A3C5EBA}
O42 - Logiciel: Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices (03/0 - (.GoPro.) [HKLM][64Bits] -- 0B624A43DD66DBF5CF3EDFA9741A364E688062A4
O42 - Logiciel: Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices (03/0 - (.GoPro.) [HKLM][64Bits] -- 1F64724E4D591A125651B4B68C84B9CCE9619004
O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM][64Bits] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
O42 - Logiciel: eReg - (.Logitech, Inc..) [HKLM][64Bits] -- {3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {0225AD21-F3E2-4916-BFF3-65D3F9052582}
---\\ HKCU & HKLM Software Keys
[HKCU\Software\7-Zip]
[HKCU\Software\AMD]
[HKCU\Software\ASUS]
[HKCU\Software\ATI]
[HKCU\Software\Adobe]
[HKCU\Software\AlterGeo]
[HKCU\Software\AppDataLow\Software\MarkAny]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Badoo]
[HKCU\Software\BlueRippleSound]
[HKCU\Software\CREATIVE TECH]
[HKCU\Software\CineForm]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Cue]
[HKCU\Software\Cygwin]
[HKCU\Software\DSS]
[HKCU\Software\DirectShow]
[HKCU\Software\EA Games]
[HKCU\Software\Facebook]
[HKCU\Software\Fraps3]
[HKCU\Software\Garmin]
[HKCU\Software\GoPro]
[HKCU\Software\Google]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\HookNetwork]
[HKCU\Software\IM Providers]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\KasperskyLab]
[HKCU\Software\Leadertech]
[HKCU\Software\Logitech]
[HKCU\Software\MCAFEE]
[HKCU\Software\Macromedia]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Myfree Codec]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Rockstar Games]
[HKCU\Software\Samsung]
[HKCU\Software\SecuROM]
[HKCU\Software\SimonTatham]
[HKCU\Software\SkypeRS]
[HKCU\Software\Skype]
[HKCU\Software\Sony Creative Software]
[HKCU\Software\Synology]
[HKCU\Software\System Requirements Lab]
[HKCU\Software\Trolltech]
[HKCU\Software\Valve]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKLM\Software\7-Zip]
[HKLM\Software\AMD]
[HKLM\Software\ASIO]
[HKLM\Software\ASUS]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\Alienware]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\CREATIVE TECH]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\GEAR Software]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\KasperskyLab]
[HKLM\Software\Khronos]
[HKLM\Software\Logitech]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SAMSUNG]
[HKLM\Software\Sonic]
[HKLM\Software\Sony Creative Software]
[HKLM\Software\Wow6432Node\AMD]
[HKLM\Software\Wow6432Node\ASIO]
[HKLM\Software\Wow6432Node\ASUS]
[HKLM\Software\Wow6432Node\ATI Technologies]
[HKLM\Software\Wow6432Node\ATI]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\BlueRippleSound]
[HKLM\Software\Wow6432Node\CDDB]
[HKLM\Software\Wow6432Node\CREATIVE TECH]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Codemasters]
[HKLM\Software\Wow6432Node\Creative Labs]
[HKLM\Software\Wow6432Node\Cue]
[HKLM\Software\Wow6432Node\Cygwin]
[HKLM\Software\Wow6432Node\EA Games]
[HKLM\Software\Wow6432Node\ESN Launcher-1.132.0]
[HKLM\Software\Wow6432Node\ESN Launcher-1.140.0]
[HKLM\Software\Wow6432Node\Electronic Arts]
[HKLM\Software\Wow6432Node\Even Balance]
[HKLM\Software\Wow6432Node\Garmin]
[HKLM\Software\Wow6432Node\GoPro]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\KasperskyLab]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Loader]
[HKLM\Software\Wow6432Node\Logitech]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\McAfee.com]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\Myfree Codec]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Oracle]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Rockstar Games]
[HKLM\Software\Wow6432Node\Samsung]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Sony Creative Software]
[HKLM\Software\Wow6432Node\Total Immersion]
[HKLM\Software\Wow6432Node\Valve]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\dotNetInstaller]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
~ Scan Softwares in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 07/05/2012 - 10:51:15 - [113,547] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 10/02/2013 - 17:46:45 - [2,145] ----D C:\Program Files (x86)\AMD APP
O43 - CFD: 10/02/2013 - 17:46:53 - [0,397] ----D C:\Program Files (x86)\AMD AVT
O43 - CFD: 19/05/2012 - 08:34:31 - [2,316] ----D C:\Program Files (x86)\Apple Software Update
O43 - CFD: 24/07/2012 - 19:24:29 - [32,612] ----D C:\Program Files (x86)\ASUS
O43 - CFD: 24/06/2012 - 18:13:05 - [60,025] ----D C:\Program Files (x86)\ATI Technologies
O43 - CFD: 19/11/2012 - 12:21:41 - [10,940] ----D C:\Program Files (x86)\Battlelog Web Plugins
O43 - CFD: 19/05/2012 - 08:33:57 - [0,602] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 10/08/2012 - 16:09:47 - [13,306] ----D C:\Program Files (x86)\BRS
O43 - CFD: 18/08/2012 - 21:06:32 - [7,955] ----D C:\Program Files (x86)\CineForm
O43 - CFD: 10/08/2012 - 15:55:27 - [-1943,061] ----D C:\Program Files (x86)\Codemasters
O43 - CFD: 20/02/2013 - 17:20:57 - [299,857] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 07/05/2012 - 13:39:27 - [199,717] ----D C:\Program Files (x86)\Creative
O43 - CFD: 07/05/2012 - 13:40:34 - [68,749] --H-D C:\Program Files (x86)\Creative Installation Information
O43 - CFD: 02/01/2013 - 15:23:34 - [43,009] ----D C:\Program Files (x86)\Garmin
O43 - CFD: 17/02/2013 - 11:47:04 - [348,108] ----D C:\Program Files (x86)\Google
O43 - CFD: 18/08/2012 - 21:06:32 - [41,420] ----D C:\Program Files (x86)\GoPro
O43 - CFD: 24/07/2012 - 19:24:52 - [53,850] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 14/02/2013 - 12:59:41 - [4,933] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 23/02/2013 - 10:01:07 - [196,585] ----D C:\Program Files (x86)\iTunes
O43 - CFD: 24/10/2012 - 17:34:56 - [121,165] ----D C:\Program Files (x86)\Java
O43 - CFD: 01/12/2012 - 18:15:33 - [167,926] ----D C:\Program Files (x86)\Kaspersky Lab
O43 - CFD: 02/05/2012 - 17:39:51 - [2,414] ----D C:\Program Files (x86)\MarkAny
O43 - CFD: 18/05/2012 - 14:27:18 - [37,927] ----D C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 10/08/2012 - 16:08:34 - [8,929] ----D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
O43 - CFD: 18/05/2012 - 14:27:03 - [28,204] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 13/05/2012 - 15:50:10 - [40,838] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 18/05/2012 - 14:28:11 - [1,314] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 18/05/2012 - 14:29:55 - [7,789] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 11/05/2012 - 18:04:54 - [8,904] ----D C:\Program Files (x86)\Movie Maker 2.6
O43 - CFD: 21/02/2013 - 19:02:23 - [45,542] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 22/02/2013 - 13:05:17 - [0,212] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 18/05/2012 - 14:30:03 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 15/11/2012 - 17:20:47 - [10,585] ----D C:\Program Files (x86)\MyFree Codec
O43 - CFD: 25/07/2012 - 19:48:24 - [18,095] ----D C:\Program Files (x86)\Numark Cue
O43 - CFD: 10/08/2012 - 16:09:38 - [1,544] ----D C:\Program Files (x86)\OpenAL
O43 - CFD: 29/06/2012 - 15:28:18 - [33,205] ----D C:\Program Files (x86)\Oracle
O43 - CFD: 28/10/2012 - 21:18:50 - [129,026] ----D C:\Program Files (x86)\Origin
O43 - CFD: 15/06/2012 - 11:16:03 - [941,261] ----D C:\Program Files (x86)\Origin Games
O43 - CFD: 10/06/2012 - 11:13:40 - [3,389] ----D C:\Program Files (x86)\PhotoFiltre
O43 - CFD: 18/08/2012 - 21:05:51 - [1,279] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 14/07/2009 - 06:32:38 - [37,357] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 02/05/2012 - 17:40:32 - [259,699] ----D C:\Program Files (x86)\Samsung
O43 - CFD: 26/01/2013 - 22:25:51 - [18,091] R---D C:\Program Files (x86)\Skype
O43 - CFD: 17/05/2012 - 13:50:49 - [90,150] ----D C:\Program Files (x86)\Sony
O43 - CFD: 10/02/2013 - 17:48:59 - [-13,819] ----D C:\Program Files (x86)\Steam
O43 - CFD: 29/12/2012 - 11:54:22 - [111,555] ----D C:\Program Files (x86)\Synology
O43 - CFD: 11/05/2012 - 15:08:44 - [0,470] ----D C:\Program Files (x86)\SystemRequirementsLab
O43 - CFD: 16/02/2013 - 11:26:43 - [6,709] ----D C:\Program Files (x86)\Total Immersion
O43 - CFD: 14/07/2009 - 05:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 13/05/2012 - 10:59:51 - [88,797] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 14/07/2009 - 16:24:08 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 04/05/2012 - 14:30:34 - [59,542] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 02/05/2012 - 20:39:28 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 02/05/2012 - 20:39:28 - [4,791] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 06:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 02/05/2012 - 20:39:28 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 02/05/2012 - 20:39:28 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 02/05/2012 - 20:39:28 - [6,309] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 23/02/2013 - 13:32:57 - [15,136] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 07/05/2012 - 10:51:18 - [3,797] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 23/02/2013 - 10:00:26 - [99,452] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 24/06/2012 - 18:14:18 - [2,769] ----D C:\Program Files (x86)\Common Files\ATI Technologies
O43 - CFD: 05/05/2012 - 18:34:12 - [3,467] ----D C:\Program Files (x86)\Common Files\Creative
O43 - CFD: 07/05/2012 - 13:41:04 - [0,530] ----D C:\Program Files (x86)\Common Files\Creative Labs Shared
O43 - CFD: 15/06/2012 - 13:25:36 - [0,957] --H-D C:\Program Files (x86)\Common Files\EAInstaller
O43 - CFD: 24/07/2012 - 19:25:02 - [4,594] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 01/09/2012 - 13:29:28 - [1,184] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 07/05/2012 - 14:46:05 - [0,494] ----D C:\Program Files (x86)\Common Files\LogiShrd
O43 - CFD: 15/06/2012 - 11:00:54 - [130,794] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 14/07/2009 - 04:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 26/01/2013 - 22:25:51 - [2,056] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 14/07/2009 - 04:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 10/02/2013 - 17:29:05 - [0,517] ----D C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 02/05/2012 - 20:39:28 - [10,046] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 04/05/2012 - 14:27:29 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 23/02/2013 - 10:01:09 - [2,775] ----D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 16/02/2013 - 10:03:31 - [149,918] ----D C:\ProgramData\Adobe
O43 - CFD: 10/02/2013 - 17:46:56 - [0,764] ----D C:\ProgramData\AMD
O43 - CFD: 19/05/2012 - 08:34:24 - [187,773] ----D C:\ProgramData\Apple
O43 - CFD: 19/05/2012 - 08:35:06 - [58,649] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 10/02/2013 - 17:47:28 - [0,000] ----D C:\ProgramData\ATI
O43 - CFD: 01/05/2012 - 20:36:12 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 10/08/2012 - 17:07:09 - [2000,000] ----D C:\ProgramData\Codemasters
O43 - CFD: 07/05/2012 - 13:41:04 - [326,596] ----D C:\ProgramData\Creative
O43 - CFD: 07/05/2012 - 13:42:27 - [0,006] ----D C:\ProgramData\Creative Labs
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 15/06/2012 - 14:28:11 - [0] ----D C:\ProgramData\EA Core
O43 - CFD: 15/06/2012 - 14:38:13 - [0,002] ----D C:\ProgramData\EA Logs
O43 - CFD: 15/06/2012 - 14:28:13 - [0,102] ----D C:\ProgramData\Electronic Arts
O43 - CFD: 01/05/2012 - 20:36:12 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 23/02/2013 - 11:38:25 - [718,653] ----D C:\ProgramData\Kaspersky Lab
O43 - CFD: 11/05/2012 - 15:37:07 - [3,530] ----D C:\ProgramData\Logishrd
O43 - CFD: 08/06/2012 - 10:39:33 - [0,011] ----D C:\ProgramData\Logitech
O43 - CFD: 16/02/2013 - 10:01:45 - [0,018] ----D C:\ProgramData\McAfee
O43 - CFD: 01/05/2012 - 20:36:12 - [0] --H-D C:\ProgramData\Menu D�marrer
O43 - CFD: 10/08/2012 - 15:54:52 - [253,528] -S--D C:\ProgramData\Microsoft
O43 - CFD: 13/02/2013 - 13:24:22 - [0,016] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 01/05/2012 - 20:36:12 - [0] --H-D C:\ProgramData\Mod�les
O43 - CFD: 01/05/2012 - 20:40:38 - [0,034] ----D C:\ProgramData\Mozilla
O43 - CFD: 06/10/2012 - 17:48:55 - [4,271] ----D C:\ProgramData\Origin
O43 - CFD: 02/05/2012 - 17:40:19 - [8,624] ----D C:\ProgramData\Samsung
O43 - CFD: 01/11/2012 - 17:51:20 - [0,062] -SH-D C:\ProgramData\SecuROM
O43 - CFD: 26/01/2013 - 22:25:57 - [58,304] ----D C:\ProgramData\Skype
O43 - CFD: 17/05/2012 - 14:46:54 - [0,004] ----D C:\ProgramData\Sony
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 11/05/2012 - 15:08:19 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 16/01/2013 - 19:47:52 - [0,000] ----D C:\ProgramData\Synology
O43 - CFD: 18/08/2012 - 21:17:43 - [0] ---AD C:\ProgramData\TEMP
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 19/05/2012 - 08:35:21 - [0,002] ----D C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
O43 - CFD: 07/05/2012 - 10:54:56 - [7,492] ----D C:\Users\JEREMIE\AppData\Roaming\Adobe
O43 - CFD: 30/01/2013 - 11:02:41 - [0,184] ----D C:\Users\JEREMIE\AppData\Roaming\Apple Computer
O43 - CFD: 02/05/2012 - 17:49:13 - [0] ----D C:\Users\JEREMIE\AppData\Roaming\ATI
O43 - CFD: 07/05/2012 - 13:57:20 - [0,001] ----D C:\Users\JEREMIE\AppData\Roaming\Creative
O43 - CFD: 02/01/2013 - 15:25:03 - [0,286] ----D C:\Users\JEREMIE\AppData\Roaming\Garmin
O43 - CFD: 01/05/2012 - 20:36:35 - [0] ----D C:\Users\JEREMIE\AppData\Roaming\Identities
O43 - CFD: 07/05/2012 - 14:46:09 - [0,000] ----D C:\Users\JEREMIE\AppData\Roaming\Leadertech
O43 - CFD: 11/05/2012 - 15:45:40 - [0,245] ----D C:\Users\JEREMIE\AppData\Roaming\Logishrd
O43 - CFD: 07/05/2012 - 14:46:16 - [0,000] ----D C:\Users\JEREMIE\AppData\Roaming\Logitech
O43 - CFD: 02/05/2012 - 17:44:17 - [0,007] ----D C:\Users\JEREMIE\AppData\Roaming\Macromedia
O43 - CFD: 14/07/2009 - 16:35:02 - [0] ----D C:\Users\JEREMIE\AppData\Roaming\Media Center Programs
O43 - CFD: 14/02/2013 - 13:13:20 - [23,254] -S--D C:\Users\JEREMIE\AppData\Roaming\Microsoft
O43 - CFD: 10/08/2012 - 17:55:05 - [0,492] ----D C:\Users\JEREMIE\AppData\Roaming\MotioninJoy
O43 - CFD: 06/02/2013 - 17:46:24 - [122,168] ----D C:\Users\JEREMIE\AppData\Roaming\Mozilla
O43 - CFD: 15/08/2012 - 16:35:41 - [0,030] ----D C:\Users\JEREMIE\AppData\Roaming\Origin
O43 - CFD: 20/05/2012 - 17:31:27 - [0,144] ----D C:\Users\JEREMIE\AppData\Roaming\Publish Providers
O43 - CFD: 31/08/2012 - 15:46:35 - [47,028] ----D C:\Users\JEREMIE\AppData\Roaming\Samsung
O43 - CFD: 26/10/2012 - 17:04:55 - [0,016] R-H-D C:\Users\JEREMIE\AppData\Roaming\SecuROM
O43 - CFD: 20/02/2013 - 17:15:29 - [8,179] ----D C:\Users\JEREMIE\AppData\Roaming\Skype
O43 - CFD: 20/05/2012 - 17:33:51 - [0,744] ----D C:\Users\JEREMIE\AppData\Roaming\Sony
O43 - CFD: 11/05/2012 - 15:08:41 - [0,324] ----D C:\Users\JEREMIE\AppData\Roaming\SystemRequirementsLab
O43 - CFD: 11/05/2012 - 15:23:45 - [0] ----D C:\Users\JEREMIE\AppData\Roaming\Temp
O43 - CFD: 16/02/2013 - 11:27:08 - [31,262] ----D C:\Users\JEREMIE\AppData\Roaming\Total Immersion
O43 - CFD: 20/02/2013 - 21:31:25 - [0,079] ----D C:\Users\JEREMIE\AppData\Roaming\vlc
O43 - CFD: 07/05/2012 - 10:54:56 - [15,375] ----D C:\Users\JEREMIE\AppData\Local\Adobe
O43 - CFD: 23/06/2012 - 18:46:56 - [24,094] ----D C:\Users\JEREMIE\AppData\Local\Akamai
O43 - CFD: 19/05/2012 - 08:34:33 - [0] ----D C:\Users\JEREMIE\AppData\Local\Apple
O43 - CFD: 19/05/2012 - 08:35:28 - [4,806] ----D C:\Users\JEREMIE\AppData\Local\Apple Computer
O43 - CFD: 01/05/2012 - 20:36:24 - [0] ----D C:\Users\JEREMIE\AppData\Local\Application Data
O43 - CFD: 02/05/2012 - 17:49:13 - [0,062] ----D C:\Users\JEREMIE\AppData\Local\ATI
O43 - CFD: 04/02/2013 - 21:53:09 - [8,671] ----D C:\Users\JEREMIE\AppData\Local\Diagnostics
O43 - CFD: 02/05/2012 - 17:38:44 - [87,950] ----D C:\Users\JEREMIE\AppData\Local\Downloaded Installations
O43 - CFD: 02/02/2013 - 14:34:00 - [0,511] ----D C:\Users\JEREMIE\AppData\Local\ElevatedDiagnostics
O43 - CFD: 27/10/2012 - 17:17:03 - [7,391] ----D C:\Users\JEREMIE\AppData\Local\Facebook
O43 - CFD: 17/02/2013 - 11:48:45 - [807,419] ----D C:\Users\JEREMIE\AppData\Local\Google
O43 - CFD: 18/08/2012 - 21:11:10 - [0,001] ----D C:\Users\JEREMIE\AppData\Local\GoPro
O43 - CFD: 01/05/2012 - 20:36:24 - [0] ----D C:\Users\JEREMIE\AppData\Local\Historique
O43 - CFD: 07/05/2012 - 14:46:23 - [0,320] ----D C:\Users\JEREMIE\AppData\Local\LogiShrd
O43 - CFD: 08/06/2012 - 10:35:05 - [1025,475] ----D C:\Users\JEREMIE\AppData\Local\Logitech
O43 - CFD: 23/06/2012 - 18:56:22 - [0] ----D C:\Users\JEREMIE\AppData\Local\Macromedia
O43 - CFD: 14/02/2013 - 13:12:56 - [331,184] ----D C:\Users\JEREMIE\AppData\Local\Microsoft
O43 - CFD: 01/12/2012 - 14:52:29 - [0,307] ----D C:\Users\JEREMIE\AppData\Local\Microsoft Games
O43 - CFD: 18/05/2012 - 14:27:04 - [0] ----D C:\Users\JEREMIE\AppData\Local\Microsoft Help
O43 - CFD: 01/05/2012 - 20:40:49 - [454,728] ----D C:\Users\JEREMIE\AppData\Local\Mozilla
O43 - CFD: 15/08/2012 - 16:35:56 - [5,628] ----D C:\Users\JEREMIE\AppData\Local\Origin
O43 - CFD: 03/02/2013 - 16:19:22 - [0] ----D C:\Users\JEREMIE\AppData\Local\Programs
O43 - CFD: 15/06/2012 - 14:44:00 - [7,018] ----D C:\Users\JEREMIE\AppData\Local\PunkBuster
O43 - CFD: 26/10/2012 - 17:05:15 - [1,893] ----D C:\Users\JEREMIE\AppData\Local\Rockstar Games
O43 - CFD: 04/05/2012 - 19:50:37 - [0,161] ----D C:\Users\JEREMIE\AppData\Local\Samsung
O43 - CFD: 17/05/2012 - 14:46:54 - [2,845] ----D C:\Users\JEREMIE\AppData\Local\Sony
O43 - CFD: 23/02/2013 - 13:33:27 - [0,561] ----D C:\Users\JEREMIE\AppData\Local\Temp
O43 - CFD: 01/05/2012 - 20:36:24 - [0] ----D C:\Users\JEREMIE\AppData\Local\Temporary Internet Files
O43 - CFD: 31/05/2012 - 10:24:52 - [0,001] ----D C:\Users\JEREMIE\AppData\Local\VirtualStore
O43 - CFD: 18/08/2012 - 08:49:22 - [0,035] ----D C:\Users\JEREMIE\AppData\Local\Windows Live
O43 - CFD: 11/05/2012 - 18:13:32 - [0] ----D C:\Users\JEREMIE\AppData\Local\WMTools Downloaded Files
O43 - CFD: 23/02/2013 - 09:21:09 - [0] ----D C:\Users\JEREMIE\AppData\Local\{2123B8A7-59CB-4430-B3E8-227DA7E0B65D}
O43 - CFD: 22/02/2013 - 11:24:16 - [0] ----D C:\Users\JEREMIE\AppData\Local\{7370503D-F31E-46C2-8CA4-C05ECA8CC8D0}
O43 - CFD: 21/02/2013 - 12:58:19 - [0] ----D C:\Users\JEREMIE\AppData\Local\{C1B94F35-BD86-425B-8512-DA1205E2B8CE}
O43 - CFD: 21/02/2013 - 18:16:19 - [0] ----D C:\Users\JEREMIE\AppData\Local\{CDDEA929-6A18-4023-BB3B-25563F30FAB1}
O43 - CFD: 14/07/2009 - 05:54:32 - [0,014] R---D C:\Users\JEREMIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 12/07/2012 - 11:58:06 - [0,000] R---D C:\Users\JEREMIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 23/06/2012 - 18:49:35 - [0] ----D C:\Users\JEREMIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASUS
O43 - CFD: 07/05/2012 - 13:57:20 - [0,001] ----D C:\Users\JEREMIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Creative
O43 - CFD: 14/07/2009 - 05:49:38 - [0,001] R---D C:\Users\JEREMIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 25/07/2012 - 19:44:56 - [0] ----D C:\Users\JEREMIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Numark VirtualVinyl
O43 - CFD: 12/07/2012 - 11:58:06 - [0,000] R---D C:\Users\JEREMIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 16/02/2013 - 11:26:43 - [0,002] ----D C:\Users\JEREMIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Immersion
~ Scan Program Folder in 00mn 16s
---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.18E1BBAF7B0B5DB93A7D973EF16F9EF0] - 23/02/2013 - 13:13:04 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1282743]
O44 - LFC:[MD5.0E7E3C7CFCBF6BF5B79E331DC0A073AE] - 23/02/2013 - 09:20:08 ---A- . (...) -- C:\Windows\setupact.log [8203]
O44 - LFC:[MD5.7B7C86C9DB07A5BE262054B2AE81D508] - 23/02/2013 - 09:20:08 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.9A5D10306C857BF2C56931DC68B637BA] - 22/02/2013 - 20:11:50 . (...) -- C:\Windows\System32\BMXState-{00000004-00000000-00000000-00001102-0000000B-00411102}.rfx []
O44 - LFC:[MD5.9A5D10306C857BF2C56931DC68B637BA] - 22/02/2013 - 20:11:50 . (...) -- C:\Windows\System32\BMXStateBkp-{00000004-00000000-00000000-00001102-0000000B-00411102}.rfx []
O44 - LFC:[MD5.41BFDF206CD065A60A09DB3ADBFE0036] - 22/02/2013 - 20:11:50 . (...) -- C:\Windows\System32\DVCState-{00000004-00000000-00000000-00001102-0000000B-00411102}.rfx []
O44 - LFC:[MD5.9A5D10306C857BF2C56931DC68B637BA] - 22/02/2013 - 20:11:50 ---A- . (...) -- C:\Windows\SysNative\BMXState-{00000004-00000000-00000000-00001102-0000000B-00411102}.rfx [62020]
O44 - LFC:[MD5.9A5D10306C857BF2C56931DC68B637BA] - 22/02/2013 - 20:11:50 ---A- . (...) -- C:\Windows\SysNative\BMXStateBkp-{00000004-00000000-00000000-00001102-0000000B-00411102}.rfx [62020]
O44 - LFC:[MD5.41BFDF206CD065A60A09DB3ADBFE0036] - 22/02/2013 - 20:11:50 ---A- . (...) -- C:\Windows\SysNative\DVCState-{00000004-00000000-00000000-00001102-0000000B-00411102}.rfx [820]
O44 - LFC:[MD5.E98395DD50E200938DB061A49B048DF0] - 20/02/2013 - 18:14:26 ---A- . (...) -- C:\AdwCleaner[S2].txt [1209]
O44 - LFC:[MD5.94F33C6AE969E5F43CBE09948602841B] - 20/02/2013 - 17:21:04 ---A- . (...) -- C:\AdwCleaner[S1].txt [21876]
O44 - LFC:[MD5.5D6D19FAB66EA45067479828BD200786] - 20/02/2013 - 17:19:06 ---A- . (...) -- C:\AdwCleaner[R1].txt [21737]
O44 - LFC:[MD5.BC7BB9E0CFF23086C8EE13D10142B333] - 14/02/2013 - 13:01:32 . (...) -- C:\Windows\System32\FNTCACHE.DAT []
O44 - LFC:[MD5.BC7BB9E0CFF23086C8EE13D10142B333] - 14/02/2013 - 13:01:32 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [418296]
O44 - LFC:[MD5.28E94A3F95E72E9C4D8B59CF5BD1CA5C] - 13/02/2013 - 13:22:54 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1570798]
O44 - LFC:[MD5.A1DBF3A79E178E4A6305F04FEF775F34] - 13/02/2013 - 13:22:54 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [106244]
O44 - LFC:[MD5.FC66BD7B67E5BD81B053B17A10C12980] - 13/02/2013 - 13:22:54 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [130602]
O44 - LFC:[MD5.317A583C25C1E42CB03ACCDBCF0AE630] - 13/02/2013 - 13:22:54 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [615864]
O44 - LFC:[MD5.157F06D3C27E05320167923EE737C9A4] - 13/02/2013 - 13:22:54 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [704296]
O44 - LFC:[MD5.F62FB2C7130E0F61A5ABE02FDB89144A] - 07/02/2013 - 13:41:31 ---A- . (...) -- C:\Windows\MEMORY.DMP [463310922]
~ Scan Files in 00mn 14s
---\\ Op�rations et fonctions au d�marrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook [64Bits] - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
~ Scan ShellExecuteHooks in 00mn 00s
---\\ D�ni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l��diteur de configuration de s�curit� Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de s�curit� Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll
~ Scan Keys in 00mn 00s
---\\ Contr�le du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s
---\\ MountPoints2 Shell Key (O51)
O51 - MPSK:{b4a56fbd-93c3-11e1-8c15-806e6f6e6963}\AutoRun\command. (.Codemasters Software Co. - Autorun Program.) -- D:\autorun.exe
~ Scan Keys in 00mn 00s
---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"VIDC.CFHD"="CFHD.dll" . (.CineForm Inc. - CineForm VFW CODEC.) -- C:\Windows\System32\CFHD.dll
O52 - TDSD: \Drivers32\"VIDC.FPS1"="frapsv64.dll" . (.Beepa P/L - Fraps.) -- C:\Windows\System32\frapsv64.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"CFHD.dll"="CineForm HD VFW Codec" . (.CineForm Inc. - CineForm VFW CODEC.) -- C:\Windows\System32\CFHD.dll
O52 - TDSD: \drivers.desc\"frapsv64.dll"="Fraps Video Decompressor" . (.Beepa P/L - Fraps.) -- C:\Windows\System32\frapsv64.dll
~ Scan Keys in 00mn 00s
---\\ ShareTools MSconfig StartupReg (O53)
O53 - SMSR:HKLM\...\startupreg\command . (.Samsung - KiesPDLR.) -- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O53 - SMSR:HKLM\...\startupreg\21586C6CAEC787C35FBAFCEF87444A72C55FAE26._service_run [Key] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O53 - SMSR:HKLM\...\startupreg\Akamai NetSession Interface [Key] . (.Akamai Technologies, Inc - Akamai NetSession Client.) -- C:\Users\JEREMIE\AppData\Local\Akamai\netsession_win.exe
O53 - SMSR:HKLM\...\startupreg\APSDaemon [Key] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O53 - SMSR:HKLM\...\startupreg\Badoo Desktop [Key] . (...) -- C:\ProgramData\Badoo\Badoo desktop\1.6.55.1183\Badoo.desktop.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\BCSSync [Key] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files\Microsoft Office\Office14\BCSSync.exe
O53 - SMSR:HKLM\...\startupreg\Facebook Update [Key] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\JEREMIE\AppData\Local\Facebook\Update\FacebookUpdate.exe
O53 - SMSR:HKLM\...\startupreg\Garmin Lifetime Updater [Key] . (.Garmin - Garmin Lifetime Updater.) -- C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe
O53 - SMSR:HKLM\...\startupreg\Google Update [Key] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\JEREMIE\AppData\Local\Google\Update\GoogleUpdate.exe
O53 - SMSR:HKLM\...\startupreg\GoogleChromeAutoLaunch_B5ABEAE1BC17476D6C7B8ACF755978A5 [Key] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O53 - SMSR:HKLM\...\startupreg\GoogleDriveSync [Key] . (...) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Iminent [Key] . (...) -- C:\Program Files (x86)\Iminent\Iminent.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\IminentMessenger [Key] . (...) -- C:\Program Files (x86)\Iminent\Iminent.Messengers.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\iTunesHelper [Key] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O53 - SMSR:HKLM\...\startupreg\KiesAirMessage [Key] . (.Samsung Electronics - Pas de description.) -- C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe
O53 - SMSR:HKLM\...\startupreg\KiesPDLR [Key] . (.Samsung - KiesPDLR.) -- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O53 - SMSR:HKLM\...\startupreg\KiesPreload [Key] . (.Samsung - Kies.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe
O53 - SMSR:HKLM\...\startupreg\KiesTrayAgent [Key] . (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O53 - SMSR:HKLM\...\startupreg\Launch LCore [Key] . (.Logitech Inc. - Logitech Gaming Framework.) -- C:\Program Files\Logitech Gaming Software\LCore.exe
O53 - SMSR:HKLM\...\startupreg\MusicManager [Key] . (...) -- C:\Users\JEREMIE\AppData\Local\Programs\Google\MusicManager\MusicManager.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Skype [Key] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O53 - SMSR:HKLM\...\startupreg\Steam [Key] . (.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
~ Scan SMSR Keys in 00mn 00s
---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
~ Scan Keys in 00mn 00s
---\\ Liste des Drivers Syst�me (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]
O58 - SDL:[MD5.68726474C69B738EAC3A62E06B33ADDC] - 06/04/2009 - 14:24:30 ---A- . (...) -- C:\Windows\SysWOW64\drivers\AsIO.sys [13368]
O58 - SDL:[MD5.DDEE99DC54EFA20BD5A442CD733C4462] - 05/02/2013 - 09:54:40 ---A- . (...) -- C:\Windows\SysWOW64\FsUsbExDisk.Sys [37344]
~ Scan Drivers in 00mn 00s
---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.3.5 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s
---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 19/12/2012 - C:\Windows\System32\DRIVERS\atikmdag.sys (amdkmdag) .(.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) - LEGACY_AMDKMDAG
O64 - Services: CurCS - 06/04/2009 - C:\Windows\Syswow64\drivers\AsIO.sys - AsIO (AsIO) .(...) - LEGACY_ASIO
O64 - Services: CurCS - 07/07/2010 - C:\Windows\system32\drivers\CT20XUT.sys (CT20XUT.SYS) .(.Creative Technology Ltd. - Creative 20X Utility Effects.) - LEGACY_CT20XUT.SYS
O64 - Services: CurCS - 07/07/2010 - C:\Windows\system32\drivers\CTEXFIFX.sys (CTEXFIFX.SYS) .(.Creative Technology Ltd. - Creative XFi Effects.) - LEGACY_CTEXFIFX.SYS
O64 - Services: CurCS - 07/07/2010 - C:\Windows\system32\drivers\CTHWIUT.sys (CTHWIUT.SYS) .(.Creative Technology Ltd. - Creative Utility Effects.) - LEGACY_CTHWIUT.SYS
O64 - Services: CurCS - 07/07/2010 - C:\Windows\System32\drivers\ctprxy2k.sys (ctprxy2k) .(.Creative Technology Ltd - Creative Proxy Device Driver (WDM).) - LEGACY_CTPRXY2K
O64 - Services: CurCS - 07/07/2010 - C:\Windows\System32\drivers\ctsfm2k.sys (ctsfm2k) .(.Creative Technology Ltd - SoundFont(R) Manager (WDM).) - LEGACY_CTSFM2K
O64 - Services: CurCS - 07/07/2010 - C:\Windows\System32\drivers\emupia2k.sys (emupia) .(.Creative Technology Ltd - E-mu Plug-in Architecture Driver (WDM).) - LEGACY_EMUPIA
O64 - Services: CurCS - 07/07/2010 - C:\Windows\System32\drivers\ha20x22k.sys (ha20x22k) .(.Creative Technology Ltd - Creative 20X2 HAL (WDM).) - LEGACY_HA20X22K
O64 - Services: CurCS - 19/06/2012 - C:\Windows\System32\DRIVERS\kl1.sys (KL1) .(.Kaspersky Lab ZAO - Kaspersky Unified Driver.) - LEGACY_KL1
O64 - Services: CurCS - 01/12/2012 - C:\Windows\System32\DRIVERS\klif.sys (KLIF) .(.Kaspersky Lab - Klif Mini-Filter [fre_wlh_x64].) - LEGACY_KLIF
O64 - Services: CurCS - 02/08/2012 - C:\Windows\System32\DRIVERS\klim6.sys (KLIM6) .(.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) - LEGACY_KLIM6
O64 - Services: CurCS - 01/12/2012 - C:\Windows\System32\DRIVERS\kltdi.sys (kltdi) .(.Kaspersky Lab - Network filtering component.) - LEGACY_KLTDI
O64 - Services: CurCS - 13/08/2012 - C:\Windows\System32\DRIVERS\kneps.sys (kneps) .(.Kaspersky Lab - KNEPS Power.) - LEGACY_KNEPS
O64 - Services: CurCS - 07/07/2010 - C:\Windows\System32\drivers\ctoss2k.sys (ossrv) .(.Creative Technology Ltd. - Creative OS Services Driver (WDM).) - LEGACY_OSSRV
O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
~ Scan Services in 00mn 00s
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.bat>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKCR\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg>[HKCR\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
~ Scan Keys in 00mn 00s
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Scan Keys in 00mn 00s
---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
~ Scan Keys in 00mn 00s
---\\ Recherche des services d�marr�s par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Exp�rience d�application.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de strat�gie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [853504]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [679424]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de num�rotation automatique d�acc�s distant.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d�acc�s distant.) -- C:\Windows\System32\rasmans.dll [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d�interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d��v�nements syst�me (SENS).) -- C:\Windows\System32\sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l�application d�assistance � Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de t�l�phonie Microsoft� Windows(TM).) -- C:\Windows\System32\tapisrv.dll [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur h�te de session Burea.) -- C:\Windows\System32\termsrv.dll [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise � jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arri�re-plan.) -- C:\Windows\System32\qmgr.dll [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivit� IPv6 sur un r�seau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d�ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d�application.) -- C:\Windows\System32\appinfo.dll [70656]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de d�couverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multim�dias.) -- C:\Windows\System32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau � distance.) -- C:\Windows\System32\sessenv.dll [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) -- C:\Windows\System32\browser.dll [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de t�ches.) -- C:\Windows\System32\schedsvc.dll [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des cl�s.) -- C:\Windows\System32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux probl�mes.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des th�mes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [193536]
~ Scan Services in 00mn 00s
---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{8C8BEBDA-4F9B-477A-B6EF-E68B5D0DDCE4}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{DE3D3407-2529-4788-BD03-4176FBE8D42A}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{2F2FE1E0-5B6A-4B29-8B30-9FE60F85F33B}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{86CA59D8-4C53-4115-B77F-E963F5130694}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "TCP Query User{2111DC53-116F-4464-ACB7-EF0EC65CC86D}C:\users\jeremie\appdata\local\temp\nswcc84.tmp\setup.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\jeremie\appdata\local\temp\nswcc84.tmp\setup.exe (.not file.)
O87 - FAEL: "UDP Query User{8DFAD317-653B-4ABE-B73F-EAB9019458C1}C:\users\jeremie\appdata\local\temp\nswcc84.tmp\setup.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\jeremie\appdata\local\temp\nswcc84.tmp\setup.exe (.not file.)
O87 - FAEL: "{B4872F7E-EF8D-4301-B0BF-D974E1A00C9C}" | In - Private - P6 - TRUE | .(.Musiccity Co.Ltd. - MUZAoDApp Module.) -- C:\Windows\SysWOW64\muzapp.exe
O87 - FAEL: "{995048DE-A2C6-4D5D-ACB9-0939E3DD6A12}" | In - Private - P17 - TRUE | .(.Musiccity Co.Ltd. - MUZAoDApp Module.) -- C:\Windows\SysWOW64\muzapp.exe
O87 - FAEL: "{E284BEBA-8C39-4970-973D-06AB0411CDAD}" | In - Private - P6 - TRUE | .(.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O87 - FAEL: "{047AE46E-C119-4BE5-8C64-DB9739682A29}" | In - Private - P17 - TRUE | .(.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O87 - FAEL: "{B84FFB1A-635C-458E-8C96-96FF413216D0}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O87 - FAEL: "{B1E89464-2562-4D1E-9A41-66F59A5909A1}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
O87 - FAEL: "{FDD135CA-0DAD-458C-BA21-ACE0BBDF9014}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{A2CCBF78-3C56-4F6A-A4AB-2192CB3FBB96}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{788194AD-1F80-45BD-AD39-B9ACBEFDC60C}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{EBED70EE-E7FB-4136-82C3-888E50D068A2}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{26F7AC06-FB20-4933-AE0C-A2E577C05A51}" | In - Private - P6 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrA.exe
O87 - FAEL: "{5A076D14-4960-49F0-9594-A20AB795A6F4}" | In - Private - P17 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrA.exe
O87 - FAEL: "{B76F17E7-DD78-4610-8541-A50C46B9335A}" | In - Private - P6 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrB.exe
O87 - FAEL: "{9603AA07-D094-432E-AE9E-CC7FCE635142}" | In - Private - P17 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrB.exe
O87 - FAEL: "{7120F9E5-53BC-486A-9432-69F0B9BC859C}" | In - Private - P6 - TRUE | .(.Codemasters - F1 2011 Executable.) -- C:\Program Files (x86)\Codemasters\F1 2011\F1_2011.exe
O87 - FAEL: "{6571B91A-5223-46A8-AE1F-C0C01D6A1968}" | In - Private - P17 - TRUE | .(.Codemasters - F1 2011 Executable.) -- C:\Program Files (x86)\Codemasters\F1 2011\F1_2011.exe
O87 - FAEL: "{3F0A4587-6807-45E3-8953-C9F209A0220B}" | In - Private - P6 - TRUE | .(.EA Digital Illusions CE AB - Battlefield 3�.) -- C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
O87 - FAEL: "{BDE44804-C127-4701-AA44-8065805DF034}" | In - Private - P17 - TRUE | .(.EA Digital Illusions CE AB - Battlefield 3�.) -- C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
O87 - FAEL: "{6E2BBD08-DA1B-4598-82A9-3FE4CB0693A8}" | In - Private - P6 - TRUE | .(.Sony DADC Austria AG - SecuROM Launcher.) -- C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV Episodes from Liberty City\EFLC\LaunchEFLC.exe
O87 - FAEL: "{9B1C7FE9-5749-428E-8016-F392DBDB536B}" | In - Private - P17 - TRUE | .(.Sony DADC Austria AG - SecuROM Launcher.) -- C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV Episodes from Liberty City\EFLC\LaunchEFLC.exe
O87 - FAEL: "{6EE13127-9FD4-46DF-BEE5-41B1B96ADD50}" | In - None - P17 - TRUE | .(.Skype Limited - Facebook Video Calling.) -- C:\Users\JEREMIE\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
O87 - FAEL: "{4AD687F1-BB2A-4747-9C6B-8F737DDD8E93}" | In - Private - P6 - TRUE | .(.Sony DADC Austria AG - SecuROM Launcher.) -- C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
O87 - FAEL: "{ECD84E55-2FFD-4F05-8534-9E2CEF6F49AF}" | In - Private - P17 - TRUE | .(.Sony DADC Austria AG - SecuROM Launcher.) -- C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
O87 - FAEL: "{A9F9CB69-1C37-41A2-A8D3-560276B5315D}" | In - Private - P6 - TRUE | .(.ESN Social Software AB - ESN Sonar Host Application.) -- C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
O87 - FAEL: "{C8B033DC-BB49-4EDB-B155-36B9468B786F}" | In - Private - P17 - TRUE | .(.ESN Social Software AB - ESN Sonar Host Application.) -- C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
O87 - FAEL: "{0FDAAE73-8F04-46AF-88CF-D30B884040C3}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Iminent\Iminent.exe (.not file.)
O87 - FAEL: "{DF5B4A1D-7CC9-41B6-B5A6-B9D43C7624DC}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Iminent\Iminent.Messengers.exe (.not file.)
O87 - FAEL: "{49EFBDF5-FDF4-411C-88B5-0A9299B78E8F}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe
~ Scan Firewall in 00mn 01s
---\\ Scan Additionnel (O88)
Database Version : v2.10828 - (21/02/2013)
Cl�s trouv�es (Keys found) : 9
Valeurs trouv�es (Values found) : 0
Dossiers trouv�s (Folders found) : 0
Fichiers trouv�s (Files found) : 0
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Iminent] =>Adware.IMBooster
[HKLM\Software\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\secman.DLL] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>Toolbar.Agent
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
~ Scan Additionnel in 00mn 20s
---\\ Product Upgrade Codes (O90)
O90 - PUC: "00F445447FD81E111B0D0FD42AA3C585" . (.Vegas Pro 11.0 (64-bit).) -- C:\Windows\Installer\{44544F00-8DF7-11E1-B1D0-F04DA23A5C58}\vegas.ico
O90 - PUC: "03A4EE98F08059C2F6879CD881BF7DD4" . (.AMD Accelerated Video Transcoding.) -- C:\Windows\Installer\{89EE4A30-080F-2C95-6F78-C98D18FBD74D}\ARPPRODUCTICON.exe
O90 - PUC: "045F27F206F16624596059B2126D46D0" . (.Apple Mobile Device Support.) -- C:\Windows\Installer\{2F72F540-1F60-4266-9506-952B21D6640D}\Installer.ico
O90 - PUC: "0ED9D238CFA898648991D4BBEDDBE3F4" . (.Microsoft Games for Windows - LIVE Redistributable.) -- C:\Windows\Installer\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}\GameForWindowsLiveRedist.exe
O90 - PUC: "1038C85769625584FA5435B4210089A0" . (.Samsung Kies.) -- C:\Windows\Installer\{758C8301-2696-4855-AF45-534B1200980A}\ARPPRODUCTICON.exe
O90 - PUC: "11F12B5E3396B0E42AC597363E0CD711" . (.Windows Live Messenger.) -- C:\Windows\Installer\{E5B21F11-6933-4E0B-A25C-7963E3C07D11}\MsblIco.Exe
O90 - PUC: "12DA52202E3F6194FB3F563D9F505228" . (.iTunes.) -- C:\Windows\Installer\{0225AD21-F3E2-4916-BFF3-65D3F9052582}\Installer.ico
O90 - PUC: "16ED57946FB6CB9BF1ED0CC4E57CE8C4" . (.AMD Media Foundation Decoders.) -- C:\Windows\Installer\{4975DE61-6BF6-B9BC-1FDE-C04C5EC78E4C}\ARPPRODUCTICON.exe
O90 - PUC: "2B0163E6D0340BE4183EB2758E9BEDD8" . (.Bonjour.) -- C:\Windows\Installer\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}\Bonjour.ico
O90 - PUC: "2B754B4DF062165CAC7807B33D7B42AC" . (.Catalyst Control Center Graphics Previews Common.) -- C:\Windows\Installer\{D4B457B2-260F-C561-CA87-703BD3B724CA}\ARPPRODUCTICON.exe
O90 - PUC: "32FA0F2EF2EF2224A934556EC34CE11F" . (.Catalyst Control Center - Branding.) -- C:\Windows\Installer\{E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}\ARPPRODUCTICON.exe
O90 - PUC: "33FAFBA3EE6D8439EC69FA159E6D2DFF" . (.AMD Drag and Drop Transcoding.) -- C:\Windows\Installer\{3ABFAF33-D6EE-9348-CE96-AF51E9D6D2FF}\ARPPRODUCTICON.exe
O90 - PUC: "42962336FAC3858CA3F858898C07917D" . (.Catalyst Control Center.) -- C:\Windows\Installer\{63326924-3CAF-C858-3A8F-8598C87019D7}\ARPPRODUCTICON.exe
O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico
O90 - PUC: "61D11FC9BECE5A090A82ACE960D848B8" . (.ccc-utility64.) -- C:\Windows\Installer\{9CF11D16-ECEB-90A5-A028-CA9E068D848B}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA76301B744AA0100000010" . (.Adobe Reader X (10.1.5) - Fran�ais.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico
O90 - PUC: "762A30E5E5143835AFF8C34E4165369B" . (.AMD Catalyst Install Manager.) -- C:\Windows\Installer\{5E03A267-415E-5383-FA8F-3CE4145663B9}\ARPPRODUCTICON.exe
O90 - PUC: "7AA65C54B1DE00849AF7DEFDF353021B" . (.Apple Application Support.) -- C:\Windows\Installer\{45C56AA7-ED1B-4800-A97F-EDDF3F3520B1}\WinInstall.ico
O90 - PUC: "8E30DAA956F42ED4F8C6B170C9C05812" . (.Garmin Lifetime Updater.) -- C:\Windows\Installer\{9AAD03E8-4F65-4DE2-8F6C-1B079C0C8521}\Garmin.ico
O90 - PUC: "9A1DA4B6A37E4814D9B670F2A8C3E5AB" . (.VoiceOver Kit.) -- C:\Windows\Installer\{6B4AD1A9-E73A-4184-9D6B-072F8A3C5EBA}\WinInstall.ico
O90 - PUC: "9EC6D81181F59F2459A84176A626F9ED" . (.Iminent.) -- C:\Windows\Installer\{118D6CE9-5F18-42F9-958A-14676A629FDE}\imbooster.ico
O90 - PUC: "A8E6F23579FA3C1419F5937F81CE701D" . (.ASUS GPU Tweak.) -- C:\Windows\Installer\{532F6E8A-AF97-41C3-915F-39F718EC07D1}\ARPPRODUCTICON.exe
O90 - PUC: "B4A2F9673A486849DA2DE9A54B4B1E3E" . (.Catalyst Control Center InstallProxy.) -- C:\Windows\Installer\{769F2A4B-84A3-9486-ADD2-9E5AB4B4E1E3}\ARPPRODUCTICON.exe
O90 - PUC: "BF58906567B412141998A7C2CD87686D" . (.Kaspersky Internet Security 2013.) -- C:\Windows\Installer\{560985FB-4B76-4121-9189-7A2CDC7886D6}\setup2.ico
O90 - PUC: "C7030BC4E565144468EBD02F4EBF28C8" . (.Microsoft Games for Windows Marketplace.) -- c:\Windows\Installer\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}\GameForWindowsLiveDash.exe
O90 - PUC: "CC133055B43CF494CBAD73ECE46F9E42" . (.Garmin Communicator Plugin x64.) -- C:\Windows\Installer\{550331CC-C34B-494F-BCDA-37CE4EF6E924}\GarminSetup.ico
O90 - PUC: "D276F30548C6A844F8F8B43CA58C4314" . (.AMD APP SDK Runtime.) -- C:\Windows\Installer\{503F672D-6C84-448A-8F8F-4BC35AC83441}\ARPPRODUCTICON.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype� 6.1.) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
O90 - PUC: "E805DFCE2A862B1964DDD1307D389DB4" . (.Catalyst Control Center Localization All.) -- C:\Windows\Installer\{ECFD508E-68A2-91B2-46DD-1D03D783D94B}\ARPPRODUCTICON.exe
O90 - PUC: "F6071111A6667304777712318267D401" . (.JavaFX 2.1.1.) -- C:\Windows\Installer\{1111706F-666A-4037-7777-211328764D10}\javaIcon.ico
~ Scan Files in 00mn 00s
---\\ Etat g�n�ral des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 18/12/2012 65192 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 16/02/2013 251248 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 19/12/2012 240640 | (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe
SR - | Auto 21/12/2012 57008 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 55296 | (ASGT) . (...) - C:\Windows\SysWOW64\ASGT.exe
SR - | Auto 01/12/2012 356376 | (AVP) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SS - | Demand 07/05/2012 79360 | (Creative ALchemy AL6 Licensing Service) . (.Creative Labs.) - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
SS - | Demand 05/05/2012 79360 | (Creative Audio Engine Licensing Service) . (.Creative Labs.) - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
SS - | Demand 07/05/2012 79360 | (Creative Media Toolbox 6 Licensing Service) . (.Creative Labs.) - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\MT6Licensing.exe
SR - | Auto 12/02/2010 286720 | (CTAudSvcService) . (.Creative Technology Ltd.) - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
SS - | Auto 02/01/2013 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 02/01/2013 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - | Demand 20/02/2013 641352 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SS - | Demand 27/09/2011 359192 | (LBTServ) . (.Logitech, Inc..) - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
SS - | Demand 21/02/2013 115608 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 0 | (PnkBstrA) . (...) - C:\Windows\system32\PnkBstrA.exe
SS - | Auto 08/01/2013 161536 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 18/01/2013 541608 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
SR - | Auto 245760 | (UsbClientService) . (...) - C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Scan Services in 00mn 01s
End of the scan (1232 lines in 01mn 29s)(0)
Run by JEREMIE at 23/02/2013 13:32:45
State :
High Elevated Privileges : OK
UAC : Deactivate by program
---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 19.0 v19.0
GCIE: Google Chrome v24.0.1312.57 (Defaut)
---\\ Windows Product Information
~ Langage: Fran�ais
Windows 7 Ultimate Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, RETAIL channel
Windows ID Activation : OK
~ Windows Partial Key : BG33H
Windows License : OK
~ Windows Remaining Initializations Number : 4
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Information
~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4095 MB (43% free)
System Restore: Activ� (Enable)
System drive C: has 170 GB (57%) free of 298 GB
---\\ Logged in mode
~ Computer Name: JEREMIE-PC
~ User Name: JEREMIE
~ All Users Names: JEREMIE, HomeGroupUser$, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\JEREMIE\AppData\Roaming\
~ %Desktop% : C:\Users\JEREMIE\Desktop\
~ %Favorites% : C:\Users\JEREMIE\Favorites\
~ %LocalAppData% : C:\Users\JEREMIE\AppData\Local\
~ %StartMenu% : C:\Users\JEREMIE\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ DOS/Devices
A:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
C:\ Hard drive, Flash drive, Thumb drive (Free 170 Go of 298 Go)
D:\ CD-ROM drive (Free 0 Go of 7 Go)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.435E9C764E1EF70058580996452BE6A2] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.09/01/2013 - 02:12:03.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.20/11/2010 - 14:25:30.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Biblioth�que de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.E453ACF4E7D44E5530B5D5F2B9CA8563] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.31/08/2012 - 19:19:35.) -- C:\Windows\system32\Drivers\ntfs.sys [1659760]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parall�le.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.1B6163C503398B23FF8B939C67747683] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.20/11/2010 - 12:06:41.) -- C:\Windows\system32\Drivers\rdpdr.sys [165888]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Scan Generic Processes in 00mn 00s
---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 1/40
~ Mes musiques (My Musics) : 1/12
~ Mes Videos (My Videos) : 1/2
~ Mes Favoris (My Favorites) : 1/26
~ Mes Documents (My Documents) : 1/172
~ Mon Bureau (My Desktop) : 1/58
~ Menu demarrer (Programs) : 1/25
~ Scan Hidden Files in 00mn 00s
---\\ Processus lanc�s
[MD5.76605731B6C6DD30BB8D151832322C1C] - (.Samsung - KiesPDLR.) -- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844144] [PID.3492]
[MD5.36318C725C216E1D810C546163F859C0] - (.Samsung Electronics - Pas de description.) -- C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe [578560] [PID.3504]
[MD5.65B8106CB122142FD0A4A26783D7963F] - (.Samsung - Kies.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe [1509232] [PID.3512]
[MD5.0654E4C1F597FC07D6FC7443D4F94840] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1248208] [PID.3524]
[MD5.587EFD6A3A30A35A27904D21AE1FB882] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356376] [PID.2016]
[MD5.8E2A7F1F62467A7DCB8AB2C0642F47CA] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392] [PID.4248]
[MD5.050D1C454A49D4DF8EB5222D352B6630] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [917400] [PID.6428]
[MD5.57785A015DED82C287761CA1BD02D532] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [17304] [PID.4580]
[MD5.EB0EB16E7DC48C3D645B1E136346999B] - (.Adobe Systems, Inc. - Adobe Flash Player 11.6 r602.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_168.exe [1820016] [PID.3920]
[MD5.F18E51E0C244E50B43036012900A3C57] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [5693440] [PID.3392]
[MD5.5CE3D0E1D1B3832EE052CFC442EEE0FA] - (.Creative Technology Ltd - Creative Audio Service.) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720] [PID.768]
[MD5.3927397AC60D943DAF8808AFFED582B7] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65192] [PID.1536]
[MD5.E536856E96A7605EBF580D62A868E5FE] - (...) -- C:\Windows\SysWOW64\ASGT.exe [55296] [PID.1996]
[MD5.205E1B699FD3F2F9B036EEA2EC30C620] - (...) -- C:\Windows\SysWOW64\PnkBstrA.exe [76888] [PID.2060]
[MD5.BECDDA0990DEBD72A30096533521AD73] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe [213384] [PID.2068]
[MD5.6AF12011C88C80920D0543616E107CFF] - (...) -- C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [245760] [PID.2348]
[MD5.4FE5C6D40664AE07BE5105874357D2ED] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [57008] [PID.3800]
~ Scan Processes Running in 00mn 00s
---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Users\JEREMIE\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default] http://www.google.com
G1 - GCS: Preference [User Data\Default] None
~ Scan Google Browser in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\JEREMIE\AppData\Roaming\Mozilla\Firefox\Profiles\8alg37kx.default\prefs.js
M3 - MFPP: Plugins - [JEREMIE] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [JEREMIE] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [JEREMIE] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [JEREMIE] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [JEREMIE] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [JEREMIE] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [JEREMIE] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml
M0 - MFSP: prefs.js [JEREMIE - 8alg37kx.default] http://start.iminent.com
M2 - MFEP: prefs.js [JEREMIE - 8alg37kx.default\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}] [] Garmin Communicator v4.0.4 (.Garmin International.)
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.5.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_168.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.10411.0.) -- C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\Program Files\Microsoft Office\Office14\NPAUTHZ.dll
P2 - FPN: [HKCU] [@Skype Limited.com/Facebook Video Calling Plugin] - (.Skype Limited - Facebook Video Calling Plugin.) -- C:\Users\JEREMIE\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
P2 - FPN: [HKCU] [@talk.google.com/GoogleTalkPlugin] - (.Google - Version 3.13.2.11592.) -- C:\Users\JEREMIE\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
P2 - FPN: [HKCU] [@talk.google.com/O3DPlugin] - (.Pas de propri�taire - Google Talk Plugin Video Accelerator version:0.1.44.23.) -- C:\Users\JEREMIE\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\JEREMIE\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\JEREMIE\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
~ Scan Firefox Browser in 00mn 00s
---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.iminent.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: ContentBlockerBrowserHelperObject [64Bits] - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} . (.Kaspersky Lab ZAO - Content Blocker Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocke
O2 - BHO: Groove GFS Browser Helper [64Bits] - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.dll
O2 - BHO: VirtualKeyboardBrowserHelperObject [64Bits] - {73455575-E40C-433C-9784-C78DC7761455} . (.Kaspersky Lab ZAO - Virtual Keyboard Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_key
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft� Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\
O2 - BHO: Safe Money Plugin [64Bits] - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} . (.Kaspersky Lab ZAO - Safe Money Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Logitech Flow Scroll [64Bits] - {E11DB59D-5008-42ff-9069-535843BC0BE1} . (.Logitech, Inc. - Logitech Flow Scroll.) -- C:\Program Files\Logitech\FlowScroll\32-bit\LogiSmooth.dll
O2 - BHO: link filter bho [64Bits] - {E33CF602-D945-461A-83F0-819F76A199F8} . (.Kaspersky Lab ZAO - URL Advisor Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll
~ Scan BHO in 00mn 00s
---\\ Applications d�marr�es par registre & par dossier (O4)
O4 - HKLM\..\Run: [AsioReg] REGSVR32 \S CTASIO.dll
O4 - HKLM\..\Run: [EvtMgr6] . (.Logitech, Inc. - Logitech SetPoint Event Manager (UNICODE).) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe
O4 - HKLM\..\Run: [LogiScrollApp] . (.Logitech, Inc. - Logitech ScrollApp (UNICODE).) -- C:\Program Files\Logitech\FlowScroll\KhalScroll.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\MsnMsgr.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [KiesAirMessage] . (.Samsung Electronics - Pas de description.) -- C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe
O4 - HKCU\..\Run: [KiesPreload] . (.Samsung - Kies.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_B5ABEAE1BC17476D6C7B8ACF755978A5] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - HKCU\..\Run: [21586C6CAEC787C35FBAFCEF87444A72C55FAE26._service_run] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - HKLM\..\Wow6432Node\Run: [AsioReg] REGSVR32 \S CTASIO.dll
O4 - HKLM\..\Wow6432Node\Run: [AVP] . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst� Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-1771212374-4168810696-2002671789-1001\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\MsnMsgr.exe
O4 - HKUS\S-1-5-21-1771212374-4168810696-2002671789-1001\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-1771212374-4168810696-2002671789-1001\..\Run: [KiesAirMessage] . (.Samsung Electronics - Pas de description.) -- C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe
O4 - HKUS\S-1-5-21-1771212374-4168810696-2002671789-1001\..\Run: [KiesPreload] . (.Samsung - Kies.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe
O4 - HKUS\S-1-5-21-1771212374-4168810696-2002671789-1001\..\Run: [GoogleChromeAutoLaunch_B5ABEAE1BC17476D6C7B8ACF755978A5] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - HKUS\S-1-5-21-1771212374-4168810696-2002671789-1001\..\Run: [21586C6CAEC787C35FBAFCEF87444A72C55FAE26._service_run] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\JEREMIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\JEREMIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\JEREMIE\Desktop\F1 2011.lnk - Cl� orpheline
O4 - Global Startup: C:\Users\JEREMIE\Desktop\PhotoFiltre.lnk . (.Antonio Da Cruz.) -- C:\Program Files (x86)\PhotoFiltre\PhotoFiltre.exe
O4 - Global Startup: C:\Users\JEREMIE\Desktop\Protection des transactions bancaires.lnk . (.Kaspersky Lab ZAO.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\starter_avp.exe
O4 - Global Startup: C:\Users\JEREMIE\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\JEREMIE\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Samsung Kies.lnk . (.Samsung.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe
~ Scan Global Startup in 00mn 00s
---\\ Invisibilit� de l'ic�ne d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s
---\\ Boutons situ�s sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Clavier virtuel [64Bits] - {0C4CC089-D306-440D-9772-464E226F6539} . (...) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\kbrd.ico
O9 - Extra button: &Envoyer � OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} -- C:\Program Files (x86)\MICROS~3\Office14\ONBttnIE.dll (.not file.)
O9 - Extra button: Notes &li�es OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} -- C:\Program Files (x86)\MICROS~3\Office14\ONBTTN~1.dll (.not file.)
O9 - Extra button: Analyse des liens [64Bits] - {CCF151D8-D089-449F-A5A4-D9909053F20F} . (...) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\logo.ico
~ Scan IE Extra Buttons in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d�affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft� Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft� Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000009\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Scan Winsock in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{0F5485BD-FC13-4959-94B0-EBA470AC7EE3}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CCS\Services\Tcpip\..\{BB9CF4FF-12E9-4E57-B867-FD77FEB6CC1E}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{0F5485BD-FC13-4959-94B0-EBA470AC7EE3}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CS1\Services\Tcpip\..\{BB9CF4FF-12E9-4E57-B867-FD77FEB6CC1E}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{0F5485BD-FC13-4959-94B0-EBA470AC7EE3}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CS2\Services\Tcpip\..\{BB9CF4FF-12E9-4E57-B867-FD77FEB6CC1E}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: LBTWlgn . (.Logitech, Inc. - Logitech Bluetooth Service.) -- c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
~ Scan Winlogon in 00mn 00s
---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s
---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASGT (ASGT) . (...) - C:\Windows\SysWOW64\ASGT.exe
O23 - Service: Kaspersky Anti-Virus Service (AVP) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Creative Audio Service (CTAudSvcService) . (.Creative Technology Ltd - Creative Audio Service.) - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: PnkBstrA (PnkBstrA) . (...) - C:\Windows\SysWOW64\PnkBstrA.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: UsbClientService (UsbClientService) . (...) - C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
O23 - Service: (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
~ Scan Services in 00mn 10s
---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s
---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\AutoKMS.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1771212374-4168810696-2002671789-1001Core.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1771212374-4168810696-2002671789-1001UA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1771212374-4168810696-2002671789-1001Core.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1771212374-4168810696-2002671789-1001UA.job
[MD5.563CDCFEEAEF97163E206AF71A61AA6E] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
[MD5.07605ABEB10FC533881C91F19DECF69A] [APT] [AutoKMS] (...) -- C:\Windows\AutoKMS\AutoKMS.exe
[MD5.74660C1E9139D95F4E006E8E49EA4986] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-1771212374-4168810696-2002671789-1001Core] (.Facebook Inc..) -- C:\Users\JEREMIE\AppData\Local\Facebook\Update\FacebookUpdate.exe
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-1771212374-4168810696-2002671789-1001UA] (.Facebook Inc..) -- C:\Users\JEREMIE\AppData\Local\Facebook\Update\FacebookUpdate.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-1771212374-4168810696-2002671789-1001Core] (.Google Inc..) -- C:\Users\JEREMIE\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-1771212374-4168810696-2002671789-1001UA] (.Google Inc..) -- C:\Users\JEREMIE\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
~ Scan Scheduled Task in 00mn 03s
---\\ Composants install�s (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d�IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn 00s
---\\ Pilotes lanc�s au d�marrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (AsIO) . (...) - C:\Windows\Syswow64\drivers\AsIO.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (KLIF) . (.Kaspersky Lab - Klif Mini-Filter [fre_wlh_x64].) - C:\Windows\System32\DRIVERS\klif.sys
O41 - Driver: (KLIM6) . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) - C:\Windows\System32\DRIVERS\klim6.sys
O41 - Driver: (kltdi) . (.Kaspersky Lab - Network filtering component.) - C:\Windows\System32\DRIVERS\kltdi.sys
O41 - Driver: (kneps) . (.Kaspersky Lab - KNEPS Power.) - C:\Windows\System32\DRIVERS\kneps.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-syst�me de mise en m�moire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de p�riph�rique s�rie.) - C:\Windows\System32\DRIVERS\serial.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s
---\\ Logiciels install�s (O42)
O42 - Logiciel: 7-Zip 9.20 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0920-000001000000}
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441}
O42 - Logiciel: AMD Accelerated Video Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {89EE4A30-080F-2C95-6F78-C98D18FBD74D}
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {5E03A267-415E-5383-FA8F-3CE4145663B9}
O42 - Logiciel: AMD Drag and Drop Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {3ABFAF33-D6EE-9348-CE96-AF51E9D6D2FF}
O42 - Logiciel: AMD Media Foundation Decoders - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {4975DE61-6BF6-B9BC-1FDE-C04C5EC78E4C}
O42 - Logiciel: ASUS GPU Tweak - (.ASUSTek COMPUTER INC..) [HKLM][64Bits] -- InstallShield_{532F6E8A-AF97-41C3-915F-39F718EC07D1}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader X (10.1.5) - Fran�ais - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: Akamai NetSession Interface - (.Akamai Technologies, Inc.) [HKCU][64Bits] -- Akamai
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {45C56AA7-ED1B-4800-A97F-EDDF3F3520B1}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {2F72F540-1F60-4266-9506-952B21D6640D}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Battlefield 3� - (.Electronic Arts.) [HKLM][64Bits] -- {76285C16-411A-488A-BCE3-C83CB933D8CF}
O42 - Logiciel: Battlelog Web Plugins - (.EA Digital Illusions CE AB.) [HKLM][64Bits] -- Battlelog Web Plugins
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}
O42 - Logiciel: Creative ALchemy - (.Creative Technology Limited.) [HKLM][64Bits] -- ALchemy
O42 - Logiciel: Creative Console Launcher - (.Creative Technology Limited.) [HKLM][64Bits] -- Console Launcher
O42 - Logiciel: Creative Diagnostics - (.Creative Technology Limited.) [HKLM][64Bits] -- Diagnostics 4_5
O42 - Logiciel: Creative Media Toolbox 6 (Shared Components) - (.Creative Labs.) [HKLM][64Bits] -- Uninstaller_B4736000_Creative Media Toolbox 6
O42 - Logiciel: Creative Media Toolbox 6 - (.Creative Technology Limited.) [HKLM][64Bits] -- {F1A14CB2-A048-45A6-AFDA-3571296E1D76}
O42 - Logiciel: Creative MediaSource 5 - (.Creative Technology Limited.) [HKLM][64Bits] -- {BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}
O42 - Logiciel: Creative Software AutoUpdate - (.Creative Technology Limited.) [HKLM][64Bits] -- Creative Software AutoUpdate
O42 - Logiciel: Creative Sound Blaster Properties x64 Edition - (.Creative Technology Limited.) [HKLM][64Bits] -- Creative Sound Blaster Properties x64 Edition
O42 - Logiciel: Creative WaveStudio 7 - (.Creative Technology Limited.) [HKLM][64Bits] -- WaveStudio 7
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DTS Connect Pack - (.Creative Technology Limited.) [HKLM][64Bits] -- DTS Connect Pack
O42 - Logiciel: Dolby Digital Live Pack - (.Creative Technology Limited.) [HKLM][64Bits] -- Dolby Digital Live Pack
O42 - Logiciel: ESN Sonar - (.ESN Social Software AB.) [HKLM][64Bits] -- ESN Sonar-0.70.4
O42 - Logiciel: F1 2011 - (.Codemasters.) [HKLM][64Bits] -- GFWL_{434D0FA1-3E0C-4D03-A5D4-5E1000008100}
O42 - Logiciel: F1 2011 - (.Codemasters.) [HKLM][64Bits] -- {434D0FA1-3E0C-4D03-A5D4-5E1000008100}
O42 - Logiciel: F1 2011 - (.Codemasters.) [HKLM][64Bits] -- {434D0FA1-A4CC-401A-9E74-621000028101}
O42 - Logiciel: Facebook Video Calling 1.2.0.287 - (.Skype Limited.) [HKLM][64Bits] -- {B92C5909-1D37-4C51-8397-A28BB28E5DC3}
O42 - Logiciel: Fraps - (.Pas de propri�taire.) [HKLM][64Bits] -- Fraps
O42 - Logiciel: Garmin Communicator Plugin x64 - (.Garmin Ltd or its subsidiaries.) [HKLM][64Bits] -- {550331CC-C34B-494F-BCDA-37CE4EF6E924}
O42 - Logiciel: Garmin Lifetime Updater - (.Garmin.) [HKLM][64Bits] -- {9AAD03E8-4F65-4DE2-8F6C-1B079C0C8521}
O42 - Logiciel: GoPro CineForm Studio 1.2.1 - (.CineForm, Inc & GoPro, Inc..) [HKLM][64Bits] -- GoPro CineForm Studio
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Talk Plugin - (.Google.) [HKLM][64Bits] -- {D952C4F9-2488-3723-84BE-1BFA907DCAC9}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Grand Theft Auto IV - (.Rockstar.) [HKLM][64Bits] -- Steam App 12210
O42 - Logiciel: Grand Theft Auto: Episodes from Liberty City - (.Rockstar.) [HKLM][64Bits] -- Steam App 12220
O42 - Logiciel: Java 7 Update 9 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217007FF}
O42 - Logiciel: JavaFX 2.1.1 - (.Oracle Corporation.) [HKLM][64Bits] -- {1111706F-666A-4037-7777-211328764D10}
O42 - Logiciel: Kaspersky Internet Security 2013 - (.Kaspersky Lab.) [HKLM][64Bits] -- InstallWIX_{560985FB-4B76-4121-9189-7A2CDC7886D6}
O42 - Logiciel: Kaspersky Internet Security 2013 - (.Kaspersky Lab.) [HKLM][64Bits] -- {560985FB-4B76-4121-9189-7A2CDC7886D6}
O42 - Logiciel: Lecteur 3D MIDI Creative - (.Creative Technology Limited.) [HKLM][64Bits] -- 3DMIDI
O42 - Logiciel: Logitech - Assistant pour jeux vid�os 8.20 - (.Logitech Inc..) [HKLM][64Bits] -- Logitech Gaming Software
O42 - Logiciel: Logitech Flow Scroll 4.0 - (.Logitech.) [HKLM][64Bits] -- Sn1
O42 - Logiciel: Logitech Gaming Software - (.Logitech Inc..) [HKLM][64Bits] -- {690285C2-2481-44FB-8402-162EA970A6DD}
O42 - Logiciel: Logitech SetPoint 6.32 - (.Logitech.) [HKLM][64Bits] -- sp6
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {49F6DFDE-8DF7-11E1-9E5F-F04DA23A5C58}
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {D4761C4F-5ED9-11E1-9202-F04DA23A5C58}
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}
O42 - Logiciel: Microsoft Games for Windows Marketplace - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CB0307C-565E-4441-86BE-0DF2E4FB828C}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: MotioninJoy Gamepad tool 0.7.1001 - (.www.motioninjoy.com.) [HKLM][64Bits] -- {330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1
O42 - Logiciel: Mozilla Firefox 19.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 19.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: MyFreeCodec - (.Pas de propri�taire.) [HKCU][64Bits] -- MyFreeCodec
O42 - Logiciel: Numark VirtualVinyl (Atomix Productions) - (.Pas de propri�taire.) [HKLM][64Bits] -- Numark VirtualVinyl (Atomix Productions)
O42 - Logiciel: OpenAL - (.Pas de propri�taire.) [HKLM][64Bits] -- OpenAL
O42 - Logiciel: Origin - (.Electronic Arts, Inc..) [HKLM][64Bits] -- Origin
O42 - Logiciel: Panneau de configuration audio Creative - (.Creative Technology Limited.) [HKLM][64Bits] -- AudioCS
O42 - Logiciel: PhotoFiltre - (.Pas de propri�taire.) [HKLM][64Bits] -- PhotoFiltre
O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM][64Bits] -- PunkBusterSvc
O42 - Logiciel: Rapture3D 2.4.9 Game - (.Blue Ripple Sound.) [HKLM][64Bits] -- {D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44}
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- InstallShield_{758C8301-2696-4855-AF45-534B1200980A}
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {758C8301-2696-4855-AF45-534B1200980A}
O42 - Logiciel: Skype� 6.1 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}
O42 - Logiciel: Synology Assistant (remove only) - (.Pas de propri�taire.) [HKLM][64Bits] -- Synology Assistant
O42 - Logiciel: System Requirements Lab CYRI - (.Husdawg, LLC.) [HKLM][64Bits] -- {943A8D28-80D6-41DC-AE94-81FEB42041BF}
O42 - Logiciel: Total Immersion D'Fusion @Home Web Plug-In - (.Total Immersion.) [HKLM][64Bits] -- D'Fusion @Home Web Plug-In
O42 - Logiciel: VLC media player 2.0.1 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Vegas Pro 11.0 (64-bit) - (.Sony.) [HKLM][64Bits] -- {44544F00-8DF7-11E1-B1D0-F04DA23A5C58}
O42 - Logiciel: VoiceOver Kit - (.Apple Inc..) [HKLM][64Bits] -- {6B4AD1A9-E73A-4184-9D6B-072F8A3C5EBA}
O42 - Logiciel: Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices (03/0 - (.GoPro.) [HKLM][64Bits] -- 0B624A43DD66DBF5CF3EDFA9741A364E688062A4
O42 - Logiciel: Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices (03/0 - (.GoPro.) [HKLM][64Bits] -- 1F64724E4D591A125651B4B68C84B9CCE9619004
O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM][64Bits] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
O42 - Logiciel: eReg - (.Logitech, Inc..) [HKLM][64Bits] -- {3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {0225AD21-F3E2-4916-BFF3-65D3F9052582}
---\\ HKCU & HKLM Software Keys
[HKCU\Software\7-Zip]
[HKCU\Software\AMD]
[HKCU\Software\ASUS]
[HKCU\Software\ATI]
[HKCU\Software\Adobe]
[HKCU\Software\AlterGeo]
[HKCU\Software\AppDataLow\Software\MarkAny]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Badoo]
[HKCU\Software\BlueRippleSound]
[HKCU\Software\CREATIVE TECH]
[HKCU\Software\CineForm]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Cue]
[HKCU\Software\Cygwin]
[HKCU\Software\DSS]
[HKCU\Software\DirectShow]
[HKCU\Software\EA Games]
[HKCU\Software\Facebook]
[HKCU\Software\Fraps3]
[HKCU\Software\Garmin]
[HKCU\Software\GoPro]
[HKCU\Software\Google]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\HookNetwork]
[HKCU\Software\IM Providers]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\KasperskyLab]
[HKCU\Software\Leadertech]
[HKCU\Software\Logitech]
[HKCU\Software\MCAFEE]
[HKCU\Software\Macromedia]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Myfree Codec]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Rockstar Games]
[HKCU\Software\Samsung]
[HKCU\Software\SecuROM]
[HKCU\Software\SimonTatham]
[HKCU\Software\SkypeRS]
[HKCU\Software\Skype]
[HKCU\Software\Sony Creative Software]
[HKCU\Software\Synology]
[HKCU\Software\System Requirements Lab]
[HKCU\Software\Trolltech]
[HKCU\Software\Valve]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKLM\Software\7-Zip]
[HKLM\Software\AMD]
[HKLM\Software\ASIO]
[HKLM\Software\ASUS]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\Alienware]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\CREATIVE TECH]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\GEAR Software]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\KasperskyLab]
[HKLM\Software\Khronos]
[HKLM\Software\Logitech]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SAMSUNG]
[HKLM\Software\Sonic]
[HKLM\Software\Sony Creative Software]
[HKLM\Software\Wow6432Node\AMD]
[HKLM\Software\Wow6432Node\ASIO]
[HKLM\Software\Wow6432Node\ASUS]
[HKLM\Software\Wow6432Node\ATI Technologies]
[HKLM\Software\Wow6432Node\ATI]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\BlueRippleSound]
[HKLM\Software\Wow6432Node\CDDB]
[HKLM\Software\Wow6432Node\CREATIVE TECH]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Codemasters]
[HKLM\Software\Wow6432Node\Creative Labs]
[HKLM\Software\Wow6432Node\Cue]
[HKLM\Software\Wow6432Node\Cygwin]
[HKLM\Software\Wow6432Node\EA Games]
[HKLM\Software\Wow6432Node\ESN Launcher-1.132.0]
[HKLM\Software\Wow6432Node\ESN Launcher-1.140.0]
[HKLM\Software\Wow6432Node\Electronic Arts]
[HKLM\Software\Wow6432Node\Even Balance]
[HKLM\Software\Wow6432Node\Garmin]
[HKLM\Software\Wow6432Node\GoPro]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\KasperskyLab]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Loader]
[HKLM\Software\Wow6432Node\Logitech]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\McAfee.com]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\Myfree Codec]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Oracle]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Rockstar Games]
[HKLM\Software\Wow6432Node\Samsung]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Sony Creative Software]
[HKLM\Software\Wow6432Node\Total Immersion]
[HKLM\Software\Wow6432Node\Valve]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\dotNetInstaller]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
~ Scan Softwares in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 07/05/2012 - 10:51:15 - [113,547] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 10/02/2013 - 17:46:45 - [2,145] ----D C:\Program Files (x86)\AMD APP
O43 - CFD: 10/02/2013 - 17:46:53 - [0,397] ----D C:\Program Files (x86)\AMD AVT
O43 - CFD: 19/05/2012 - 08:34:31 - [2,316] ----D C:\Program Files (x86)\Apple Software Update
O43 - CFD: 24/07/2012 - 19:24:29 - [32,612] ----D C:\Program Files (x86)\ASUS
O43 - CFD: 24/06/2012 - 18:13:05 - [60,025] ----D C:\Program Files (x86)\ATI Technologies
O43 - CFD: 19/11/2012 - 12:21:41 - [10,940] ----D C:\Program Files (x86)\Battlelog Web Plugins
O43 - CFD: 19/05/2012 - 08:33:57 - [0,602] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 10/08/2012 - 16:09:47 - [13,306] ----D C:\Program Files (x86)\BRS
O43 - CFD: 18/08/2012 - 21:06:32 - [7,955] ----D C:\Program Files (x86)\CineForm
O43 - CFD: 10/08/2012 - 15:55:27 - [-1943,061] ----D C:\Program Files (x86)\Codemasters
O43 - CFD: 20/02/2013 - 17:20:57 - [299,857] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 07/05/2012 - 13:39:27 - [199,717] ----D C:\Program Files (x86)\Creative
O43 - CFD: 07/05/2012 - 13:40:34 - [68,749] --H-D C:\Program Files (x86)\Creative Installation Information
O43 - CFD: 02/01/2013 - 15:23:34 - [43,009] ----D C:\Program Files (x86)\Garmin
O43 - CFD: 17/02/2013 - 11:47:04 - [348,108] ----D C:\Program Files (x86)\Google
O43 - CFD: 18/08/2012 - 21:06:32 - [41,420] ----D C:\Program Files (x86)\GoPro
O43 - CFD: 24/07/2012 - 19:24:52 - [53,850] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 14/02/2013 - 12:59:41 - [4,933] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 23/02/2013 - 10:01:07 - [196,585] ----D C:\Program Files (x86)\iTunes
O43 - CFD: 24/10/2012 - 17:34:56 - [121,165] ----D C:\Program Files (x86)\Java
O43 - CFD: 01/12/2012 - 18:15:33 - [167,926] ----D C:\Program Files (x86)\Kaspersky Lab
O43 - CFD: 02/05/2012 - 17:39:51 - [2,414] ----D C:\Program Files (x86)\MarkAny
O43 - CFD: 18/05/2012 - 14:27:18 - [37,927] ----D C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 10/08/2012 - 16:08:34 - [8,929] ----D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
O43 - CFD: 18/05/2012 - 14:27:03 - [28,204] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 13/05/2012 - 15:50:10 - [40,838] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 18/05/2012 - 14:28:11 - [1,314] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 18/05/2012 - 14:29:55 - [7,789] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 11/05/2012 - 18:04:54 - [8,904] ----D C:\Program Files (x86)\Movie Maker 2.6
O43 - CFD: 21/02/2013 - 19:02:23 - [45,542] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 22/02/2013 - 13:05:17 - [0,212] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 18/05/2012 - 14:30:03 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 15/11/2012 - 17:20:47 - [10,585] ----D C:\Program Files (x86)\MyFree Codec
O43 - CFD: 25/07/2012 - 19:48:24 - [18,095] ----D C:\Program Files (x86)\Numark Cue
O43 - CFD: 10/08/2012 - 16:09:38 - [1,544] ----D C:\Program Files (x86)\OpenAL
O43 - CFD: 29/06/2012 - 15:28:18 - [33,205] ----D C:\Program Files (x86)\Oracle
O43 - CFD: 28/10/2012 - 21:18:50 - [129,026] ----D C:\Program Files (x86)\Origin
O43 - CFD: 15/06/2012 - 11:16:03 - [941,261] ----D C:\Program Files (x86)\Origin Games
O43 - CFD: 10/06/2012 - 11:13:40 - [3,389] ----D C:\Program Files (x86)\PhotoFiltre
O43 - CFD: 18/08/2012 - 21:05:51 - [1,279] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 14/07/2009 - 06:32:38 - [37,357] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 02/05/2012 - 17:40:32 - [259,699] ----D C:\Program Files (x86)\Samsung
O43 - CFD: 26/01/2013 - 22:25:51 - [18,091] R---D C:\Program Files (x86)\Skype
O43 - CFD: 17/05/2012 - 13:50:49 - [90,150] ----D C:\Program Files (x86)\Sony
O43 - CFD: 10/02/2013 - 17:48:59 - [-13,819] ----D C:\Program Files (x86)\Steam
O43 - CFD: 29/12/2012 - 11:54:22 - [111,555] ----D C:\Program Files (x86)\Synology
O43 - CFD: 11/05/2012 - 15:08:44 - [0,470] ----D C:\Program Files (x86)\SystemRequirementsLab
O43 - CFD: 16/02/2013 - 11:26:43 - [6,709] ----D C:\Program Files (x86)\Total Immersion
O43 - CFD: 14/07/2009 - 05:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 13/05/2012 - 10:59:51 - [88,797] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 14/07/2009 - 16:24:08 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 04/05/2012 - 14:30:34 - [59,542] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 02/05/2012 - 20:39:28 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 02/05/2012 - 20:39:28 - [4,791] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 06:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 02/05/2012 - 20:39:28 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 02/05/2012 - 20:39:28 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 02/05/2012 - 20:39:28 - [6,309] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 23/02/2013 - 13:32:57 - [15,136] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 07/05/2012 - 10:51:18 - [3,797] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 23/02/2013 - 10:00:26 - [99,452] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 24/06/2012 - 18:14:18 - [2,769] ----D C:\Program Files (x86)\Common Files\ATI Technologies
O43 - CFD: 05/05/2012 - 18:34:12 - [3,467] ----D C:\Program Files (x86)\Common Files\Creative
O43 - CFD: 07/05/2012 - 13:41:04 - [0,530] ----D C:\Program Files (x86)\Common Files\Creative Labs Shared
O43 - CFD: 15/06/2012 - 13:25:36 - [0,957] --H-D C:\Program Files (x86)\Common Files\EAInstaller
O43 - CFD: 24/07/2012 - 19:25:02 - [4,594] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 01/09/2012 - 13:29:28 - [1,184] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 07/05/2012 - 14:46:05 - [0,494] ----D C:\Program Files (x86)\Common Files\LogiShrd
O43 - CFD: 15/06/2012 - 11:00:54 - [130,794] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 14/07/2009 - 04:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 26/01/2013 - 22:25:51 - [2,056] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 14/07/2009 - 04:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 10/02/2013 - 17:29:05 - [0,517] ----D C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 02/05/2012 - 20:39:28 - [10,046] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 04/05/2012 - 14:27:29 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 23/02/2013 - 10:01:09 - [2,775] ----D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 16/02/2013 - 10:03:31 - [149,918] ----D C:\ProgramData\Adobe
O43 - CFD: 10/02/2013 - 17:46:56 - [0,764] ----D C:\ProgramData\AMD
O43 - CFD: 19/05/2012 - 08:34:24 - [187,773] ----D C:\ProgramData\Apple
O43 - CFD: 19/05/2012 - 08:35:06 - [58,649] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 10/02/2013 - 17:47:28 - [0,000] ----D C:\ProgramData\ATI
O43 - CFD: 01/05/2012 - 20:36:12 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 10/08/2012 - 17:07:09 - [2000,000] ----D C:\ProgramData\Codemasters
O43 - CFD: 07/05/2012 - 13:41:04 - [326,596] ----D C:\ProgramData\Creative
O43 - CFD: 07/05/2012 - 13:42:27 - [0,006] ----D C:\ProgramData\Creative Labs
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 15/06/2012 - 14:28:11 - [0] ----D C:\ProgramData\EA Core
O43 - CFD: 15/06/2012 - 14:38:13 - [0,002] ----D C:\ProgramData\EA Logs
O43 - CFD: 15/06/2012 - 14:28:13 - [0,102] ----D C:\ProgramData\Electronic Arts
O43 - CFD: 01/05/2012 - 20:36:12 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 23/02/2013 - 11:38:25 - [718,653] ----D C:\ProgramData\Kaspersky Lab
O43 - CFD: 11/05/2012 - 15:37:07 - [3,530] ----D C:\ProgramData\Logishrd
O43 - CFD: 08/06/2012 - 10:39:33 - [0,011] ----D C:\ProgramData\Logitech
O43 - CFD: 16/02/2013 - 10:01:45 - [0,018] ----D C:\ProgramData\McAfee
O43 - CFD: 01/05/2012 - 20:36:12 - [0] --H-D C:\ProgramData\Menu D�marrer
O43 - CFD: 10/08/2012 - 15:54:52 - [253,528] -S--D C:\ProgramData\Microsoft
O43 - CFD: 13/02/2013 - 13:24:22 - [0,016] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 01/05/2012 - 20:36:12 - [0] --H-D C:\ProgramData\Mod�les
O43 - CFD: 01/05/2012 - 20:40:38 - [0,034] ----D C:\ProgramData\Mozilla
O43 - CFD: 06/10/2012 - 17:48:55 - [4,271] ----D C:\ProgramData\Origin
O43 - CFD: 02/05/2012 - 17:40:19 - [8,624] ----D C:\ProgramData\Samsung
O43 - CFD: 01/11/2012 - 17:51:20 - [0,062] -SH-D C:\ProgramData\SecuROM
O43 - CFD: 26/01/2013 - 22:25:57 - [58,304] ----D C:\ProgramData\Skype
O43 - CFD: 17/05/2012 - 14:46:54 - [0,004] ----D C:\ProgramData\Sony
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 11/05/2012 - 15:08:19 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 16/01/2013 - 19:47:52 - [0,000] ----D C:\ProgramData\Synology
O43 - CFD: 18/08/2012 - 21:17:43 - [0] ---AD C:\ProgramData\TEMP
O43 - CFD: 14/07/2009 - 06:08:56 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 19/05/2012 - 08:35:21 - [0,002] ----D C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
O43 - CFD: 07/05/2012 - 10:54:56 - [7,492] ----D C:\Users\JEREMIE\AppData\Roaming\Adobe
O43 - CFD: 30/01/2013 - 11:02:41 - [0,184] ----D C:\Users\JEREMIE\AppData\Roaming\Apple Computer
O43 - CFD: 02/05/2012 - 17:49:13 - [0] ----D C:\Users\JEREMIE\AppData\Roaming\ATI
O43 - CFD: 07/05/2012 - 13:57:20 - [0,001] ----D C:\Users\JEREMIE\AppData\Roaming\Creative
O43 - CFD: 02/01/2013 - 15:25:03 - [0,286] ----D C:\Users\JEREMIE\AppData\Roaming\Garmin
O43 - CFD: 01/05/2012 - 20:36:35 - [0] ----D C:\Users\JEREMIE\AppData\Roaming\Identities
O43 - CFD: 07/05/2012 - 14:46:09 - [0,000] ----D C:\Users\JEREMIE\AppData\Roaming\Leadertech
O43 - CFD: 11/05/2012 - 15:45:40 - [0,245] ----D C:\Users\JEREMIE\AppData\Roaming\Logishrd
O43 - CFD: 07/05/2012 - 14:46:16 - [0,000] ----D C:\Users\JEREMIE\AppData\Roaming\Logitech
O43 - CFD: 02/05/2012 - 17:44:17 - [0,007] ----D C:\Users\JEREMIE\AppData\Roaming\Macromedia
O43 - CFD: 14/07/2009 - 16:35:02 - [0] ----D C:\Users\JEREMIE\AppData\Roaming\Media Center Programs
O43 - CFD: 14/02/2013 - 13:13:20 - [23,254] -S--D C:\Users\JEREMIE\AppData\Roaming\Microsoft
O43 - CFD: 10/08/2012 - 17:55:05 - [0,492] ----D C:\Users\JEREMIE\AppData\Roaming\MotioninJoy
O43 - CFD: 06/02/2013 - 17:46:24 - [122,168] ----D C:\Users\JEREMIE\AppData\Roaming\Mozilla
O43 - CFD: 15/08/2012 - 16:35:41 - [0,030] ----D C:\Users\JEREMIE\AppData\Roaming\Origin
O43 - CFD: 20/05/2012 - 17:31:27 - [0,144] ----D C:\Users\JEREMIE\AppData\Roaming\Publish Providers
O43 - CFD: 31/08/2012 - 15:46:35 - [47,028] ----D C:\Users\JEREMIE\AppData\Roaming\Samsung
O43 - CFD: 26/10/2012 - 17:04:55 - [0,016] R-H-D C:\Users\JEREMIE\AppData\Roaming\SecuROM
O43 - CFD: 20/02/2013 - 17:15:29 - [8,179] ----D C:\Users\JEREMIE\AppData\Roaming\Skype
O43 - CFD: 20/05/2012 - 17:33:51 - [0,744] ----D C:\Users\JEREMIE\AppData\Roaming\Sony
O43 - CFD: 11/05/2012 - 15:08:41 - [0,324] ----D C:\Users\JEREMIE\AppData\Roaming\SystemRequirementsLab
O43 - CFD: 11/05/2012 - 15:23:45 - [0] ----D C:\Users\JEREMIE\AppData\Roaming\Temp
O43 - CFD: 16/02/2013 - 11:27:08 - [31,262] ----D C:\Users\JEREMIE\AppData\Roaming\Total Immersion
O43 - CFD: 20/02/2013 - 21:31:25 - [0,079] ----D C:\Users\JEREMIE\AppData\Roaming\vlc
O43 - CFD: 07/05/2012 - 10:54:56 - [15,375] ----D C:\Users\JEREMIE\AppData\Local\Adobe
O43 - CFD: 23/06/2012 - 18:46:56 - [24,094] ----D C:\Users\JEREMIE\AppData\Local\Akamai
O43 - CFD: 19/05/2012 - 08:34:33 - [0] ----D C:\Users\JEREMIE\AppData\Local\Apple
O43 - CFD: 19/05/2012 - 08:35:28 - [4,806] ----D C:\Users\JEREMIE\AppData\Local\Apple Computer
O43 - CFD: 01/05/2012 - 20:36:24 - [0] ----D C:\Users\JEREMIE\AppData\Local\Application Data
O43 - CFD: 02/05/2012 - 17:49:13 - [0,062] ----D C:\Users\JEREMIE\AppData\Local\ATI
O43 - CFD: 04/02/2013 - 21:53:09 - [8,671] ----D C:\Users\JEREMIE\AppData\Local\Diagnostics
O43 - CFD: 02/05/2012 - 17:38:44 - [87,950] ----D C:\Users\JEREMIE\AppData\Local\Downloaded Installations
O43 - CFD: 02/02/2013 - 14:34:00 - [0,511] ----D C:\Users\JEREMIE\AppData\Local\ElevatedDiagnostics
O43 - CFD: 27/10/2012 - 17:17:03 - [7,391] ----D C:\Users\JEREMIE\AppData\Local\Facebook
O43 - CFD: 17/02/2013 - 11:48:45 - [807,419] ----D C:\Users\JEREMIE\AppData\Local\Google
O43 - CFD: 18/08/2012 - 21:11:10 - [0,001] ----D C:\Users\JEREMIE\AppData\Local\GoPro
O43 - CFD: 01/05/2012 - 20:36:24 - [0] ----D C:\Users\JEREMIE\AppData\Local\Historique
O43 - CFD: 07/05/2012 - 14:46:23 - [0,320] ----D C:\Users\JEREMIE\AppData\Local\LogiShrd
O43 - CFD: 08/06/2012 - 10:35:05 - [1025,475] ----D C:\Users\JEREMIE\AppData\Local\Logitech
O43 - CFD: 23/06/2012 - 18:56:22 - [0] ----D C:\Users\JEREMIE\AppData\Local\Macromedia
O43 - CFD: 14/02/2013 - 13:12:56 - [331,184] ----D C:\Users\JEREMIE\AppData\Local\Microsoft
O43 - CFD: 01/12/2012 - 14:52:29 - [0,307] ----D C:\Users\JEREMIE\AppData\Local\Microsoft Games
O43 - CFD: 18/05/2012 - 14:27:04 - [0] ----D C:\Users\JEREMIE\AppData\Local\Microsoft Help
O43 - CFD: 01/05/2012 - 20:40:49 - [454,728] ----D C:\Users\JEREMIE\AppData\Local\Mozilla
O43 - CFD: 15/08/2012 - 16:35:56 - [5,628] ----D C:\Users\JEREMIE\AppData\Local\Origin
O43 - CFD: 03/02/2013 - 16:19:22 - [0] ----D C:\Users\JEREMIE\AppData\Local\Programs
O43 - CFD: 15/06/2012 - 14:44:00 - [7,018] ----D C:\Users\JEREMIE\AppData\Local\PunkBuster
O43 - CFD: 26/10/2012 - 17:05:15 - [1,893] ----D C:\Users\JEREMIE\AppData\Local\Rockstar Games
O43 - CFD: 04/05/2012 - 19:50:37 - [0,161] ----D C:\Users\JEREMIE\AppData\Local\Samsung
O43 - CFD: 17/05/2012 - 14:46:54 - [2,845] ----D C:\Users\JEREMIE\AppData\Local\Sony
O43 - CFD: 23/02/2013 - 13:33:27 - [0,561] ----D C:\Users\JEREMIE\AppData\Local\Temp
O43 - CFD: 01/05/2012 - 20:36:24 - [0] ----D C:\Users\JEREMIE\AppData\Local\Temporary Internet Files
O43 - CFD: 31/05/2012 - 10:24:52 - [0,001] ----D C:\Users\JEREMIE\AppData\Local\VirtualStore
O43 - CFD: 18/08/2012 - 08:49:22 - [0,035] ----D C:\Users\JEREMIE\AppData\Local\Windows Live
O43 - CFD: 11/05/2012 - 18:13:32 - [0] ----D C:\Users\JEREMIE\AppData\Local\WMTools Downloaded Files
O43 - CFD: 23/02/2013 - 09:21:09 - [0] ----D C:\Users\JEREMIE\AppData\Local\{2123B8A7-59CB-4430-B3E8-227DA7E0B65D}
O43 - CFD: 22/02/2013 - 11:24:16 - [0] ----D C:\Users\JEREMIE\AppData\Local\{7370503D-F31E-46C2-8CA4-C05ECA8CC8D0}
O43 - CFD: 21/02/2013 - 12:58:19 - [0] ----D C:\Users\JEREMIE\AppData\Local\{C1B94F35-BD86-425B-8512-DA1205E2B8CE}
O43 - CFD: 21/02/2013 - 18:16:19 - [0] ----D C:\Users\JEREMIE\AppData\Local\{CDDEA929-6A18-4023-BB3B-25563F30FAB1}
O43 - CFD: 14/07/2009 - 05:54:32 - [0,014] R---D C:\Users\JEREMIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 12/07/2012 - 11:58:06 - [0,000] R---D C:\Users\JEREMIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 23/06/2012 - 18:49:35 - [0] ----D C:\Users\JEREMIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASUS
O43 - CFD: 07/05/2012 - 13:57:20 - [0,001] ----D C:\Users\JEREMIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Creative
O43 - CFD: 14/07/2009 - 05:49:38 - [0,001] R---D C:\Users\JEREMIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 25/07/2012 - 19:44:56 - [0] ----D C:\Users\JEREMIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Numark VirtualVinyl
O43 - CFD: 12/07/2012 - 11:58:06 - [0,000] R---D C:\Users\JEREMIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 16/02/2013 - 11:26:43 - [0,002] ----D C:\Users\JEREMIE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Immersion
~ Scan Program Folder in 00mn 16s
---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.18E1BBAF7B0B5DB93A7D973EF16F9EF0] - 23/02/2013 - 13:13:04 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1282743]
O44 - LFC:[MD5.0E7E3C7CFCBF6BF5B79E331DC0A073AE] - 23/02/2013 - 09:20:08 ---A- . (...) -- C:\Windows\setupact.log [8203]
O44 - LFC:[MD5.7B7C86C9DB07A5BE262054B2AE81D508] - 23/02/2013 - 09:20:08 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.9A5D10306C857BF2C56931DC68B637BA] - 22/02/2013 - 20:11:50 . (...) -- C:\Windows\System32\BMXState-{00000004-00000000-00000000-00001102-0000000B-00411102}.rfx []
O44 - LFC:[MD5.9A5D10306C857BF2C56931DC68B637BA] - 22/02/2013 - 20:11:50 . (...) -- C:\Windows\System32\BMXStateBkp-{00000004-00000000-00000000-00001102-0000000B-00411102}.rfx []
O44 - LFC:[MD5.41BFDF206CD065A60A09DB3ADBFE0036] - 22/02/2013 - 20:11:50 . (...) -- C:\Windows\System32\DVCState-{00000004-00000000-00000000-00001102-0000000B-00411102}.rfx []
O44 - LFC:[MD5.9A5D10306C857BF2C56931DC68B637BA] - 22/02/2013 - 20:11:50 ---A- . (...) -- C:\Windows\SysNative\BMXState-{00000004-00000000-00000000-00001102-0000000B-00411102}.rfx [62020]
O44 - LFC:[MD5.9A5D10306C857BF2C56931DC68B637BA] - 22/02/2013 - 20:11:50 ---A- . (...) -- C:\Windows\SysNative\BMXStateBkp-{00000004-00000000-00000000-00001102-0000000B-00411102}.rfx [62020]
O44 - LFC:[MD5.41BFDF206CD065A60A09DB3ADBFE0036] - 22/02/2013 - 20:11:50 ---A- . (...) -- C:\Windows\SysNative\DVCState-{00000004-00000000-00000000-00001102-0000000B-00411102}.rfx [820]
O44 - LFC:[MD5.E98395DD50E200938DB061A49B048DF0] - 20/02/2013 - 18:14:26 ---A- . (...) -- C:\AdwCleaner[S2].txt [1209]
O44 - LFC:[MD5.94F33C6AE969E5F43CBE09948602841B] - 20/02/2013 - 17:21:04 ---A- . (...) -- C:\AdwCleaner[S1].txt [21876]
O44 - LFC:[MD5.5D6D19FAB66EA45067479828BD200786] - 20/02/2013 - 17:19:06 ---A- . (...) -- C:\AdwCleaner[R1].txt [21737]
O44 - LFC:[MD5.BC7BB9E0CFF23086C8EE13D10142B333] - 14/02/2013 - 13:01:32 . (...) -- C:\Windows\System32\FNTCACHE.DAT []
O44 - LFC:[MD5.BC7BB9E0CFF23086C8EE13D10142B333] - 14/02/2013 - 13:01:32 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [418296]
O44 - LFC:[MD5.28E94A3F95E72E9C4D8B59CF5BD1CA5C] - 13/02/2013 - 13:22:54 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1570798]
O44 - LFC:[MD5.A1DBF3A79E178E4A6305F04FEF775F34] - 13/02/2013 - 13:22:54 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [106244]
O44 - LFC:[MD5.FC66BD7B67E5BD81B053B17A10C12980] - 13/02/2013 - 13:22:54 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [130602]
O44 - LFC:[MD5.317A583C25C1E42CB03ACCDBCF0AE630] - 13/02/2013 - 13:22:54 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [615864]
O44 - LFC:[MD5.157F06D3C27E05320167923EE737C9A4] - 13/02/2013 - 13:22:54 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [704296]
O44 - LFC:[MD5.F62FB2C7130E0F61A5ABE02FDB89144A] - 07/02/2013 - 13:41:31 ---A- . (...) -- C:\Windows\MEMORY.DMP [463310922]
~ Scan Files in 00mn 14s
---\\ Op�rations et fonctions au d�marrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook [64Bits] - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
~ Scan ShellExecuteHooks in 00mn 00s
---\\ D�ni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l��diteur de configuration de s�curit� Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de s�curit� Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll
~ Scan Keys in 00mn 00s
---\\ Contr�le du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s
---\\ MountPoints2 Shell Key (O51)
O51 - MPSK:{b4a56fbd-93c3-11e1-8c15-806e6f6e6963}\AutoRun\command. (.Codemasters Software Co. - Autorun Program.) -- D:\autorun.exe
~ Scan Keys in 00mn 00s
---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"VIDC.CFHD"="CFHD.dll" . (.CineForm Inc. - CineForm VFW CODEC.) -- C:\Windows\System32\CFHD.dll
O52 - TDSD: \Drivers32\"VIDC.FPS1"="frapsv64.dll" . (.Beepa P/L - Fraps.) -- C:\Windows\System32\frapsv64.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"CFHD.dll"="CineForm HD VFW Codec" . (.CineForm Inc. - CineForm VFW CODEC.) -- C:\Windows\System32\CFHD.dll
O52 - TDSD: \drivers.desc\"frapsv64.dll"="Fraps Video Decompressor" . (.Beepa P/L - Fraps.) -- C:\Windows\System32\frapsv64.dll
~ Scan Keys in 00mn 00s
---\\ ShareTools MSconfig StartupReg (O53)
O53 - SMSR:HKLM\...\startupreg\command . (.Samsung - KiesPDLR.) -- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O53 - SMSR:HKLM\...\startupreg\21586C6CAEC787C35FBAFCEF87444A72C55FAE26._service_run [Key] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O53 - SMSR:HKLM\...\startupreg\Akamai NetSession Interface [Key] . (.Akamai Technologies, Inc - Akamai NetSession Client.) -- C:\Users\JEREMIE\AppData\Local\Akamai\netsession_win.exe
O53 - SMSR:HKLM\...\startupreg\APSDaemon [Key] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O53 - SMSR:HKLM\...\startupreg\Badoo Desktop [Key] . (...) -- C:\ProgramData\Badoo\Badoo desktop\1.6.55.1183\Badoo.desktop.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\BCSSync [Key] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files\Microsoft Office\Office14\BCSSync.exe
O53 - SMSR:HKLM\...\startupreg\Facebook Update [Key] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\JEREMIE\AppData\Local\Facebook\Update\FacebookUpdate.exe
O53 - SMSR:HKLM\...\startupreg\Garmin Lifetime Updater [Key] . (.Garmin - Garmin Lifetime Updater.) -- C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe
O53 - SMSR:HKLM\...\startupreg\Google Update [Key] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\JEREMIE\AppData\Local\Google\Update\GoogleUpdate.exe
O53 - SMSR:HKLM\...\startupreg\GoogleChromeAutoLaunch_B5ABEAE1BC17476D6C7B8ACF755978A5 [Key] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O53 - SMSR:HKLM\...\startupreg\GoogleDriveSync [Key] . (...) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Iminent [Key] . (...) -- C:\Program Files (x86)\Iminent\Iminent.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\IminentMessenger [Key] . (...) -- C:\Program Files (x86)\Iminent\Iminent.Messengers.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\iTunesHelper [Key] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O53 - SMSR:HKLM\...\startupreg\KiesAirMessage [Key] . (.Samsung Electronics - Pas de description.) -- C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe
O53 - SMSR:HKLM\...\startupreg\KiesPDLR [Key] . (.Samsung - KiesPDLR.) -- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O53 - SMSR:HKLM\...\startupreg\KiesPreload [Key] . (.Samsung - Kies.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe
O53 - SMSR:HKLM\...\startupreg\KiesTrayAgent [Key] . (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O53 - SMSR:HKLM\...\startupreg\Launch LCore [Key] . (.Logitech Inc. - Logitech Gaming Framework.) -- C:\Program Files\Logitech Gaming Software\LCore.exe
O53 - SMSR:HKLM\...\startupreg\MusicManager [Key] . (...) -- C:\Users\JEREMIE\AppData\Local\Programs\Google\MusicManager\MusicManager.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Skype [Key] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O53 - SMSR:HKLM\...\startupreg\Steam [Key] . (.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
~ Scan SMSR Keys in 00mn 00s
---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
~ Scan Keys in 00mn 00s
---\\ Liste des Drivers Syst�me (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]
O58 - SDL:[MD5.68726474C69B738EAC3A62E06B33ADDC] - 06/04/2009 - 14:24:30 ---A- . (...) -- C:\Windows\SysWOW64\drivers\AsIO.sys [13368]
O58 - SDL:[MD5.DDEE99DC54EFA20BD5A442CD733C4462] - 05/02/2013 - 09:54:40 ---A- . (...) -- C:\Windows\SysWOW64\FsUsbExDisk.Sys [37344]
~ Scan Drivers in 00mn 00s
---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.3.5 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s
---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 19/12/2012 - C:\Windows\System32\DRIVERS\atikmdag.sys (amdkmdag) .(.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) - LEGACY_AMDKMDAG
O64 - Services: CurCS - 06/04/2009 - C:\Windows\Syswow64\drivers\AsIO.sys - AsIO (AsIO) .(...) - LEGACY_ASIO
O64 - Services: CurCS - 07/07/2010 - C:\Windows\system32\drivers\CT20XUT.sys (CT20XUT.SYS) .(.Creative Technology Ltd. - Creative 20X Utility Effects.) - LEGACY_CT20XUT.SYS
O64 - Services: CurCS - 07/07/2010 - C:\Windows\system32\drivers\CTEXFIFX.sys (CTEXFIFX.SYS) .(.Creative Technology Ltd. - Creative XFi Effects.) - LEGACY_CTEXFIFX.SYS
O64 - Services: CurCS - 07/07/2010 - C:\Windows\system32\drivers\CTHWIUT.sys (CTHWIUT.SYS) .(.Creative Technology Ltd. - Creative Utility Effects.) - LEGACY_CTHWIUT.SYS
O64 - Services: CurCS - 07/07/2010 - C:\Windows\System32\drivers\ctprxy2k.sys (ctprxy2k) .(.Creative Technology Ltd - Creative Proxy Device Driver (WDM).) - LEGACY_CTPRXY2K
O64 - Services: CurCS - 07/07/2010 - C:\Windows\System32\drivers\ctsfm2k.sys (ctsfm2k) .(.Creative Technology Ltd - SoundFont(R) Manager (WDM).) - LEGACY_CTSFM2K
O64 - Services: CurCS - 07/07/2010 - C:\Windows\System32\drivers\emupia2k.sys (emupia) .(.Creative Technology Ltd - E-mu Plug-in Architecture Driver (WDM).) - LEGACY_EMUPIA
O64 - Services: CurCS - 07/07/2010 - C:\Windows\System32\drivers\ha20x22k.sys (ha20x22k) .(.Creative Technology Ltd - Creative 20X2 HAL (WDM).) - LEGACY_HA20X22K
O64 - Services: CurCS - 19/06/2012 - C:\Windows\System32\DRIVERS\kl1.sys (KL1) .(.Kaspersky Lab ZAO - Kaspersky Unified Driver.) - LEGACY_KL1
O64 - Services: CurCS - 01/12/2012 - C:\Windows\System32\DRIVERS\klif.sys (KLIF) .(.Kaspersky Lab - Klif Mini-Filter [fre_wlh_x64].) - LEGACY_KLIF
O64 - Services: CurCS - 02/08/2012 - C:\Windows\System32\DRIVERS\klim6.sys (KLIM6) .(.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) - LEGACY_KLIM6
O64 - Services: CurCS - 01/12/2012 - C:\Windows\System32\DRIVERS\kltdi.sys (kltdi) .(.Kaspersky Lab - Network filtering component.) - LEGACY_KLTDI
O64 - Services: CurCS - 13/08/2012 - C:\Windows\System32\DRIVERS\kneps.sys (kneps) .(.Kaspersky Lab - KNEPS Power.) - LEGACY_KNEPS
O64 - Services: CurCS - 07/07/2010 - C:\Windows\System32\drivers\ctoss2k.sys (ossrv) .(.Creative Technology Ltd. - Creative OS Services Driver (WDM).) - LEGACY_OSSRV
O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
~ Scan Services in 00mn 00s
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
~ Scan Keys in 00mn 00s
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
~ Scan Keys in 00mn 00s
---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
~ Scan Keys in 00mn 00s
---\\ Recherche des services d�marr�s par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Exp�rience d�application.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de strat�gie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [853504]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [679424]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de num�rotation automatique d�acc�s distant.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d�acc�s distant.) -- C:\Windows\System32\rasmans.dll [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d�interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d��v�nements syst�me (SENS).) -- C:\Windows\System32\sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l�application d�assistance � Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de t�l�phonie Microsoft� Windows(TM).) -- C:\Windows\System32\tapisrv.dll [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur h�te de session Burea.) -- C:\Windows\System32\termsrv.dll [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise � jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arri�re-plan.) -- C:\Windows\System32\qmgr.dll [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivit� IPv6 sur un r�seau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d�ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d�application.) -- C:\Windows\System32\appinfo.dll [70656]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de d�couverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multim�dias.) -- C:\Windows\System32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau � distance.) -- C:\Windows\System32\sessenv.dll [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) -- C:\Windows\System32\browser.dll [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de t�ches.) -- C:\Windows\System32\schedsvc.dll [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des cl�s.) -- C:\Windows\System32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux probl�mes.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des th�mes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [193536]
~ Scan Services in 00mn 00s
---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{8C8BEBDA-4F9B-477A-B6EF-E68B5D0DDCE4}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{DE3D3407-2529-4788-BD03-4176FBE8D42A}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{2F2FE1E0-5B6A-4B29-8B30-9FE60F85F33B}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{86CA59D8-4C53-4115-B77F-E963F5130694}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "TCP Query User{2111DC53-116F-4464-ACB7-EF0EC65CC86D}C:\users\jeremie\appdata\local\temp\nswcc84.tmp\setup.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\jeremie\appdata\local\temp\nswcc84.tmp\setup.exe (.not file.)
O87 - FAEL: "UDP Query User{8DFAD317-653B-4ABE-B73F-EAB9019458C1}C:\users\jeremie\appdata\local\temp\nswcc84.tmp\setup.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\jeremie\appdata\local\temp\nswcc84.tmp\setup.exe (.not file.)
O87 - FAEL: "{B4872F7E-EF8D-4301-B0BF-D974E1A00C9C}" | In - Private - P6 - TRUE | .(.Musiccity Co.Ltd. - MUZAoDApp Module.) -- C:\Windows\SysWOW64\muzapp.exe
O87 - FAEL: "{995048DE-A2C6-4D5D-ACB9-0939E3DD6A12}" | In - Private - P17 - TRUE | .(.Musiccity Co.Ltd. - MUZAoDApp Module.) -- C:\Windows\SysWOW64\muzapp.exe
O87 - FAEL: "{E284BEBA-8C39-4970-973D-06AB0411CDAD}" | In - Private - P6 - TRUE | .(.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O87 - FAEL: "{047AE46E-C119-4BE5-8C64-DB9739682A29}" | In - Private - P17 - TRUE | .(.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O87 - FAEL: "{B84FFB1A-635C-458E-8C96-96FF413216D0}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O87 - FAEL: "{B1E89464-2562-4D1E-9A41-66F59A5909A1}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
O87 - FAEL: "{FDD135CA-0DAD-458C-BA21-ACE0BBDF9014}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{A2CCBF78-3C56-4F6A-A4AB-2192CB3FBB96}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{788194AD-1F80-45BD-AD39-B9ACBEFDC60C}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{EBED70EE-E7FB-4136-82C3-888E50D068A2}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{26F7AC06-FB20-4933-AE0C-A2E577C05A51}" | In - Private - P6 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrA.exe
O87 - FAEL: "{5A076D14-4960-49F0-9594-A20AB795A6F4}" | In - Private - P17 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrA.exe
O87 - FAEL: "{B76F17E7-DD78-4610-8541-A50C46B9335A}" | In - Private - P6 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrB.exe
O87 - FAEL: "{9603AA07-D094-432E-AE9E-CC7FCE635142}" | In - Private - P17 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrB.exe
O87 - FAEL: "{7120F9E5-53BC-486A-9432-69F0B9BC859C}" | In - Private - P6 - TRUE | .(.Codemasters - F1 2011 Executable.) -- C:\Program Files (x86)\Codemasters\F1 2011\F1_2011.exe
O87 - FAEL: "{6571B91A-5223-46A8-AE1F-C0C01D6A1968}" | In - Private - P17 - TRUE | .(.Codemasters - F1 2011 Executable.) -- C:\Program Files (x86)\Codemasters\F1 2011\F1_2011.exe
O87 - FAEL: "{3F0A4587-6807-45E3-8953-C9F209A0220B}" | In - Private - P6 - TRUE | .(.EA Digital Illusions CE AB - Battlefield 3�.) -- C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
O87 - FAEL: "{BDE44804-C127-4701-AA44-8065805DF034}" | In - Private - P17 - TRUE | .(.EA Digital Illusions CE AB - Battlefield 3�.) -- C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
O87 - FAEL: "{6E2BBD08-DA1B-4598-82A9-3FE4CB0693A8}" | In - Private - P6 - TRUE | .(.Sony DADC Austria AG - SecuROM Launcher.) -- C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV Episodes from Liberty City\EFLC\LaunchEFLC.exe
O87 - FAEL: "{9B1C7FE9-5749-428E-8016-F392DBDB536B}" | In - Private - P17 - TRUE | .(.Sony DADC Austria AG - SecuROM Launcher.) -- C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV Episodes from Liberty City\EFLC\LaunchEFLC.exe
O87 - FAEL: "{6EE13127-9FD4-46DF-BEE5-41B1B96ADD50}" | In - None - P17 - TRUE | .(.Skype Limited - Facebook Video Calling.) -- C:\Users\JEREMIE\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
O87 - FAEL: "{4AD687F1-BB2A-4747-9C6B-8F737DDD8E93}" | In - Private - P6 - TRUE | .(.Sony DADC Austria AG - SecuROM Launcher.) -- C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
O87 - FAEL: "{ECD84E55-2FFD-4F05-8534-9E2CEF6F49AF}" | In - Private - P17 - TRUE | .(.Sony DADC Austria AG - SecuROM Launcher.) -- C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
O87 - FAEL: "{A9F9CB69-1C37-41A2-A8D3-560276B5315D}" | In - Private - P6 - TRUE | .(.ESN Social Software AB - ESN Sonar Host Application.) -- C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
O87 - FAEL: "{C8B033DC-BB49-4EDB-B155-36B9468B786F}" | In - Private - P17 - TRUE | .(.ESN Social Software AB - ESN Sonar Host Application.) -- C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
O87 - FAEL: "{0FDAAE73-8F04-46AF-88CF-D30B884040C3}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Iminent\Iminent.exe (.not file.)
O87 - FAEL: "{DF5B4A1D-7CC9-41B6-B5A6-B9D43C7624DC}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Iminent\Iminent.Messengers.exe (.not file.)
O87 - FAEL: "{49EFBDF5-FDF4-411C-88B5-0A9299B78E8F}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe
~ Scan Firewall in 00mn 01s
---\\ Scan Additionnel (O88)
Database Version : v2.10828 - (21/02/2013)
Cl�s trouv�es (Keys found) : 9
Valeurs trouv�es (Values found) : 0
Dossiers trouv�s (Folders found) : 0
Fichiers trouv�s (Files found) : 0
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Iminent] =>Adware.IMBooster
[HKLM\Software\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\secman.DLL] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>Toolbar.Agent
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
~ Scan Additionnel in 00mn 20s
---\\ Product Upgrade Codes (O90)
O90 - PUC: "00F445447FD81E111B0D0FD42AA3C585" . (.Vegas Pro 11.0 (64-bit).) -- C:\Windows\Installer\{44544F00-8DF7-11E1-B1D0-F04DA23A5C58}\vegas.ico
O90 - PUC: "03A4EE98F08059C2F6879CD881BF7DD4" . (.AMD Accelerated Video Transcoding.) -- C:\Windows\Installer\{89EE4A30-080F-2C95-6F78-C98D18FBD74D}\ARPPRODUCTICON.exe
O90 - PUC: "045F27F206F16624596059B2126D46D0" . (.Apple Mobile Device Support.) -- C:\Windows\Installer\{2F72F540-1F60-4266-9506-952B21D6640D}\Installer.ico
O90 - PUC: "0ED9D238CFA898648991D4BBEDDBE3F4" . (.Microsoft Games for Windows - LIVE Redistributable.) -- C:\Windows\Installer\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}\GameForWindowsLiveRedist.exe
O90 - PUC: "1038C85769625584FA5435B4210089A0" . (.Samsung Kies.) -- C:\Windows\Installer\{758C8301-2696-4855-AF45-534B1200980A}\ARPPRODUCTICON.exe
O90 - PUC: "11F12B5E3396B0E42AC597363E0CD711" . (.Windows Live Messenger.) -- C:\Windows\Installer\{E5B21F11-6933-4E0B-A25C-7963E3C07D11}\MsblIco.Exe
O90 - PUC: "12DA52202E3F6194FB3F563D9F505228" . (.iTunes.) -- C:\Windows\Installer\{0225AD21-F3E2-4916-BFF3-65D3F9052582}\Installer.ico
O90 - PUC: "16ED57946FB6CB9BF1ED0CC4E57CE8C4" . (.AMD Media Foundation Decoders.) -- C:\Windows\Installer\{4975DE61-6BF6-B9BC-1FDE-C04C5EC78E4C}\ARPPRODUCTICON.exe
O90 - PUC: "2B0163E6D0340BE4183EB2758E9BEDD8" . (.Bonjour.) -- C:\Windows\Installer\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}\Bonjour.ico
O90 - PUC: "2B754B4DF062165CAC7807B33D7B42AC" . (.Catalyst Control Center Graphics Previews Common.) -- C:\Windows\Installer\{D4B457B2-260F-C561-CA87-703BD3B724CA}\ARPPRODUCTICON.exe
O90 - PUC: "32FA0F2EF2EF2224A934556EC34CE11F" . (.Catalyst Control Center - Branding.) -- C:\Windows\Installer\{E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}\ARPPRODUCTICON.exe
O90 - PUC: "33FAFBA3EE6D8439EC69FA159E6D2DFF" . (.AMD Drag and Drop Transcoding.) -- C:\Windows\Installer\{3ABFAF33-D6EE-9348-CE96-AF51E9D6D2FF}\ARPPRODUCTICON.exe
O90 - PUC: "42962336FAC3858CA3F858898C07917D" . (.Catalyst Control Center.) -- C:\Windows\Installer\{63326924-3CAF-C858-3A8F-8598C87019D7}\ARPPRODUCTICON.exe
O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico
O90 - PUC: "61D11FC9BECE5A090A82ACE960D848B8" . (.ccc-utility64.) -- C:\Windows\Installer\{9CF11D16-ECEB-90A5-A028-CA9E068D848B}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA76301B744AA0100000010" . (.Adobe Reader X (10.1.5) - Fran�ais.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico
O90 - PUC: "762A30E5E5143835AFF8C34E4165369B" . (.AMD Catalyst Install Manager.) -- C:\Windows\Installer\{5E03A267-415E-5383-FA8F-3CE4145663B9}\ARPPRODUCTICON.exe
O90 - PUC: "7AA65C54B1DE00849AF7DEFDF353021B" . (.Apple Application Support.) -- C:\Windows\Installer\{45C56AA7-ED1B-4800-A97F-EDDF3F3520B1}\WinInstall.ico
O90 - PUC: "8E30DAA956F42ED4F8C6B170C9C05812" . (.Garmin Lifetime Updater.) -- C:\Windows\Installer\{9AAD03E8-4F65-4DE2-8F6C-1B079C0C8521}\Garmin.ico
O90 - PUC: "9A1DA4B6A37E4814D9B670F2A8C3E5AB" . (.VoiceOver Kit.) -- C:\Windows\Installer\{6B4AD1A9-E73A-4184-9D6B-072F8A3C5EBA}\WinInstall.ico
O90 - PUC: "9EC6D81181F59F2459A84176A626F9ED" . (.Iminent.) -- C:\Windows\Installer\{118D6CE9-5F18-42F9-958A-14676A629FDE}\imbooster.ico
O90 - PUC: "A8E6F23579FA3C1419F5937F81CE701D" . (.ASUS GPU Tweak.) -- C:\Windows\Installer\{532F6E8A-AF97-41C3-915F-39F718EC07D1}\ARPPRODUCTICON.exe
O90 - PUC: "B4A2F9673A486849DA2DE9A54B4B1E3E" . (.Catalyst Control Center InstallProxy.) -- C:\Windows\Installer\{769F2A4B-84A3-9486-ADD2-9E5AB4B4E1E3}\ARPPRODUCTICON.exe
O90 - PUC: "BF58906567B412141998A7C2CD87686D" . (.Kaspersky Internet Security 2013.) -- C:\Windows\Installer\{560985FB-4B76-4121-9189-7A2CDC7886D6}\setup2.ico
O90 - PUC: "C7030BC4E565144468EBD02F4EBF28C8" . (.Microsoft Games for Windows Marketplace.) -- c:\Windows\Installer\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}\GameForWindowsLiveDash.exe
O90 - PUC: "CC133055B43CF494CBAD73ECE46F9E42" . (.Garmin Communicator Plugin x64.) -- C:\Windows\Installer\{550331CC-C34B-494F-BCDA-37CE4EF6E924}\GarminSetup.ico
O90 - PUC: "D276F30548C6A844F8F8B43CA58C4314" . (.AMD APP SDK Runtime.) -- C:\Windows\Installer\{503F672D-6C84-448A-8F8F-4BC35AC83441}\ARPPRODUCTICON.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype� 6.1.) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
O90 - PUC: "E805DFCE2A862B1964DDD1307D389DB4" . (.Catalyst Control Center Localization All.) -- C:\Windows\Installer\{ECFD508E-68A2-91B2-46DD-1D03D783D94B}\ARPPRODUCTICON.exe
O90 - PUC: "F6071111A6667304777712318267D401" . (.JavaFX 2.1.1.) -- C:\Windows\Installer\{1111706F-666A-4037-7777-211328764D10}\javaIcon.ico
~ Scan Files in 00mn 00s
---\\ Etat g�n�ral des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 18/12/2012 65192 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 16/02/2013 251248 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 19/12/2012 240640 | (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe
SR - | Auto 21/12/2012 57008 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 55296 | (ASGT) . (...) - C:\Windows\SysWOW64\ASGT.exe
SR - | Auto 01/12/2012 356376 | (AVP) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SS - | Demand 07/05/2012 79360 | (Creative ALchemy AL6 Licensing Service) . (.Creative Labs.) - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
SS - | Demand 05/05/2012 79360 | (Creative Audio Engine Licensing Service) . (.Creative Labs.) - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
SS - | Demand 07/05/2012 79360 | (Creative Media Toolbox 6 Licensing Service) . (.Creative Labs.) - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\MT6Licensing.exe
SR - | Auto 12/02/2010 286720 | (CTAudSvcService) . (.Creative Technology Ltd.) - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
SS - | Auto 02/01/2013 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 02/01/2013 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - | Demand 20/02/2013 641352 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SS - | Demand 27/09/2011 359192 | (LBTServ) . (.Logitech, Inc..) - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
SS - | Demand 21/02/2013 115608 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 0 | (PnkBstrA) . (...) - C:\Windows\system32\PnkBstrA.exe
SS - | Auto 08/01/2013 161536 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 18/01/2013 541608 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
SR - | Auto 245760 | (UsbClientService) . (...) - C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Scan Services in 00mn 01s
End of the scan (1232 lines in 01mn 29s)(0)