~ ZHPDiag v2016.3.24.74 Par Nicolas Coolman (2016/03/22)
~ Démarré par Administrateur (Administrator)  (2016/03/24 19:00:32)
~ Site: http://www.nicolascoolman.com
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version:  Version OK
~ Mode: Scanner
~ Rapport: C:\Documents and Settings\Administrateur\Bureau\ZHPDiag.txt
~ Rapport: C:\Documents and Settings\Administrateur\Application Data\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows XP, 32-bit Service Pack 3 (Build 2600)

---\\ Navigateurs Internet (2) - 0s
MFIE: Mozilla Firefox 43.0.1 (x86 en-US)
MSIE: Internet Explorer v8.0.6001.18702

---\\ Informations sur les produits Windows (3) - 0s
Windows Automatic Updates : OK
Windows Activation Technologies : KO
Windows Genuine Advantage : KO

---\\ Logiciels de protection (1) - 1s
ESET NOD32 Antivirus v9.0.375.1

---\\ Surveillance de Logiciels (1) - 1s
Adobe Flash Player 21 NPAPI

---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 6 Model 23 Stepping 6, GenuineIntel
~ Operating System:  32-bit 
~ Boot mode: Normal (Normal boot)
Total RAM: 3538.092 MB (57% free)
System Restore: Activé (Enable)
System drive C: has 14 GB () free of 29 GB  =>Alerte espace disque inférieur à 20 Go

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: SERVEUR
~ User Name: Administrateur
~ Logged in as Administrator

---\\ Enumération des unités disques (2) - 6s
~ Drive C: has 14 GB free of 29 GB  (System)
~ Drive D: has 128 GB free of 275 GB

---\\ Etat du Centre de Sécurité Windows (8) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Recherche particulière de fichiers génériques (23) - 0s
[MD5.5F3606CCD28D90AFC752CA92A8173C98] - 25/04/2011 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [1540608]  =>.Microsoft Corporation
[MD5.93AD0B78C7357A05F50E594EC7C22300] - 13/04/2008 - (.Microsoft Corporation - Exécuter une DLL en tant qu'application.) -- C:\WINDOWS\System32\rundll32.exe [33792]  =>.Microsoft Corporation
[MD5.2F0037D24E82840EF1D47B635B37301A] - 20/12/2010 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\WINDOWS\System32\wininet.dll [919552]  =>.Microsoft Corporation
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - 13/04/2008 - (.Microsoft Corporation - Application d'ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [512000]  =>.Microsoft Corporation
[MD5.F640F61A063DD79BD4D2F6C9509FB958] - 13/04/2008 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\System32\dnsapi.dll [147968]  =>.Microsoft Corporation
[MD5.322D0E36693D6E24A2398BEE62A268CD] - 13/04/2008 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [138112]  =>.Microsoft Corporation
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - 13/04/2008 - (.Microsoft Corporation - IDE/ATAPI Port Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [96512]  =>.Microsoft Corporation
[MD5.C885B02847F5D2FD45A24E219ED93B32] - 13/04/2008 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [63744]  =>.Microsoft Corporation
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - 13/04/2008 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [62976]  =>.Microsoft Corporation
[MD5.31F923EB2170FC172C81ABDA0045D18C] - 13/04/2008 - (.Microsoft Corporation - Pilote de cryptographie FIPS.) -- C:\WINDOWS\System32\drivers\Fips.sys [44672]  =>.Microsoft Corporation
[MD5.573C7D0A32852B48F3058CFD8026F511] - 13/04/2008 - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - 13/04/2008 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [54144]  =>.Microsoft Corporation
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - 13/04/2008 - (.Microsoft Corporation - IMAPI Kernel Driver.) -- C:\WINDOWS\System32\drivers\Imapi.sys [42112]  =>.Microsoft Corporation
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - 13/04/2008 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [152832]  =>.Microsoft Corporation
[MD5.23C74D75E36E7158768DD63D92789A91] - 13/04/2008 - (.Microsoft Corporation - IPSec Driver.) -- C:\WINDOWS\System32\drivers\IPSec.sys [75264]  =>.Microsoft Corporation
[MD5.68755F0FF16070178B54674FE5B847B0] - 13/04/2008 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [456576]  =>.Microsoft Corporation
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - 13/04/2008 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [162816]  =>.Microsoft Corporation
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - 13/04/2008 - (.Microsoft Corporation - NT File System Driver.) -- C:\WINDOWS\System32\drivers\ntfs.sys [574976]  =>.Microsoft Corporation
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - 26/07/2013 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [80384]  =>.Microsoft Corporation
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - 13/04/2008 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [51328]  =>.Microsoft Corporation
[MD5.15CABD0F7C00C47C70124907916AF3F1] - 13/04/2008 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [196224]  =>.Microsoft Corporation
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - 13/04/2008 - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) -- C:\WINDOWS\System32\drivers\redbook.sys [58752]  =>.Microsoft Corporation
[MD5.46DE1126684369BACE4849E4FC8C43CA] - 13/04/2008 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [53376]  =>.Microsoft Corporation

---\\ Liste des services NT non Microsoft et non désactivés (9) - 1s
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe  =>.Apple Inc.®
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe  =>.Apple Inc.®
O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe  =>.ESET, spol. s r.o.®
O23 - Service: ggbugreport (ggbugreport) . (...) - C:\Program Files\SearchesToYesbnd\bugreport.exe  =>PUP.Optional.YesSearches
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe  =>.Google Inc®
O23 - Service: NVIDIA Driver Helper Service (NVSvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 335.2.) - C:\WINDOWS\system32\nvsvc32.exe  =>.NVIDIA Corporation®
O23 - Service: O&K Print Watch Service (O&K Print Watch Service) . (.O&K Software - O&K Print Watch Service.) - C:\Program Files\O&K Print Watch\PW4Srv.exe {6A1E400EA6B300AC8908350031C5D7F0}
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe  =>.Skype Technologies SA®
O23 - Service: Winsere (Winsere) . (...) - C:\Program Files\Winsere\Winsere\Winsere.exe (.not file.)  =>PUP.Optional.Salus

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (13) - 10s

SS - Demand [24/03/2016] [  269504]  Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe  =>.Adobe Systems Incorporated®
SR - Auto   [16/10/2010] [   37664]  Apple Mobile Device (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe  =>.Apple Inc.®
SR - Auto   [07/10/2010] [  345376]  Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe  =>.Apple Inc.®
SR - Auto   [23/02/2016] [ 1982752]  ESET Service (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe  =>.ESET, spol. s r.o.®
SS - Auto   [15/03/2016] [ 1592888]  ggbugreport (ggbugreport) . (...) - C:\Program Files\SearchesToYesbnd\bugreport.exe  =>PUP.Optional.YesSearches
SS - Auto   [02/03/2016] [  154440]  Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe  =>.Google Inc®
SS - Demand [02/03/2016] [  154440]  Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe  =>.Google Inc®
SS - Demand [11/11/2010] [  820008]  Service de l’iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe  =>.Apple Inc.®
SS - Demand [17/12/2015] [  147624]  Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe  =>.Mozilla Corporation®
SR - Auto   [09/03/2014] [  156960]  NVIDIA Driver Helper Service (NVSvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvsvc32.exe  =>.NVIDIA Corporation®
SR - Auto   [09/02/2016] [ 4089800]  O&K Print Watch Service (O&K Print Watch Service) . (.O&K Software.) - C:\Program Files\O&K Print Watch\PW4Srv.exe {6A1E400EA6B300AC8908350031C5D7F0}
SS - Auto   [09/11/2012] [  160944]  Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe  =>.Skype Technologies SA®

---\\ Tâches planifiées en automatique (2) - 2s
[MD5.750446ED76A5D13E902174DDDDA1A62B] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe   [154440] (.Activate.)  =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job  [1052]   =>.Google Inc®

---\\ Processus lancés (17) - 1s
[MD5.2CAEA991C88588E1F0B1EB78FF50E180] - (.ESET - ESET Service.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [1982752] [PID.980]  =>.ESET, spol. s r.o.®
[MD5.018857EAD9A077A56AEDFC0E5EF7A24A] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe [37664] [PID.572]  =>.Apple Inc.®
[MD5.F832F1505AD8B83474BD9A5B1B985E01] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [345376] [PID.604]  =>.Apple Inc.®
[MD5.DADF7468C85F3295B5B69D0F1E40BDF3] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 335.2.) -- C:\WINDOWS\system32\nvsvc32.exe [156960] [PID.1324]  =>.NVIDIA Corporation®
[MD5.FC7394D241D58E78346228EF823F13D7] - (.O&K Software - O&K Print Watch Service.) -- C:\Program Files\O&K Print Watch\PW4Srv.exe [4089800] [PID.1408] {6A1E400EA6B300AC8908350031C5D7F0}
[MD5.E6C887FA7059A5E1ED2D75618DD0AFF9] - (.ESET - ESET Main GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5583520] [PID.720]  =>.ESET, spol. s r.o.®
[MD5.88C24432219DA147414DC5A4F6D1946E] - (.CafeSuite - CafeStation of CafeSuite.) -- C:\Program Files\CafeSuite\CafeStation.exe [11066866] [PID.2852]  =>.CafeSuite
[MD5.C8A299BB91912D446F19EA4BD4D135C7] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [874136] [PID.3080]  =>.Google Inc®
[MD5.C8A299BB91912D446F19EA4BD4D135C7] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [874136] [PID.3088]  =>.Google Inc®
[MD5.C8A299BB91912D446F19EA4BD4D135C7] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [874136] [PID.3608]  =>.Google Inc®
[MD5.C8A299BB91912D446F19EA4BD4D135C7] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [874136] [PID.3324]  =>.Google Inc®
[MD5.2AD9EFBB015490AA315707BAC2BFD816] - (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Documents and Settings\All Users\Application Data\Oracle\Java\javapath\javaw.exe [191552] [PID.2056]  =>.Oracle America, Inc.®
[MD5.C8A299BB91912D446F19EA4BD4D135C7] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [874136] [PID.1784]  =>.Google Inc®
[MD5.C8A299BB91912D446F19EA4BD4D135C7] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [874136] [PID.1656]  =>.Google Inc®
[MD5.C8A299BB91912D446F19EA4BD4D135C7] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [874136] [PID.3424]  =>.Google Inc®
[MD5.C8A299BB91912D446F19EA4BD4D135C7] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [874136] [PID.2576]  =>.Google Inc®
[MD5.43E2BBE02F74ED99192AB4D1D3E31F38] - (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\Administrateur\Mes documents\Downloads\ZHPDiag3.exe [2161152] [PID.3876]  =>.Nicolas Coolman

---\\ Google Chrome, Démarrage,Recherche,Extensions (2) - 0s
G2 - GCE: Preference [User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest  =>.Google Inc.

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (3) - 2s
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}  =>.Mozilla
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_21_0_0_195.dll  =>.Adobe Systems Incorporated
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll  =>.Apple Inc.

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (12) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean  =>.Microsoft Internet Explorer

---\\ Internet Explorer,Proxy Management (5) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.)  =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.)  =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (0)

---\\ Browser Helper Object de navigateur (BHO) (4) - 1s
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files\Internet Download Manager\IDMIECC.dll  =>.Tonec Inc.®
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_77\bin\ssv.dll  =>.Oracle America, Inc.®
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_77\bin\jp2ssv.dll  =>.Oracle America, Inc.®
O2 - BHO: WinToFlash Suggestor - {FC36B0BD-27F0-4cdd-8AB1-50651EFC3EFD} . (.Novicorp LLC - WinToFlash Suggestor for Microsoft Internet.) -- C:\Program Files\WinToFlash Suggestor\WinToFlashSuggestor.dll  =>PUP.Optional.WinToFlash

---\\ Applications lancées au démarrage du système (21) - 0s
O4 - HKLM\..\Run: [MSConfig] . (.Microsoft Corporation - Utilitaire de configuration système.) -- C:\WINDOWS\system32\msconfig.exe  =>.Microsoft Corporation
O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\WINDOWS\system32\nvcpl.dll  =>.NVIDIA Corporation®
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe  =>.Oracle America, Inc.®
O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe  =>.Microsoft Corporation
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe  =>.Microsoft Corporation
O4 - HKUS\.DEFAULT\..\Run: [RocketDock] . (...) -- C:\Program Files\RocketDock\RocketDock.exe
O4 - HKUS\.DEFAULT\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe  =>.Skype Technologies SA®
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe  =>.Microsoft Corporation
O4 - HKUS\S-1-5-18\..\Run: [RocketDock] . (...) -- C:\Program Files\RocketDock\RocketDock.exe
O4 - HKUS\S-1-5-18\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe  =>.Skype Technologies SA®
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe  =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\Run: [RocketDock] . (...) -- C:\Program Files\RocketDock\RocketDock.exe
O4 - HKUS\S-1-5-19\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe  =>.Skype Technologies SA®
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe  =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [RocketDock] . (...) -- C:\Program Files\RocketDock\RocketDock.exe
O4 - HKUS\S-1-5-20\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe  =>.Skype Technologies SA®
O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_3] rundll32 advpack.dll
O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_3] rundll32 advpack.dll
O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_3] rundll32 advpack.dll
O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll
O4 - HKUS\S-1-5-21-1229272821-113007714-1801674531-500\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe  =>.Microsoft Corporation

---\\ Raccourcis Global Startup (61) - 6s
O4 - GS\Desktop [Administrateur]: CafeStation.lnk . (.CafeSuite - CafeStation of CafeSuite.) C:\Program Files\CafeSuite\CafeStation.exe  =>.CafeSuite
O4 - GS\Desktop [Administrateur]: Format Factory.lnk . (.Free Time - FormatFactory.) C:\Program Files\FormatFactory\FormatFactory.exe  =>.chen jun hao®
O4 - GS\Desktop [Administrateur]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files\Internet Download Manager\IDMan.exe  =>.Tonec Inc.
O4 - GS\Desktop [Administrateur]: Messenger.lnk . (...) C:\Program Files\Messenger for Desktop\Messenger.exe
O4 - GS\Desktop [Administrateur]: Microsoft Office Word 2007.lnk . (...) C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe  =>.Microsoft Corporation®
O4 - GS\Desktop [Administrateur]: MyP2PCam.lnk . (.Monitor - exe.) C:\Program Files\MyP2PCam\MyP2PCam.exe
O4 - GS\Desktop [Administrateur]: Nero StartSmart.lnk . (.Ahead Software AG - Nero StartSmart.) C:\Program Files\Ahead\Nero StartSmart\NeroStartSmart.exe  =>.Ahead Software AG
O4 - GS\Desktop [Administrateur]: O&K Print Watch.lnk . (.O&K Software Ltd. - O&K Print Watch Control Program.) C:\Program Files\O&K Print Watch\Print Watch.exe {6A1E400EA6B300AC8908350031C5D7F0}
O4 - GS\Desktop [Administrateur]: Picosmos Shows.lnk . (.Free Time - Picosmos Picture Explorer.) C:\Program Files\PicosmosTools\PicosmosShows.exe  =>.chen jun hao®
O4 - GS\Desktop [Administrateur]: Picosmos Tools.lnk . (.Picosmos - Picosmos Tools.) C:\Program Files\PicosmosTools\PicosmosTools.exe  =>.chen jun hao®
O4 - GS\Desktop [Administrateur]: Recover My Files.lnk . (.GetData Pty Ltd - Recover My Files.) C:\Program Files\GetData\Recover My Files v4\RecoverMyFiles.exe  =>.GetData Pty Ltd
O4 - GS\Desktop [Administrateur]: Yawcam.lnk . (...) C:\Program Files\Yawcam\Yawcam.exe
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Documents and Settings\Administrateur\Application Data\ZHP\ZHPDiag3.exe  =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe  =>.Google Inc®
O4 - GS\Quicklaunch [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe  =>.Mozilla Corporation®
O4 - GS\Quicklaunch [Administrateur]: Yawcam.lnk . (...) C:\Program Files\Yawcam\Yawcam.exe
O4 - GS\Desktop [ASPNET]: CafeStation.lnk . (.CafeSuite - CafeStation of CafeSuite.) C:\Program Files\CafeSuite\CafeStation.exe  =>.CafeSuite
O4 - GS\Desktop [ASPNET]: Format Factory.lnk . (.Free Time - FormatFactory.) C:\Program Files\FormatFactory\FormatFactory.exe  =>.chen jun hao®
O4 - GS\Desktop [ASPNET]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files\Internet Download Manager\IDMan.exe  =>.Tonec Inc.
O4 - GS\Desktop [ASPNET]: Messenger.lnk . (...) C:\Program Files\Messenger for Desktop\Messenger.exe
O4 - GS\Desktop [ASPNET]: Microsoft Office Word 2007.lnk . (...) C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe  =>.Microsoft Corporation®
O4 - GS\Desktop [ASPNET]: MyP2PCam.lnk . (.Monitor - exe.) C:\Program Files\MyP2PCam\MyP2PCam.exe
O4 - GS\Desktop [ASPNET]: Nero StartSmart.lnk . (.Ahead Software AG - Nero StartSmart.) C:\Program Files\Ahead\Nero StartSmart\NeroStartSmart.exe  =>.Ahead Software AG
O4 - GS\Desktop [ASPNET]: O&K Print Watch.lnk . (.O&K Software Ltd. - O&K Print Watch Control Program.) C:\Program Files\O&K Print Watch\Print Watch.exe {6A1E400EA6B300AC8908350031C5D7F0}
O4 - GS\Desktop [ASPNET]: Picosmos Shows.lnk . (.Free Time - Picosmos Picture Explorer.) C:\Program Files\PicosmosTools\PicosmosShows.exe  =>.chen jun hao®
O4 - GS\Desktop [ASPNET]: Picosmos Tools.lnk . (.Picosmos - Picosmos Tools.) C:\Program Files\PicosmosTools\PicosmosTools.exe  =>.chen jun hao®
O4 - GS\Desktop [ASPNET]: Recover My Files.lnk . (.GetData Pty Ltd - Recover My Files.) C:\Program Files\GetData\Recover My Files v4\RecoverMyFiles.exe  =>.GetData Pty Ltd
O4 - GS\Desktop [ASPNET]: Yawcam.lnk . (...) C:\Program Files\Yawcam\Yawcam.exe
O4 - GS\Desktop [ASPNET]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Documents and Settings\Administrateur\Application Data\ZHP\ZHPDiag3.exe  =>.Nicolas Coolman
O4 - GS\Quicklaunch [ASPNET]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe  =>.Google Inc®
O4 - GS\Quicklaunch [ASPNET]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe  =>.Mozilla Corporation®
O4 - GS\Quicklaunch [ASPNET]: Yawcam.lnk . (...) C:\Program Files\Yawcam\Yawcam.exe
O4 - GS\Desktop [HelpAssistant]: CafeStation.lnk . (.CafeSuite - CafeStation of CafeSuite.) C:\Program Files\CafeSuite\CafeStation.exe  =>.CafeSuite
O4 - GS\Desktop [HelpAssistant]: Format Factory.lnk . (.Free Time - FormatFactory.) C:\Program Files\FormatFactory\FormatFactory.exe  =>.chen jun hao®
O4 - GS\Desktop [HelpAssistant]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files\Internet Download Manager\IDMan.exe  =>.Tonec Inc.
O4 - GS\Desktop [HelpAssistant]: Messenger.lnk . (...) C:\Program Files\Messenger for Desktop\Messenger.exe
O4 - GS\Desktop [HelpAssistant]: Microsoft Office Word 2007.lnk . (...) C:\WINDOWS\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe  =>.Microsoft Corporation®
O4 - GS\Desktop [HelpAssistant]: MyP2PCam.lnk . (.Monitor - exe.) C:\Program Files\MyP2PCam\MyP2PCam.exe
O4 - GS\Desktop [HelpAssistant]: Nero StartSmart.lnk . (.Ahead Software AG - Nero StartSmart.) C:\Program Files\Ahead\Nero StartSmart\NeroStartSmart.exe  =>.Ahead Software AG
O4 - GS\Desktop [HelpAssistant]: O&K Print Watch.lnk . (.O&K Software Ltd. - O&K Print Watch Control Program.) C:\Program Files\O&K Print Watch\Print Watch.exe {6A1E400EA6B300AC8908350031C5D7F0}
O4 - GS\Desktop [HelpAssistant]: Picosmos Shows.lnk . (.Free Time - Picosmos Picture Explorer.) C:\Program Files\PicosmosTools\PicosmosShows.exe  =>.chen jun hao®
O4 - GS\Desktop [HelpAssistant]: Picosmos Tools.lnk . (.Picosmos - Picosmos Tools.) C:\Program Files\PicosmosTools\PicosmosTools.exe  =>.chen jun hao®
O4 - GS\Desktop [HelpAssistant]: Recover My Files.lnk . (.GetData Pty Ltd - Recover My Files.) C:\Program Files\GetData\Recover My Files v4\RecoverMyFiles.exe  =>.GetData Pty Ltd
O4 - GS\Desktop [HelpAssistant]: Yawcam.lnk . (...) C:\Program Files\Yawcam\Yawcam.exe
O4 - GS\Desktop [HelpAssistant]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Documents and Settings\Administrateur\Application Data\ZHP\ZHPDiag3.exe  =>.Nicolas Coolman
O4 - GS\Quicklaunch [HelpAssistant]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe  =>.Google Inc®
O4 - GS\Quicklaunch [HelpAssistant]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe  =>.Mozilla Corporation®
O4 - GS\Quicklaunch [HelpAssistant]: Yawcam.lnk . (...) C:\Program Files\Yawcam\Yawcam.exe
O4 - GS\CommonDesktop [Public]: EaseUS Data Recovery Wizard 6.1.lnk . (.CHENGDU YIWO Tech Development Co., Ltd - EaseUS Data Recovery Wizard.) C:\Program Files\EaseUS\EaseUS Data Recovery Wizard\DRW.exe  =>.CHENGDU YIWO Tech Development Co., Ltd
O4 - GS\CommonDesktop [Public]: Foxit Reader.lnk . (.Foxit Corporation - Foxit Reader 4.1, Best Reader for Everyday.) C:\Program Files\Foxit Reader\Foxit Reader.exe  =>.Foxit Corporation®
O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe  =>.Google Inc®
O4 - GS\CommonDesktop [Public]: iTunes.lnk . (.Apple Inc. - iTunes.) C:\Program Files\iTunes\iTunes.exe  =>.Apple Inc.®
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe  =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: Novicorp WinToFlash Lite.lnk . (.Novicorp - Novicorp WinToFlash application.) C:\Program Files\Novicorp WinToFlash\WinToFlash.exe
O4 - GS\CommonDesktop [Public]: QuickTime Player.lnk . (.Apple Inc. - QuickTime Player.) C:\Program Files\QuickTime\QuickTimePlayer.exe  =>.Apple Inc.®
O4 - GS\CommonDesktop [Public]: SDFormatter.lnk . (.TRENDY Corporation - Format Tool for SD Card [Normal Area Only].) C:\Program Files\SDA\SD Formatter\SDFormatter.exe  =>.TRENDY Co.®
O4 - GS\CommonDesktop [Public]: Skype.lnk . (...) C:\WINDOWS\Installer\{EA17F4FC-FDBF-4CF8-A529-2D983132D053}\SkypeIcon.exe
O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files\VideoLAN\VLC\vlc.exe  =>.VideoLAN®
O4 - GS\Programs [Public]: Messenger.lnk . (...) C:\Program Files\Messenger for Desktop\Messenger.exe
O4 - GS\Programs [Public]: Uninstall Messenger for Desktop.lnk . (...) C:\Program Files\Messenger for Desktop\Uninstall Messenger for Desktop.exe
O4 - GS\Programs [Public]: Windows Media Player.lnk . (...) C:\Program Files\Windows Media Player\wmplayer.exe

---\\ Modification Domaine/Adresses DNS (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = lan
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{AA57C1D0-7832-4CDF-B24A-7F7BC6ECAF40}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{AA57C1D0-7832-4CDF-B24A-7F7BC6ECAF40}: DhcpDomain = lan

---\\ Protocole additionnel (29) - 1s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll  =>.Microsoft Corporation
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\system32\msvidctl.dll  =>.Microsoft Corporation
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll  =>.Microsoft Corporation
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll  =>.Microsoft Corporation
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll  =>.Microsoft Corporation
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API.) -- C:\WINDOWS\system32\inetcomm.dll  =>.Microsoft Corporation
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll  =>.Microsoft Corporation®
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll  =>.Microsoft Corporation
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll  =>.Microsoft Corporation
O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\Program Files\Fichiers communs\Skype\Skype4COM.dll  =>.Skype Technologies SA®
O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll  =>.Microsoft Corporation
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\system32\msvidctl.dll  =>.Microsoft Corporation
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll  =>.Microsoft Corporation
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll  =>.Microsoft Corporation
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll  =>.Microsoft Corporation®
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll  =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll  =>.Microsoft Corporation®
O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll  =>.Microsoft Corporation
O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll  =>.Microsoft Corporation
O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll  =>.Microsoft Corporation
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL  =>.Microsoft Corporation®

---\\ Logiciels installés (52) - 11s
O42 - Logiciel: 3D Driving-School - (...) [HKLM] -- 3D Driving-School
O42 - Logiciel: Adobe Flash Player 21 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX  =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 21 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI  =>.Adobe Systems Incorporated®
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {17424F35-8B77-4ADF-BC63-BF9B81418539}  =>.Apple Inc.
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {308B6AEA-DE50-4666-996D-0FA461719D6B}  =>.Apple Inc.
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {C41300B9-185D-475E-BFEC-39EF732F19B1}  =>.Apple Inc.
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {2A981294-F14C-4F0F-9627-D793270922F8}  =>.Apple Inc.
O42 - Logiciel: CafeSuite 3.49i - (.SOFCIK.) [HKLM] -- CafeSuite_is1  =>.SOFCIK
O42 - Logiciel: Canon LBP3010/LBP3018/LBP3050 - (...) [HKLM] -- Canon LBP3010/LBP3018/LBP3050  =>.CANON INC.®
O42 - Logiciel: Creative WebCam NX Driver (2.00.04.0000) - (...) [HKLM] -- Creative PD1110
O42 - Logiciel: D-Link VGA Webcam - (...) [HKLM] -- D-Link VGA Webcam
O42 - Logiciel: EaseUS Data Recovery Wizard 6.1 - (.EaseUS.) [HKLM] -- EaseUS Data Recovery Wizard 6.1_is1  =>.EaseUS
O42 - Logiciel: Elcomsoft Phone Password Breaker - (.Elcomsoft Co. Ltd..) [HKLM] -- {91E3CFF8-5A2F-4895-A6BE-6883A66C6CD8}  =>.ElcomSoft Co. Ltd.
O42 - Logiciel: ESET NOD32 Antivirus - (.ESET, spol. s r.o..) [HKLM] -- {5E0CF1EA-1842-476C-A4AC-46C0BBEFE4E4}  =>.ESET, spol. s r.o.
O42 - Logiciel: FormatFactory 3.7.5.0 - (.Free Time.) [HKLM] -- FormatFactory  =>.Free Time
O42 - Logiciel: Foxit Reader - (.Foxit Software Company.) [HKLM] -- Foxit Reader  =>.Foxit Corporation®
O42 - Logiciel: Google Chrome - (.Google, Inc..) [HKLM] -- {38764777-9FDB-35BC-A8DB-FA324E5EAC4A}  =>.Google, Inc.
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}  =>.Google Inc.
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}  =>.Google Inc.
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM] -- Internet Download Manager  =>.Tonec Inc.®
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {E8843212-F0FC-4C3B-BFF3-D51829CB4F19}  =>.Apple Inc.
O42 - Logiciel: Java 8 Update 77 - (.Oracle Corporation.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83218077F0}  =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM] -- {4A03706F-666A-4037-7777-5F2748764D10}  =>.Oracle Corporation
O42 - Logiciel: Java(TM) 6 Update 24 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216024FF}  =>.Oracle
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}  =>.Microsoft Corporation
O42 - Logiciel: Microsoft Software Update for Web Folders  (French) 12 - (.Microsoft Corporation.) [HKLM] -- {90120000-0010-040C-0000-0000000FF1CE}  =>.Microsoft Corporation
O42 - Logiciel: Mises à jour NVIDIA 11.10.13 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update  =>.NVIDIA Corporation
O42 - Logiciel: Mozilla Firefox 43.0.1 (x86 en-US) - (.Mozilla.) [HKLM] -- Mozilla Firefox 43.0.1 (x86 en-US)  =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService  =>.Mozilla
O42 - Logiciel: MyP2PCam - (.MyP2PCam.) [HKLM] -- MyP2PCam_is1
O42 - Logiciel: Nero 6 Ultra Edition - (...) [HKLM] -- Nero - Burning Rom!UninstallKey
O42 - Logiciel: Notepad2 (Notepad Replacement) - (...) [HKLM] -- Notepad2
O42 - Logiciel: Novicorp WinToFlash Lite version 1.4.0000 - (.Novicorp.) [HKLM] -- {A1A1FF24-34C6-4B77-BDB7-A689979F018C}_is1
O42 - Logiciel: NVIDIA Install Application - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer  =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA nView 141.00 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView  =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Pilote graphique 335.28 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver  =>.NVIDIA Corporation
O42 - Logiciel: O&K Print Watch - (.O&K Software Ltd..) [HKLM] -- O&K Print Watch
O42 - Logiciel: Panneau de configuration NVIDIA 335.28 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel  =>.NVIDIA Corporation
O42 - Logiciel: PicosmosTools 1.4.0.0 - (.Free Time.) [HKLM] -- PicosmosTools  =>.Free Time
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {E7004147-2CCA-431C-AA05-2AB166B9785D}  =>.Apple Inc.
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}  =>.Realtek Semiconductor Corp.
O42 - Logiciel: Recover My Files - (.GetData Pty Ltd.) [HKLM] -- Recover My Files_is1  =>.GetData Pty Ltd
O42 - Logiciel: RocketDock 1.3.5 - (.Punk Software.) [HKLM] -- RocketDock_is1  =>.Punk Software
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44}  =>.SAMSUNG ELECTRONICS CO.,LTD.®
O42 - Logiciel: SDFormatter - (.SD Association.) [HKLM] -- {179324FF-7B16-4BA8-9836-055CAAEE4F08}  =>.SD Association
O42 - Logiciel: Skype™ 6.0 - (.Skype Technologies S.A..) [HKLM] -- {EA17F4FC-FDBF-4CF8-A529-2D983132D053}  =>.Skype Technologies S.A.
O42 - Logiciel: Unlocker 1.9.2 - (.Cedrick Collomb.) [HKLM] -- Unlocker  =>.Cedrick Collomb
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM] -- VLC media player  =>.VideoLAN
O42 - Logiciel: WebFldrs XP - (.Microsoft Corporation.) [HKLM] -- {350C940c-3D7C-4EE8-BAA9-00BCB3D54227}  =>.Microsoft Corporation
O42 - Logiciel: WinRAR 4.00 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver  =>.win.rar GmbH
O42 - Logiciel: WinToFlash Suggestor - (.Think Tank Labs, LLC.) [HKLM] -- WinToFlash Suggestor  =>PUP.Optional.WinToFlash
O42 - Logiciel: Yawcam 0.5.0 - (.Yawcam.) [HKLM] -- {8FE96B14-E1F9-47BF-8BA1-A81467CD259B}_is1

---\\ HKCU & HKLM Software Keys (112) - 11s
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\Ahead
HKLM\SOFTWARE\Apple Computer, Inc.
HKLM\SOFTWARE\Apple Inc.
HKLM\SOFTWARE\AviSynth
HKLM\SOFTWARE\Baidu
HKLM\SOFTWARE\C07ft5Y
HKLM\SOFTWARE\CafeSuite
HKLM\SOFTWARE\CANON
HKLM\SOFTWARE\CloudOPTInfo
HKLM\SOFTWARE\Creative Tech
HKLM\SOFTWARE\Debug
HKLM\SOFTWARE\drpsu
HKLM\SOFTWARE\EASEUS
HKLM\SOFTWARE\ElcomSoft
HKLM\SOFTWARE\ESET
HKLM\SOFTWARE\Foxit Software
HKLM\SOFTWARE\GEAR Software
HKLM\SOFTWARE\Gemplus
HKLM\SOFTWARE\GNU
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\HaaliMkx
HKLM\SOFTWARE\IM Providers
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\Internet Download Manager
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\JreMetrics
HKLM\SOFTWARE\Khronos
HKLM\SOFTWARE\KONAMI
HKLM\SOFTWARE\KONAMIPES6
HKLM\SOFTWARE\Licenses
HKLM\SOFTWARE\LogMeInRescueCallingCard
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\Novicorp
HKLM\SOFTWARE\NVIDIA Corporation
HKLM\SOFTWARE\O&K Print Watch
HKLM\SOFTWARE\O&K Software
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\OmniVision
HKLM\SOFTWARE\PicosmosShows
HKLM\SOFTWARE\Program Groups
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\Reg
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\SAMSUNG
HKLM\SOFTWARE\Schlumberger
HKLM\SOFTWARE\Secure
HKLM\SOFTWARE\Skype
HKLM\SOFTWARE\Software
HKLM\SOFTWARE\Systweak  =>.Superfluous.Systweak
HKLM\SOFTWARE\VideoLAN
HKLM\SOFTWARE\Windows 3.1 Migration Status
HKLM\SOFTWARE\WinRAR
HKLM\SOFTWARE\yessearchesSoftware  =>PUP.Optional.YesSearches
HKCU\SOFTWARE\3D Driving-School
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Ahead
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\ASProtect
HKCU\SOFTWARE\Atheros
HKCU\SOFTWARE\Baidu
HKCU\SOFTWARE\Besier 3D-Edutainment
HKCU\SOFTWARE\CafeSuite
HKCU\SOFTWARE\Canon
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\csastats
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\drpsu
HKCU\SOFTWARE\ElcomSoft
HKCU\SOFTWARE\ESET
HKCU\SOFTWARE\fCoder
HKCU\SOFTWARE\Foxit Software
HKCU\SOFTWARE\FreeTime
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GetData
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\HKEY_CURRENT_USER
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\ispy
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\LogMeInRescueCallingCard
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\O&K Software
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Picosmos
HKCU\SOFTWARE\ProductSetup  =>Adware.InstallCore
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Reg
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\systweak  =>.Superfluous.Systweak
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\undefined  =>.Superfluous.Downloader
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\WinToFlash Suggestor  =>PUP.Optional.WinToFlash
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Smart Address Bar
HKCU\SOFTWARE\AppDataLow\Software\WinToFlash Suggestor  =>PUP.Optional.WinToFlash

---\\ Contenu des dossiers Programmes (174) - 19s
O43 - CFD: 04/03/2016 - [] D -- C:\Program Files\3D Driving-School
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\Ahead
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\Apple Software Update  =>.Apple Inc.®
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\Bonjour  =>.Apple Inc.®
O43 - CFD: 24/03/2016 - [] D -- C:\Program Files\CafeSuite
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\Canon  =>.CANON INC.®
O43 - CFD: 02/03/2016 - [0] D -- C:\Program Files\ComPlus Applications
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\EaseUS
O43 - CFD: 21/03/2016 - [] D -- C:\Program Files\Elcomsoft
O43 - CFD: 21/03/2016 - [] D -- C:\Program Files\Elcomsoft Password Recovery {1748F43D845D4B8E655BA399F2F7EF9F}
O43 - CFD: 24/03/2016 - [] D -- C:\Program Files\ESET  =>.ESET, spol. s r.o.®
O43 - CFD: 24/03/2016 - [] D -- C:\Program Files\Fichiers communs
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\FormatFactory  =>.chen jun hao®
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\Foxit Reader  =>.Foxit Corporation®
O43 - CFD: 17/03/2016 - [] D -- C:\Program Files\GetData
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\Google  =>.Google Inc®
O43 - CFD: 22/03/2016 - [] D -- C:\Program Files\Internet Download Manager
O43 - CFD: 23/03/2016 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 07/03/2016 - [] D -- C:\Program Files\iPod  =>.Apple Inc.®
O43 - CFD: 07/03/2016 - [] D -- C:\Program Files\iTunes  =>.Apple Inc.®
O43 - CFD: 24/03/2016 - [] D -- C:\Program Files\Java  =>.Oracle America, Inc.®
O43 - CFD: 07/03/2016 - [] D -- C:\Program Files\Messenger for Desktop
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\microsoft frontpage
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\Microsoft Office  =>.Microsoft Corporation®
O43 - CFD: 05/03/2016 - [] D -- C:\Program Files\Microsoft Silverlight  =>.Microsoft Corporation®
O43 - CFD: 05/03/2016 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 16/03/2016 - [] D -- C:\Program Files\movie maker
O43 - CFD: 07/03/2016 - [] D -- C:\Program Files\Mozilla Firefox  =>.Mozilla Corporation®
O43 - CFD: 07/03/2016 - [] D -- C:\Program Files\Mozilla Maintenance Service  =>.Mozilla Corporation®
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\msn gaming zone
O43 - CFD: 21/03/2016 - [] D -- C:\Program Files\MyP2PCam
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\NetMeeting
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\Notepad2
O43 - CFD: 12/03/2016 - [] D -- C:\Program Files\Novicorp WinToFlash
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\NVIDIA Corporation  =>.NVIDIA Corporation®
O43 - CFD: 24/03/2016 - [] D -- C:\Program Files\O&K Print Watch {6A1E400EA6B300AC8908350031C5D7F0}
O43 - CFD: 23/03/2016 - [] D -- C:\Program Files\Outlook Express
O43 - CFD: 09/03/2016 - [] D -- C:\Program Files\PicosmosTools
O43 - CFD: 07/03/2016 - [] D -- C:\Program Files\QuickTime
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\RocketDock
O43 - CFD: 11/03/2016 - [] D -- C:\Program Files\SAMSUNG  =>.SAMSUNG ELECTRONICS CO.,LTD.®
O43 - CFD: 07/03/2016 - [] D -- C:\Program Files\SDA  =>.TRENDY Co.®
O43 - CFD: 23/03/2016 - [] D -- C:\Program Files\SearchesToYesbnd  =>PUP.Optional.YesSearches
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\Services en ligne
O43 - CFD: 02/03/2016 - [] RD -- C:\Program Files\Skype  =>.Skype Technologies SA®
O43 - CFD: 02/03/2016 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 19/03/2016 - [] D -- C:\Program Files\Unlocker
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\VideoLAN
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\Windows Media Connect 2
O43 - CFD: 23/03/2016 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 02/03/2016 - [0] HD -- C:\Program Files\WindowsUpdate
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\WinRAR
O43 - CFD: 20/03/2016 - [] D -- C:\Program Files\WinToFlash Suggestor  =>PUP.Optional.WinToFlash
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\xerox
O43 - CFD: 24/03/2016 - [] D -- C:\Program Files\Yawcam
O43 - CFD: 20/03/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\3D Driving-School
O43 - CFD: 11/03/2016 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Accessoires
O43 - CFD: 16/03/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Accessories
O43 - CFD: 20/03/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\CafeSuite
O43 - CFD: 02/03/2016 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\EaseUS Data Recovery Wizard 6.1
O43 - CFD: 21/03/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Elcomsoft Password Recovery
O43 - CFD: 24/03/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ESET
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Foxit Reader
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Internet Download Manager
O43 - CFD: 20/03/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\iTunes
O43 - CFD: 24/03/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Java
O43 - CFD: 02/03/2016 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Jeux
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft Office
O43 - CFD: 05/03/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft Silverlight
O43 - CFD: 06/03/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\MyP2PCam
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Nero
O43 - CFD: 20/03/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Novicorp WinToFlash Lite
O43 - CFD: 02/03/2016 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Outils d'administration
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Programme de désinstallation de l'imprimante Canon
O43 - CFD: 20/03/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\QuickTime
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\RocketDock
O43 - CFD: 07/03/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\SDFormatter
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Skype
O43 - CFD: 20/03/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\VideoLAN
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WinRAR
O43 - CFD: 24/03/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Yawcam
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Adobe
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Apple
O43 - CFD: 07/03/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Apple Computer
O43 - CFD: 05/03/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Atheros
O43 - CFD: 19/03/2016 - [0] D -- C:\Documents and Settings\All Users\Application Data\Babylon  =>PUP.Optional.Babylon
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Baidu
O43 - CFD: 03/03/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\CafeSuite
O43 - CFD: 21/03/2016 - [0] D -- C:\Documents and Settings\All Users\Application Data\Elcomsoft Password Recovery
O43 - CFD: 24/03/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\ESET
O43 - CFD: 02/03/2016 - [0] D -- C:\Documents and Settings\All Users\Application Data\IDM
O43 - CFD: 04/03/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\KB Piano
O43 - CFD: 12/03/2016 - [] SD -- C:\Documents and Settings\All Users\Application Data\Microsoft
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Microsoft Help
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\NVIDIA Corporation
O43 - CFD: 16/03/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\O&K Software
O43 - CFD: 24/03/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Oracle
O43 - CFD: 21/03/2016 - [0] D -- C:\Documents and Settings\All Users\Application Data\Package Cache
O43 - CFD: 11/03/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Samsung
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Skype
O43 - CFD: 17/03/2016 - [0] D -- C:\Documents and Settings\All Users\Application Data\TEMP
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
O43 - CFD: 18/03/2016 - [] D -- C:\Program Files\Fichiers communs\Adobe
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\Fichiers communs\Ahead
O43 - CFD: 07/03/2016 - [] D -- C:\Program Files\Fichiers communs\Apple
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\Fichiers communs\DESIGNER
O43 - CFD: 24/03/2016 - [] D -- C:\Program Files\Fichiers communs\Java
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\Fichiers communs\Microsoft Shared
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\Fichiers communs\MSSoap
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\Fichiers communs\ODBC
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\Fichiers communs\Services
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\Fichiers communs\Skype
O43 - CFD: 02/03/2016 - [] D -- C:\Program Files\Fichiers communs\SpeechEngines
O43 - CFD: 23/03/2016 - [] D -- C:\Program Files\Fichiers communs\System
O43 - CFD: 18/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Adobe
O43 - CFD: 07/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Apple Computer
O43 - CFD: 17/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\AS
O43 - CFD: 17/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\ASII
O43 - CFD: 19/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Babylon  =>PUP.Optional.Babylon
O43 - CFD: 23/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Baidu
O43 - CFD: 22/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\DMCache
O43 - CFD: 14/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\DRPNano
O43 - CFD: 14/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\DRPSu
O43 - CFD: 21/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Elcomsoft
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\ESET
O43 - CFD: 05/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Foxit Software
O43 - CFD: 17/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\fRun
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Identities
O43 - CFD: 22/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\IDM
O43 - CFD: 23/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\iSpy
O43 - CFD: 07/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Macromedia
O43 - CFD: 22/03/2016 - [] SD -- C:\Documents and Settings\Administrateur\Application Data\Microsoft
O43 - CFD: 23/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Mozilla
O43 - CFD: 06/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\MyP2PCam
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Notepad2
O43 - CFD: 12/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Novicorp
O43 - CFD: 04/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\NVIDIA
O43 - CFD: 24/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Oracle
O43 - CFD: 09/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Picosmos
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Skype
O43 - CFD: 24/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Sun
O43 - CFD: 22/03/2016 - [0] D -- C:\Documents and Settings\Administrateur\Application Data\systweak  =>.Superfluous.Systweak
O43 - CFD: 24/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\vlc
O43 - CFD: 03/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\WinRAR
O43 - CFD: 24/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\ZHP
O43 - CFD: 23/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\3810282D-6C19-47B0-8283-5C6C29A7E108
O43 - CFD: 18/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Adobe
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Ahead
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Apple
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Apple Computer
O43 - CFD: 02/03/2016 - [0] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\ApplicationHistory
O43 - CFD: 19/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Babylon  =>PUP.Optional.Babylon
O43 - CFD: 07/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Downloaded Installations
O43 - CFD: 24/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\ESET
O43 - CFD: 07/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Geckofx
O43 - CFD: 03/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google
O43 - CFD: 07/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Messenger
O43 - CFD: 23/03/2016 - [] SD -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Microsoft
O43 - CFD: 02/03/2016 - [0] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Microsoft Help
O43 - CFD: 12/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Novicorp
O43 - CFD: 24/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Sun
O43 - CFD: 22/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Systweak  =>.Superfluous.Systweak
O43 - CFD: 22/03/2016 - [0] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\WMTools Downloaded Files
O43 - CFD: 02/03/2016 - [] RD -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Accessoires
O43 - CFD: 23/03/2016 - [] RD -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Démarrage
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\FormatFactory
O43 - CFD: 02/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Internet Download Manager
O43 - CFD: 16/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\O&K Print Watch
O43 - CFD: 09/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\PicosmosTools
O43 - CFD: 17/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Recover My Files v4
O43 - CFD: 20/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Unlocker
O43 - CFD: 20/03/2016 - [] D -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\WinRAR

---\\ Derniers fichiers créés dans Windows Prefetcher (1) - 4s
O45 - LFCP:[MD5.977114F52ECA866D45078A44ED2D02D2] 23/03/2016 A -- C:\WINDOWS\Prefetch\WINTASKE.EXE-049AFBE1.pf  =>PUP.Optional.YesSearches

---\\ ShellIconOverlayIdentifiers (SIOI) (2) - 0s
O106 - SIOI: Offline Files Menu [Fichiers hors connexion] - {750fdf0e-2a26-11d1-a3ea-080036587f03}. (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\system32\cscui.dll  =>.Microsoft Corporation
O106 - SIOI: IDM Shell Extension [IDM Shell Extension] - {CDC95B92-E27C-4745-A8C5-64A52A78855D}. (.Tonec Inc. - Internet Download Manager module.) -- C:\Program Files\Internet Download Manager\IDMShellExt.dll  =>.Tonec Inc.®

---\\ Enumération des clés StartupReg (15) - 1s
O53 - SMSR:HKLM\...\startupreg\CNAP2 Launcher  [Key] . (.CANON INC. - Canon Advanced Printing Technology Printer.) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\CNAP2LAK.EXE  =>.CANON INC.
O53 - SMSR:HKLM\...\startupreg\DrvIcon  [Key] . (.artArmin - Changes "My Computer" drive icons to Window.) -- C:\WINDOWS\icon\DrvIcon.exe  =>.artArmin
O53 - SMSR:HKLM\...\startupreg\IDMan  [Key] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe  =>.Tonec Inc.
O53 - SMSR:HKLM\...\startupreg\iTunesHelper  [Key] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe  =>.Apple Inc.
O53 - SMSR:HKLM\...\startupreg\jswtrayutil  [Key] . (...) -- C:\Program Files\Atheros\jswtrayutil.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\NeroFilterCheck  [Key] . (.Ahead Software Gmbh - NeroCheck.) -- C:\WINDOWS\system32\NeroCheck.exe
O53 - SMSR:HKLM\...\startupreg\NvCplDaemon  [Key] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\WINDOWS\system32\nvcpl.dll  =>.NVIDIA Corporation
O53 - SMSR:HKLM\...\startupreg\NvMediaCenter  [Key] . (.Microsoft Corporation - Exécuter une DLL en tant qu'application.) -- RunDLL32.exe (.not file.)  =>.Microsoft Corporation
O53 - SMSR:HKLM\...\startupreg\nwiz  [Key] . (...) -- C:\Program Files\NVIDIA Corporation\nview\nwiz.exe
O53 - SMSR:HKLM\...\startupreg\Picosmos  [Key] . (.Picosmos - Picosmos Tools.) -- C:\Program Files\PicosmosTools\PicosmosTools.exe  =>.Picosmos
O53 - SMSR:HKLM\...\startupreg\QuickTime Task  [Key] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe  =>.Apple Inc.
O53 - SMSR:HKLM\...\startupreg\RocketDock  [Key] . (...) -- C:\Program Files\RocketDock\RocketDock.exe
O53 - SMSR:HKLM\...\startupreg\RTHDCPL  [Key] . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- RTHDCPL.EXE (.not file.)  =>.Realtek Semiconductor Corp.
O53 - SMSR:HKLM\...\startupreg\Skype  [Key] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe  =>.Skype Technologies S.A.
O53 - SMSR:HKLM\...\startupreg\UnlockerAssistant  [Key] . (...) -- C:\Program Files\Unlocker\UnlockerAssistant.exe

---\\ Liste des pilotes du système (48) - 3s
O58 - SDL:2009/11/17 23:16:00 A . (.Creative - Creative WDM 3D Audio Driver.) -- C:\WINDOWS\System32\drivers\Ambfilt.sys   [1691480]  =>.Creative Labs Inc®
O58 - SDL:2013/07/23 01:13:59 A . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\System32\drivers\cinemst2.sys   [262528]  =>.RAVISENT Technologies Inc.
O58 - SDL:2013/07/23 01:13:59 A . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\System32\drivers\cpqdap01.sys   [11776]  =>.Compaq Computer Corporation
O58 - SDL:2008/04/13 18:05:08 A . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) -- C:\WINDOWS\System32\drivers\dmboot.sys   [800256]  =>.Microsoft Corp., Veritas Software
O58 - SDL:2008/04/13 18:05:14 A . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\System32\drivers\dmio.sys   [154496]  =>.Microsoft Corp., Veritas Software
O58 - SDL:2002/09/07 01:00:00 A . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\drivers\dmload.sys   [5888]  =>.Microsoft Corp., Veritas Software.
O58 - SDL:2016/02/23 15:25:30 A . (.ESET - Amon monitor.) -- C:\WINDOWS\System32\drivers\eamonm.sys   [206312]  =>.ESET, spol. s r.o.®
O58 - SDL:2016/02/23 15:25:30 A . (.ESET - ESET Helper driver.) -- C:\WINDOWS\System32\drivers\ehdrv.sys   [146024]  =>.ESET, spol. s r.o.®
O58 - SDL:2016/02/23 15:25:30 A . (.ESET - ESET Antivirus Network Redirector.) -- C:\WINDOWS\System32\drivers\epfwtdir.sys   [127496]  =>.ESET, spol. s r.o.®
O58 - SDL:2009/05/18 13:17:00 A . (.GEAR Software Inc. - CD DVD Filter.) -- C:\WINDOWS\System32\drivers\GEARAspiWDM.sys   [26600]  =>.GEAR Software Inc.®
O58 - SDL:2008/04/13 08:36:06 A . (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\System32\drivers\hdaudbus.sys   [144384]
O58 - SDL:2004/03/02 17:37:48 N . (.Ahead Software AG - NERO IMAGEDRIVE SCSI miniport.) -- C:\WINDOWS\System32\drivers\imagedrv.sys   [5504]  =>.Ahead Software AG
O58 - SDL:2004/03/02 17:37:50 N . (.Ahead Software AG - Nero Image Server.) -- C:\WINDOWS\System32\drivers\imagesrv.sys   [125184]  =>.Ahead Software AG
O58 - SDL:2009/11/17 23:17:00 A . (.Creative Technology Ltd. - Creative WDM Audio Driver (32-bit).) -- C:\WINDOWS\System32\drivers\Monfilt.sys   [1395800]  =>.Creative Labs Inc®
O58 - SDL:2013/07/23 01:13:59 A . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\nikedrv.sys   [12032]  =>.S3/Diamond Multimedia Systems
O58 - SDL:2014/01/12 09:05:46 A . (.Windows (R) Win 7 DDK provider - Serial Port Enumerator.) -- C:\WINDOWS\System32\drivers\nuvserenum.sys   [17920]  =>.Windows (R) Win 7 DDK provider
O58 - SDL:2014/01/12 09:05:46 A . (.Nuvoton Technology Corp. - Nuvoton Serial Device Driver (WDM).) -- C:\WINDOWS\System32\drivers\nuvserial.sys   [76288]  =>.Nuvoton Technology Corp.
O58 - SDL:2014/03/09 20:35:33 A . (.NVIDIA Corporation - NVIDIA Windows XP Miniport Driver, Version.) -- C:\WINDOWS\System32\drivers\nv4_mini.sys   [12856232]  =>.NVIDIA Corporation®
O58 - SDL:2010/07/24 09:57:06 A . (.OmniVision Technologies Inc. - Dual Mode USB Camera 519  Universal Serial.) -- C:\WINDOWS\System32\drivers\ov519cmd.sys   [25211]
O58 - SDL:2010/07/26 07:34:28 A . (.OmniVision Technologies, Inc. - Dual Mode USB Camera 519 Stream Class Mini.) -- C:\WINDOWS\System32\drivers\ov519vid.sys   [174530]  =>.OmniVision Technologies, Inc.
O58 - SDL:2006/01/26 08:19:32 A . (.Creative Technology Ltd. - WDM Stub driver for Windows 98.) -- C:\WINDOWS\System32\drivers\P1110Stb.sys   [4216]  =>.Creative Technology Ltd.
O58 - SDL:2006/04/06 16:33:48 A . (.Creative Technology Ltd. - Video streaming and Capture Device Driver.) -- C:\WINDOWS\System32\drivers\P1110Vid.sys   [68608]  =>.Creative Technology Ltd.
O58 - SDL:2002/09/07 01:00:00 A . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Lib.) -- C:\WINDOWS\System32\drivers\ptilink.sys   [17792]  =>.Parallel Technologies, Inc.
O58 - SDL:2013/07/23 01:13:59 A . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\System32\drivers\rio8drv.sys   [12032]  =>.S3/Diamond Multimedia Systems
O58 - SDL:2013/07/23 01:13:59 A . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\riodrv.sys   [12032]  =>.S3/Diamond Multimedia Systems
O58 - SDL:2009/06/12 17:21:40 A . (.Ralink Technology, Corp. - Ralink 802.11 Wireless Adapter Driver.) -- C:\WINDOWS\System32\drivers\rt61.sys   [500096]  =>.Ralink Technology, Corp.
O58 - SDL:2013/10/28 03:00:58 A . (.Realtek Semiconductor Corporation - Realtek 10/100/1000 NDIS 5.1 Driver.) -- C:\WINDOWS\System32\drivers\Rtenicxp.sys   [415832]  =>.Realtek Semiconductor Corp®
O58 - SDL:2013/12/17 12:10:54 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys   [5639384]  =>.Realtek Semiconductor Corp®
O58 - SDL:2008/04/13 08:39:16 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\WINDOWS\System32\drivers\secdrv.sys   [20480]  =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2013/07/23 01:13:59 A . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\System32\drivers\tsbvcap.sys   [21376]  =>.Toshiba Corporation
O58 - SDL:2013/07/23 14:43:51 A . (.Promise Technology, Inc. - Promise SATAII150 Series Driver for Win2003.) -- C:\WINDOWS\System32\drivers\ulsata2.sys   [124928]  =>.Promise Technology, Inc.
O58 - SDL:2010/09/28 15:44:52 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\WINDOWS\System32\drivers\usbaapl.sys   [41984]  =>.Apple, Inc.
O58 - SDL:2013/07/23 01:13:59 A . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\System32\drivers\vdmindvd.sys   [58112]  =>.RAVISENT Technologies Inc.
O58 - SDL:2002/09/07 01:00:00 A . (...) -- C:\WINDOWS\System32\ansi.sys   [9037]
O58 - SDL:2002/09/07 01:00:00 A . (...) -- C:\WINDOWS\System32\country.sys   [27097]
O58 - SDL:2002/09/07 01:00:00 A . (...) -- C:\WINDOWS\System32\himem.sys   [4912]
O58 - SDL:2002/09/07 01:00:00 A . (...) -- C:\WINDOWS\System32\key01.sys   [42809]
O58 - SDL:2008/04/13 08:50:56 A . (...) -- C:\WINDOWS\System32\keyboard.sys   [42537]
O58 - SDL:2002/09/07 01:00:00 A . (...) -- C:\WINDOWS\System32\ntdos.sys   [27916]
O58 - SDL:2002/09/07 01:00:00 A . (...) -- C:\WINDOWS\System32\ntdos404.sys   [29146]
O58 - SDL:2002/09/07 01:00:00 A . (...) -- C:\WINDOWS\System32\ntdos411.sys   [29370]
O58 - SDL:2002/09/07 01:00:00 A . (...) -- C:\WINDOWS\System32\ntdos412.sys   [29274]
O58 - SDL:2002/09/07 01:00:00 A . (...) -- C:\WINDOWS\System32\ntdos804.sys   [29146]
O58 - SDL:2008/04/13 08:49:52 A . (...) -- C:\WINDOWS\System32\ntio.sys   [34000]
O58 - SDL:2008/04/13 08:49:44 A . (...) -- C:\WINDOWS\System32\ntio404.sys   [34560]
O58 - SDL:2008/04/13 08:49:40 A . (...) -- C:\WINDOWS\System32\ntio411.sys   [35648]
O58 - SDL:2008/04/13 08:49:44 A . (...) -- C:\WINDOWS\System32\ntio412.sys   [35424]
O58 - SDL:2008/04/13 08:49:42 A . (...) -- C:\WINDOWS\System32\ntio804.sys   [34560]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (5) - 13s
O61 - LFC: 2016/03/23 21:32:20 A . (.Magnus Lundvall.) -- C:\Documents and Settings\Administrateur\Bureau\yawcam_install.exe   [4797556]
O61 - LFC: 2016/03/19 21:11:18 A . (.Embratoria.) -- C:\Documents and Settings\Administrateur\Bureau\EmbratoriaG2_Beta\EmbratoriaG2_Beta\EmbratoriaG2.exe   [6448640]
O61 - LFC: 2016/03/17 20:53:40 A . (..) -- C:\Documents and Settings\Administrateur\Bureau\EmbratoriaG2_Beta\EmbratoriaG2_Beta\bp\Interop.ShockwaveFlashObjects.dll   [23040]
O61 - LFC: 2016/03/17 11:09:34 A . (..) -- C:\Documents and Settings\Administrateur\Application Data\fRun\install.bat   [478]
O61 - LFC: 2016/03/24 11:53:21 A . (..) -- C:\Documents and Settings\Administrateur\.yawcam\motion\EventList.bin   [21172]

---\\ Associations Shell Spawning (8) - 0s
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll  =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\system32\wscript.exe  =>.Microsoft Corporation
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe  =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> <scrfile>[HKLM\..\open\Command] (...) -- "%1" /S

---\\ Menu de démarrage Internet (13) - 0s
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe   =>.Mozilla Corporation®
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe   =>.Google Inc®
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe   =>.Microsoft Corporation
O68 - StartMenuInternet: <Spark.exe> <>[HKLM\..\Shell\open\Command] (...) -- C:\Program Files\baidu\Baidu Browser\Spark.exe 
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe  =>.Mozilla Corporation
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe  =>.Google Inc.
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe  =>.Microsoft Corporation
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe  =>.Mozilla Corporation
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe  =>.Google Inc.
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe  =>.Microsoft Corporation
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe  =>.Mozilla Corporation
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe  =>.Google Inc.
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe  =>.Microsoft Corporation

---\\ Recherche d'infection sur les navigateurs (70) - 2s
O69 - SBI: SearchScopes [HKCU] {05CE69CA-A467-40B4-A6D0-D63850F144CC} - (Recherche sur Ebay) - http://search.ebay.fr/
O69 - SBI: SearchScopes [HKCU] {0CACCF86-4D37-4DBE-9AAF-51C817A8A58C} - (Recherche sur Myspace) - http://sads.myspace.com/
O69 - SBI: SearchScopes [HKCU] {129F152A-0117-474E-80ED-DA48936E3976} - (Recherche sur Fnac.com) - http://www3.fnac.com/
O69 - SBI: SearchScopes [HKCU] {48682094-7DFB-4581-9A68-A8414F1C4327} - (Recherche sur Linternaute) - http://recherche.linternaute.com/
O69 - SBI: SearchScopes [HKCU] {4FC1B895-E129-4345-B101-CF4EF5EF80C8} [DefaultScope] - (Recherche sur Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {5A171114-24D8-435B-8A2C-D28AC20D125C} - (Recherche sur Wikipedia) - http://fr.wikipedia.org/
O69 - SBI: SearchScopes [HKCU] {770A317A-D33D-41E4-8BFD-22CCD72426A0} - (Recherche sur Facebook) - http://www.facebook.com/
O69 - SBI: SearchScopes [HKCU] {7780F183-7385-4512-8AC8-F4E401767900} - (Recherche sur cnet.com) - http://cnet.search.com/
O69 - SBI: SearchScopes [HKCU] {79096E8E-F8B5-4F97-9EE8-7E59B5566BFF} - (Recherche sur AOL) - http://search.aol.com/
O69 - SBI: SearchScopes [HKCU] {91821537-42FB-4108-AF1C-851E2C002716} - (Recherche sur Yahoo!) - http://search.yahoo.fr/
O69 - SBI: SearchScopes [HKCU] {99155D35-BF19-45A0-A055-B51491CF7947} - (Recherche sur TousLesDrivers.com) - http://www.touslesdrivers.com/
O69 - SBI: SearchScopes [HKCU] {B7059C95-CACB-4228-AC0E-64094F26A974} - (Recherche sur MTV.com) - http://www.mtv.com/
O69 - SBI: SearchScopes [HKCU] {C275CF6F-22D6-4939-B6B4-91293CA904F9} - (Recherche sur Cdiscount) - http://www.cdiscount.com/
O69 - SBI: SearchScopes [HKCU] {FA570E6D-BDB5-46EA-9425-63B9B469D4B2} - (Recherche sur Microsoft) - http://search.microsoft.com/
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {05CE69CA-A467-40B4-A6D0-D63850F144CC} - (Recherche sur Ebay) - http://search.ebay.fr/
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {0CACCF86-4D37-4DBE-9AAF-51C817A8A58C} - (Recherche sur Myspace) - http://sads.myspace.com/
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {129F152A-0117-474E-80ED-DA48936E3976} - (Recherche sur Fnac.com) - http://www3.fnac.com/
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {48682094-7DFB-4581-9A68-A8414F1C4327} - (Recherche sur Linternaute) - http://recherche.linternaute.com/
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {4FC1B895-E129-4345-B101-CF4EF5EF80C8} [DefaultScope] - (Recherche sur Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {5A171114-24D8-435B-8A2C-D28AC20D125C} - (Recherche sur Wikipedia) - http://fr.wikipedia.org/
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {770A317A-D33D-41E4-8BFD-22CCD72426A0} - (Recherche sur Facebook) - http://www.facebook.com/
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {7780F183-7385-4512-8AC8-F4E401767900} - (Recherche sur cnet.com) - http://cnet.search.com/
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {79096E8E-F8B5-4F97-9EE8-7E59B5566BFF} - (Recherche sur AOL) - http://search.aol.com/
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {91821537-42FB-4108-AF1C-851E2C002716} - (Recherche sur Yahoo!) - http://search.yahoo.fr/
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {99155D35-BF19-45A0-A055-B51491CF7947} - (Recherche sur TousLesDrivers.com) - http://www.touslesdrivers.com/
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {B7059C95-CACB-4228-AC0E-64094F26A974} - (Recherche sur MTV.com) - http://www.mtv.com/
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {C275CF6F-22D6-4939-B6B4-91293CA904F9} - (Recherche sur Cdiscount) - http://www.cdiscount.com/
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {FA570E6D-BDB5-46EA-9425-63B9B469D4B2} - (Recherche sur Microsoft) - http://search.microsoft.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {05CE69CA-A467-40B4-A6D0-D63850F144CC} - (Recherche sur Ebay) - http://search.ebay.fr/
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {0CACCF86-4D37-4DBE-9AAF-51C817A8A58C} - (Recherche sur Myspace) - http://sads.myspace.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {129F152A-0117-474E-80ED-DA48936E3976} - (Recherche sur Fnac.com) - http://www3.fnac.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {48682094-7DFB-4581-9A68-A8414F1C4327} - (Recherche sur Linternaute) - http://recherche.linternaute.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {4FC1B895-E129-4345-B101-CF4EF5EF80C8} [DefaultScope] - (Recherche sur Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {5A171114-24D8-435B-8A2C-D28AC20D125C} - (Recherche sur Wikipedia) - http://fr.wikipedia.org/
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {770A317A-D33D-41E4-8BFD-22CCD72426A0} - (Recherche sur Facebook) - http://www.facebook.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {7780F183-7385-4512-8AC8-F4E401767900} - (Recherche sur cnet.com) - http://cnet.search.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {79096E8E-F8B5-4F97-9EE8-7E59B5566BFF} - (Recherche sur AOL) - http://search.aol.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {91821537-42FB-4108-AF1C-851E2C002716} - (Recherche sur Yahoo!) - http://search.yahoo.fr/
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {99155D35-BF19-45A0-A055-B51491CF7947} - (Recherche sur TousLesDrivers.com) - http://www.touslesdrivers.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {B7059C95-CACB-4228-AC0E-64094F26A974} - (Recherche sur MTV.com) - http://www.mtv.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {C275CF6F-22D6-4939-B6B4-91293CA904F9} - (Recherche sur Cdiscount) - http://www.cdiscount.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {FA570E6D-BDB5-46EA-9425-63B9B469D4B2} - (Recherche sur Microsoft) - http://search.microsoft.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-19] {05CE69CA-A467-40B4-A6D0-D63850F144CC} - (Recherche sur Ebay) - http://search.ebay.fr/
O69 - SBI: SearchScopes [HKUS\S-1-5-19] {0CACCF86-4D37-4DBE-9AAF-51C817A8A58C} - (Recherche sur Myspace) - http://sads.myspace.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-19] {129F152A-0117-474E-80ED-DA48936E3976} - (Recherche sur Fnac.com) - http://www3.fnac.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-19] {48682094-7DFB-4581-9A68-A8414F1C4327} - (Recherche sur Linternaute) - http://recherche.linternaute.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-19] {4FC1B895-E129-4345-B101-CF4EF5EF80C8} [DefaultScope] - (Recherche sur Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-19] {5A171114-24D8-435B-8A2C-D28AC20D125C} - (Recherche sur Wikipedia) - http://fr.wikipedia.org/
O69 - SBI: SearchScopes [HKUS\S-1-5-19] {770A317A-D33D-41E4-8BFD-22CCD72426A0} - (Recherche sur Facebook) - http://www.facebook.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-19] {7780F183-7385-4512-8AC8-F4E401767900} - (Recherche sur cnet.com) - http://cnet.search.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-19] {79096E8E-F8B5-4F97-9EE8-7E59B5566BFF} - (Recherche sur AOL) - http://search.aol.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-19] {91821537-42FB-4108-AF1C-851E2C002716} - (Recherche sur Yahoo!) - http://search.yahoo.fr/
O69 - SBI: SearchScopes [HKUS\S-1-5-19] {99155D35-BF19-45A0-A055-B51491CF7947} - (Recherche sur TousLesDrivers.com) - http://www.touslesdrivers.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-19] {B7059C95-CACB-4228-AC0E-64094F26A974} - (Recherche sur MTV.com) - http://www.mtv.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-19] {C275CF6F-22D6-4939-B6B4-91293CA904F9} - (Recherche sur Cdiscount) - http://www.cdiscount.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-19] {FA570E6D-BDB5-46EA-9425-63B9B469D4B2} - (Recherche sur Microsoft) - http://search.microsoft.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-20] {05CE69CA-A467-40B4-A6D0-D63850F144CC} - (Recherche sur Ebay) - http://search.ebay.fr/
O69 - SBI: SearchScopes [HKUS\S-1-5-20] {0CACCF86-4D37-4DBE-9AAF-51C817A8A58C} - (Recherche sur Myspace) - http://sads.myspace.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-20] {129F152A-0117-474E-80ED-DA48936E3976} - (Recherche sur Fnac.com) - http://www3.fnac.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-20] {48682094-7DFB-4581-9A68-A8414F1C4327} - (Recherche sur Linternaute) - http://recherche.linternaute.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-20] {4FC1B895-E129-4345-B101-CF4EF5EF80C8} [DefaultScope] - (Recherche sur Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-20] {5A171114-24D8-435B-8A2C-D28AC20D125C} - (Recherche sur Wikipedia) - http://fr.wikipedia.org/
O69 - SBI: SearchScopes [HKUS\S-1-5-20] {770A317A-D33D-41E4-8BFD-22CCD72426A0} - (Recherche sur Facebook) - http://www.facebook.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-20] {7780F183-7385-4512-8AC8-F4E401767900} - (Recherche sur cnet.com) - http://cnet.search.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-20] {79096E8E-F8B5-4F97-9EE8-7E59B5566BFF} - (Recherche sur AOL) - http://search.aol.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-20] {91821537-42FB-4108-AF1C-851E2C002716} - (Recherche sur Yahoo!) - http://search.yahoo.fr/
O69 - SBI: SearchScopes [HKUS\S-1-5-20] {99155D35-BF19-45A0-A055-B51491CF7947} - (Recherche sur TousLesDrivers.com) - http://www.touslesdrivers.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-20] {B7059C95-CACB-4228-AC0E-64094F26A974} - (Recherche sur MTV.com) - http://www.mtv.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-20] {C275CF6F-22D6-4939-B6B4-91293CA904F9} - (Recherche sur Cdiscount) - http://www.cdiscount.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-20] {FA570E6D-BDB5-46EA-9425-63B9B469D4B2} - (Recherche sur Microsoft) - http://search.microsoft.com/

---\\ Enumère les services démarrés par Svchost (39) - 0s
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\WINDOWS\system32\appmgmts.dll   [176640]  =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\WINDOWS\system32\audiosrv.dll   [42496]  =>.Microsoft Corporation
O83 - Search Svchost Services: Browser (Browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\system32\browser.dll   [77824]  =>.Microsoft Corporation
O83 - Search Svchost Services: CryptSvc (CryptSvc) . (.Microsoft Corporation - Cryptographic Services.) -- C:\WINDOWS\system32\cryptsvc.dll   [62464]  =>.Microsoft Corporation
O83 - Search Svchost Services: DMServer (DMServer) . (.Microsoft Corp. - DLL Service gestionnaire de disque logique.) -- C:\WINDOWS\system32\dmserver.dll   [24576]  =>.Microsoft Corp.
O83 - Search Svchost Services: DHCP (DHCP) . (.Microsoft Corporation - Service client DHCP.) -- C:\WINDOWS\system32\dhcpcsvc.dll   [127488]  =>.Microsoft Corporation
O83 - Search Svchost Services: ERSvc (ERSvc) . (.Microsoft Corporation - Windows Error Reporting Service.) -- C:\WINDOWS\system32\ersvc.dll   [23040]  =>.Microsoft Corporation
O83 - Search Svchost Services: EventSystem (EventSystem) . (.Microsoft Corporation - .) -- C:\WINDOWS\system32\es.dll   [246272]  =>.Microsoft Corporation
O83 - Search Svchost Services: FastUserSwitchingCompatibility (FastUserSwitchingCompatibility) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll   [135680]  =>.Microsoft Corporation
O83 - Search Svchost Services: HidServ (HidServ) . (...) -- C:\WINDOWS\System32\hidserv.dll   [0]
O83 - Search Svchost Services: LanmanServer (LanmanServer) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll   [96768]  =>.Microsoft Corporation
O83 - Search Svchost Services: LanmanWorkstation (LanmanWorkstation) . (.Microsoft Corporation - Workstation Service DLL.) -- C:\WINDOWS\system32\wkssvc.dll   [132096]  =>.Microsoft Corporation
O83 - Search Svchost Services: Messenger (Messenger) . (.Microsoft Corporation - NT Messenger Service.) -- C:\WINDOWS\system32\msgsvc.dll   [33792]  =>.Microsoft Corporation
O83 - Search Svchost Services: Netman (Netman) . (.Microsoft Corporation - Gestionnaire de connexions réseau.) -- C:\WINDOWS\system32\netman.dll   [198144]  =>.Microsoft Corporation
O83 - Search Svchost Services: Nla (Nla) . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Micro.) -- C:\WINDOWS\system32\mswsock.dll   [247808]  =>.Microsoft Corporation
O83 - Search Svchost Services: Ntmssvc (Ntmssvc) . (.Microsoft Corporation - Gestionnaire de stockage amovible.) -- C:\WINDOWS\system32\ntmssvc.dll   [438272]  =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\system32\rasauto.dll   [88576]  =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\system32\rasmans.dll   [186368]  =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\system32\mprdim.dll   [53248]  =>.Microsoft Corporation
O83 - Search Svchost Services: Schedule (Schedule) . (.Microsoft Corporation - Moteur du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll   [194560]  =>.Microsoft Corporation
O83 - Search Svchost Services: Seclogon (Seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll   [18944]  =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\system32\sens.dll   [39424]  =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à.) -- C:\WINDOWS\system32\ipnathlp.dll   [332800]  =>.Microsoft Corporation
O83 - Search Svchost Services: SRService (SRService) . (.Microsoft Corporation - Service de restauration du système.) -- C:\WINDOWS\system32\srsvc.dll   [171520]  =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\WINDOWS\system32\tapisrv.dll   [249856]  =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll   [135680]  =>.Microsoft Corporation
O83 - Search Svchost Services: TrkWks (TrkWks) . (.Microsoft Corporation - Distributed Link Tracking Client.) -- C:\WINDOWS\system32\trkwks.dll   [90112]  =>.Microsoft Corporation
O83 - Search Svchost Services: W32Time (W32Time) . (.Microsoft Corporation - Service de temps Windows.) -- C:\WINDOWS\system32\w32time.dll   [178176]  =>.Microsoft Corporation
O83 - Search Svchost Services: WZCSVC (WZCSVC) . (.Microsoft Corporation - Service configuration automatique sans fil.) -- C:\WINDOWS\system32\wzcsvc.dll   [483840]  =>.Microsoft Corporation
O83 - Search Svchost Services: Wmi (Wmi) . (.Microsoft Corporation - API avancées Windows 32.) -- C:\WINDOWS\system32\advapi32.dll   [685568]  =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\wmisvc.dll   [145408]  =>.Microsoft Corporation
O83 - Search Svchost Services: wscsvc (wscsvc) . (.Microsoft Corporation - Windows Security Center Service.) -- C:\WINDOWS\system32\wscsvc.dll   [80896]  =>.Microsoft Corporation
O83 - Search Svchost Services: xmlprov (xmlprov) . (.Microsoft Corporation - Network Provisioning Service.) -- C:\WINDOWS\system32\xmlprov.dll   [129024]  =>.Microsoft Corporation
O83 - Search Svchost Services: napagent (napagent) . (.Microsoft Corporation - Exécution du service Agent de quarantaine.) -- C:\WINDOWS\system32\qagentrt.dll   [293376]  =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\WINDOWS\system32\kmsvc.dll   [61440]  =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\system32\qmgr.dll   [409088]  =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update AutoUpdate Service.) -- C:\WINDOWS\system32\wuauserv.dll   [6656]  =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll   [135680]  =>.Microsoft Corporation
O83 - Search Svchost Services: WmdmPmSN (WmdmPmSN) . (.Microsoft Corporation - Microsoft Media Device Service Provider.) -- C:\WINDOWS\system32\mspmsnsv.dll   [27136]  =>.Microsoft Corporation

---\\ Scan Additionnel (22) - 0s
HKLM\SYSTEM\CurrentControlSet\Services\ggbugreport  =>PUP.Optional.YesSearches
C:\Program Files\SearchesToYesbnd\bugreport.exe  =>PUP.Optional.YesSearches
HKLM\SYSTEM\CurrentControlSet\Services\Winsere  =>PUP.Optional.Salus
C:\Program Files\WinToFlash Suggestor\WinToFlashSuggestor.dll  =>PUP.Optional.WinToFlash
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FC36B0BD-27F0-4cdd-8AB1-50651EFC3EFD}  =>PUP.Optional.WinToFlash
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WinToFlash Suggestor  =>PUP.Optional.WinToFlash
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WinToFlash Suggestor  =>PUP.Optional.WinToFlash
HKLM\SOFTWARE\Systweak  =>.Superfluous.Systweak
HKLM\SOFTWARE\yessearchesSoftware  =>PUP.Optional.YesSearches
HKCU\SOFTWARE\ProductSetup  =>Adware.InstallCore
HKCU\SOFTWARE\systweak  =>.Superfluous.Systweak
HKCU\SOFTWARE\undefined  =>.Superfluous.Downloader
HKCU\SOFTWARE\WinToFlash Suggestor  =>PUP.Optional.WinToFlash
HKCU\SOFTWARE\AppDataLow\Software\WinToFlash Suggestor  =>PUP.Optional.WinToFlash
C:\Program Files\SearchesToYesbnd  =>PUP.Optional.YesSearches
C:\Program Files\WinToFlash Suggestor  =>PUP.Optional.WinToFlash
C:\Documents and Settings\All Users\Application Data\Babylon  =>PUP.Optional.Babylon
C:\Documents and Settings\Administrateur\Application Data\Babylon  =>PUP.Optional.Babylon
C:\Documents and Settings\Administrateur\Application Data\systweak  =>.Superfluous.Systweak
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Babylon  =>PUP.Optional.Babylon
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Systweak  =>.Superfluous.Systweak
C:\WINDOWS\Prefetch\WINTASKE.EXE-049AFBE1.pf  =>PUP.Optional.YesSearches

---\\ Récapitulatif des éléments trouvés sur votre station (7) - 0s
http://www.nicolascoolman.fr/?p=4664  =>PUP.Optional.YesSearches
http://www.nicolascoolman.fr/pup-salus/  =>PUP.Optional.Salus
http://www.nicolascoolman.fr/?p=1657  =>PUP.Optional.WinToFlash
http://www.nicolascoolman.fr/pup-systweak/  =>.Superfluous.Systweak
http://www.nicolascoolman.fr/?p=279  =>Adware.InstallCore
http://www.nicolascoolman.fr/?p=5145  =>.Superfluous.Downloader
http://www.nicolascoolman.fr/?p=170  =>PUP.Optional.Babylon

~ End of the scan, 17088 items in 00h03mn58s (841)(0)