cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Rapport de ZHPDiag v2013.4.4.17 par Nicolas Coolman, Update du 04/04/2013
Run by Propri�taire at 05/04/2013 07:24:00
State : Version � jour.
High Elevated Privileges : OK
UAC : Not Found


---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702
MFIE: Mozilla Firefox 19.0.2 v19.0.2 (Defaut)

---\\ Windows Product Information
~ Langage: Fran�ais
Windows XP Home Edition Service Pack 3 (Build 2600)
Windows Automatic Updates : OK
Windows Genuine Advantage : OK

---\\ System Information
~ Processor: x86 Family 15 Model 2 Stepping 7, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2047 MB (65% free)
System Restore: Activ� (Enable)
System drive C: has 13 GB (19%) free of 70 GB

---\\ Logged in mode
~ Computer Name: NOM-IEMC2T8SHC7
~ User Name: Propri�taire
~ All Users Names: SUPPORT_fddfa904, SUPPORT_388945a0, Propri�taire, HelpAssistant, ASPNET, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Documents and Settings\Propri�taire\Application Data\
~ %Desktop% : C:\Documents and Settings\Propri�taire\Bureau\
~ %Favorites% : C:\Documents and Settings\Propri�taire\Favoris\
~ %LocalAppData% : C:\Documents and Settings\Propri�taire\Local Settings\Application Data\
~ %StartMenu% : C:\Documents and Settings\Propri�taire\Menu D�marrer\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\system32\

---\\ DOS/Devices
A:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
C:\ Hard drive, Flash drive, Thumb drive (Free 13 Go of 70 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 1 Go of 5 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ CD-ROM drive (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
J:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
K:\ Floppy drive, Flash card reader, USB Key (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: Scanned in 00mn 00s



---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.14/04/2008 - 03:34:03.) -- C:\WINDOWS\Explorer.exe [1037824]
[MD5.FCDD66EE148885E900285ADE8417E40B] - (.Microsoft Corporation - Internet Extensions for Win32.) (.05/02/2013 - 20:56:42.) -- C:\WINDOWS\system32\wininet.dll [916480]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.14/04/2008 - 03:34:28.) -- C:\WINDOWS\system32\Winlogon.exe [512000]
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.17/08/2011 - 14:49:54.) -- C:\WINDOWS\system32\Drivers\AFD.sys [138496]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 - 19:40:30.) -- C:\WINDOWS\system32\Drivers\atapi.sys [96512]
[MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/04/2008 - 20:14:21.) -- C:\WINDOWS\system32\Drivers\Cdfs.sys [63744]
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.13/04/2008 - 19:40:46.) -- C:\WINDOWS\system32\Drivers\Cdrom.sys [62976]
[MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) (.14/04/2008 - 02:57:38.) -- C:\WINDOWS\system32\Drivers\Fips.sys [44672]
[MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.13/04/2008 - 17:36:05.) -- C:\WINDOWS\system32\Drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) (.14/04/2008 - 03:00:52.) -- C:\WINDOWS\system32\Drivers\i8042prt.sys [54144]
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.13/04/2008 - 19:40:58.) -- C:\WINDOWS\system32\Drivers\Imapi.sys [42112]
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) (.13/04/2008 - 19:57:15.) -- C:\WINDOWS\system32\Drivers\IpNat.sys [152832]
[MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.13/04/2008 - 20:19:42.) -- C:\WINDOWS\system32\Drivers\IPSec.sys [75264]
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.15/07/2011 - 14:29:31.) -- C:\WINDOWS\system32\Drivers\MRxSmb.sys [456320]
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) (.13/04/2008 - 20:21:00.) -- C:\WINDOWS\system32\Drivers\netBT.sys [162816]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.13/04/2008 - 20:15:53.) -- C:\WINDOWS\system32\Drivers\ntfs.sys [574976]
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parall�le.) (.14/04/2008 - 03:09:40.) -- C:\WINDOWS\system32\Drivers\Parport.sys [80384]
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.13/04/2008 - 20:19:43.) -- C:\WINDOWS\system32\Drivers\Rasl2tp.sys [51328]
[MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.13/04/2008 - 19:32:51.) -- C:\WINDOWS\system32\Drivers\rdpdr.sys [196224]
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) (.14/04/2008 - 02:57:34.) -- C:\WINDOWS\system32\Drivers\redbook.sys [58752]
[MD5.46DE1126684369BACE4849E4FC8C43CA] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.14/04/2008 - 02:56:04.) -- C:\WINDOWS\system32\Drivers\volsnap.sys [53376]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 2/1900
~ Mes musiques (My Musics) : 2/61
~ Mes Videos (My Videos) : 1/7
~ Mes Favoris (My Favorites) : 1/71
~ Mes Documents (My Documents) : 2/390
~ Mon Bureau (My Desktop) : 3/211
~ Menu demarrer (Programs) : 0/41
~ Hidden Files: Scanned in 00mn 01s



---\\ Processus lanc�s
[MD5.C2170E010C9B6739A136211FC0427527] - (.Avira Operations GmbH & Co. KG - Avira Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [86752] [PID.1232]
[MD5.C4C523E78774E05D06EFE3E10017CF6D] - (.Hewlett-Packard Company - PS2 EXE.) -- C:\WINDOWS\system32\ps2.exe [81920] [PID.1540]
[MD5.93AD0B78C7357A05F50E594EC7C22300] - (...) -- ystem32\RUNDLL32.exe [0] [PID.1556]
[MD5.D658AB1B55127D18DCFBCAC8CAAEA522] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [49208] [PID.1564]
[MD5.2AA60514B683F15CF484C4A9F21C3425] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\program files\real\realplayer\update\realsched.exe [273528] [PID.1580]
[MD5.4410FB92A4A4744E7FB1780A55AB891D] - (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [345312] [PID.1592]
[MD5.12916E0642E92561C98B18A2A2D01B14] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [252848] [PID.1616]
[MD5.C88C467FBC805CBE7946EEF21FE32CFA] - (.Pas de propri�taire - Greenshot.) -- C:\Program Files\Greenshot\Greenshot.exe [548864] [PID.1628]
[MD5.47EB3F0EF84E0AF8AE75DB98EEF34255] - (.Avira Operations GmbH & Co. KG - Avira On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [110816] [PID.1944]
[MD5.3DEBBECF665DCDDE3A95D9B902010817] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe [55144] [PID.1980]
[MD5.DB5BEA73EDAF19AC68B2C0FAD0F92B1A] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [390504] [PID.2044]
[MD5.C88862F45AC3B447DF50E814BE2F6A13] - (.France Telecom SA - Pas de description.) -- C:\Program Files\Fichiers communs\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [65536] [PID.180]
[MD5.999DB5F88C8E145CCA9D471E33227143] - (.Oracle Corporation - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre7\bin\jqs.exe [170912] [PID.364]
[MD5.5C7B88695CE461D8BDA4FE0C0E57E71D] - (.Logitech Inc. - Logitech LVPrcSrv Module..) -- C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe [154136] [PID.456]
[MD5.0FEBE37DB6650FAA5965C00545009D1D] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 93.71.) -- C:\WINDOWS\system32\nvsvc32.exe [159810] [PID.1252]
[MD5.EFEF22B9577E5051057FDE1AE381B50C] - (.TomTom - Windows Service for TomTom HOME.) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [92592] [PID.1636]
[MD5.D766504F9BB339FEB5611FDD5A66C987] - (.Avira Operations GmbH & Co. KG - Avira Shadow Copy Service.) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe [79584] [PID.2416]
[MD5.BF2F2717C13A4BD4FD73F2788534E86B] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [917400] [PID.2408]
[MD5.CC94B2146C58DBD29976AEE9F841E2BA] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [6471680] [PID.2656]
~ Processes Running: Scanned in 00mn 00s



---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Documents and Settings\Propri�taire\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] http://www.google.com
~ Google Browser: Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Documents and Settings\Propri�taire\Application Data\Mozilla\Firefox\Profiles\e7vtzgr1.default\prefs.js
M3 - MFPP: Plugins - [Propri�taire] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Propri�taire] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Propri�taire] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Propri�taire] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Propri�taire] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Propri�taire] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Propri�taire] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
M0 - MFSP: prefs.js [Propri�taire - e7vtzgr1.default] http://www.google.fr
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll
P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.5.) -- C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf] - (.Tracker Software Products Ltd. - PDF-XChange Viewer Netscape Gecko Plugin.) -- C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.17.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\WINDOWS\system32\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.17.2] - (.Oracle Corporation - Next Generation Java Plug-in 10.17.2 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.20125.0.) -- c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.5] - (.Microsoft Corp. - Office Live Update v1.5.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@nosltd.com/getPlus+(R),version=1.6.2.90] - (.NOS Microsystems Ltd. - getplusplusadobe16290.) -- C:\Program Files\NOS\bin\np_gp.dll
P2 - FPN: [HKLM] [@nosltd.com/getPlus+(R),version=1.6.2.91] - (.NOS Microsystems Ltd. - getplusplusadobe16290.) -- C:\Program Files\NOS\bin\np_gp.dll
P2 - FPN: [HKLM] [@real.com/nppl3260;version=12.0.1.669] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- c:\program files\real\realplayer\Netscape6\nppl3260.dll
P2 - FPN: [HKLM] [@real.com/nprjplug;version=12.0.1.669] - (.RealNetworks, Inc. - RealJukebox Netscape Plugin.) -- c:\program files\real\realplayer\Netscape6\nprjplug.dll
P2 - FPN: [HKLM] [@real.com/nprpchromebrowserrecordext;version=12.0.1.669] - (.RealNetworks, Inc. - RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In.) -- C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
P2 - FPN: [HKLM] [@real.com/nprphtml5videoshim;version=12.0.1.669] - (.RealNetworks, Inc. - RealPlayer(tm) HTML5VideoShim Plug-In.) -- C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
P2 - FPN: [HKLM] [@real.com/nprpjplug;version=12.0.1.669] - (.RealNetworks, Inc. - 12.0.1.669.) -- c:\program files\real\realplayer\Netscape6\nprpjplug.dll
P2 - FPN: [HKLM] [@tools.google.com/google update;version=8] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.2.183.23\npGoogleOneClick8.dll
P2 - FPN: [HKLM] [@zylom.com/ZylomGamesPlayer] - (.Zylom - Zylom Plugin.) -- C:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.6.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
P2 - FPN: [HKCU] [@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf] - (.Tracker Software Products Ltd. - PDF-XChange Viewer Netscape Gecko Plugin.) -- C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
~ Firefox Browser: Scanned in 00mn 00s



---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} . (.Tracker Software Products Ltd. - PDF-XChange Viewer Netscape Gecko Plugin.) (No version) -- (.not file.)
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Tracker Software Products Ltd. - PDF-XChange Viewer Netscape Gecko Plugin.) (No version) -- (.not file.)
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
~ IE Browser: Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys: Scanned in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 1



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} . (.Microsoft Corporation - MoneySide Controls.) -- c:\Program Files\Microsoft Money\System\mnyside.dll
~ BHO: 8 Legitimates Scanned in 00mn 00s



---\\ Applications d�marr�es par registre & par dossier (O4)
O4 - HKLM\..\Run: [PS2] . (.Hewlett-Packard Company - PS2 EXE.) -- C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\WINDOWS\system32\NvCpl.dll
O4 - HKLM\..\Run: [NvMediaCenter] . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\WINDOWS\system32\NvMcTray.dll
O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\program files\real\realplayer\update\realsched.exe
O4 - HKLM\..\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
O4 - HKCU\..\Run: [Greenshot] . (.Pas de propri�taire - Greenshot.) -- C:\Program Files\Greenshot\Greenshot.exe
O4 - HKCU\..\Run: [Adobe Reader Synchronizer] . (.Adobe Systems Incorporated - Adobe Collaboration Synchronizer 10.1.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AdobeCollabSync.exe
O4 - HKCU\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] . (.Google Inc. - Picasa.) -- C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKUS\S-1-5-21-345834490-1030006503-1488005003-1003\..\Run: [Greenshot] . (.Pas de propri�taire - Greenshot.) -- C:\Program Files\Greenshot\Greenshot.exe
O4 - HKUS\S-1-5-21-345834490-1030006503-1488005003-1003\..\Run: [Adobe Reader Synchronizer] . (.Adobe Systems Incorporated - Adobe Collaboration Synchronizer 10.1.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AdobeCollabSync.exe
O4 - HKUS\S-1-5-21-345834490-1030006503-1488005003-1003\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe
~ Application: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Programs: Acrobat Reader 5.0.lnk . (.Adobe Systems Incorporated - Acrobat Reader 5.0.) -- C:\Program Files\Adobe\Acrobat 5.0\Reader\AcroRd32.exe
O4 - GS\Programs: Adobe Photoshop Album Edition D�couverte 3.2.lnk . (.Adobe Systems Incorporated - Adobe Photoshop Album Starter Edition 3.2.) -- C:\Program Files\Adobe\Photoshop Album Edition D�couverte\3.2\Apps\Photoshop Album Starter Edition.exe
O4 - GS\Programs: Adobe Reader X.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico
O4 - GS\Programs: Apple Software Update.lnk . (...) -- C:\WINDOWS\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe
O4 - GS\Programs: Connexion facile � Internet.lnk . (.Hewlett-Packard - HP SDP Application Module.) -- C:\Program Files\Hewlett-Packard\EZ Internet Signup\HPSdpApp.exe
O4 - GS\Programs: Lanceur de t�ches Microsoft Works.lnk . (.Microsoft� Corporation - Lanceur de t�ches Microsoft Works.) -- C:\Program Files\Microsoft Works\msworks.exe
O4 - GS\Programs: Microsoft Access.lnk . (...) -- C:\WINDOWS\Installer\{9028040C-6000-11D3-8CFE-0050048383C9}\accicons.exe
O4 - GS\Programs: Microsoft Excel.lnk . (...) -- C:\WINDOWS\Installer\{9028040C-6000-11D3-8CFE-0050048383C9}\xlicons.exe
O4 - GS\Programs: Microsoft FrontPage.lnk . (...) -- C:\WINDOWS\Installer\{9028040C-6000-11D3-8CFE-0050048383C9}\misc.exe
O4 - GS\Programs: Microsoft Money.lnk . (.Microsoft Corporation - Money Icon Library.) -- c:\WINDOWS\Installer\{01A2E33A-8ADA-42D1-9173-8F65149E952F}\MnyIco.exe
O4 - GS\Programs: Microsoft Picture It! Express 2001.lnk . (.Microsoft Corporation - Picture It! 2001.) -- C:\Program Files\Microsoft Picture It! PhotoPub\pip.exe
O4 - GS\Programs: Microsoft Picture It! Photo 7.0.lnk . (.Microsoft Corporation - Picture It! 7.0.) -- C:\Program Files\Microsoft Picture It! 7\Pip.exe
O4 - GS\Programs: Microsoft PowerPoint.lnk . (...) -- C:\WINDOWS\Installer\{9028040C-6000-11D3-8CFE-0050048383C9}\pptico.exe
O4 - GS\Programs: Microsoft Word.lnk . (...) -- C:\WINDOWS\Installer\{911B040C-6000-11D3-8CFE-0050048383C9}\wordicon.exe
O4 - GS\Programs: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\Programs: MSN Explorer.lnk . (.Microsoft Corporation - msn.) -- C:\Program Files\MSN\MSNCoreFiles\msn6.exe
O4 - GS\Programs: Software Offers.lnk . (...) -- C:\hp\VINETLINK\VINETLINK.exe
O4 - GS\Programs: Windows Media Connect.lnk . (.Microsoft Corporation - Microsoft Windows Media Component Removal F.) -- C:\Program Files\Windows Media Connect 2\WMCCFG.exe
O4 - GS\Programs: Windows Messenger.lnk . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
O4 - GS\Programs: Assistance � distance.lnk . (.Microsoft Corporation - Assistance � distance Microsoft.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Programs: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - GS\Programs: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
~ Global Startup: Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
~ Winsock: 4 Legitimates Scanned in 00mn 00s



---\\ Piratage de l'Option 'R�tablir les param�tres Web' (O14)
O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
~ IE Param�tres WEB: Scanned in 00mn 00s



---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} ((no name)) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} ((no name)) - http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
O16 - DPF: {6D2EF4B4-CB62-4C0B-85F3-B79C236D702C} ((no name)) - http://www.facebook.com/controls/contactx.dll
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} ((no name)) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1340775611875
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} ((no name)) - http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
O16 - DPF: {E008A543-CEFB-4559-912F-C27C2B89F13B} ((no name)) - https://zzzi.mpsa.com/dwa7W.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} ((no name)) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
~ Objets ActiveX: Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{4B53ECC9-D326-4146-BAE3-611447C6C381}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{4B53ECC9-D326-4146-BAE3-611447C6C381}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{4B53ECC9-D326-4146-BAE3-611447C6C381}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\System32\wiascr.dll
O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent r�seau hors connexion.) -- C:\WINDOWS\system32\cscdll.dll
O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\system32\dimsntfy.dll
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxsrvc Module.) -- C:\WINDOWS\system32\igfxsrvc.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\WINDOWS\system32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Notifications Windows Genuine Advantage.) -- C:\WINDOWS\system32\WgaLogon.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
~ SSODL: 5 Legitimates Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: France Telecom Routing Table Service (FTRTSVC) . (.France Telecom SA - Pas de description.) - C:\Program Files\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: TomTomHOMEService (TomTomHOMEService) . (.TomTom - Windows Service for TomTom HOME.) - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
~ Services: 11 Legitimates Scanned in 00mn 05s



---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Desktop General: BackupWallPaper - .(...) - C:\Documents and Settings\Propri�taire\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop General: WallPaper - .(...) - C:\Documents and Settings\Propri�taire\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
~ Desktop Component: 1 Legitimates Scanned in 00mn 00s



---\\ BootExecute (O34)
~ BEX: 1 Legitimates Scanned in 00mn 00s



---\\ T�ches planifi�es en automatique (O39)
~ IE Control Panel: 5 Legitimates Scanned in 00mn 00s



---\\ Composants install�s (ActiveSetup Installed Components) (O40)
~ Active Setup: 22 Legitimates Scanned in 00mn 00s



---\\ Pilotes lanc�s au d�marrage (O41)
O41 - Driver: ({6080A529-897E-4629-A488-ABA0C29B635E}) . (.Intel Corporation - Intel Graphics Platform (SoftBIOS) Driver f.) - C:\WINDOWS\system32\drivers\ialmsbw.sys
~ Drivers: 78 Legitimates Scanned in 00mn 00s



---\\ Logiciels install�s (O42)
O42 - Logiciel: 7x8 version 0.97.01 configur� pour la maison - (.� 1997-2010 Patrick Pradeau.) [HKLM] -- 7x8_is1
O42 - Logiciel: 913D Camera - (.My Company Name.) [HKLM] -- {3F927DF0-D056-466F-B4B8-61804D5B6351}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader X (10.1.6) - Fran�ais - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: Allok Video to 3GP Converter 6.2.0603 - (.Allok Soft .Inc.) [HKLM] -- allok video to 3gp converter_is1
O42 - Logiciel: Avira Free Antivirus - (.Avira.) [HKLM] -- Avira AntiVir Desktop
O42 - Logiciel: BUM - (.Kodak Imaging Network.) [HKLM] -- {55937F00-A69B-4049-8D3A-1C7729742B6F}
O42 - Logiciel: Ciel Comptes Personnels 9.0 - (.Ciel.) [HKLM] -- {AEE86F74-2EF1-49F2-8739-CC0A94688639}
O42 - Logiciel: Connexion facile � Internet - (...) [HKLM] -- {2B5DDB2C-0807-47FD-9C11-80EA761902C0}
O42 - Logiciel: Greenshot - (...) [HKLM] -- Greenshot_is1
O42 - Logiciel: HPD_404_Patch - (...) [HKLM] -- {E21F0BCA-12DD-493C-862E-6546C242EA74}
O42 - Logiciel: Java 7 Update 17 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217017FF}
O42 - Logiciel: KBD - (...) [HKLM] -- KBD
O42 - Logiciel: Kaspersky Online Scanner - (.Kaspersky Lab.) [HKLM] -- Kaspersky Online Scanner
O42 - Logiciel: MegaCam - (.SQ.) [HKLM] -- {77F69001-4D35-4BEA-A074-26DA04EA0CDA}
O42 - Logiciel: MyDVD - (...) [HKLM] -- {5E835305-63BB-4E55-BBB7-EEBBE67774DB}
O42 - Logiciel: Picthema - (...) [HKLM] -- Picthema_is1
O42 - Logiciel: PictureProject - (...) [HKLM] -- {FF3999BE-1A7B-4738-88AA-97BF14094A4A}
O42 - Logiciel: RecordNow Update Manager - (.VERITAS Software.) [HKLM] -- {09DA4F91-2A09-4232-AB8C-6BC740096DE3}
O42 - Logiciel: Runtime 8.0 Libraries - (.Microsoft.) [HKLM] -- {EA4FA30B-7321-4428-90E9-28B088EC8DC9}
O42 - Logiciel: Simple Installer - Multilanguage Version - (...) [HKLM] -- {EEF397AC-DAEF-4C04-90A9-5B2BD31875DC}
O42 - Logiciel: T�l�chargement Photoways 2.0.8 - (...) [HKLM] -- T�l�chargement PHOTOWAYS_is1
O42 - Logiciel: USB Storage RW - (...) [HKLM] -- {0DCFC7D5-8608-478C-8082-1FF848B978AF}
O42 - Logiciel: coupe - (...) [HKLM] -- st6unst #1
~ Logic: 213 Legitimates Scanned in 00mn 01s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\Almaz Gaifullin]
[HKCU\Software\Aowlgaimbupl]
[HKCU\Software\AppDataLow\fsols.fscax.1]
[HKCU\Software\BrowserTool]
[HKCU\Software\Digital Minds Software]
[HKCU\Software\FireTrust]
[HKCU\Software\H+BEDV]
[HKCU\Software\IsoBourse]
[HKCU\Software\Morpheus Software]
[HKCU\Software\OutClock]
[HKCU\Software\Picthema]
[HKCU\Software\PriyoSoft]
[HKCU\Software\Reality Fusion]
[HKCU\Software\Security]
[HKCU\Software\Spotlife]
[HKCU\Software\VERITAS]
[HKCU\Software\XemiCo]
[HKCU\Software\g220_liveupdater]
[HKCU\Software\ksli]
[HKCU\Software\musicbrainz]
[HKCU\Software\qcam]
[HKLM\Software\Aldexia]
[HKLM\Software\BrowserTool]
[HKLM\Software\Distinct]
[HKLM\Software\ImInstaller]
[HKLM\Software\KYE]
[HKLM\Software\OMSI]
[HKLM\Software\Picthema]
[HKLM\Software\Reality Fusion]
[HKLM\Software\S3]
[HKLM\Software\Security]
[HKLM\Software\T�l�chargement PHOTOWAYS]
[HKLM\Software\VERITAS]
[HKLM\Software\woohook]
~ Key Software: 289 Legitimates Scanned in 00mn 01s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 12/02/2012 - 12:13:35 - [3,168] ----D C:\Program Files\7x8
O43 - CFD: 21/04/2012 - 14:49:44 - [3,680] ----D C:\Program Files\913D Camera
O43 - CFD: 28/05/2007 - 21:25:12 - [41,344] ----D C:\Program Files\Aldexia
O43 - CFD: 26/01/2010 - 23:32:59 - [15,730] ----D C:\Program Files\Allok Video to 3GP Converter
O43 - CFD: 01/12/2009 - 07:37:49 - [0] ----D C:\Program Files\AntiVir PersonalEdition Classic
O43 - CFD: 02/08/2011 - 01:44:30 - [0,007] ----D C:\Program Files\Coloreal
O43 - CFD: 19/01/2008 - 19:36:18 - [21,994] ----D C:\Program Files\El Juky
O43 - CFD: 18/12/2010 - 22:01:03 - [0,009] ----D C:\Program Files\Flexa 3D
O43 - CFD: 22/03/2012 - 08:14:06 - [1,590] ----D C:\Program Files\Greenshot
O43 - CFD: 13/08/2003 - 22:33:37 - [0] ----D C:\Program Files\gsoft
O43 - CFD: 22/08/2005 - 21:14:09 - [2,147] ----D C:\Program Files\HighMAT CD Writing Wizard
O43 - CFD: 11/07/2005 - 07:58:07 - [0,318] ----D C:\Program Files\i-Media
O43 - CFD: 24/02/2009 - 07:40:54 - [0,001] ----D C:\Program Files\IKEA Home Planner Kitchen
O43 - CFD: 16/02/2010 - 22:45:06 - [0] ----D C:\Program Files\IsoBourse
O43 - CFD: 17/09/2006 - 14:33:08 - [0] ----D C:\Program Files\JeCreeMaCuisineAvecLeroyMerlin
O43 - CFD: 26/06/2008 - 07:31:24 - [0,000] ----D C:\Program Files\McDonaldsFairies
O43 - CFD: 28/05/2007 - 21:33:18 - [0,096] ----D C:\Program Files\M�rops
O43 - CFD: 02/01/2003 - 06:25:25 - [2,463] ----D C:\Program Files\OEMLink
O43 - CFD: 12/11/2006 - 23:14:18 - [0,001] ----D C:\Program Files\OutClock
O43 - CFD: 24/06/2010 - 21:46:48 - [58,872] ----D C:\Program Files\Picthema
O43 - CFD: 04/08/2003 - 17:18:38 - [51,689] ----D C:\Program Files\Reality Fusion
O43 - CFD: 02/01/2003 - 06:29:01 - [3,535] ----D C:\Program Files\RecordNow
O43 - CFD: 22/09/2005 - 22:34:18 - [0,002] ----D C:\Program Files\RegSupreme
O43 - CFD: 23/09/2004 - 19:31:38 - [0] ----D C:\Program Files\SiLabs
O43 - CFD: 11/05/2012 - 21:43:15 - [0,464] ----D C:\Program Files\Simpli Software
O43 - CFD: 24/11/2011 - 07:50:34 - [0,949] ----D C:\Program Files\ToniArts
O43 - CFD: 17/11/2006 - 23:20:20 - [3,282] ----D C:\Program Files\TraderNeuroneV2
O43 - CFD: 19/05/2010 - 20:29:12 - [1,418] ----D C:\Program Files\T�l�chargement PHOTOWAYS
O43 - CFD: 28/07/2006 - 06:55:42 - [0,098] ----D C:\Program Files\USB Storage RW
O43 - CFD: 02/01/2003 - 06:30:09 - [1,785] ----D C:\Program Files\VERITAS Software
O43 - CFD: 04/02/2011 - 21:36:37 - [0,552] ----D C:\Program Files\WinDS PRO
O43 - CFD: 13/02/2009 - 21:49:27 - [0,008] ----D C:\Program Files\xTrade
O43 - CFD: 26/02/2006 - 15:06:49 - [0] ----D C:\Documents and Settings\Propri�taire\Application Data\eConf
O43 - CFD: 22/03/2012 - 08:14:19 - [0,505] ----D C:\Documents and Settings\Propri�taire\Application Data\Greenshot
O43 - CFD: 02/01/2003 - 06:23:49 - [0] ----D C:\Documents and Settings\Propri�taire\Application Data\InterTrust
O43 - CFD: 15/10/2006 - 08:55:59 - [0,008] ----D C:\Documents and Settings\Propri�taire\Application Data\MailWasherPro
O43 - CFD: 01/10/2008 - 20:50:49 - [0] ----D C:\Documents and Settings\Propri�taire\Application Data\Morpheus Software
O43 - CFD: 24/11/2011 - 07:48:18 - [0,020] ----D C:\Documents and Settings\Propri�taire\Application Data\Similarity
O43 - CFD: 19/11/2012 - 19:51:49 - [0,578] ----D C:\Documents and Settings\Propri�taire\Application Data\TaoUSign
O43 - CFD: 05/08/2003 - 16:45:25 - [0,001] ----D C:\Documents and Settings\Propri�taire\Application Data\VERITAS
O43 - CFD: 24/06/2010 - 21:32:40 - [0] ----D C:\Documents and Settings\Propri�taire\Local Settings\Application Data\Picthema
O43 - CFD: 24/06/2010 - 21:51:21 - [0,057] ----D C:\Documents and Settings\Propri�taire\Local Settings\Application Data\Picthema Extension
O43 - CFD: 11/05/2010 - 06:27:35 - [0,001] ----D C:\Documents and Settings\Propri�taire\Local Settings\Application Data\SendPhoto
O43 - CFD: 30/05/2008 - 20:19:24 - [0,003] ----D C:\Documents and Settings\Propri�taire\Menu D�marrer\Programmes\PDF Split And Merge
~ Program Folder: 260 Legitimates Scanned in 00mn 05s



---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.2978BA87888994857617D94C7EFA32D5] - 05/04/2013 - 04:57:44 ---A- . (...) -- C:\WINDOWS\wiadebug.log [157]
O44 - LFC:[MD5.A881604051A139E9F1B949A4A259C856] - 05/04/2013 - 04:57:39 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50]
O44 - LFC:[MD5.4510861C8CEB8F8F1FAF3EEFA4988303] - 05/04/2013 - 04:57:31 ---A- . (...) -- C:\WINDOWS\system32\nvapps.xml [88309]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 05/04/2013 - 04:57:00 ---A- . (...) -- C:\WINDOWS\system32\Drivers\lvuvc.hs [0]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 05/04/2013 - 04:56:58 ---A- . (...) -- C:\WINDOWS\system32\Drivers\logiflt.iad [0]
O44 - LFC:[MD5.ED74447156CAE2CFB1144553EA086FA7] - 21/03/2013 - 20:40:39 ---A- . (...) -- C:\WINDOWS\comsetup.log [20791]
O44 - LFC:[MD5.03284CB4C0133042B9B7D1C115C06BF1] - 21/03/2013 - 20:40:39 ---A- . (...) -- C:\WINDOWS\iis6.log [9798]
O44 - LFC:[MD5.A957F6EEB8AAABB1C3B2DD6FC2206E91] - 21/03/2013 - 20:40:39 ---A- . (...) -- C:\WINDOWS\imsins.log [1374]
O44 - LFC:[MD5.DF0483F387DE5FDB732E0EB6DA05D40A] - 21/03/2013 - 20:40:39 ---A- . (...) -- C:\WINDOWS\ntdtcsetup.log [12786]
O44 - LFC:[MD5.641242CCA20526189C89225F89606FBB] - 21/03/2013 - 20:40:39 ---A- . (...) -- C:\WINDOWS\ocmsn.log [3547]
O44 - LFC:[MD5.6C3A1BE94B46748D1E59DFBD59101D5B] - 21/03/2013 - 20:40:39 ---A- . (...) -- C:\WINDOWS\tsoc.log [25155]
O44 - LFC:[MD5.1778EA8B6DBCEE7DDBC9063BFCCB58C8] - 21/03/2013 - 20:40:38 ---A- . (...) -- C:\WINDOWS\FaxSetup.log [63135]
O44 - LFC:[MD5.51349A854C0191C940A632607CB1FFF7] - 21/03/2013 - 20:40:38 ---A- . (...) -- C:\WINDOWS\msgsocm.log [3260]
O44 - LFC:[MD5.E501DEBECD32DC35E886860CD3C0A969] - 21/03/2013 - 20:40:38 ---A- . (...) -- C:\WINDOWS\ocgen.log [32373]
O44 - LFC:[MD5.498B772397487317CE7A4C50F3A12899] - 18/03/2013 - 21:03:39 ---A- . (...) -- C:\ComboFix.txt [105999]
O44 - LFC:[MD5.1806435CE8DB624366726990CD8F6374] - 18/03/2013 - 20:59:41 ---A- . (...) -- C:\WINDOWS\system.ini [317]
O44 - LFC:[MD5.5A0C19B30CCD37C3A15E2BA14F28B7E7] - 13/03/2013 - 23:26:44 ---A- . (...) -- C:\WINDOWS\imsins.BAK [1374]
O44 - LFC:[MD5.547F9C8634BE39848DD16E09E147CC16] - 13/03/2013 - 23:26:21 ---A- . (...) -- C:\WINDOWS\updspapi.log [6744]
O44 - LFC:[MD5.F042EE4C8D66248D9B86DCF52ABAE416] - 26/06/2011 - 07:45:56 ---A- . (...) -- C:\WINDOWS\PEV.exe [256000]
O44 - LFC:[MD5.0277C027A26428DB64EF4F64F52BB4FD] - 07/11/2010 - 18:20:24 ---A- . (...) -- C:\WINDOWS\MBR.exe [208896]
O44 - LFC:[MD5.9E05A9C264C8A908A8E79450FCBFF047] - 31/08/2000 - 01:00:00 ---A- . (...) -- C:\WINDOWS\grep.exe [80412]
O44 - LFC:[MD5.2B657A67AEBB84AEA5632C53E61E23BF] - 31/08/2000 - 01:00:00 ---A- . (...) -- C:\WINDOWS\sed.exe [98816]
O44 - LFC:[MD5.5E832F4FAF5F481F2EAF3B3A48F603B8] - 31/08/2000 - 01:00:00 ---A- . (...) -- C:\WINDOWS\zip.exe [68096]
~ Files: 47 Legitimates Scanned in 01mn 40s



---\\ Op�rations et fonctions au d�marrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll
O46 - SEH:ShellExecuteHooks - Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll
~ ShellExecuteHooks: Scanned in 00mn 00s



---\\ Export de cl� d'application autoris�e (O47)
O47 - AAKE:Key Export SP - "C:\Program Files\Adobe\Reader 10.0\Reader\AdobeCollabSync.exe" [Enabled] .(.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AdobeCollabSync.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" [Enabled] .(.Avira Operations GmbH & Co. KG.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\ps2.exe" [Enabled] .(.Hewlett-Packard Company.) -- C:\WINDOWS\system32\ps2.exe
O47 - AAKE:Key Export SP - "C:\Documents and Settings\Propri�taire\Bureau\ComboFix.exe" [Enabled] .(.Swearware.) -- C:\Documents and Settings\Propri�taire\Bureau\ComboFix.exe
~ Keys Export: 9 Legitimates Scanned in 00mn 00s



---\\ D�ni du service (Local Security Authority) (O48)
~ LSA: 6 Legitimates Scanned in 00mn 00s



---\\ Contr�le du Safe Boot (CSB) (O49)
~ CBS: 23 Legitimates Scanned in 00mn 00s



---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d
~ IFEO: Scanned in 00mn 00s



---\\ Trojan Driver Search Data (HKLM) (O52)
~ TDSD: 17 Legitimates Scanned in 00mn 00s



---\\ ShareTools MSconfig StartupReg (O53)
O53 - SMSR:HKLM\...\startupreg\LVCOMS [Key] . (.Logitech Inc. - LVCom Server.) -- C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.exe
O53 - SMSR:HKLM\...\startupreg\orahsssessionmanager [Key] . (.France Telecom SA - Pas de description.) -- C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe
~ SMSR Keys: 13 Legitimates Scanned in 00mn 00s



---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Acc�s MSN Internet.) -- C:\WINDOWS\system32\msnsspc.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Acc�s MSN Internet.) -- C:\WINDOWS\system32\msnsspc.dll
~ MSCP: 8 Legitimates Scanned in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
~ MWPS: 6 Legitimates Scanned in 00mn 00s



---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoInstrumentation"=0
O56 - MWPE:[HKCU\...\policies\Explorer] - "ClearRecentDocsOnExit"=
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutoRun"=67108863
O56 - MWPE:[HKCU\...\policies\Explorer] - "HonorAutoRunSetting"=0
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDrives"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=67108863
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDrives"=0
~ MWPE Keys: 12 Legitimates Scanned in 00mn 00s



---\\ Liste des Drivers Syst�me (O58)
O58 - SDL:[MD5.ADF32E5665B54A12C9713BDB379C0BDB] - 26/10/2002 - 06:02:30 ---A- . (.Intel Corporation - Silicon Image 164 Minidriver.) -- C:\WINDOWS\system32\Drivers\a302.sys [10295]
O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 30/09/2002 - 19:31:40 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9037]
~ Drivers: Scanned in 00mn 00s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
O63 - Logiciel: OTL - (.OldTimer.)
O63 - Logiciel: Toolbar SD - (.IDN Team.)
~ ADS: Scanned in 00mn 00s



---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 30/08/2011 - C:\Program Files\Bonjour\mDNSResponder.exe (Bonjour Service) .(.Apple Inc. - Bonjour Service.) - LEGACY_BONJOUR_SERVICE
O64 - Services: CurCS - 11/12/2007 - C:\Program Files\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe (FTRTSVC) .(.France Telecom SA - Pas de description.) - LEGACY_FTRTSVC
O64 - Services: CurCS - 21/07/2011 - C:\WINDOWS\system32\DRIVERS\Lbd.sys (Lbd) .(.Lavasoft AB - Boot Driver.) - LEGACY_LBD
O64 - Services: CurCS - 21/04/2011 - C:\WINDOWS\system32\Drivers\Mup.sys (Mup) .(.Microsoft Corporation - Multiple UNC Provider driver.) - LEGACY_MUP
O64 - Services: CurCS - 01/03/2006 - C:\WINDOWS\system32\PCANDIS5.sys (PCANDIS5) .(.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 Protocol Driver.) - LEGACY_PCANDIS5
O64 - Services: CurCS - 09/10/2005 - C:\WINDOWS\system32\DRIVERS\TVICHW32.sys (TVICHW32) .(.EnTech Taiwan - TVicHW32 Driver for Windows NT/2000/XP.) - LEGACY_TVICHW32
O64 - Services: CurCS - 25/07/2002 - C:\WINDOWS\system32\DRIVERS\viaagp1.sys (viaagp1) .(.VIA Technologies, Inc. - VIA NT AGP Filter.) - LEGACY_VIAAGP1
O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\system32\svchost.exe (WebClient) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_WEBCLIENT
~ Legacy: 203 Legitimates Scanned in 00mn 01s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\system32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\WINDOWS\regedit.exe
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll
O67 - Shell Spawning: <.cmd> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> [HKCR\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\system32\WScript.exe
O67 - Shell Spawning: <.reg> [HKCR\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\WINDOWS\regedit.exe
~ Keys: Scanned in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (.Not Key.)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - msn.) -- C:\Program Files\MSN\MSNCoreFiles\MSN6.exe
~ Keys: Scanned in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] ${searchclsid} - (@ieframe.dll,-12512) - http://search.live.com
O69 - SBI: SearchScopes [HKCU] {6a1806cd-94d4-4689-ba73-e35ea1ea9990} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {B3F795AE-7ED7-440A-B2AC-66C4CE5D4DCD} [DefaultScope] - (Google) - http://www.google.com
~ Keys: Scanned in 00mn 00s



---\\ Recherche des services d�marr�s par Svchost (O83)
~ Services: 40 Legitimates Scanned in 00mn 00s



---\\ Recherche particuliere � la racine de certains dossiers (O84)
[MD5.7706784ADE3E7097D096B007EAC5B9F2] [SPRF][18/08/2005] (...) -- C:\Documents and Settings\Propri�taire\Local Settings\Application Data\fusioncache.dat [135]
[MD5.9E30A66C3296EAA0D59329D12AF31D17] [SPRF][08/07/2010] (...) -- C:\Documents and Settings\Propri�taire\Application Data\mdbu.bin [356363]
[MD5.B7ED106DF477452D63DFDDC8F0842B51] [SPRF][18/03/2013] (.Swearware - ComboFix NSIS Installer.) -- C:\Documents and Settings\Propri�taire\Bureau\ComboFix.exe [5041875]
[MD5.0FB6D382FA5FBF72D05FC2A4503B7DF2] [SPRF][13/03/2013] (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Documents and Settings\Propri�taire\Bureau\mbam-setup-1.70.0.1100.exe [10156344]
[MD5.4ADCFEE16EE9978F06157634669D36FB] [SPRF][17/03/2013] (.OldTimer Tools - Pas de description.) -- C:\Documents and Settings\Propri�taire\Bureau\OTL.exe [602112]
[MD5.56F89E580B3164F819A841E56929617A] [SPRF][11/03/2013] (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\Propri�taire\Bureau\ZHPDiag.exe [5403315]
[MD5.88783EB39D8EF000CDA3413C789C4E21] [SPRF][30/05/2008] (...) -- C:\Program Files\settings.dat [15397]
[MD5.E870DD57873F1D4D88C656EFDA89D2EF] [SPRF][03/06/2008] (.F-Secure Corporation - F-Secure Automatic Update Agent API DLL.) -- C:\WINDOWS\Downloaded Program Files\auc_lib.dll [290816]
[MD5.18075B2C9F0F300BEE209744A8BEC353] [SPRF][09/01/2008] (...) -- C:\WINDOWS\Downloaded Program Files\bdcore.dll [32]
[MD5.A57234A9295B026C13FBF81B729FAFA6] [SPRF][09/01/2008] (...) -- C:\WINDOWS\Downloaded Program Files\bdupd.dll [118784]
[MD5.238A6FFC7EE17330C1C5859C7827EE2D] [SPRF][17/02/2009] (.Facebook - Contact Extractor.) -- C:\WINDOWS\Downloaded Program Files\contactx.dll [160488]
[MD5.F73790021AEF115A7FC34824E047101B] [SPRF][03/06/2008] (.F-Secure Corporation - daas.) -- C:\WINDOWS\Downloaded Program Files\daas_s.dll [495616]
[MD5.C7E0A3413B339663255B2C8AB98BAA03] [SPRF][25/06/2007] (.IBM Corporation - Domino Web Access Upload Module.) -- C:\WINDOWS\Downloaded Program Files\dwa7W.dll [325120]
[MD5.6AF89CC3C02FFC509FFB8BEA8C9B45F2] [SPRF][03/06/2008] (.F-Secure Corporation - F-Secure Health Check.) -- C:\WINDOWS\Downloaded Program Files\fscax.dll [446464]
[MD5.57F17FFE45365B3D57E2E9EEE537170C] [SPRF][03/06/2008] (.F-Secure Corporation - F-Secure Localization and Customization API library.) -- C:\WINDOWS\Downloaded Program Files\fsld32.dll [159744]
[MD5.2AA766E5B8B9C7F7BCE942B85EAF41C7] [SPRF][03/06/2008] (.F-Secure Corporation - F-Secure GateLauncher.) -- C:\WINDOWS\Downloaded Program Files\gatelauncher.exe [588456]
[MD5.7C9745649122832521D4A984272A570D] [SPRF][03/06/2008] (.F-Secure Corporation - F-Secure GateLauncher.) -- C:\WINDOWS\Downloaded Program Files\gatelauncheradmin.exe [588456]
[MD5.FE691848CED7C74B2A177319AC154A1F] [SPRF][09/01/2008] (...) -- C:\WINDOWS\Downloaded Program Files\ipsupd.dll [53248]
[MD5.18075B2C9F0F300BEE209744A8BEC353] [SPRF][09/01/2008] (...) -- C:\WINDOWS\Downloaded Program Files\libfn.dll [32]
~ Files: Scanned in 00mn 02s



---\\ Scan Additionnel (O88)
Database Version : v2.11417 - (04/04/2013)
Cl�s trouv�es (Keys found) : 0
Valeurs trouv�es (Values found) : 0
Dossiers trouv�s (Folders found) : 0
Fichiers trouv�s (Files found) : 0

~ Additionnel: Scanned in 00mn 43s



---\\ Product Upgrade Codes (O90)
O90 - PUC: "449F9A348930E524E92202F156EFC0AC" . (.QuickCam.) -- C:\WINDOWS\Installer\{43A9F944-0398-425E-9E22-201F65FE0CCA}\quickcam.exe
~ Update Products: 81 Legitimates Scanned in 00mn 00s



---\\ MyComputer Name Space (O92)
O92 - MNS: Nokia Phone Browser - {416651E4-9C3C-11D9-8BDE-F66BAD1E3F3A}
O92 - MNS: Dossiers Web - {BDEADF00-C265-11D0-BCED-00A0C90AB50F}
~ MNS: Scanned in 00mn 00s



---\\ Etat g�n�ral des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 13/03/2013 253656 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 28/03/2013 86752 | (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe
SR - | Auto 28/03/2013 110816 | (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
SR - | Auto 24/10/2011 55144 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 30/08/2011 390504 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SS - | Demand 14/04/2008 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\system32\dmadmin.exe
SR - | Auto 11/12/2007 65536 | C:\Program Files\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe (FTRTSVC) . (.France Telecom SA.) - C:\Program Files\Fichiers communs\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
SS - | Auto 21/04/2009 133104 | (gupdate1c9c2af35a0c004) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 27/04/2009 182768 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
SS - | Demand 13/11/2011 821608 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SR - | Auto 05/03/2013 170912 | (JavaQuickStarterService) . (.Oracle Corporation.) - C:\Program Files\Java\jre7\bin\jqs.exe
SR - | Auto 30/04/2009 154136 | (lvprcsrv) . (.Logitech Inc..) - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
SS - | Demand 08/03/2013 115608 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Demand 14/04/2008 14336 | C:\Program Files\NOS\bin\getPlus_Helper_3004.dll (nosGetPlusHelper) . (.NOS Microsystems Ltd..) - C:\WINDOWS\system32\svchost.exe
SR - | Auto 22/10/2006 159810 | (NVSvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvsvc32.exe
SS - | Demand 08/12/2010 628736 | (ServiceLayer) . (.Nokia.) - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
SS - | Auto 13/07/2012 160944 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe
SR - | Auto 22/04/2011 92592 | (TomTomHOMEService) . (.TomTom.) - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
~ Services: Scanned in 00mn 00s



End of the scan (723 lines in 02mn 58s)(0)

Publicité


Signaler le contenu de ce document

Publicité