~ ZHPDiag v2016.8.5.126 Par Nicolas Coolman (2016/08/05) ~ Démarré par Administrateur (Administrator) (2016/08/05 14:51:14) ~ Site: https://www.nicolascoolman.com ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Etat de la version: ~ Mode: Scanner ~ Rapport: C:\Documents and Settings\Administrateur\Bureau\ZHPDiag.txt ~ Rapport: C:\Documents and Settings\Administrateur\Application Data\ZHP\ZHPDiag.txt ~ UAC: Deactivate ~ Démarrage du système: Normal (Normal boot) Windows XP, 32-bit Service Pack 2, v.4478 (Build 3790) ---\\ Navigateurs Internet (2) - 0s MFIE: Mozilla Firefox 22.0 (x86 ru) MSIE: Internet Explorer v8.0.6001.18702 ---\\ Informations sur les produits Windows (3) - 0s Windows Automatic Updates : KO Windows Activation Technologies : KO Windows Genuine Advantage : KO ---\\ Surveillance de Logiciels (2) - 1s Adobe Flash Player 11 ActiveX & Plugin Adobe Reader 8 - Français ---\\ Informations sur le système (6) - 0s ~ Operating System: x86 Family 15 Model 6 Stepping 5, GenuineIntel ~ Operating System: 32-bit ~ Boot mode: Normal (Normal boot) Total RAM: 1048.016 MB (7% free) System Restore: Activé (Enable) System drive C: has 35 GB () free of 49 GB ---\\ Mode de connexion au système (3) - 0s ~ Computer Name: NINA-E6305151FA ~ User Name: Administrateur ~ Logged in as Administrator ---\\ Enumération des unités disques (4) - 0s ~ Drive C: has 35 GB free of 49 GB (System) ~ Drive D: has 64 GB free of 106 GB ~ Drive E: has 2 GB free of 36 GB ~ Drive G: has 2 GB free of 40 GB ---\\ Etat du Centre de Sécurité Windows (9) - 0s [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK ---\\ Recherche particulière de fichiers génériques (23) - 1s [MD5.CEEE59F1A92370D8DD335AD6250FE1B3] - 25/10/2001 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [1627648] =>.Microsoft Corporation [MD5.E4622DF0C355C550BA4D37F1E44F514E] - 25/10/2001 - (.Microsoft Corporation - Exécuter une DLL en tant qu'application.) -- C:\WINDOWS\System32\rundll32.exe [110592] =>.Microsoft Corporation [MD5.6CE32F7778061CCC5814D5E0F282D369] - 25/10/2001 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\WINDOWS\System32\wininet.dll [914944] =>.Microsoft Corporation [MD5.B75E75BC7CA506CDC43790EDB8119AB0] - 25/10/2001 - (.Microsoft Corporation - Application d'ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [582656] =>.Microsoft Corporation [MD5.984D892ABF0254174589003A1DEB2A5A] - 25/10/2001 - (.Microsoft Corporation - DNS DLL de l'API Client.) -- C:\WINDOWS\System32\dnsapi.dll [162304] =>.Microsoft Corporation [MD5.78859E016E13E68FA9258F563FDA4219] - 25/10/2001 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [150528] =>.Microsoft Corporation [MD5.FF953A8F08CA3F822127654375786BBE] - 25/10/2001 - (.Microsoft Corporation - IDE/ATAPI Port Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [96768] =>.Microsoft Corporation [MD5.E6D72780C957B69C48BFC66BC3ECDAD4] - 25/10/2001 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [65536] =>.Microsoft Corporation [MD5.825AA877A852ECC731FA0C39C8C37744] - 25/10/2001 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [52224] =>.Microsoft Corporation [MD5.7069604C3EB6E5DFCD0612343BE995AF] - 25/10/2001 - (.Microsoft Corporation - Pilote de cryptographie FIPS.) -- C:\WINDOWS\System32\drivers\Fips.sys [45568] =>.Microsoft Corporation [MD5.547DD3F5D80008124259893E265340B9] - 25/10/2001 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [57344] =>.Microsoft Corporation [MD5.44C132B35921B54B4A9AC64369D86D83] - 25/10/2001 - (.Microsoft Corporation - IMAPI Kernel Driver.) -- C:\WINDOWS\System32\drivers\Imapi.sys [43520] =>.Microsoft Corporation [MD5.890E7A14A63AEC2EA9257A79A88BE784] - 25/10/2001 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [119296] =>.Microsoft Corporation [MD5.1A9AEAC49683B32DF55B7FB1516F3028] - 25/10/2001 - (.Microsoft Corporation - IPSec Driver.) -- C:\WINDOWS\System32\drivers\IPSec.sys [82432] =>.Microsoft Corporation [MD5.E522D38FB367E9C10F03B2AB499D21FC] - 25/10/2001 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [438784] =>.Microsoft Corporation [MD5.5CD7CCA08498EC8753B22E92D367CA11] - 25/10/2001 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [180224] =>.Microsoft Corporation [MD5.482EA51AADB8763A0F67588C394EC693] - 25/10/2001 - (.Microsoft Corporation - NT File System Driver.) -- C:\WINDOWS\System32\drivers\ntfs.sys [589824] =>.Microsoft Corporation [MD5.BAC51B15614A91A00B842124BF0EBA00] - 25/10/2001 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [81920] =>.Microsoft Corporation [MD5.3633175613E052ECB41776DEE2777A89] - 25/10/2001 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [65536] =>.Microsoft Corporation [MD5.FF678596B761E1CCBA79F49981EF51BC] - 17/02/2007 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [200192] =>.Microsoft Corporation [MD5.A836CB8B3EFAFF107AC506428BFA6187] - 17/02/2007 - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) -- C:\WINDOWS\System32\drivers\redbook.sys [61952] =>.Microsoft Corporation [MD5.3A79E0BF1C622F798C6C9B00CB82463E] - 25/10/2001 - (.Microsoft Corporation - SMB Transport driver.) -- C:\WINDOWS\System32\drivers\smb.sys [59392] =>.Microsoft Corporation [MD5.988832BF24BE4488FF24D99842CDD86D] - 25/10/2001 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [155648] =>.Microsoft Corporation ---\\ Liste des services NT non Microsoft et non désactivés (7) - 1s O23 - Service: (Ati HotKey Poller) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\WINDOWS\system32\ati2evxx.exe =>.ATI Technologies Inc. O23 - Service: Capture Device Service (Capture Device Service) . (.InterVideo Inc. - Capture Device Service.) - C:\Program Files\Fichiers communs\InterVideo\DeviceService\DevSvc.exe =>.Intervideo, Inc.® O23 - Service: Renew Single Click (dowidoly) . (...) - C:\Program Files\Win32_ComputerSystemProduct-1136076659---\jnsi62.tmp O23 - Service: Reservation Plastic (rijufoze) . (...) - C:\Program Files\Win32_ComputerSystemProduct-1136076659---\hnsq64.tmp O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe =>.Skype Technologies O23 - Service: Ulead Burning Helper (UleadBurningHelper) . (.Ulead Systems, Inc. - ULCDRSvr.) - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe {40E49474947044E9BBAFB9526023A8B3} =>.Ulead Systems, Inc. O23 - Service: Optical Post (xedesicezbt) . (...) - C:\Program Files\Win32_ComputerSystemProduct-1136076659---\knsb53.tmpfs ---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (12) - 20s SR - Auto [06/12/2011] [ 643072] (Ati HotKey Poller) . (.ATI Technologies Inc..) - C:\WINDOWS\system32\ati2evxx.exe =>.ATI Technologies Inc. SR - Auto [06/03/2007] [ 198168] Capture Device Service (Capture Device Service) . (.InterVideo Inc..) - C:\Program Files\Fichiers communs\InterVideo\DeviceService\DevSvc.exe =>.Intervideo, Inc.® SS - Demand [01/01/2006] [ 291520] Coanertainchakuy Reports (Coanertainchakuy Reports) . (...) - C:\Program Files\Kinoingjsek\Coanertainchakuy\CnrRprtpt.exe SR - Auto [01/01/2006] [ 244224] Renew Single Click (dowidoly) . (...) - C:\Program Files\Win32_ComputerSystemProduct-1136076659---\jnsi62.tmp SS - Demand [17/11/2005] [ 1605724] Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) . (.MAGIX®.) - C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe SS - Demand [18/06/2013] [ 117144] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation® SR - Auto [01/01/2006] [ 138240] Reservation Plastic (rijufoze) . (...) - C:\Program Files\Win32_ComputerSystemProduct-1136076659---\hnsq64.tmp SS - Auto [25/07/2013] [ 162672] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe =>.Skype Technologies SR - Auto [03/03/2007] [ 67056] Ulead Burning Helper (UleadBurningHelper) . (.Ulead Systems, Inc..) - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe {40E49474947044E9BBAFB9526023A8B3} =>.Ulead Systems, Inc. SS - Demand [14/12/2006] [ 626688] UPnPService (UPnPService) . (.Magix AG.) - C:\Program Files\Fichiers communs\MAGIX Shared\UPnPService\UPnPService.exe =>.MAGIX AG SR - Auto [05/08/2016] [ 346624] Optical Post (xedesicezbt) . (...) - C:\Program Files\Win32_ComputerSystemProduct-1136076659---\knsb53.tmpfs ---\\ Processus lancés (12) - 6s [MD5.944E535926628FB2FA33435EB848F94E] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\ati2evxx.exe [643072] [PID.584] =>.ATI Technologies Inc. [MD5.944E535926628FB2FA33435EB848F94E] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\ati2evxx.exe [643072] [PID.856] =>.ATI Technologies Inc. [MD5.1778EBA872274C1226D869CD9486847E] - (.InterVideo Inc. - Capture Device Service.) -- C:\Program Files\Fichiers communs\InterVideo\DeviceService\DevSvc.exe [198168] [PID.1032] =>.Intervideo, Inc.® [MD5.AB798F6DF51BCCB31E1E42E5F77ACB4F] - (...) -- C:\Program Files\Win32_ComputerSystemProduct-1136076659---\jnsi62.tmp [244224] [PID.1088] [MD5.237AAA173D673B77740BE6AE3359AE47] - (...) -- C:\Program Files\Win32_ComputerSystemProduct-1136076659---\hnsq64.tmp [138240] [PID.1136] [MD5.4BD2C322118A2470B450492A0C3302F9] - (.Ulead Systems, Inc. - ULCDRSvr.) -- C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe [67056] [PID.1196] {40E49474947044E9BBAFB9526023A8B3} =>.Ulead Systems, Inc. [MD5.5C5641AD39C54E807C8AE79D6903110C] - (...) -- C:\Program Files\Win32_ComputerSystemProduct-1136076659---\knsb53.tmpfs [346624] [PID.1220] [MD5.80FD4D46B0E9B620CF757A9A5C789329] - (.Realtek Semiconductor Corp. - Realtek Sound Manager.) -- C:\WINDOWS\SOUNDMAN.EXE [577536] [PID.1952] =>.Realtek Semiconductor Corp. [MD5.F7128E5772F9312F0D111A5FA5D41773] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe [20684656] [PID.292] =>.Skype Technologies S.A. [MD5.C8D28F8B498CADBB9445AC4545BD41B7] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [920472] [PID.3340] =>.Mozilla Corporation® [MD5.D5A4F50B3D810F2446B3F3F611711D4E] - (...) -- D:\montaje\Downloads\AVS Video Editor 7.2.1\AVS Video Editor 7.2.1.exe [5318224] [PID.3136] [MD5.DCF2CD7A514620567068A5F9B8E5E263] - (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\Administrateur\Mes documents\Загрузки\ZHPDiag3.exe [2281984] [PID.3640] =>.Nicolas Coolman ---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (15) - 1s P2 - EXT FILE: (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\cf3yq6ih.default\searchplugins\yqs-barff-yandex.xml P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\google.xml P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\mailru.xml P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\ozonru.xml P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\priceru.xml P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\wikipedia-ru.xml P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\yandex-slovari.xml P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\yandex.xml P2 - EXT: (.Mozilla - Default.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} =>.Mozilla P2 - EXT: (.Яндекс - Визуальные закладки.) -- C:\Program Files\Mozilla Firefox\distribution\extensions\vb@yandex.ru P2 - EXT: (.Yandex - Yandex Elements.) -- C:\Program Files\Mozilla Firefox\distribution\extensions\yasearch@yandex.ru P2 - EXT: (.Яндекс - Визуальные закладки.) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\cf3yq6ih.default\extensions\vb@yandex.ru P2 - EXT: (.Yandex - Yandex Elements.) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\cf3yq6ih.default\extensions\yasearch@yandex.ru P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll =>.Adobe Systems Incorporated P2 - FPN: [HKLM] [@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf] - (...) -- C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll ---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (14) - 1s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 0 ---\\ Internet Explorer,Proxy Management (4) - 0s R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ---\\ Etude du fichier hosts (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (32) ---\\ Browser Helper Object de navigateur (BHO) (3) - 0s O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll =>.Adobe Systems, Incorporated® O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\ssv.dll =>.Oracle Corporation O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll =>.Oracle Corporation ---\\ Applications lancées au démarrage du système (13) - 20s O4 - HKLM\..\Run: [SoundMan] . (.Realtek Semiconductor Corp. - Realtek Sound Manager.) -- C:\WINDOWS\SOUNDMAN.EXE =>.Realtek Semiconductor Corp. O4 - HKLM\..\Run: [TrayServer] . (.Magix - Trayserver.) -- C:\Program Files\MAGIX\Video_deluxe_2008_PLUS\TrayServer.exe =>.Magix O4 - HKLM\..\Run: [KernelFaultCheck] C:\WINDOWS\system32\dumprep 0 -k (.not file.) O4 - HKLM\..\Run: [UVS11 Preload] . (.InterVideo Digital Technology Corporation - Ulead VideoStudio.) -- C:\Program Files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A. O4 - HKCU\..\Run: [LaunchList] . (.Pinnacle Systems - Launchlist2 application.) -- C:\Program Files\Pinnacle\Studio 11\LaunchList2.exe =>.Pinnacle Systems O4 - HKCU\..\Run: [Check For Controller Updates] . (.Smart Application Controller - Smart Application Controller.) -- C:\Program Files\Smart Application Controller\smappscontroller.exe O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_3] rundll32 advpack.dll O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_3] rundll32 advpack.dll O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll O4 - HKUS\S-1-5-21-548762761-221947276-832756423-500\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A. O4 - HKUS\S-1-5-21-548762761-221947276-832756423-500\..\Run: [LaunchList] . (.Pinnacle Systems - Launchlist2 application.) -- C:\Program Files\Pinnacle\Studio 11\LaunchList2.exe =>.Pinnacle Systems O4 - HKUS\S-1-5-21-548762761-221947276-832756423-500\..\Run: [Check For Controller Updates] . (.Smart Application Controller - Smart Application Controller.) -- C:\Program Files\Smart Application Controller\smappscontroller.exe ---\\ Raccourcis Global Startup (31) - 4s O4 - GS\Desktop [Administrateur]: Aurora Media Workshop.lnk . (.Copyright (C) 2004 - Aurora Media Workshop MFC Application.) C:\Program Files\Aurora Media Workshop\Aurora Media Workshop.exe O4 - GS\Desktop [Administrateur]: SureThing Express Labeler.lnk . (.MicroVision Development, Inc. - SureThing Express Labeler.) C:\Program Files\SureThing Express Labeler\stax.exe =>.MicroVision Development Inc.® O4 - GS\Desktop [Administrateur]: Video Convert Master.lnk . (...) C:\Program Files\Video Convert Master\videoapp.exe O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Documents and Settings\Administrateur\Application Data\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [Administrateur]: GOM Player.lnk . (.Gretech Corp. - GOM Player.) C:\Program Files\GRETECH\GomPlayer\GOM.exe =>.Gretech Corp. O4 - GS\Quicklaunch [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\Quicklaunch [Administrateur]: Pinnacle Studio 12.lnk . (.Pinnacle Systems - Studio program file.) C:\Program Files\Pinnacle\Studio 12\Programs\Studio.exe =>.Pinnacle Systems, Inc.® O4 - GS\Desktop [SUPPORT_388945a0]: Aurora Media Workshop.lnk . (.Copyright (C) 2004 - Aurora Media Workshop MFC Application.) C:\Program Files\Aurora Media Workshop\Aurora Media Workshop.exe O4 - GS\Desktop [SUPPORT_388945a0]: SureThing Express Labeler.lnk . (.MicroVision Development, Inc. - SureThing Express Labeler.) C:\Program Files\SureThing Express Labeler\stax.exe =>.MicroVision Development Inc.® O4 - GS\Desktop [SUPPORT_388945a0]: Video Convert Master.lnk . (...) C:\Program Files\Video Convert Master\videoapp.exe O4 - GS\Desktop [SUPPORT_388945a0]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Documents and Settings\Administrateur\Application Data\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [SUPPORT_388945a0]: GOM Player.lnk . (.Gretech Corp. - GOM Player.) C:\Program Files\GRETECH\GomPlayer\GOM.exe =>.Gretech Corp. O4 - GS\Quicklaunch [SUPPORT_388945a0]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\Quicklaunch [SUPPORT_388945a0]: Pinnacle Studio 12.lnk . (.Pinnacle Systems - Studio program file.) C:\Program Files\Pinnacle\Studio 12\Programs\Studio.exe =>.Pinnacle Systems, Inc.® O4 - GS\CommonDesktop [Public]: Adobe Reader 8.lnk . (.Adobe Systems Incorporated - Adobe Reader 8.0.) C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe =>.Adobe Systems Incorporated O4 - GS\CommonDesktop [Public]: Breeze.lnk . (...) C:\WINDOWS\Installer\{90F73A28-3FC9-448D-974F-D1E6A7732168}\_4ae13d6c.exe O4 - GS\CommonDesktop [Public]: Download AVS Video Edit...lnk . (...) D:\montaje\Downloads\AVS Video Editor 7.2.1\AVS Video Editor 7.2.1.exe O4 - GS\CommonDesktop [Public]: GOM Player.lnk . (.Gretech Corp. - GOM Player.) C:\Program Files\GRETECH\GomPlayer\GOM.exe =>.Gretech Corp. O4 - GS\CommonDesktop [Public]: MAGIX Goya burnR.lnk . (.MAGIX AG - MAGIX Goya burnR.) C:\Program Files\MAGIX\Goya_burnR\Goya.exe =>.MAGIX AG O4 - GS\CommonDesktop [Public]: MAGIX Music Manager 2007.lnk . (.MAGIX - MAGIX MP3 Maker 12.) C:\Program Files\MAGIX\Music_Manager_2007\MP3Maker.exe =>.Magix O4 - GS\CommonDesktop [Public]: MAGIX Photo Manager 2007.lnk . (.MAGIX - MAGIX Digital Foto Maker 2007.) C:\Program Files\MAGIX\Photo_Manager_2007\FotoMaker.exe =>.Magix O4 - GS\CommonDesktop [Public]: MAGIX TV & Media Center.lnk . (.MAGIX AG - MAGIX Video deluxe 2007/2008 PLUS.) C:\Program Files\MAGIX\Video_deluxe_2008_PLUS\Videodeluxe.exe =>.MAGIX AG O4 - GS\CommonDesktop [Public]: MAGIX Video deluxe 2008 PLUS.lnk . (.MAGIX AG - MAGIX Video deluxe 2007/2008 PLUS.) C:\Program Files\MAGIX\Video_deluxe_2008_PLUS\Videodeluxe.exe =>.MAGIX AG O4 - GS\CommonDesktop [Public]: MAGIX Xtreme Photo Designer 6.lnk . (...) C:\Program Files\MAGIX\Xtreme_Foto_Designer_6\XPD.exe O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\CommonDesktop [Public]: Pinnacle Studio 12.lnk . (.Pinnacle Systems - Studio program file.) C:\Program Files\Pinnacle\Studio 12\Programs\Studio.exe =>.Pinnacle Systems, Inc.® O4 - GS\CommonDesktop [Public]: Skype.lnk . (...) C:\WINDOWS\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe O4 - GS\CommonDesktop [Public]: Studio.lnk . (.Pinnacle Systems - Studio program file.) C:\Program Files\Pinnacle\Studio 11\programs\Studio.exe =>.Pinnacle Systems O4 - GS\CommonDesktop [Public]: Ulead VideoStudio 11.lnk . (.InterVideo Digital Technology Corporation - Ulead VideoStudio.) C:\Program Files\Ulead Systems\Ulead VideoStudio 11\vstudio.exe O4 - GS\CommonDesktop [Public]: Wondershare DVD Slideshow Builder.lnk . (.Wondershare software - .) C:\Program Files\Wondershare\DVD Slideshow Builder\DSB.exe =>.Wondershare Software O4 - GS\CommonDesktop [Public]: Wondershare Photo Story Platinum.lnk . (...) C:\Program Files\Wondershare\Photo Story Platinum\PhotoStory.exe ---\\ Modification Domaine/Adresses DNS (2) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.8.1 192.168.8.1 O17 - HKLM\System\CCS\Services\Tcpip\..\{F56FDE0F-DFFE-4238-AEDC-539211D8A5D8}: DhcpNameServer = 192.168.8.1 192.168.8.1 ---\\ Protocole additionnel (24) - 1s O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll =>.Microsoft Corporation O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll =>.Microsoft Corporation O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll =>.Microsoft Corporation O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll =>.Microsoft Corporation O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API.) -- C:\WINDOWS\system32\inetcomm.dll =>.Microsoft Corporation O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll =>.Microsoft Corporation O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll =>.Microsoft Corporation O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\Program Files\Fichiers communs\Skype\Skype4COM.dll =>.Skype Technologies O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll =>.Microsoft Corporation O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll =>.Microsoft Corporation O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll =>.Microsoft Corporation® O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll =>.Microsoft Corporation® O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll =>.Microsoft Corporation® O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll =>.Microsoft Corporation ---\\ Logiciels installés (46) - 24s O42 - Logiciel: Adobe Flash Player 11 ActiveX & Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX =>.Adobe Systems Incorporated O42 - Logiciel: Adobe Reader 8 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A80000000002} =>.Adobe Systems Incorporated O42 - Logiciel: Aspi setup - (.Aurora Media software, Inc..) [HKLM] -- Aspi setup_is1 O42 - Logiciel: Aurora Media Workshop 3.4.8 - (.Aurora software, Inc..) [HKLM] -- Aurora Media Workshop_is1 O42 - Logiciel: Breeze - (.Discovery Scientific.) [HKLM] -- {90F73A28-3FC9-448D-974F-D1E6A7732168} O42 - Logiciel: ContentPush - (.ContentPush.) [HKLM] -- ContentPush O42 - Logiciel: Firebird SQL Server - MAGIX Edition - (.MAGIX AG.) [HKLM] -- Firebird SQL Server F =>.MAGIX AG O42 - Logiciel: GOM Player - (.Gretech Crop..) [HKLM] -- GOM Player O42 - Logiciel: Halite version 0.4 - (...) [HKLM] -- {90F273D6-E1F7-44EE-94D3-0A7651BBEF6C}_is1 O42 - Logiciel: InterVideo DeviceService - (.InterVideo.) [HKLM] -- {521AAD14-5030-44BB-8B0E-5CE65FCE57E0} =>.InterVideo O42 - Logiciel: Java 7 Update 25 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217025FF} =>.Oracle O42 - Logiciel: Lagarith Lossless Codec (1.3.27) - (...) [HKLM] -- {F59AC46C-10C3-4023-882C-4212A92283B3}_is1 O42 - Logiciel: MAGIX Music Manager 2007 8.1.1.102 (F) - (.MAGIX AG.) [HKLM] -- MAGIX Music Manager 2007 F =>.MAGIX AG O42 - Logiciel: MAGIX Photo Manager 2007 4.2.0.85 (F) - (.MAGIX AG.) [HKLM] -- MAGIX Photo Manager 2007 F =>.MAGIX AG O42 - Logiciel: MAGIX Video deluxe 2008 PLUS 7.0.2.3 (F) - (.MAGIX AG.) [HKLM] -- MAGIX Video deluxe 2008 PLUS F =>.MAGIX AG O42 - Logiciel: MAGIX Xtreme Photo Designer 6 6.0.20.0 (F) - (.MAGIX AG.) [HKLM] -- MAGIX Xtreme Photo Designer 6 F =>.MAGIX AG O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} =>.Microsoft Corporation O42 - Logiciel: Microsoft XML Parser - (.Microsoft Corporation.) [HKLM] -- {C7340571-7773-4A8C-9EBC-4E4243B38C76} =>.Microsoft Corporation O42 - Logiciel: Mozilla Firefox 22.0 (x86 ru) - (.Mozilla.) [HKLM] -- Mozilla Firefox 22.0 (x86 ru) =>.Mozilla O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService =>.Mozilla O42 - Logiciel: Pilote vidéo Pinnacle - (.Pinnacle Systems.) [HKLM] -- {5EB90C06-964F-4195-B83E-BD7E55C88415} =>.Pinnacle Systems O42 - Logiciel: Pinnacle HFX Volume 3 - (...) [HKLM] -- Pinnacle HFX Volume 3 O42 - Logiciel: Pinnacle Studio 12 - (.Pinnacle Systems.) [HKLM] -- {D041EB9E-890A-4098-8F94-51DA194AC72A} =>.Pinnacle Systems O42 - Logiciel: PowerDirector - (...) [HKLM] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1} O42 - Logiciel: Realtek AC'97 Audio - (...) [HKLM] -- {FB08F381-6533-4108-B7DD-039E11FBC27E} O42 - Logiciel: SAM CoDeC Pack - (.www.SamLab.ws.) [HKLM] -- SAM CoDeC Pack O42 - Logiciel: SiS 900 PCI Fast Ethernet Adapter Driver - (...) [HKLM] -- SiSLan O42 - Logiciel: Skype™ 6.7 - (.Skype Technologies S.A..) [HKLM] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D} =>.Skype Technologies S.A. O42 - Logiciel: Smart Application Controller - (.Smart Application Controller.) [HKLM] -- {A6AE177E-D46B-4463-AA69-B9F818E0DC4A}_is1 O42 - Logiciel: Studio 11 - (.Pinnacle Systems.) [HKLM] -- {2F952048-3220-4AC7-A206-D01EFC774BB2} =>.Pinnacle Systems O42 - Logiciel: SureThing Express Labeler - (.MicroVision Development, Inc..) [HKLM] -- stax-Pinnacle_is1 =>.MicroVision Development, Inc. O42 - Logiciel: trotux - Uninstall - (...) [HKLM] -- {5BDF3828-083B-4D91-A3F1-B8212A1EECAE} =>.Superfluous.Trotux O42 - Logiciel: Ulead VideoStudio 11 - (.InterVideo Digital Technology Corporation.) [HKLM] -- InstallShield_{F99F9E24-EE2F-47FD-AEB0-FDB82859B5C9} O42 - Logiciel: Unlocker 1.8.7 - (.Cedrick Collomb.) [HKLM] -- Unlocker =>.Cedrick Collomb O42 - Logiciel: Ut Video Codec Suite - (.UMEZAWA Takeshi.) [HKLM] -- utvideo_is1 =>.UMEZAWA Takeshi O42 - Logiciel: Video Convert Master 8.0.10.26 - (...) [HKLM] -- Video Convert Master_is1 O42 - Logiciel: VideoStudio - (.InterVideo Digital Technology Corporation.) [HKLM] -- {F99F9E24-EE2F-47FD-AEB0-FDB82859B5C9} O42 - Logiciel: Weather Chickn - (...) [HKLM] -- WeatherChickn =>.Superfluous.WeatherChickn O42 - Logiciel: Windows Trust Core Codecs - (...) [HKLM] -- WTCC O42 - Logiciel: Windows Trust Installer - (...) [HKLM] -- WTIS O42 - Logiciel: WinRAR archiver - (.win.rar GmbH.) [HKLM] -- WinRAR archiver =>.win.rar GmbH O42 - Logiciel: Wondershare DVD Slideshow Builder 4.4.0 Trial Version - (.Wondershare Software.) [HKLM] -- Wondershare DVD Slideshow Builder_is1 =>.Wondershare Software O42 - Logiciel: Wondershare Photo Story Platinum trial version 3.0.0 - (.Wondershare Software Co.,Ltd..) [HKLM] -- Wondershare Photo Story Platinum_is1 =>.Wondershare Software Co.,Ltd. O42 - Logiciel: x264vfw - H.264/MPEG-4 AVC codec (remove only) - (...) [HKLM] -- x264vfw O42 - Logiciel: Xvid MPEG-4 Video Codec - (...) [HKLM] -- Xvid_is1 O42 - Logiciel: Yahoo! Desktop Login - (.Pinnacle Systems.) [HKLM] -- {F9AEEC34-CF00-4CBD-9E36-DF9DC4002685} =>.Pinnacle Systems ---\\ HKCU & HKLM Software Keys (106) - 24s HKLM\SOFTWARE\Acorn HKLM\SOFTWARE\ADFS HKLM\SOFTWARE\Adobe HKLM\SOFTWARE\ATI Technologies HKLM\SOFTWARE\C07ft5Y HKLM\SOFTWARE\CC87B42D76433F10881369052CFC8547 =>PUP.Optional.CrossRider HKLM\SOFTWARE\DAMN HKLM\SOFTWARE\DIOC HKLM\SOFTWARE\Discovery Scientific HKLM\SOFTWARE\DivX HKLM\SOFTWARE\DVC150 HKLM\SOFTWARE\FAST Multimedia HKLM\SOFTWARE\Foxit Software HKLM\SOFTWARE\Gemplus HKLM\SOFTWARE\GNU HKLM\SOFTWARE\GRETECH HKLM\SOFTWARE\IM Providers HKLM\SOFTWARE\InstalledOptions HKLM\SOFTWARE\InterVideo HKLM\SOFTWARE\JavaSoft HKLM\SOFTWARE\jhtrsq HKLM\SOFTWARE\Macromedia HKLM\SOFTWARE\Magix HKLM\SOFTWARE\MicroVision HKLM\SOFTWARE\MovieBox USB HKLM\SOFTWARE\Mozilla HKLM\SOFTWARE\mozilla.org HKLM\SOFTWARE\MozillaPlugins HKLM\SOFTWARE\Notepad++ HKLM\SOFTWARE\ODBC HKLM\SOFTWARE\Paint.NET HKLM\SOFTWARE\Pegasus Imaging HKLM\SOFTWARE\PegasusImaging HKLM\SOFTWARE\Pinnacle Systems HKLM\SOFTWARE\PoINT HKLM\SOFTWARE\Program Groups HKLM\SOFTWARE\RealNetworks HKLM\SOFTWARE\Realtek HKLM\SOFTWARE\RegisteredApplications HKLM\SOFTWARE\S3R521 HKLM\SOFTWARE\Schlumberger HKLM\SOFTWARE\Secure =>.Superfluous.SecurePCCleaner HKLM\SOFTWARE\Skype HKLM\SOFTWARE\trotuxSoftware =>.Superfluous.Trotux HKLM\SOFTWARE\Ulead Systems HKLM\SOFTWARE\Windows Trust HKLM\SOFTWARE\WinRAR HKLM\SOFTWARE\WonderShare HKLM\SOFTWARE\Wow6432Node HKCU\SOFTWARE\Aasppapmmxkleh HKCU\SOFTWARE\AC3Filter HKCU\SOFTWARE\Adobe HKCU\SOFTWARE\ATI HKCU\SOFTWARE\CC87B42D76433F10881369052CFC8547 =>PUP.Optional.CrossRider HKCU\SOFTWARE\Cineform HKCU\SOFTWARE\DAMN HKCU\SOFTWARE\Discovery Scientific HKCU\SOFTWARE\DivXNetworks HKCU\SOFTWARE\Downloader HKCU\SOFTWARE\drpsu HKCU\SOFTWARE\Elecard HKCU\SOFTWARE\Foxit Software HKCU\SOFTWARE\Gabest HKCU\SOFTWARE\GNU HKCU\SOFTWARE\GRETECH HKCU\SOFTWARE\GSpot Appliance Corp HKCU\SOFTWARE\HashTab HKCU\SOFTWARE\iColorFolder HKCU\SOFTWARE\IM HKCU\SOFTWARE\IM Providers HKCU\SOFTWARE\Intel HKCU\SOFTWARE\KasperskyLab HKCU\SOFTWARE\Lagarith HKCU\SOFTWARE\Ligos HKCU\SOFTWARE\LiveUpdate HKCU\SOFTWARE\Macromedia HKCU\SOFTWARE\Magix HKCU\SOFTWARE\MAGIX AG HKCU\SOFTWARE\MainConcept HKCU\SOFTWARE\MediaInfo HKCU\SOFTWARE\MicroVision HKCU\SOFTWARE\MONOGRAM HKCU\SOFTWARE\Mozilla HKCU\SOFTWARE\MPC-BE HKCU\SOFTWARE\Netscape HKCU\SOFTWARE\p-nand-q.com HKCU\SOFTWARE\Paint.NET HKCU\SOFTWARE\Pinnacle Systems HKCU\SOFTWARE\Rapid Environment Editor HKCU\SOFTWARE\RealNetworks HKCU\SOFTWARE\Revenger inc. HKCU\SOFTWARE\SamLab.ws HKCU\SOFTWARE\Skype HKCU\SOFTWARE\SoftPerfect HKCU\SOFTWARE\Sysinternals HKCU\SOFTWARE\techPowerUp HKCU\SOFTWARE\Ulead HKCU\SOFTWARE\Ulead Systems HKCU\SOFTWARE\Ut Video Codec Suite HKCU\SOFTWARE\VOB HKCU\SOFTWARE\WinRAR HKCU\SOFTWARE\WinRAR SFX HKCU\SOFTWARE\WonderShare HKCU\SOFTWARE\Yahoo =>.Yahoo! HKCU\SOFTWARE\Yandex HKCU\SOFTWARE\ZebHelpProcess Helper ---\\ Contenu des dossiers Programmes (127) - 64s O43 - CFD: 01/01/2006 - [] D -- C:\Program Files\Adobe O43 - CFD: 29/07/2016 - [] D -- C:\Program Files\Aurora Media Workshop O43 - CFD: 12/07/2016 - [0] D -- C:\Program Files\ComPlus Applications O43 - CFD: 01/01/2006 - [0] D -- C:\Program Files\ContentPush O43 - CFD: 29/07/2016 - [] D -- C:\Program Files\CyberLink O43 - CFD: 29/07/2016 - [] D -- C:\Program Files\Discovery Scientific O43 - CFD: 29/07/2016 - [] D -- C:\Program Files\Fichiers communs O43 - CFD: 12/07/2016 - [0] D -- C:\Program Files\Foxit Software O43 - CFD: 13/07/2016 - [] D -- C:\Program Files\GRETECH O43 - CFD: 29/07/2016 - [] HD -- C:\Program Files\InstallShield Installation Information O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\Internet Explorer O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\Java O43 - CFD: 01/01/2006 - [] D -- C:\Program Files\Kinoingjsek O43 - CFD: 01/01/2006 - [] D -- C:\Program Files\MAGIX O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\Microsoft Silverlight =>.Microsoft Corporation® O43 - CFD: 05/08/2016 - [] D -- C:\Program Files\Mozilla Firefox =>.Mozilla Corporation® O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\Mozilla Maintenance Service =>.Mozilla Corporation® O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\Notepad++ O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\Outlook Express O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\Paint.NET O43 - CFD: 13/07/2016 - [] D -- C:\Program Files\Pinnacle O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\SAM CoDeC Pack O43 - CFD: 12/07/2016 - [] RD -- C:\Program Files\Skype O43 - CFD: 01/01/2006 - [] D -- C:\Program Files\Smart Application Controller O43 - CFD: 13/07/2016 - [] D -- C:\Program Files\SureThing Express Labeler =>.MicroVision Development Inc.® O43 - CFD: 29/07/2016 - [] D -- C:\Program Files\Ulead Systems O43 - CFD: 12/07/2016 - [0] HD -- C:\Program Files\Uninstall Information O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\Unlocker O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\utvideo O43 - CFD: 29/07/2016 - [] D -- C:\Program Files\Video Convert Master O43 - CFD: 01/01/2006 - [0] D -- C:\Program Files\WeatherChickn =>.Superfluous.WeatherChickn O43 - CFD: 01/01/2006 - [] D -- C:\Program Files\Win32_ComputerSystemProduct-1136076659--- O43 - CFD: 29/07/2016 - [] D -- C:\Program Files\Windows Media Components O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\Windows Media Connect 2 O43 - CFD: 01/01/2006 - [] D -- C:\Program Files\Windows Media Player O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\Windows Trust O43 - CFD: 01/01/2006 - [] AD -- C:\Program Files\WinRAR O43 - CFD: 29/07/2016 - [] D -- C:\Program Files\Wondershare O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\WTInstaller O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\x264vfw O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\Xvid O43 - CFD: 12/07/2016 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Accessoires O43 - CFD: 29/07/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Aspi setup O43 - CFD: 29/07/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Aurora Media Workshop O43 - CFD: 29/07/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Breeze O43 - CFD: 01/01/2006 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage O43 - CFD: 13/07/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\GOM Player O43 - CFD: 01/01/2006 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\MAGIX O43 - CFD: 12/07/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft Silverlight O43 - CFD: 12/07/2016 - [] RD -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Outils d'administration O43 - CFD: 01/01/2006 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Pinnacle O43 - CFD: 13/07/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Pinnacle Hollywood FX 6.0 for Studio 11 O43 - CFD: 13/07/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Pinnacle Studio 12 O43 - CFD: 12/07/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\SAM CoDeC Pack O43 - CFD: 12/07/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Skype O43 - CFD: 01/01/2006 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Smart Application Controller O43 - CFD: 13/07/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Studio 11 O43 - CFD: 13/07/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\SureThing Express Labeler O43 - CFD: 29/07/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Ulead VideoStudio 11 O43 - CFD: 29/07/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Video Convert Master O43 - CFD: 12/07/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Windows Trust O43 - CFD: 13/07/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WinRAR O43 - CFD: 29/07/2016 - [] D -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Wondershare O43 - CFD: 13/07/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Adobe O43 - CFD: 29/07/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\InterVideo O43 - CFD: 01/01/2006 - [] D -- C:\Documents and Settings\All Users\Application Data\MAGIX O43 - CFD: 12/07/2016 - [] SD -- C:\Documents and Settings\All Users\Application Data\Microsoft O43 - CFD: 12/07/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Mozilla O43 - CFD: 01/01/2006 - [] D -- C:\Documents and Settings\All Users\Application Data\My Web Shield =>PUP.Optional.WebShield O43 - CFD: 12/07/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Pinnacle O43 - CFD: 12/07/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Pinnacle Studio O43 - CFD: 13/07/2016 - [0] D -- C:\Documents and Settings\All Users\Application Data\Pinnacle Studio Plus O43 - CFD: 01/01/2006 - [] D -- C:\Documents and Settings\All Users\Application Data\Pinnacle Studio Ultimate O43 - CFD: 12/07/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Skype O43 - CFD: 13/07/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Studio 12 O43 - CFD: 29/07/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Ulead Systems O43 - CFD: 13/07/2016 - [] D -- C:\Program Files\Fichiers communs\Adobe O43 - CFD: 29/07/2016 - [] D -- C:\Program Files\Fichiers communs\InstallShield O43 - CFD: 29/07/2016 - [] D -- C:\Program Files\Fichiers communs\InterVideo O43 - CFD: 01/01/2006 - [] D -- C:\Program Files\Fichiers communs\MAGIX Shared O43 - CFD: 29/07/2016 - [] D -- C:\Program Files\Fichiers communs\Microsoft Shared O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\Fichiers communs\ODBC O43 - CFD: 01/01/2006 - [] D -- C:\Program Files\Fichiers communs\Pinnacle O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\Fichiers communs\Services O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\Fichiers communs\Skype O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\Fichiers communs\SpeechEngines O43 - CFD: 13/07/2016 - [] D -- C:\Program Files\Fichiers communs\SureThing Shared O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\Fichiers communs\System O43 - CFD: 29/07/2016 - [] D -- C:\Program Files\Fichiers communs\Ulead Systems O43 - CFD: 01/01/2006 - [] D -- C:\Program Files\Fichiers communs\Yahoo! O43 - CFD: 01/01/2006 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Adobe O43 - CFD: 01/01/2006 - [] D -- C:\Documents and Settings\Administrateur\Application Data\ContentPush O43 - CFD: 12/07/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\DivX O43 - CFD: 12/07/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Foxit Software O43 - CFD: 13/07/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\GRETECH O43 - CFD: 05/08/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Halite O43 - CFD: 12/07/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Identities O43 - CFD: 13/07/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\InstallShield O43 - CFD: 01/01/2006 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Macromedia O43 - CFD: 01/01/2006 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Mael O43 - CFD: 01/01/2006 - [] D -- C:\Documents and Settings\Administrateur\Application Data\MAGIX O43 - CFD: 01/01/2006 - [] SD -- C:\Documents and Settings\Administrateur\Application Data\Microsoft O43 - CFD: 30/07/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Mozilla O43 - CFD: 12/07/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Notepad++ O43 - CFD: 01/01/2006 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Profiles O43 - CFD: 05/08/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Skype O43 - CFD: 01/01/2006 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Smart Application Controller O43 - CFD: 29/07/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Ulead Systems O43 - CFD: 29/07/2016 - [0] D -- C:\Documents and Settings\Administrateur\Application Data\Vso O43 - CFD: 01/01/2006 - [] D -- C:\Documents and Settings\Administrateur\Application Data\WinRAR O43 - CFD: 05/08/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\Yandex O43 - CFD: 05/08/2016 - [] D -- C:\Documents and Settings\Administrateur\Application Data\ZHP O43 - CFD: 13/07/2016 - [] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Adobe O43 - CFD: 30/07/2016 - [] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Chromium O43 - CFD: 01/01/2006 - [] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Downloaded Installations O43 - CFD: 01/01/2006 - [] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Gherpapyreitile O43 - CFD: 30/07/2016 - [] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google O43 - CFD: 12/07/2016 - [] SD -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Microsoft O43 - CFD: 13/07/2016 - [] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\MicroVision Applications O43 - CFD: 30/07/2016 - [] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla O43 - CFD: 29/07/2016 - [] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Paint.NET O43 - CFD: 30/07/2016 - [] D -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Xpom O43 - CFD: 12/07/2016 - [] RD -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Accessoires O43 - CFD: 12/07/2016 - [] RD -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Démarrage O43 - CFD: 01/01/2006 - [] RD -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Outils d'administration O43 - CFD: 13/07/2016 - [] D -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\WinRAR O43 - CFD: 12/07/2016 - [] D -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\x264vfw ---\\ ShellIconOverlayIdentifiers (SIOI) (2) - 0s O106 - SIOI: MyOverlayIcon Class [MyOverlayIcon] - {B41B3408-923F-4B8B-85F2-146C509FA18C}. (...) -- C:\Program Files\Kinoingjsek\Coanertainchakuy\Tercoingstiroly.dll O106 - SIOI: Offline Files Menu [Offline Files] - {750fdf0e-2a26-11d1-a3ea-080036587f03}. (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\system32\cscui.dll =>.Microsoft Corporation ---\\ Liste des pilotes du système (33) - 5s O58 - SDL:2003/10/23 09:17:10 N . (.Andrea Electronics Corporation - Andrea Audio Noise Cancellation Driver.) -- C:\WINDOWS\System32\drivers\aeaudio.sys [100384] =>.Andrea Electronics Corporation O58 - SDL:2008/09/24 09:40:22 N . (.Realtek Semiconductor Corp. - Realtek AC'97 Audio Driver (WDM).) -- C:\WINDOWS\System32\drivers\ALCXWDM.SYS [4122368] =>.Realtek Semiconductor Corp. O58 - SDL:2001/10/25 02:00:00 N . (.Advanced Micro Devices - AMD Processor Driver.) -- C:\WINDOWS\System32\drivers\amdk8.sys [43520] =>.Advanced Micro Devices O58 - SDL:2002/05/06 11:01:08 A . (.Adaptec - ASPI for WIN32 Kernel Driver.) -- C:\WINDOWS\System32\drivers\ASPI32.SYS [17005] =>.Adaptec O58 - SDL:2011/12/06 05:42:18 N . (.ATI Technologies Inc. - ATI Radeon WindowsNT Miniport Driver.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys [7490560] =>.ATI Technologies Inc. O58 - SDL:2001/10/25 02:00:00 N . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\System32\drivers\cpqdap01.sys [11904] =>.Compaq Computer Corporation O58 - SDL:2009/03/27 01:16:28 N . (.Windows (R) Codename Longhorn DDK provider - CPUID Driver.) -- C:\WINDOWS\System32\drivers\cpuz132_x32.sys [12672] =>.Windows (R) Codename Longhorn DDK provider O58 - SDL:2007/01/04 10:07:00 N . (.Pinnacle Systems GmbH - Pinnacle Marvin Discrete Bus Enumerator.) -- C:\WINDOWS\System32\drivers\MarvinBus.sys [171520] =>.Pinnacle Systems GmbH O58 - SDL:2005/02/09 12:59:00 N . (.Pinnacle Systems GmbH - PCLEPCI.) -- C:\WINDOWS\System32\drivers\Pclepci.sys [14165] =>.Pinnacle Systems GmbH O58 - SDL:2016/07/29 19:53:49 A . (.VSO Software - low level access layer for CD/DVD/BD device.) -- C:\WINDOWS\System32\drivers\pcouffin.sys [47360] =>.VSO Software O58 - SDL:2001/10/25 02:00:00 N . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Lib.) -- C:\WINDOWS\System32\drivers\ptilink.sys [20480] =>.Parallel Technologies, Inc. O58 - SDL:2001/10/25 02:00:00 N . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\WINDOWS\System32\drivers\secdrv.sys [20480] =>.Macrovision Corporation, Macrovision Europe Limited, O58 - SDL:2003/03/26 00:50:46 N . (.Silicon Integrated Systems Corp. - SiS PCI Mini IDE Driver.) -- C:\WINDOWS\System32\drivers\siside.sys [4096] =>.Silicon Integrated Systems Corp. O58 - SDL:2006/02/14 16:02:56 N . (.SiS Corporation - SiS PCI Fast Ethernet Adapter Driver.) -- C:\WINDOWS\System32\drivers\sisnicxp.sys [32768] O58 - SDL:2001/10/25 02:00:00 N . (.Silicon Integrated Systems - SiS RAID Miniport Driver.) -- C:\WINDOWS\System32\drivers\SISRAID.sys [46464] =>.Silicon Integrated Systems O58 - SDL:2003/04/08 08:30:48 N . (.Analog Devices, Inc. - SoundMAX Stub Driver.) -- C:\WINDOWS\System32\drivers\smsens.sys [3744] =>.Analog Devices, Inc. O58 - SDL:2003/10/30 07:49:10 N . (.Analog Devices, Inc. - SoundMAX Integrated Digital Audio.) -- C:\WINDOWS\System32\drivers\smwdm.sys [593408] =>.Analog Devices, Inc. O58 - SDL:2007/06/27 12:42:00 N . (.VIA Technologies, Inc. - Vinyl AC'97 Codec Combo WDM Driver.) -- C:\WINDOWS\System32\drivers\vinyl97.sys [207488] =>.VIA Technologies, Inc. O58 - SDL:2001/10/25 02:00:00 N . (...) -- C:\WINDOWS\System32\ansi.sys [9037] O58 - SDL:2001/10/25 02:00:00 N . (...) -- C:\WINDOWS\System32\country.sys [27097] O58 - SDL:2001/10/25 02:00:00 N . (...) -- C:\WINDOWS\System32\himem.sys [4912] O58 - SDL:2001/10/25 02:00:00 N . (...) -- C:\WINDOWS\System32\key01.sys [42809] O58 - SDL:2001/10/25 02:00:00 N . (...) -- C:\WINDOWS\System32\keyboard.sys [42537] O58 - SDL:2001/10/25 02:00:00 N . (...) -- C:\WINDOWS\System32\ntdos.sys [27916] O58 - SDL:2001/10/25 02:00:00 N . (...) -- C:\WINDOWS\System32\ntdos404.sys [29146] O58 - SDL:2001/10/25 02:00:00 N . (...) -- C:\WINDOWS\System32\ntdos411.sys [29370] O58 - SDL:2001/10/25 02:00:00 N . (...) -- C:\WINDOWS\System32\ntdos412.sys [29274] O58 - SDL:2001/10/25 02:00:00 N . (...) -- C:\WINDOWS\System32\ntdos804.sys [29146] O58 - SDL:2001/10/25 02:00:00 N . (...) -- C:\WINDOWS\System32\ntio.sys [34000] O58 - SDL:2001/10/25 02:00:00 N . (...) -- C:\WINDOWS\System32\ntio404.sys [34560] O58 - SDL:2001/10/25 02:00:00 N . (...) -- C:\WINDOWS\System32\ntio411.sys [35648] O58 - SDL:2001/10/25 02:00:00 N . (...) -- C:\WINDOWS\System32\ntio412.sys [35424] O58 - SDL:2001/10/25 02:00:00 N . (...) -- C:\WINDOWS\System32\ntio804.sys [34560] ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (6) - 9s O61 - LFC: 2016/08/05 14:19:18 A . (..) -- C:\Documents and Settings\Administrateur\Mes documents\Загрузки\DocumentImagingSDKDemo32.exe [0] O61 - LFC: 2016/08/05 14:47:13 A . (..) -- C:\Documents and Settings\Administrateur\Mes documents\Загрузки\image32_installer_1-0-2.exe [10747904] O61 - LFC: 2016/08/05 14:17:26 A . (.Vixelsoft.) -- C:\Documents and Settings\Administrateur\Mes documents\Загрузки\imgsetv14.exe [4856981] O61 - LFC: 2016/08/05 12:41:08 A . (..) -- C:\Documents and Settings\Administrateur\Mes documents\Downloads\windows-imaging-component-32-bit-xp\windows-imaging-component-32-bit-xp(1)\windows-imaging-component-32-bit-xp.exe [3875144] O61 - LFC: 2016/07/29 19:53:49 A . (..) -- C:\Documents and Settings\Administrateur\Application Data\ezpinst.exe [155648] O61 - LFC: 2016/08/05 12:41:11 A . (..) -- C:\Documents and Settings\Administrateur\Application Data\Halite\unins000.exe [1269961] ---\\ Associations Shell Spawning (9) - 0s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.EXE =>.Microsoft Corporation® O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (r) Windows Based Script Host.) -- C:\WINDOWS\system32\wscript.exe =>.Microsoft Corporation O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® ---\\ Menu de démarrage Internet (8) - 0s O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe =>.Microsoft Corporation ---\\ Recherche d'infection sur les navigateurs (11) - 4s O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - http://search.live.com/ O69 - SBI: SearchScopes [HKCU] {06B469CF-CDC2-47F4-81A9-8EA6E8506E45} - (Google) - http://www.google.fr/ O69 - SBI: SearchScopes [HKCU] {4FC1B895-E129-4345-B101-CF4EF5EF80C8} [DefaultScope] - (Google) - http://www.google.com/ O69 - SBI: SearchScopes [HKLM] {06B469CF-CDC2-47F4-81A9-8EA6E8506E45} [DefaultScope] - (Google) - http://www.google.fr/ O69 - SBI: SearchScopes [HKUS\.DEFAULT] {06B469CF-CDC2-47F4-81A9-8EA6E8506E45} - (Google) - http://www.google.fr/ O69 - SBI: SearchScopes [HKUS\.DEFAULT] {4FC1B895-E129-4345-B101-CF4EF5EF80C8} [DefaultScope] - (Google) - http://www.google.com/ O69 - SBI: SearchScopes [HKUS\S-1-5-18] {06B469CF-CDC2-47F4-81A9-8EA6E8506E45} - (Google) - http://www.google.fr/ O69 - SBI: SearchScopes [HKUS\S-1-5-18] {4FC1B895-E129-4345-B101-CF4EF5EF80C8} [DefaultScope] - (Google) - http://www.google.com/ O69 - SBI: SearchScopes [HKUS\S-1-5-20] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - http://search.live.com/ O69 - SBI: SearchScopes [HKUS\S-1-5-20] {06B469CF-CDC2-47F4-81A9-8EA6E8506E45} - (Google) - http://www.google.fr/ O69 - SBI: SearchScopes [HKUS\S-1-5-20] {4FC1B895-E129-4345-B101-CF4EF5EF80C8} [DefaultScope] - (Google) - http://www.google.com/ ---\\ Enumère les services démarrés par Svchost (33) - 1s O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Lookup Service.) -- C:\WINDOWS\system32\aelupsvc.dll [26624] =>.Microsoft Corporation O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\WINDOWS\system32\appmgmts.dll [183808] =>.Microsoft Corporation O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\WINDOWS\system32\audiosrv.dll [41472] =>.Microsoft Corporation O83 - Search Svchost Services: Browser (Browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\system32\browser.dll [78336] =>.Microsoft Corporation O83 - Search Svchost Services: CryptSvc (CryptSvc) . (.Microsoft Corporation - Services de cryptographie.) -- C:\WINDOWS\system32\cryptsvc.dll [56832] =>.Microsoft Corporation O83 - Search Svchost Services: DMServer (DMServer) . (.Microsoft Corporation - Service du gestionnaire de disque logique.) -- C:\WINDOWS\system32\dmserver.dll [27136] =>.Microsoft Corporation O83 - Search Svchost Services: EventSystem (EventSystem) . (.Microsoft Corporation - COM+.) -- C:\WINDOWS\system32\es.dll [247296] =>.Microsoft Corporation O83 - Search Svchost Services: FastUserSwitchingCompatibility (FastUserSwitchingCompatibility) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] =>.Microsoft Corporation O83 - Search Svchost Services: HidServ (HidServ) . (...) -- C:\WINDOWS\System32\hidserv.dll [0] O83 - Search Svchost Services: LanmanServer (LanmanServer) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [95232] =>.Microsoft Corporation O83 - Search Svchost Services: LanmanWorkstation (LanmanWorkstation) . (.Microsoft Corporation - Workstation Service DLL.) -- C:\WINDOWS\system32\wkssvc.dll [133120] =>.Microsoft Corporation O83 - Search Svchost Services: Netman (Netman) . (.Microsoft Corporation - Gestionnaire de connexions réseau.) -- C:\WINDOWS\system32\netman.dll [263680] =>.Microsoft Corporation O83 - Search Svchost Services: Nla (Nla) . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Micro.) -- C:\WINDOWS\system32\mswsock.dll [259584] =>.Microsoft Corporation O83 - Search Svchost Services: Ntmssvc (Ntmssvc) . (.Microsoft Corporation - Gestionnaire de stockage amovible.) -- C:\WINDOWS\system32\ntmssvc.dll [468480] =>.Microsoft Corporation O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\system32\rasauto.dll [91648] =>.Microsoft Corporation O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\system32\rasmans.dll [181760] =>.Microsoft Corporation O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\system32\mprdim.dll [54272] =>.Microsoft Corporation O83 - Search Svchost Services: Sacsvr (Sacsvr) . (.Microsoft Corporation - Service Microsoft EMS SAC.) -- C:\WINDOWS\system32\sacsvr.dll [12288] =>.Microsoft Corporation O83 - Search Svchost Services: Schedule (Schedule) . (.Microsoft Corporation - Moteur du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [204288] =>.Microsoft Corporation O83 - Search Svchost Services: Seclogon (Seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [18432] =>.Microsoft Corporation O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\system32\sens.dll [37376] =>.Microsoft Corporation O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à.) -- C:\WINDOWS\system32\ipnathlp.dll [344576] =>.Microsoft Corporation O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] =>.Microsoft Corporation O83 - Search Svchost Services: TrkSvr (TrkSvr) . (.Microsoft Corporation - Distributed Link Tracking Server.) -- C:\WINDOWS\system32\trksvr.dll [50688] =>.Microsoft Corporation O83 - Search Svchost Services: WZCSVC (WZCSVC) . (.Microsoft Corporation - Service configuration automatique sans fil.) -- C:\WINDOWS\system32\wzcsvc.dll [491520] =>.Microsoft Corporation O83 - Search Svchost Services: Wmi (Wmi) . (.Microsoft Corporation - API avancées Windows 32.) -- C:\WINDOWS\system32\advapi32.dll [694272] =>.Microsoft Corporation O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\wmisvc.dll [143872] =>.Microsoft Corporation O83 - Search Svchost Services: xmlprov (xmlprov) . (.Microsoft Corporation - Network Provisioning Service.) -- C:\WINDOWS\system32\xmlprov.dll [131584] =>.Microsoft Corporation O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Service Terminal Server.) -- C:\WINDOWS\system32\termsrv.dll [248832] =>.Microsoft Corporation O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\system32\qmgr.dll [380928] =>.Microsoft Corporation O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] =>.Microsoft Corporation O83 - Search Svchost Services: helpsvc (helpsvc) . (.Microsoft Corporation - Microsoft PCHealth Service Holder.) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll [39936] =>.Microsoft Corporation O83 - Search Svchost Services: WmdmPmSN (WmdmPmSN) . (.Microsoft Corporation - Microsoft Media Device Service Provider.) -- C:\WINDOWS\system32\mspmsnsv.dll [27136] =>.Microsoft Corporation ---\\ Scan Additionnel (11) - 0s HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WeatherChickn =>.Superfluous.WeatherChickn HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5BDF3828-083B-4D91-A3F1-B8212A1EECAE} =>.Superfluous.Trotux HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WeatherChickn =>.Superfluous.WeatherChickn HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5BDF3828-083B-4D91-A3F1-B8212A1EECAE} =>.Superfluous.Trotux HKLM\SOFTWARE\CC87B42D76433F10881369052CFC8547 =>PUP.Optional.CrossRider HKLM\SOFTWARE\Secure =>.Superfluous.SecurePCCleaner HKLM\SOFTWARE\trotuxSoftware =>.Superfluous.Trotux HKCU\SOFTWARE\CC87B42D76433F10881369052CFC8547 =>PUP.Optional.CrossRider C:\Program Files\WeatherChickn =>.Superfluous.WeatherChickn C:\Documents and Settings\All Users\Application Data\My Web Shield =>PUP.Optional.WebShield C:\Documents and Settings\Administrateur\Application Data\ezpinst.exe =>Adware.Suspect ---\\ Récapitulatif des éléments trouvés sur votre station (6) - 0s https://www.anti-malware.top/2016/04/23/superfluous-weatherchickn/ =>.Superfluous.WeatherChickn https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.Trotux https://www.anti-malware.top/2016/04/30/pup-optional-crossrider/ =>PUP.Optional.CrossRider https://www.nicolascoolman.com/fr/logiciels-superflus =>.Superfluous.SecurePCCleaner https://www.nicolascoolman.com/fr/repaquetage-et_infections/ =>PUP.Optional.WebShield https://www.anti-malware.top/2016/05/01/definition-dun-logiciel-pup-lpi/ =>Adware.Suspect ~ End of the scan, 12355 items in 00h10mn46s (670)