Aller au contenu
  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

Skype a cessé de fonctionner [bloqué par gros rapport]


Gojiko2
 Share

Messages recommandés

Bonjour,

 

Je vous explique mon problème en détail, j'ai besoin de votre aide :( .

 

Je suis sur Windows 7 mon ordinateur est un ASUS R700VM-TY141V (http://www.darty.com/nav/achat/informatique/ordinateur_portable-portable/portable/asus_r700vm-ty141v.html).

 

Je ne fais qu'avoir des problèmes avec Skype : que je sois en conversation ou non, Skype se ferme tout seul, et souvent sans message d'erreur.

 

Premier gros problème : je n'arrive pas à lancer une analyse HijackThis correctement.

 

Il m'affiche une erreur dès le début avant de commencer le scan, c'est la suivante :

 

For some reason your system denied write acccess to the Hosts file. If any hijacked domains are in this file, HijackThis may NOT be able to fix this.

 

If that happpens, you need to edit the file yourself. To do this, click Start, Run and type:

 

notepad C:\Windows\System32\drivers\etc\hosts

 

and press Enter. Find the line(s) HijackThis reports and delete them. Save the file as 'hosts.' (with quotes), and reboot.

 

For Vista: simply, exit HijackThis, right click on the HijackThis icon, choose 'Run as administrator'.

 

Or dans le fichier concerné je ne vois aucune occurence de 'Hijackthis'.

 

Et deuxième problème : le log HijackThis ne s'affiche pas ! Un bloc vide s'ouvre, et dans le dossier HijackThis il n'y a aucun fichier log...

 

Je ne sais pas vraiment quoi faire... Et c'est bien pour ça que je suis sur ce forum.. Merci d'avance pour votre aide :)

Modifié par Gojiko2
Lien vers le commentaire
Partager sur d’autres sites

Bonsoir

Fait ceci s.t.p

 

Télécharges << ZHPDiag>> (de Nicolas Coolman)

 

dezzipes le fichier sur ton bureau...

Fais un clic-droit sur l'icône ZHPDiag .exe et choisis "exécuter en tant qu'administrateur".

 

 

L'installation va créer raccourcis (ZHPDiag et ZHPFix et MBRchek) sur ton bureau

 

110204080230569695.jpg

 

ET :

 

Si le bouton UAC apparaît dans le panel supérieur cela signifie que votre UAC est activée. L'activation de l'UAC gène l'analyse deZHPDiag sur certains modules (O18,O23,O42,...).

Aussi pour permettre un scan complet de l'outil, vous devez au préalable cliquer sur ce bouton.

Ce qui aura pour conséquence de relancer ZHPDiag avec une désactivation temporaire de l'UAC.

A la fin de l'installation ZHPDiag va se lancer....

 

Cliques sur "Lancer le diagnostic " (image de la loupe) et patiente...

 

A la fin du scan le rapport est sauvegardé directement sur ton bureau.

ZHPDiag.txt

 

Mets le rapport ici car il prend bien de la place.

Accueil de Cjoint.com

ou.

Envoyez et partagez vos fichiers

Lien vers le commentaire
Partager sur d’autres sites

J'ai fait votre scan voici les résultats :

 

Rapport de ZHPDiag v1.34.68 par Nicolas Coolman, Update du 29/01/2013
Run by Cécile at 29/01/2013 21:58:56
State : Version à jour.
UAC : Deactivate by program


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421 (Defaut)
GCIE: Google Chrome v24.0.1312.56

---\\ Windows Product Information
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 9YQTR
Windows License : OK
~ Windows Remaining Initializations Number : 1
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3982 MB (44% free)
System Restore: Activé (Enable)
System drive C: has 329 GB (82%) free of 401 GB

---\\ Logged in mode
~ Computer Name: CÉCILE-PC
~ User Name: Cécile
~ All Users Names: UpdatusUser, HomeGroupUser$, Cécile, Administrateur, 
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Cécile\AppData\Roaming\
~ %Desktop% : C:\Users\Cécile\Desktop\
~ %Favorites% : C:\Users\Cécile\Favorites\
~ %LocalAppData% : C:\Users\Cécile\AppData\Local\
~ %StartMenu% : C:\Users\Cécile\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 329 Go of 401 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 472 Go of 506 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ CD-ROM drive (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime :  OK
~ Scan Security Center in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.24/02/2012 - 01:55:29.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.5121DB613E10A46A3C5085B479026AA7] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.14/11/2012 - 07:04:11.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.20/11/2010 - 14:25:32.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:28.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:22.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:34.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:44.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.24/02/2012 - 02:02:21.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:22.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.E453ACF4E7D44E5530B5D5F2B9CA8563] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.31/08/2012 - 19:19:35.) -- C:\Windows\system32\Drivers\ntfs.sys [1659760]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:36.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:58.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.DF8126BD41180351A093A3AD2FC8903B] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.24/02/2012 - 01:35:34.) -- C:\Windows\system32\Drivers\volsnap.sys [296320]
~ Scan Generic Processes in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/1019
~ Mes musiques (My Musics) : 1/2
~ Mes Favoris (My Favorites) : 1/8
~ Mes Documents (My Documents) : 1/520
~ Mon Bureau (My Desktop) : 2/231
~ Menu demarrer (Programs) : 1/30
~ Scan Hidden Files in 00mn 03s



---\\ Processus lancés
[MD5.2DC64A3446C8C6E020E781456B46573D] - (.Microsoft Corporation - Tablet PC Input Panel Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe   [10240] [PID.2884]
[MD5.D9AB754613208112B840C75B6762B909] - (.ASUSTek Computer Inc. - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe   [322176] [PID.1488]
[MD5.6B3BA5BB455D7A4FD16B697B8F73858F] - (.ASUSTek Computer Inc. - ASUS FaceLogon Application.) -- C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe   [473728] [PID.1460]
[MD5.5AC92ABC3A201B79A73B1011B078EAE0] - (.ASUSTeK Computer Inc. - ASUS Quick Gesture Exe.) -- C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe   [17872] [PID.1452]
[MD5.ED759B7FD51466447CC31CBE79B99050] - (.ASUSTek Computer Inc. - ASUS USB Charger Plus.) -- C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe   [1121448] [PID.2484]
[MD5.CD37E8F77BFF71F104BDC941A393F0B5] - (.Intel Corporation - Intel Services Manager.) -- C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\ismagent.exe   [645896] [PID.3620]
[MD5.4DA92A4C32F68E57C49CD77CD0A7439C] - (...) -- C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\updateui.exe   [119808] [PID.520]
[MD5.48EC008877C5FC88DF09907791581D3E] - (.Bogdan Sharkov - Clownfish for Skype.) -- C:\Program Files (x86)\Clownfish\Clownfish.exe   [1226488] [PID.8808]
[MD5.A63DC5C2EA944E6657203E0C8EDEAF61] - (.Microsoft Corporation - COM Surrogate.) -- C:\Windows\SysWOW64\DllHost.exe   [7168] [PID.1072]
[MD5.35BC75B71062D3B97BFC43FD356BC0F7] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe   [18708224] [PID.3684]
[MD5.75F829427C19014B930640E99AD5A123] - (.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe   [9876472] [PID.8824]
[MD5.29C81875332F7084321C3A82A9A7BF9F] - (.Trend Micro Inc. - HijackThis.) -- C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe   [388096] [PID.6052]
[MD5.CEB132745142C85988317E9A4CA36B08] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe   [1248208] [PID.5844]
[MD5.DFB71D057E0F2AB6BAC4BC6154DA9FD9] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe   [5632512] [PID.2120]
[MD5.9F3E7CABE86BBDECA009DE291DB6D9E2] - (.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe   [3467768] [PID.1740]
[MD5.6D42A2E63AE33844F570F300904EFC4E] - (.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe   [190968] [PID.3372]
[MD5.8327990BBD43F0C21868AE1429144010] - (.TeamViewer GmbH - TeamViewer 8.) -- c:\program files (x86)\teamviewer\version8\TeamViewer_Desktop.exe   [4103672] [PID.2936]
~ Scan Processes Running in 00mn 01s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Cécile\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [user Data\Default] None
~ Scan Google Browser in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [url=http://asus.msn.com]MSN Hotmail.fr, Messenger, Skype, Actualité, Sport, People, Femmes - MSN France[/url]
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [url=http://asus.msn.com]Bing[/url]
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = [url=http://home.sweetim.com]Server Error[/url]
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = [url=http://www.microsoft.com]Microsoft Corporation[/url]
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = [url=http://ie.search.msn.com]Bing[/url]
R3 - URLSearchHook: (no name) [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 1



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: DealPly [64Bits] - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} . (...) -- C:\Program Files (x86)\DealPly\DealPlyIE.dll (.not file.)
O2 - BHO: Bing Bar Helper [64Bits] - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} . (...) -- "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (.not file.)
O2 - BHO: Ask Toolbar BHO [64Bits] - {D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask - Ask Toolbar.) -- C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SWEETIE [64Bits] - {EEE6C35C-6118-11DC-9C72-001320C79847} . (.SweetIM Technologies Ltd. - SweetPacks Toolbar module for Internet Expl.) -- C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
~ Scan BHO in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKCU\..\Run: [skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe 
O4 - HKCU\..\Run: [Clownfish] Clé orpheline 
O4 - HKUS\S-1-5-21-4190238515-1752164227-1891409798-1001\..\Run: [skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe 
O4 - HKUS\S-1-5-21-4190238515-1752164227-1891409798-1001\..\Run: [Clownfish] Clé orpheline 
~ Scan Application in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\UpdatusUser\Desktop\Mario Forever.lnk . (.Buziol Games Software.)  -- C:\Program Files (x86)\Mario Forever\Mario Forever.exe
O4 - Global Startup: C:\Users\UpdatusUser\Desktop\Mario Worker.lnk . (...)  -- C:\Program Files (x86)\Mario Forever\Mario Worker.exe
O4 - Global Startup: C:\Users\UpdatusUser\Desktop\PhotoFiltre Studio X.lnk . (.PhotoFiltre.)  -- C:\Program Files (x86)\PhotoFiltre Studio X\pfstudiox.exe
O4 - Global Startup: C:\Users\UpdatusUser\Desktop\Piano Virtuel Midi.lnk . (.Home.)  -- C:\Program Files (x86)\Pvm\Piano virtuel midi.exe
O4 - Global Startup: C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..)  -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\Cécile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Cécile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Cécile\Desktop\AIDA64 Extreme Edition.lnk . (.FinalWire Ltd..)  -- C:\Program Files (x86)\FinalWire\AIDA64 Extreme Edition\aida64.exe
O4 - Global Startup: C:\Users\Cécile\Desktop\Clownfish.lnk . (.Bogdan Sharkov.)  -- C:\Program Files (x86)\Clownfish\Clownfish.exe
O4 - Global Startup: C:\Users\Cécile\Desktop\DATA (D) - Raccourci.lnk - Clé orpheline
O4 - Global Startup: C:\Users\Cécile\Desktop\DLLLoad - Raccourci.lnk . (...)  -- C:\dllload\DLLLoad.exe
O4 - Global Startup: C:\Users\Cécile\Desktop\HiJackThis.lnk . (.Trend Micro Inc..)  -- C:\Users\Cécile\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
O4 - Global Startup: C:\Users\Cécile\Desktop\Mario Forever.lnk . (.Buziol Games Software.)  -- C:\Program Files (x86)\Mario Forever\Mario Forever.exe
O4 - Global Startup: C:\Users\Cécile\Desktop\Mario Worker.lnk . (...)  -- C:\Program Files (x86)\Mario Forever\Mario Worker.exe
O4 - Global Startup: C:\Users\Cécile\Desktop\PhotoFiltre Studio X.lnk . (.PhotoFiltre.)  -- C:\Program Files (x86)\PhotoFiltre Studio X\pfstudiox.exe
O4 - Global Startup: C:\Users\Cécile\Desktop\procexp.exe - Raccourci.lnk . (.Sysinternals - www.sysinternals.com.)  -- C:\Users\Cécile\Downloads\process-explorer_process_explorer_15.23_anglais_14566\procexp.exe
O4 - Global Startup: C:\Users\Cécile\Desktop\Project64 1.6.lnk . (...)  -- C:\Program Files (x86)\Project64 1.6\Project64.exe
O4 - Global Startup: C:\Users\Cécile\Desktop\Project64KVE.exe - Raccourci.lnk . (...)  -- C:\Users\Cécile\Downloads\EMU_project64kve_0.13\Project64KVE.exe
O4 - Global Startup: C:\Users\Cécile\Desktop\TeamSpeak 3 Client.lnk . (.TeamSpeak Systems GmbH.)  -- C:\Users\Cécile\AppData\Local\TeamSpeak 3 Client\ts3client_win32.exe
O4 - Global Startup: C:\Users\Cécile\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..)  -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\Cécile\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Cécile\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ManyCam.lnk . (.ManyCam LLC.)  -- C:\Program Files (x86)\ManyCam\Bin\ManyCam.exe
~ Scan Global Startup in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
~ Scan Winsock in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{A662B602-7F09-40A3-99F1-06C1B6F4CEFD}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{FD71EA30-EB4E-4DE9-82E8-262DC805869D}: DhcpNameServer = 192.168.2.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{A662B602-7F09-40A3-99F1-06C1B6F4CEFD}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{FD71EA30-EB4E-4DE9-82E8-262DC805869D}: DhcpNameServer = 192.168.2.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{A662B602-7F09-40A3-99F1-06C1B6F4CEFD}: DhcpNameServer = 192.168.2.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{FD71EA30-EB4E-4DE9-82E8-262DC805869D}: DhcpNameServer = 192.168.2.254
~ Scan Domain in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: skype4com [64Bits] - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
~ Scan Protocole Additionnel in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Scan Winlogon in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.NVIDIA Corporation - NVIDIA shim initialization dll, Version 307.) - C:\Windows\System32\nvinitx.dll
~ Scan AppInit DLL in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 8 (TeamViewer8) . (.TeamViewer GmbH - TeamViewer 8.) - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service:  (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
~ Scan Services in 00mn 06s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
~ Scan Desktop Component in 00mn 00s



---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
[MD5.3B9ED0E96B9E83B2CF2A57AF0FD3BB09] [APT] [ASUS P4G] (.ASUS.) -- C:\Program Files\ASUS\P4G\BatteryLife.exe
[MD5.5AC92ABC3A201B79A73B1011B078EAE0] [APT] [ASUS Quick Gesture] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe
[MD5.A4EE07DF5DB9EBA55EF019932EECCBE7] [APT] [ASUS Quick Gesture (x64)] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe
[MD5.6B3BA5BB455D7A4FD16B697B8F73858F] [APT] [ASUS SmartLogon Console Sensor] (.ASUSTek Computer Inc..) -- C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
[MD5.ED759B7FD51466447CC31CBE79B99050] [APT] [ASUS USB Charger Plus] (.ASUSTek Computer Inc..) -- C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
[MD5.D9AB754613208112B840C75B6762B909] [APT] [ATKOSD2] (.ASUSTek Computer Inc..) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
[MD5.BE66B026CF488C87B4D0EA9E616FFA4A] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe
[MD5.00000000000000000000000000000000] [APT] [DealPlyUpdate] (...) -- C:\Program Files (x86)\DealPly\DealPlyUpdate.exe (.not file.)
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.C7AAC31A910E4BBFDF94D3786ED13E71] [APT] [iSM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d] (.Intel Corporation.) -- C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
[MD5.C7AAC31A910E4BBFDF94D3786ED13E71] [APT] [iSM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon] (.Intel Corporation.) -- C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
[MD5.1C2911E801D232B8A4D9873BBA117E08] [APT] [scheduled Update for Ask Toolbar] (...) -- C:\Program Files (x86)\Ask.com\UpdateTask.exe
[MD5.CEB132745142C85988317E9A4CA36B08] [APT] [{0E93AE7F-CD5F-4160-A23D-9F1607AD219D}] (.Google Inc..) -- c:\program files (x86)\google\chrome\application\chrome.exe
[MD5.35BC75B71062D3B97BFC43FD356BC0F7] [APT] [{1F4B099E-8ACA-4F97-98B2-BF4F9484D22D}] (.Skype Technologies S.A..) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
[MD5.35BC75B71062D3B97BFC43FD356BC0F7] [APT] [{20E0807D-3D86-480A-ADAD-017C9C26666C}] (.Skype Technologies S.A..) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
[MD5.CEB132745142C85988317E9A4CA36B08] [APT] [{407B73EC-054A-4B3C-A0B7-0589DB22F923}] (.Google Inc..) -- c:\program files (x86)\google\chrome\application\chrome.exe
[MD5.CEB132745142C85988317E9A4CA36B08] [APT] [{66504C55-95BF-4B81-BD0D-345A8A235EC5}] (.Google Inc..) -- c:\program files (x86)\google\chrome\application\chrome.exe
[MD5.CEB132745142C85988317E9A4CA36B08] [APT] [{6A4151F2-B6B4-42A4-8EBB-FC2ACDFD6FD0}] (.Google Inc..) -- c:\program files (x86)\google\chrome\application\chrome.exe
[MD5.CEB132745142C85988317E9A4CA36B08] [APT] [{A4BA0449-93DF-4A96-9637-BD96D3D9B897}] (.Google Inc..) -- c:\program files (x86)\google\chrome\application\chrome.exe
[MD5.00000000000000000000000000000000] [APT] [{C208645D-B38E-4D05-8B75-3D5F1FC6D822}] (...) -- C:\Users\Cécile\Downloads\PVMsetup.exe (.not file.)
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
~ Scan Scheduled Task in 00mn 06s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn 00s



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver:  (ATKWMIACPIIO) . (.ASUS - ATK WMIACPI Utility.) - C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver:  (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver:  (dtsoftbus01) . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) - C:\Windows\System32\DRIVERS\dtsoftbus01.sys
O41 - Driver:  (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys
O41 - Driver:  (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver:  (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver:  (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver:  (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
O41 - Driver: C:\Windows\System32\drivers\ws2ifsl.sys (ws2ifsl) . (.Microsoft Corporation - Couche IFS Winsock2.) - C:\Windows\system32\drivers\ws2ifsl.sys
~ Scan Drivers in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: 7-Zip 9.20 - (.Pas de propriétaire.) [HKLM][64Bits] -- 7-Zip
O42 - Logiciel: AIDA64 Extreme Edition v2.20 - (.FinalWire Ltd..) [HKLM][64Bits] -- AIDA64 Extreme Edition_is1
O42 - Logiciel: ASUS AI Recovery - (.ASUS.) [HKLM][64Bits] -- {D39F0676-163E-4595-A917-E28F99BBD4D2}
O42 - Logiciel: ASUS FaceLogon - (.ASUS.) [HKLM][64Bits] -- {64452561-169F-4A36-A2FF-B5E118EC65F5}
O42 - Logiciel: ASUS Instant Connect - (.ASUS.) [HKLM][64Bits] -- {89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}
O42 - Logiciel: ASUS K45_K75_K95_Screensaver - (.ASUS.) [HKLM][64Bits] -- ASUS K45_K75_K95_Screensaver
O42 - Logiciel: ASUS LifeFrame3 - (.ASUS.) [HKLM][64Bits] -- {1DBD1F12-ED93-49C0-A7CC-56CBDE488158}
O42 - Logiciel: ASUS Live Update - (.ASUS.) [HKLM][64Bits] -- {FA540E67-095C-4A1B-97BA-4D547DEC9AF4}
O42 - Logiciel: ASUS Power4Gear Hybrid - (.ASUS.) [HKLM][64Bits] -- {9B6239BF-4E85-4590-8D72-51E30DB1A9AA}
O42 - Logiciel: ASUS Splendid Video Enhancement Technology - (.ASUS.) [HKLM][64Bits] -- {0969AF05-4FF6-4C00-9406-43599238DE0D}
O42 - Logiciel: ASUS USB Charger Plus - (.ASUS.) [HKLM][64Bits] -- {A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}
O42 - Logiciel: ASUS Virtual Camera - (.ASUS.) [HKLM][64Bits] -- {EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}
O42 - Logiciel: ASUS Virtual Touch - (.ASUS.) [HKLM][64Bits] -- {938CFBD4-0652-49E5-BB8B-153948865941}
O42 - Logiciel: ASUS WebStorage - (.eCareme Technologies, Inc..) [HKLM][64Bits] -- ASUS WebStorage
O42 - Logiciel: ATK Package - (.ASUS.) [HKLM][64Bits] -- {AB5C933E-5C7D-4D30-B314-9C83A49B94BE}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader X MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-AA0000000001}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {A83279FD-CA4B-4206-9535-90974DE76654}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Ask Toolbar - (.Ask.com.) [HKLM][64Bits] -- {86D4B82A-ABED-442A-BE86-96357B70F4FE}
O42 - Logiciel: Ask Toolbar Updater - (.Ask.com.) [HKCU][64Bits] -- {79A765E1-C399-405B-85AF-466F52E918B0}
O42 - Logiciel: AsusVibe2.0 - (.ASUSTEK.) [HKLM][64Bits] -- Asus Vibe2.0
O42 - Logiciel: BabylonObjectInstaller - (.Babylon Ltd.) [HKLM][64Bits] -- {E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1}
O42 - Logiciel: Bing Bar - (.Microsoft Corporation.) [HKLM][64Bits] -- {1E03DB52-D5CB-4338-A338-E526DD4D4DB1}
O42 - Logiciel: Brother MFL-Pro Suite DCP-J515W - (.Brother Industries, Ltd..) [HKLM][64Bits] -- {7FB6B1B7-075B-4B7F-BEB6-97584F73C7B5}
O42 - Logiciel: Bubbletown - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115065740}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: CPUID CPU-Z 1.62 - (.Pas de propriétaire.) [HKLM][64Bits] -- CPUID CPU-Z_is1
O42 - Logiciel: Clownfish for Skype - (.Pas de propriétaire.) [HKLM][64Bits] -- Clownfish
O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: CyberLink Media Suite - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink Media Suite - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: CyberLink Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- {40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite
O42 - Logiciel: Deadtime Stories - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-118716773}
O42 - Logiciel: DealPly - (.DealPly Technologies Ltd.) [HKLM][64Bits] -- DealPly
O42 - Logiciel: Dream Day First Home - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}
O42 - Logiciel: Dream Vacation Solitaire - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111249233}
O42 - Logiciel: ETDWare PS/2-X64 10.5.9.0 - (.ELAN Microelectronic Corp..) [HKLM][64Bits] -- Elantech
O42 - Logiciel: Farm Frenzy 3 - Madagascar - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-119205603}
O42 - Logiciel: Fast Boot - (.ASUS.) [HKLM][64Bits] -- {13F4A7F3-EABC-4261-AF6B-1317777F0755}
O42 - Logiciel: Galapago - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}
O42 - Logiciel: Game Park Console - (.Oberon Media Inc..) [HKLM][64Bits] -- Game Park Console
O42 - Logiciel: Go Go Gourmet Chef of the Year - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115290153}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: InstantOn for NB - (.ASUS.) [HKLM][64Bits] -- {749F674B-2674-47E8-879C-5626A06B2A91}
O42 - Logiciel: Intel PROSet Wireless - (.Pas de propriétaire.) [HKLM][64Bits] -- ProInst
O42 - Logiciel: Intel(R) Manageability Engine Firmware Recovery Agent - (.Intel Corporation.) [HKLM][64Bits] -- {A6C48A9F-694A-4234-B3AA-62590B668927}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) OpenCL CPU Runtime - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573}
O42 - Logiciel: Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed - (.Intel Corporation.) [HKLM][64Bits] -- {2C0E6BD4-65B1-4E82-B2AC-43EFFC8F100C}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) USB 3.0 eXtensible Host Controller Driver - (.Intel Corporation.) [HKLM][64Bits] -- {240C3DDD-C5E9-4029-9DF7-95650D040CF2}
O42 - Logiciel: Intel(R) WiDi - (.Intel Corporation.) [HKLM][64Bits] -- {7FCB8D5D-9396-4D17-8CFA-349D6D49CD32}
O42 - Logiciel: Intel® PROSet/Wireless WiFi Software - (.Intel Corporation.) [HKLM][64Bits] -- {DF7756DD-656A-45C3-BA71-74673E8259A9}
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {09536BA1-E498-4CC3-B834-D884A67D7E34}
O42 - Logiciel: Internet Explorer Toolbar 4.6 by SweetPacks - (.SweetIM Technologies Ltd..) [HKLM][64Bits] -- {C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}
O42 - Logiciel: Java 7 Update 11 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217010FF}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: LogMeIn Hamachi - (.LogMeIn, Inc..) [HKLM][64Bits] -- LogMeIn Hamachi
O42 - Logiciel: LogMeIn Hamachi - (.LogMeIn, Inc..) [HKLM][64Bits] -- {106B4413-ACBB-4CDE-8707-587DB9BD77EC}
O42 - Logiciel: Lollipop - (.Pas de propriétaire.) [HKCU][64Bits] -- bnanz
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: Mahjong Memoirs - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-117948443}
O42 - Logiciel: Malwarebytes Anti-Malware version 1.70.0.1100 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: ManyCam 3.1.21 - (.ManyCam LLC.) [HKLM][64Bits] -- ManyCam
O42 - Logiciel: Mario Forever 4.0 - (.Buziol Games.) [HKLM][64Bits] -- Mario Forever
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: Microsoft Games for Windows - LIVE  - (.Microsoft Corporation.) [HKLM][64Bits] -- {4D243BA7-9AC4-46D1-90E5-EEB88974F501}
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {05B49229-22A2-4F88-842A-BBC2EBE1CCF6}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mises à jour NVIDIA 1.10.8 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {46ED2B64-85C7-4E1F-920C-A555B21F2E4C}
O42 - Logiciel: NVIDIA Pilote graphique 307.21 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: OpenOffice.org 3.4 - (.OpenOffice.org.) [HKLM][64Bits] -- {2F90A789-DD1E-41CE-BFCA-BD78213BABC7}
O42 - Logiciel: PhotoFiltre Studio X - (.Pas de propriétaire.) [HKCU][64Bits] -- PhotoFiltre Studio X
O42 - Logiciel: Plants vs Zombies - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-117080787}
O42 - Logiciel: Project64 1.6 - (.Project64.) [HKLM][64Bits] -- {9559F7CA-5E34-4237-A2D9-D856464AD727}
O42 - Logiciel: RESIDENT EVIL 5 - (.CAPCOM CO., LTD..) [HKLM][64Bits] -- {AC08BBA0-96B9-431A-A7D0-D8598E493775}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}
O42 - Logiciel: SceneSwitch - (.ASUS.) [HKLM][64Bits] -- {5172E572-C175-4F80-A6D5-5CB45826AD61}
O42 - Logiciel: Skype™ 6.1 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: SweetIM for Messenger 3.7 - (.SweetIM Technologies Ltd..) [HKLM][64Bits] -- {A0C9DF2B-89B5-4483-8983-18A68200F1B4}
O42 - Logiciel: SweetPacks bundle uninstaller - (.SweetIM Technologies Ltd..) [HKLM][64Bits] -- {0C43FE6B-E881-4AFC-B384-4AEBC90047E8}
O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKCU][64Bits] -- TeamSpeak 3 Client
O42 - Logiciel: TeamViewer 8 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer 8
O42 - Logiciel: Turbo Fiesta - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115320460}
O42 - Logiciel: Update Manager for SweetPacks 1.1 - (.SweetIM Technologies Ltd..) [HKLM][64Bits] -- {EA8FA6BE-29BE-4AF2-9352-841F83215EB0}
O42 - Logiciel: VLC media player 2.0.5 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Vittalia Installer - (.TELECHARGERS.net.) [HKLM][64Bits] -- Vittalia
O42 - Logiciel: WinFlash - (.ASUS.) [HKLM][64Bits] -- {8F21291E-0444-4B1D-B9F9-4370A73E346D}
O42 - Logiciel: WinRAR 4.20 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Wireless Console 3 - (.ASUS.) [HKLM][64Bits] -- {19EA33FB-B34E-40EA-8B8A-61743AEB795A}
O42 - Logiciel: World of Goo - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-116672750}
O42 - Logiciel: myBitCast 1.0.0.3 - (.ASUS Cloud Corporation.) [HKLM][64Bits] -- myBitCast
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKLM][64Bits] -- uTorrent

---\\ HKCU & HKLM Software Keys
[HKCU\Software\7-Zip]
[HKCU\Software\APN PIP]
[HKCU\Software\APN]
[HKCU\Software\ASUS]
[HKCU\Software\ATK0100]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\AskToolbar]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\Smartbar]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Ask.com]
[HKCU\Software\Avast Software]
[HKCU\Software\BitTorrent]
[HKCU\Software\Brother]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Clownfish]
[HKCU\Software\Conduit]
[HKCU\Software\CyberLink]
[HKCU\Software\DT Soft]
[HKCU\Software\DealPly]
[HKCU\Software\ECAREME]
[HKCU\Software\Elantech]
[HKCU\Software\FinalWire]
[HKCU\Software\Google]
[HKCU\Software\IM Providers]
[HKCU\Software\InstallCore]
[HKCU\Software\Intel]
[HKCU\Software\JaboSoft]
[HKCU\Software\JavaSoft]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\ManyCam]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\N64 Emulation]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Pvm]
[HKCU\Software\Realtek]
[HKCU\Software\Skype]
[HKCU\Software\SweetIM]
[HKCU\Software\Sysinternals]
[HKCU\Software\TeamViewer]
[HKCU\Software\TeleCharger]
[HKCU\Software\Trend Micro]
[HKCU\Software\Trolltech]
[HKCU\Software\Wget]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\lollipop]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ASUS]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Adobe]
[HKLM\Software\Agere]
[HKLM\Software\Brother]
[HKLM\Software\CPUID]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\ECAREME]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\LSI]
[HKLM\Software\LogMeIn, Inc.]
[HKLM\Software\ManyCam]
[HKLM\Software\McAfee.com]
[HKLM\Software\McAfee]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\SiteAdvisor]
[HKLM\Software\SonicFocus]
[HKLM\Software\Sonic]
[HKLM\Software\Systweak]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\APN]
[HKLM\Software\Wow6432Node\ASUS]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\AsLdr]
[HKLM\Software\Wow6432Node\AskToolbar]
[HKLM\Software\Wow6432Node\Babylon]
[HKLM\Software\Wow6432Node\Brother Industries, Ltd.]
[HKLM\Software\Wow6432Node\Brother]
[HKLM\Software\Wow6432Node\Bunndle]
[HKLM\Software\Wow6432Node\CAPCOM]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\DT Soft]
[HKLM\Software\Wow6432Node\ECAREME]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\McAfee]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Oberon Media]
[HKLM\Software\Wow6432Node\OpenOffice.org]
[HKLM\Software\Wow6432Node\PIP]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Swearware]
[HKLM\Software\Wow6432Node\SweetIM]
[HKLM\Software\Wow6432Node\TeamViewer]
[HKLM\Software\Wow6432Node\TrendMicro]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\WinRAR]
[HKLM\Software\Wow6432Node\Wow6432Node]
[HKLM\Software\Wow6432Node]
[HKLM\Software\swearware]
~ Scan Softwares in 00mn 01s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 21/10/2012 - 18:55:06 - [3,348] ----D C:\Program Files (x86)\7-Zip
O43 - CFD: 24/02/2012 - 03:28:31 - [378,418] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 13/01/2013 - 18:07:41 - [2,316] ----D C:\Program Files (x86)\Apple Software Update
O43 - CFD: 08/12/2012 - 21:59:47 - [3,864] ----D C:\Program Files (x86)\Ask.com
O43 - CFD: 20/10/2012 - 01:26:54 - [1033,707] ----D C:\Program Files (x86)\ASUS
O43 - CFD: 11/11/2012 - 16:53:34 - [30,235] ----D C:\Program Files (x86)\Brother
O43 - CFD: 11/11/2012 - 16:53:38 - [6,951] ----D C:\Program Files (x86)\Browny02
O43 - CFD: 20/10/2012 - 21:44:19 - [-1265,018] ----D C:\Program Files (x86)\CAPCOM
O43 - CFD: 20/10/2012 - 10:28:41 - [6,757] ----D C:\Program Files (x86)\Cisco
O43 - CFD: 07/11/2012 - 19:19:34 - [1,251] ----D C:\Program Files (x86)\Clownfish
O43 - CFD: 24/01/2013 - 01:46:05 - [214,838] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 20/10/2012 - 10:36:08 - [310,012] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 20/10/2012 - 20:57:44 - [25,775] ----D C:\Program Files (x86)\DAEMON Tools Lite
O43 - CFD: 20/10/2012 - 02:03:33 - [23,242] ----D C:\Program Files (x86)\FinalWire
O43 - CFD: 24/02/2012 - 03:29:08 - [331,598] ----D C:\Program Files (x86)\Google
O43 - CFD: 11/11/2012 - 16:52:59 - [64,452] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 03/11/2012 - 19:33:55 - [345,566] ----D C:\Program Files (x86)\Intel
O43 - CFD: 20/10/2012 - 10:30:16 - [70,627] ----D C:\Program Files (x86)\Intel Corporation
O43 - CFD: 16/12/2012 - 03:54:03 - [7,122] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 18/01/2013 - 00:56:58 - [121,890] ----D C:\Program Files (x86)\Java
O43 - CFD: 16/12/2012 - 20:15:07 - [4,775] ----D C:\Program Files (x86)\LogMeIn Hamachi
O43 - CFD: 18/01/2013 - 16:47:20 - [12,195] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 08/12/2012 - 21:59:11 - [21,522] ----D C:\Program Files (x86)\ManyCam
O43 - CFD: 26/11/2012 - 17:28:21 - [22,785] ----D C:\Program Files (x86)\Mario Forever
O43 - CFD: 24/02/2012 - 03:41:46 - [17,977] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 20/10/2012 - 21:43:10 - [14,727] ----D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
O43 - CFD: 24/02/2012 - 03:19:02 - [6,126] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 21/10/2012 - 03:11:21 - [36,641] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 24/02/2012 - 03:37:31 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 24/02/2012 - 03:26:02 - [0,023] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 21/10/2012 - 18:21:58 - [0] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 14/07/2009 - 06:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 20/10/2012 - 10:26:37 - [102,528] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 22/10/2012 - 07:29:59 - [285,319] ----D C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 21/10/2012 - 18:21:51 - [14,018] ----D C:\Program Files (x86)\PhotoFiltre Studio X
O43 - CFD: 03/12/2012 - 01:53:48 - [3,364] ----D C:\Program Files (x86)\Project64 1.6
O43 - CFD: 22/11/2012 - 00:21:01 - [0,393] ----D C:\Program Files (x86)\Pvm
O43 - CFD: 20/10/2012 - 10:28:06 - [30,255] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 06:32:38 - [37,357] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 29/01/2013 - 02:32:10 - [18,093] R---D C:\Program Files (x86)\Skype
O43 - CFD: 22/10/2012 - 07:18:29 - [11,639] ----D C:\Program Files (x86)\SweetIM
O43 - CFD: 05/12/2012 - 21:59:15 - [31,803] ----D C:\Program Files (x86)\TeamViewer
O43 - CFD: 20/10/2012 - 10:27:32 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 24/01/2013 - 01:05:09 - [0,390] ----D C:\Program Files (x86)\Trend Micro
O43 - CFD: 14/07/2009 - 05:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 20/10/2012 - 01:33:58 - [0,919] ----D C:\Program Files (x86)\uTorrent
O43 - CFD: 25/12/2012 - 00:52:25 - [94,419] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 22/10/2012 - 07:27:52 - [0,347] ----D C:\Program Files (x86)\Vittalia
O43 - CFD: 22/10/2012 - 02:21:40 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 24/02/2012 - 03:39:42 - [329,419] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 22/10/2012 - 02:21:41 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 22/10/2012 - 02:21:41 - [4,791] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 06:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 22/10/2012 - 02:21:41 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 18/02/2011 - 21:09:10 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 22/10/2012 - 02:21:41 - [5,717] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 20/10/2012 - 02:01:51 - [4,131] ----D C:\Program Files (x86)\WinRAR
O43 - CFD: 29/01/2013 - 21:59:16 - [11,863] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 24/02/2012 - 03:28:37 - [7,448] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 13/01/2013 - 18:08:08 - [60,457] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 20/10/2012 - 10:27:10 - [2,009] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 20/10/2012 - 10:22:13 - [0] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 20/10/2012 - 10:30:17 - [71,022] ----D C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 29/12/2012 - 00:19:44 - [1,184] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 20/10/2012 - 10:26:47 - [20,982] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 24/02/2012 - 03:42:35 - [0,338] ----D C:\Program Files (x86)\Common Files\Oberon Media
O43 - CFD: 20/10/2012 - 10:26:43 - [0,185] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 20/10/2012 - 10:32:01 - [0,187] ----D C:\Program Files (x86)\Common Files\SceneSwitch
O43 - CFD: 14/07/2009 - 04:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 23/01/2013 - 13:36:24 - [2,056] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 14/07/2009 - 04:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 22/10/2012 - 02:21:40 - [9,767] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 24/02/2012 - 03:29:35 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 07/11/2012 - 20:19:21 - [45,933] ----D C:\ProgramData\Adobe
O43 - CFD: 13/01/2013 - 18:07:39 - [21,586] ----D C:\ProgramData\Apple
O43 - CFD: 14/07/2009 - 06:08:56 - [0] ----D C:\ProgramData\Application Data
O43 - CFD: 08/12/2012 - 21:59:20 - [0] ----D C:\ProgramData\Ask
O43 - CFD: 24/02/2012 - 03:50:45 - [20,323] ----D C:\ProgramData\Asus
O43 - CFD: 24/02/2012 - 03:42:14 - [0,002] ----D C:\ProgramData\ASUS WebStorage
O43 - CFD: 24/01/2013 - 01:35:18 - [0] ----D C:\ProgramData\AVAST Software
O43 - CFD: 21/10/2012 - 18:21:37 - [0] ----D C:\ProgramData\Babylon
O43 - CFD: 11/11/2012 - 16:51:44 - [0,031] ----D C:\ProgramData\Brother
O43 - CFD: 20/10/2012 - 00:52:16 - [4,685] ----D C:\ProgramData\ChangeFolderView
O43 - CFD: 20/10/2012 - 10:34:56 - [0,000] ----D C:\ProgramData\CyberLink
O43 - CFD: 20/10/2012 - 21:27:26 - [0,002] ----D C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 24/02/2012 - 03:43:10 - [562,558] ----D C:\ProgramData\Deadtime Stories
O43 - CFD: 14/07/2009 - 06:08:56 - [0] ----D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:08:56 - [0] ----D C:\ProgramData\Documents
O43 - CFD: 14/07/2009 - 06:08:56 - [0] ----D C:\ProgramData\Favorites
O43 - CFD: 20/10/2012 - 00:52:26 - [1,058] ----D C:\ProgramData\FolderView
O43 - CFD: 20/10/2012 - 21:26:09 - [1,136] ----D C:\ProgramData\InstallMate
O43 - CFD: 20/10/2012 - 10:30:16 - [0,264] ----D C:\ProgramData\Intel
O43 - CFD: 03/11/2012 - 15:58:08 - [15,974] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 08/12/2012 - 21:58:49 - [0,184] ----D C:\ProgramData\ManyCam
O43 - CFD: 21/10/2012 - 00:17:18 - [0,003] ----D C:\ProgramData\McAfee
O43 - CFD: 26/10/2012 - 17:46:11 - [728,609] -S--D C:\ProgramData\Microsoft
O43 - CFD: 04/11/2012 - 03:20:10 - [6,489] ----D C:\ProgramData\NVIDIA
O43 - CFD: 20/10/2012 - 10:24:45 - [2,393] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 20/10/2012 - 10:30:51 - [0,003] ----D C:\ProgramData\P4G
O43 - CFD: 20/10/2012 - 21:26:07 - [0] ----D C:\ProgramData\Premium
O43 - CFD: 29/01/2013 - 02:32:13 - [58,304] ----D C:\ProgramData\Skype
O43 - CFD: 20/10/2012 - 10:27:29 - [0,009] ----D C:\ProgramData\SonicFocus
O43 - CFD: 14/07/2009 - 06:08:56 - [0] ----D C:\ProgramData\Start Menu
O43 - CFD: 29/12/2012 - 00:19:47 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 22/10/2012 - 07:18:29 - [0,670] ----D C:\ProgramData\SweetIM
O43 - CFD: 24/01/2013 - 01:46:19 - [0] ----D C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 06:08:56 - [0] ----D C:\ProgramData\Templates
O43 - CFD: 20/10/2012 - 10:35:04 - [0] ----D C:\ProgramData\USBChargerPlus
O43 - CFD: 07/11/2012 - 20:18:27 - [0,041] ----D C:\Users\Cécile\AppData\Roaming\Adobe
O43 - CFD: 16/01/2013 - 23:03:33 - [0,019] ----D C:\Users\Cécile\AppData\Roaming\Apple Computer
O43 - CFD: 20/10/2012 - 00:56:38 - [0,001] ----D C:\Users\Cécile\AppData\Roaming\ASUS WebStorage
O43 - CFD: 21/10/2012 - 18:21:36 - [0,007] ----D C:\Users\Cécile\AppData\Roaming\Babylon
O43 - CFD: 02/11/2012 - 21:48:14 - [0] ----D C:\Users\Cécile\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 18/01/2013 - 18:17:11 - [0,000] ----D C:\Users\Cécile\AppData\Roaming\Identities
O43 - CFD: 11/11/2012 - 16:51:50 - [0] ----D C:\Users\Cécile\AppData\Roaming\InstallShield
O43 - CFD: 20/10/2012 - 00:51:30 - [0,001] ----D C:\Users\Cécile\AppData\Roaming\Intel
O43 - CFD: 20/10/2012 - 01:09:58 - [0,001] ----D C:\Users\Cécile\AppData\Roaming\Macromedia
O43 - CFD: 03/11/2012 - 15:58:32 - [0,004] ----D C:\Users\Cécile\AppData\Roaming\Malwarebytes
O43 - CFD: 08/12/2012 - 22:04:54 - [17,129] ----D C:\Users\Cécile\AppData\Roaming\ManyCam
O43 - CFD: 14/07/2009 - 08:44:38 - [0] ----D C:\Users\Cécile\AppData\Roaming\Media Center Programs
O43 - CFD: 03/12/2012 - 01:53:49 - [1,733] -S--D C:\Users\Cécile\AppData\Roaming\Microsoft
O43 - CFD: 22/10/2012 - 07:30:43 - [21,574] ----D C:\Users\Cécile\AppData\Roaming\OpenOffice.org
O43 - CFD: 18/01/2013 - 18:21:32 - [0,002] ----D C:\Users\Cécile\AppData\Roaming\PhotoFiltre Studio X
O43 - CFD: 29/01/2013 - 21:57:47 - [254,702] ----D C:\Users\Cécile\AppData\Roaming\Skype
O43 - CFD: 05/12/2012 - 22:04:40 - [0,002] ----D C:\Users\Cécile\AppData\Roaming\TeamViewer
O43 - CFD: 25/01/2013 - 23:43:31 - [6,108] ----D C:\Users\Cécile\AppData\Roaming\TS3Client
O43 - CFD: 06/01/2013 - 19:34:43 - [3,067] ----D C:\Users\Cécile\AppData\Roaming\uTorrent
O43 - CFD: 03/01/2013 - 01:18:10 - [0,077] ----D C:\Users\Cécile\AppData\Roaming\vlc
O43 - CFD: 20/10/2012 - 02:02:04 - [0,000] ----D C:\Users\Cécile\AppData\Roaming\WinRAR
O43 - CFD: 07/11/2012 - 20:18:27 - [13,603] ----D C:\Users\Cécile\AppData\Local\Adobe
O43 - CFD: 08/12/2012 - 21:59:28 - [0,165] ----D C:\Users\Cécile\AppData\Local\APN
O43 - CFD: 13/01/2013 - 18:07:45 - [0] ----D C:\Users\Cécile\AppData\Local\Apple
O43 - CFD: 20/10/2012 - 00:51:28 - [0] ----D C:\Users\Cécile\AppData\Local\Application Data
O43 - CFD: 20/10/2012 - 00:51:31 - [0,000] ----D C:\Users\Cécile\AppData\Local\ASUS
O43 - CFD: 24/01/2013 - 00:23:33 - [3,343] ----D C:\Users\Cécile\AppData\Local\Diagnostics
O43 - CFD: 20/10/2012 - 01:20:23 - [448,945] ----D C:\Users\Cécile\AppData\Local\Google
O43 - CFD: 20/10/2012 - 00:51:28 - [0] ----D C:\Users\Cécile\AppData\Local\Historique
O43 - CFD: 19/01/2013 - 13:50:23 - [0,047] ----D C:\Users\Cécile\AppData\Local\LogMeIn Hamachi
O43 - CFD: 04/11/2012 - 03:21:32 - [0,364] ----D C:\Users\Cécile\AppData\Local\Lollipop
O43 - CFD: 08/12/2012 - 21:59:20 - [0,546] ----D C:\Users\Cécile\AppData\Local\ManyCam
O43 - CFD: 14/11/2012 - 19:27:14 - [279,141] ----D C:\Users\Cécile\AppData\Local\Microsoft
O43 - CFD: 22/01/2013 - 11:34:26 - [0,452] ----D C:\Users\Cécile\AppData\Local\Microsoft Games
O43 - CFD: 20/10/2012 - 01:05:30 - [0,039] ----D C:\Users\Cécile\AppData\Local\Power2Go
O43 - CFD: 18/01/2013 - 00:58:26 - [0] ----D C:\Users\Cécile\AppData\Local\Programs
O43 - CFD: 01/12/2012 - 03:40:42 - [55,440] ----D C:\Users\Cécile\AppData\Local\TeamSpeak 3 Client
O43 - CFD: 29/01/2013 - 21:57:32 - [0,330] ----D C:\Users\Cécile\AppData\Local\Temp
O43 - CFD: 20/10/2012 - 00:51:28 - [0] ----D C:\Users\Cécile\AppData\Local\Temporary Internet Files
O43 - CFD: 27/11/2012 - 20:44:05 - [3,137] ----D C:\Users\Cécile\AppData\Local\VirtualStore
O43 - CFD: 19/11/2012 - 09:47:31 - [0] ----D C:\Users\Cécile\AppData\Local\{019AB081-1DA8-4ADB-89DE-90A19FA9F242}
O43 - CFD: 31/10/2012 - 20:24:55 - [0] ----D C:\Users\Cécile\AppData\Local\{02638F56-C4B8-44DD-BFAD-BA19488AB65D}
O43 - CFD: 21/10/2012 - 01:39:20 - [0] ----D C:\Users\Cécile\AppData\Local\{04080221-12C3-4926-985B-EF0ACCB5E6AA}
O43 - CFD: 25/12/2012 - 00:53:38 - [0] ----D C:\Users\Cécile\AppData\Local\{04CD61FA-3376-43DE-A489-9DD1781822B5}
O43 - CFD: 23/12/2012 - 00:52:17 - [0] ----D C:\Users\Cécile\AppData\Local\{09CD1447-BCC9-422C-866B-A05560C5EFEC}
O43 - CFD: 20/01/2013 - 23:41:07 - [0] ----D C:\Users\Cécile\AppData\Local\{0E54B527-7384-4F8D-B60D-12CFB655ABD6}
O43 - CFD: 05/01/2013 - 21:34:56 - [0] ----D C:\Users\Cécile\AppData\Local\{0F3B09D0-0597-4CCB-86D2-76B3D38B6DAB}
O43 - CFD: 30/10/2012 - 17:24:37 - [0] ----D C:\Users\Cécile\AppData\Local\{12CE743A-9AC0-416F-B654-3DB291A131CC}
O43 - CFD: 04/11/2012 - 03:22:12 - [0] ----D C:\Users\Cécile\AppData\Local\{16AAAA19-F0AE-4F9D-A732-CEBCC4262036}
O43 - CFD: 29/10/2012 - 17:30:25 - [0] ----D C:\Users\Cécile\AppData\Local\{1B97ACD3-500F-411D-9CEA-B86B690C6AB0}
O43 - CFD: 17/01/2013 - 22:25:55 - [0] ----D C:\Users\Cécile\AppData\Local\{1C3EE593-33BA-432F-88AC-AFE8D85EFED1}
O43 - CFD: 20/01/2013 - 00:03:04 - [0] ----D C:\Users\Cécile\AppData\Local\{1FD286CF-35F9-43B2-84E0-5A59CF2C11BD}
O43 - CFD: 22/01/2013 - 01:59:13 - [0] ----D C:\Users\Cécile\AppData\Local\{250EB7F0-3D4A-44A6-BFED-052B1F646E3A}
O43 - CFD: 29/12/2012 - 17:44:29 - [0] ----D C:\Users\Cécile\AppData\Local\{260698C7-1EF5-4C59-AA77-8FEE6E6A5F45}
O43 - CFD: 17/12/2012 - 14:42:38 - [0] ----D C:\Users\Cécile\AppData\Local\{2A666D0B-39F1-4CAE-888F-3BE6C000A427}
O43 - CFD: 05/11/2012 - 08:14:31 - [0] ----D C:\Users\Cécile\AppData\Local\{38A6E00B-B449-4BFC-B8CA-AF899B996DB5}
O43 - CFD: 03/11/2012 - 14:42:12 - [0] ----D C:\Users\Cécile\AppData\Local\{40284648-5725-45F3-9F11-C393EC083664}
O43 - CFD: 11/01/2013 - 23:17:30 - [0] ----D C:\Users\Cécile\AppData\Local\{40469379-C51C-4F59-B0F2-7CA61E10F78A}
O43 - CFD: 16/12/2012 - 20:32:34 - [0] ----D C:\Users\Cécile\AppData\Local\{408D1BDF-7065-4BE1-9421-45CE1AD0B1D2}
O43 - CFD: 01/11/2012 - 14:03:47 - [0] ----D C:\Users\Cécile\AppData\Local\{41758ACA-C0B8-4654-9652-22FA48B60A15}
O43 - CFD: 20/10/2012 - 20:42:41 - [0] ----D C:\Users\Cécile\AppData\Local\{4709B5B4-1B42-4148-B1A6-805113FF826A}
O43 - CFD: 15/12/2012 - 11:29:27 - [0] ----D C:\Users\Cécile\AppData\Local\{4A498F9C-C3D1-4ED4-8F8A-1ED6D0DDCB67}
O43 - CFD: 27/01/2013 - 23:29:23 - [0] ----D C:\Users\Cécile\AppData\Local\{4E441152-DAFB-4BF0-B08C-D71A4E4A15D8}
O43 - CFD: 13/12/2012 - 09:46:11 - [0] ----D C:\Users\Cécile\AppData\Local\{4F1A99AB-3B97-49EB-A6CD-530A308181DE}
O43 - CFD: 20/11/2012 - 21:50:16 - [0] ----D C:\Users\Cécile\AppData\Local\{533156B2-9A7D-49A9-AD06-276F22807393}
O43 - CFD: 14/12/2012 - 10:46:17 - [0] ----D C:\Users\Cécile\AppData\Local\{53B637FC-4CDB-4189-96F9-E32EEF312137}
O43 - CFD: 10/01/2013 - 00:07:36 - [0] ----D C:\Users\Cécile\AppData\Local\{578B7ECC-44F1-44F4-9AD8-E72139F59375}
O43 - CFD: 12/01/2013 - 19:49:37 - [0] ----D C:\Users\Cécile\AppData\Local\{5AF11BBB-8A03-426D-9730-7134340B025B}
O43 - CFD: 28/10/2012 - 16:16:43 - [0] ----D C:\Users\Cécile\AppData\Local\{5D78F5EF-237B-4821-99D6-4D2C8673289C}
O43 - CFD: 22/11/2012 - 11:10:43 - [0] ----D C:\Users\Cécile\AppData\Local\{6284BE8D-72B4-4C10-8F64-0672C3A2999B}
O43 - CFD: 27/11/2012 - 22:38:51 - [0] ----D C:\Users\Cécile\AppData\Local\{651945DD-5EE6-49D8-85D0-185FEEC3ABA8}
O43 - CFD: 13/01/2013 - 19:50:02 - [0] ----D C:\Users\Cécile\AppData\Local\{65379269-6723-4EF7-945A-94B8B5D59CE9}
O43 - CFD: 12/12/2012 - 00:21:58 - [0] ----D C:\Users\Cécile\AppData\Local\{69494208-2D8D-4EAC-BE4D-3F557929FF90}
O43 - CFD: 15/12/2012 - 23:29:50 - [0] ----D C:\Users\Cécile\AppData\Local\{6F311546-042B-4472-9ADE-DC011D373A66}
O43 - CFD: 02/11/2012 - 18:28:35 - [0] ----D C:\Users\Cécile\AppData\Local\{700D793C-525F-4C42-9247-3CBF2D267BDF}
O43 - CFD: 26/12/2012 - 20:53:33 - [0] ----D C:\Users\Cécile\AppData\Local\{71AE91C2-5992-4436-B09E-C06FB05B4AE0}
O43 - CFD: 28/11/2012 - 10:38:55 - [0] ----D C:\Users\Cécile\AppData\Local\{79E408CD-BA7F-4016-964C-5E2E490D46C2}
O43 - CFD: 02/11/2012 - 02:04:02 - [0] ----D C:\Users\Cécile\AppData\Local\{7DE0F96B-FF27-46AD-8C38-1F383DC2F43D}
O43 - CFD: 27/12/2012 - 19:07:15 - [0] ----D C:\Users\Cécile\AppData\Local\{8381016E-153E-4C90-9959-E0B406B2ADF5}
O43 - CFD: 21/11/2012 - 11:10:25 - [0] ----D C:\Users\Cécile\AppData\Local\{847F8024-D298-40AA-9F58-6D780B2AD78A}
O43 - CFD: 11/12/2012 - 00:17:49 - [0] ----D C:\Users\Cécile\AppData\Local\{8A48AE31-4B2D-4AB3-B541-2B629D3C9480}
O43 - CFD: 10/01/2013 - 14:06:13 - [0] ----D C:\Users\Cécile\AppData\Local\{93A1C7FC-AB1E-47F5-A001-420C58445243}
O43 - CFD: 31/10/2012 - 23:42:52 - [0] ----D C:\Users\Cécile\AppData\Local\{954CA0FF-86FD-43D6-8964-F3553A5109CE}
O43 - CFD: 26/11/2012 - 08:03:06 - [0] ----D C:\Users\Cécile\AppData\Local\{955F3CF5-0FA3-4A23-B123-602EFDEB60D1}
O43 - CFD: 03/01/2013 - 19:06:00 - [0] ----D C:\Users\Cécile\AppData\Local\{959388B2-882E-4D13-A9E9-71D4A1AD63C2}
O43 - CFD: 21/11/2012 - 23:10:42 - [0] ----D C:\Users\Cécile\AppData\Local\{9B0A0155-9A51-4975-BBCA-5615AB0645A8}
O43 - CFD: 28/10/2012 - 15:37:03 - [0] ----D C:\Users\Cécile\AppData\Local\{9CE5F105-7725-4550-857C-9395C0F2E927}
O43 - CFD: 14/12/2012 - 22:46:29 - [0] ----D C:\Users\Cécile\AppData\Local\{9F8F4DE9-83D2-48B6-83FA-7C5FB26E9193}
O43 - CFD: 18/01/2013 - 16:58:52 - [0] ----D C:\Users\Cécile\AppData\Local\{9FDDD2CA-8909-4566-AEF2-6A870F232839}
O43 - CFD: 27/11/2012 - 10:38:48 - [0] ----D C:\Users\Cécile\AppData\Local\{A17D2905-D6BA-4E40-92FB-B4930D1D614D}
O43 - CFD: 11/01/2013 - 02:06:25 - [0] ----D C:\Users\Cécile\AppData\Local\{A65AB38B-02CB-48F7-8AC9-9DFD1399CCB9}
O43 - CFD: 13/01/2013 - 07:49:50 - [0] ----D C:\Users\Cécile\AppData\Local\{A8C440F5-F3AA-4929-A734-6F7A7691A2BC}
O43 - CFD: 19/11/2012 - 22:43:58 - [0] ----D C:\Users\Cécile\AppData\Local\{A8D4145D-05AC-43FC-AE04-04F8EC3266D7}
O43 - CFD: 23/12/2012 - 17:13:35 - [0] ----D C:\Users\Cécile\AppData\Local\{B48CE164-8081-4815-A410-A3245C744214}
O43 - CFD: 12/12/2012 - 13:25:22 - [0] ----D C:\Users\Cécile\AppData\Local\{B5D04C5E-67BD-43D7-9DDC-82E858C6F693}
O43 - CFD: 28/12/2012 - 15:11:14 - [0] ----D C:\Users\Cécile\AppData\Local\{C5F7747D-6ADA-458C-8EA6-879A0EFEEC44}
O43 - CFD: 11/12/2012 - 00:04:35 - [0] ----D C:\Users\Cécile\AppData\Local\{C7DEC0A2-E897-49CF-A114-EB01CAAE76F7}
O43 - CFD: 29/12/2012 - 03:11:36 - [0] ----D C:\Users\Cécile\AppData\Local\{C80F5BE7-AA6A-4487-913E-FF77EEF45A77}
O43 - CFD: 04/12/2012 - 20:43:17 - [0] ----D C:\Users\Cécile\AppData\Local\{D3883D6D-207F-456D-90BC-F0E45A1710CE}
O43 - CFD: 25/12/2012 - 17:05:36 - [0] ----D C:\Users\Cécile\AppData\Local\{D4B4EDD8-A91B-4D21-8031-61037560552D}
O43 - CFD: 09/01/2013 - 12:07:24 - [0] ----D C:\Users\Cécile\AppData\Local\{D6071A54-463C-4519-A31A-9127C728DFBC}
O43 - CFD: 19/01/2013 - 22:47:39 - [0] ----D C:\Users\Cécile\AppData\Local\{D743FF45-6E87-455F-AF36-57C6C5646C28}
O43 - CFD: 11/12/2012 - 12:21:45 - [0] ----D C:\Users\Cécile\AppData\Local\{D7815643-C7BB-4B4D-B20D-FD99C68CA8C2}
O43 - CFD: 06/11/2012 - 09:20:11 - [0] ----D C:\Users\Cécile\AppData\Local\{D9391047-4D2F-453B-BED6-F539516A5CFA}
O43 - CFD: 25/12/2012 - 02:04:41 - [0] ----D C:\Users\Cécile\AppData\Local\{DCD254F1-62F6-47EE-9B5E-0DC73127DEB1}
O43 - CFD: 06/11/2012 - 19:17:14 - [0] ----D C:\Users\Cécile\AppData\Local\{DE2A45E6-4FEF-4001-81A0-D27B30E3A1AE}
O43 - CFD: 11/11/2012 - 13:52:19 - [0] ----D C:\Users\Cécile\AppData\Local\{DE61DC9C-0F43-44B3-B675-090E5622870C}
O43 - CFD: 19/01/2013 - 04:59:07 - [0] ----D C:\Users\Cécile\AppData\Local\{E30674CB-6D89-4D3A-BBC8-35ACD36D1B07}
O43 - CFD: 26/10/2012 - 23:16:53 - [0] ----D C:\Users\Cécile\AppData\Local\{E92D30F7-D07E-4D83-9507-C3CAC525B6CD}
O43 - CFD: 30/12/2012 - 14:49:52 - [0] ----D C:\Users\Cécile\AppData\Local\{EDEBFC93-B0F7-4140-BCE0-AB041CAD5164}
O43 - CFD: 14/07/2009 - 05:54:32 - [0,014] R---D C:\Users\Cécile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 21/10/2012 - 03:12:34 - [0,000] R---D C:\Users\Cécile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 24/01/2013 - 01:57:17 - [0,003] ----D C:\Users\Cécile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
O43 - CFD: 14/07/2009 - 05:49:38 - [0,001] R---D C:\Users\Cécile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 26/11/2012 - 17:28:18 - [0] ----D C:\Users\Cécile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mario Forever
O43 - CFD: 21/10/2012 - 18:21:51 - [0] ----D C:\Users\Cécile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre Studio X
O43 - CFD: 03/12/2012 - 15:59:39 - [0,002] ----D C:\Users\Cécile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\project64 1.6
O43 - CFD: 22/11/2012 - 00:21:01 - [0] ----D C:\Users\Cécile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pvm
O43 - CFD: 04/11/2012 - 03:21:30 - [0,000] R---D C:\Users\Cécile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 01/12/2012 - 03:40:42 - [0,002] ----D C:\Users\Cécile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
O43 - CFD: 20/10/2012 - 02:01:51 - [0,003] ----D C:\Users\Cécile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ Scan Program Folder in 00mn 24s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.D16A8A04FB34EBE3579D16AFB0E98EE8] - 29/01/2013 - 21:57:22 ---A- . (...) -- C:\Windows\WindowsUpdate.log   [1636110]
O44 - LFC:[MD5.753AB4325482CC169D5FC8EEA563E30F] - 29/01/2013 - 20:41:06  . (.Microsoft - Système de classement PEGI/BBFC.) -- C:\Windows\System32\perfc009.dat   [44544]
O44 - LFC:[MD5.E485A35B3EDA147B7BCEB0448E3FC8CD] - 29/01/2013 - 20:41:06  . (.Microsoft - Système de classement PEGI/BBFC.) -- C:\Windows\System32\perfc00C.dat   [44544]
O44 - LFC:[MD5.5FEDA887DEB76C9007C8A6472F556AF1] - 29/01/2013 - 20:41:06  . (.Microsoft - Système de classement PEGI/BBFC.) -- C:\Windows\System32\perfh009.dat   [44544]
O44 - LFC:[MD5.8F8FC6987E1A9A542288A9DB1978DC2A] - 29/01/2013 - 20:41:06  . (.Microsoft - Système de classement PEGI/BBFC.) -- C:\Windows\System32\perfh00C.dat   [44544]
O44 - LFC:[MD5.825774B35040C36FCC5A63CA34C62C46] - 29/01/2013 - 20:41:06 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI   [1690558]
O44 - LFC:[MD5.753AB4325482CC169D5FC8EEA563E30F] - 29/01/2013 - 20:41:06 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat   [125350]
O44 - LFC:[MD5.E485A35B3EDA147B7BCEB0448E3FC8CD] - 29/01/2013 - 20:41:06 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat   [153676]
O44 - LFC:[MD5.5FEDA887DEB76C9007C8A6472F556AF1] - 29/01/2013 - 20:41:06 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat   [656610]
O44 - LFC:[MD5.8F8FC6987E1A9A542288A9DB1978DC2A] - 29/01/2013 - 20:41:06 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat   [759818]
O44 - LFC:[MD5.825774B35040C36FCC5A63CA34C62C46] - 29/01/2013 - 20:41:06 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI   [1690558]
O44 - LFC:[MD5.D6A606E59EBBAD2B2713244901808768] - 29/01/2013 - 20:39:18 -S-A- . (...) -- C:\Windows\bootstat.dat   [67584]
O44 - LFC:[MD5.33EDDA3B5A9FD7E240920505288EFB2C] - 26/01/2013 - 18:51:49 ---A- . (...) -- C:\Windows\setupact.log   [1170]
O44 - LFC:[MD5.AE7DF33C46239520790AA0E561BBEA48] - 26/01/2013 - 18:51:25 ---A- . (...) -- C:\Windows\PFRO.log   [1348]
O44 - LFC:[MD5.40EA00EBD8351FF77F4AB98120EB7C96] - 24/01/2013 - 01:52:31 ---A- . (...) -- C:\ComboFix.txt   [25395]
O44 - LFC:[MD5.3CF3D4A45CC2AF973DBC30EC8D33252B] - 24/01/2013 - 01:49:23 ---A- . (...) -- C:\Windows\system.ini   [215]
O44 - LFC:[MD5.753BC16326FEE4A421ACB636CCD602F4] - 24/01/2013 - 01:38:53 ---A- . (.NirSoft - NirCmd.) -- C:\Windows\NIRCMD.exe   [60416]
O44 - LFC:[MD5.A46842C9B0C567A5A9584E83A163560C] - 24/01/2013 - 01:38:53 ---A- . (.SteelWerX - Freeware implementation of REG.EXE.) -- C:\Windows\SWREG.exe   [518144]
O44 - LFC:[MD5.0297C72529807322B152F517FDB0A9FC] - 24/01/2013 - 01:38:53 ---A- . (.SteelWerX - Freeware implementation of SC.EXE.) -- C:\Windows\SWSC.exe   [406528]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 18/01/2013 - 16:47:49 ---A- . (...) -- C:\Windows\setuperr.log   [0]
O44 - LFC:[MD5.0F3ED5A2CE4AB5E1DB36C18A073A0287] - 16/01/2013 - 23:01:52 ---A- . (...) -- C:\Windows\SysNative\AutoRunFilter.ini   [2178]
O44 - LFC:[MD5.10DC1E6D03F6BCC9571A2CF18513AF2D] - 10/01/2013 - 03:48:54  . (.Microsoft - Système de classement ESRB.) -- C:\Windows\System32\FNTCACHE.DAT   [51712]
O44 - LFC:[MD5.10DC1E6D03F6BCC9571A2CF18513AF2D] - 10/01/2013 - 03:48:54 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT   [296176]
O44 - LFC:[MD5.8ACC1EFC15C4EA1243FF0A48B397BCC1] - 10/01/2013 - 03:14:14  . (...) -- C:\Windows\System32\MRT.exe   [420064]
O44 - LFC:[MD5.997938D423CE830161CB6059434E3C9F] - 09/01/2013 - 08:22:50 ---A- . (.Microsoft - Système de classification OFLC-NZ.) -- C:\Windows\SysNative\oflc-nz.rs   [45568]
O44 - LFC:[MD5.997938D423CE830161CB6059434E3C9F] - 09/01/2013 - 08:22:50 ---A- . (.Microsoft - Système de classification OFLC-NZ.) -- C:\Windows\System32\oflc-nz.rs   [45568]
O44 - LFC:[MD5.EBB73E4E8CA01089CF74ECE506EB7607] - 09/01/2013 - 08:22:50 ---A- . (.Microsoft - Système de notation CSRR.) -- C:\Windows\SysNative\csrr.rs   [43520]
O44 - LFC:[MD5.EBB73E4E8CA01089CF74ECE506EB7607] - 09/01/2013 - 08:22:50 ---A- . (.Microsoft - Système de notation CSRR.) -- C:\Windows\System32\csrr.rs   [43520]
O44 - LFC:[MD5.C4B0793E4B97AA36A2A8C81A7AA1979A] - 09/01/2013 - 08:22:49 ---A- . (.Microsoft - Système de classement PEGI/BBFC.) -- C:\Windows\SysNative\pegibbfc.rs   [44544]
O44 - LFC:[MD5.C4B0793E4B97AA36A2A8C81A7AA1979A] - 09/01/2013 - 08:22:49 ---A- . (.Microsoft - Système de classement PEGI/BBFC.) -- C:\Windows\System32\pegibbfc.rs   [44544]
O44 - LFC:[MD5.5C48A43FC30FC61ECB1335DC646686BC] - 09/01/2013 - 08:22:49 ---A- . (.Microsoft - Système de classement USK.) -- C:\Windows\SysNative\usk.rs   [30720]
O44 - LFC:[MD5.5C48A43FC30FC61ECB1335DC646686BC] - 09/01/2013 - 08:22:49 ---A- . (.Microsoft - Système de classement USK.) -- C:\Windows\System32\usk.rs   [30720]
O44 - LFC:[MD5.A2E0F1E01A0983E9C94565BBEC862BF7] - 09/01/2013 - 08:22:49 ---A- . (.Microsoft - Système de classification COB-AU.) -- C:\Windows\SysNative\cob-au.rs   [40960]
O44 - LFC:[MD5.A2E0F1E01A0983E9C94565BBEC862BF7] - 09/01/2013 - 08:22:49 ---A- . (.Microsoft - Système de classification COB-AU.) -- C:\Windows\System32\cob-au.rs   [40960]
O44 - LFC:[MD5.54B11BB2AFBC3D5EBA9C96F0C1820B9B] - 09/01/2013 - 08:22:49 ---A- . (.Microsoft - Système de classification FPB.) -- C:\Windows\SysNative\fpb.rs   [46592]
O44 - LFC:[MD5.54B11BB2AFBC3D5EBA9C96F0C1820B9B] - 09/01/2013 - 08:22:49 ---A- . (.Microsoft - Système de classification FPB.) -- C:\Windows\System32\fpb.rs   [46592]
O44 - LFC:[MD5.4489D5D2CB4BA0799F3FB4625DE181CF] - 09/01/2013 - 08:22:48 ---A- . (.Microsoft - Système de classement GRB.) -- C:\Windows\SysNative\grb.rs   [21504]
O44 - LFC:[MD5.4489D5D2CB4BA0799F3FB4625DE181CF] - 09/01/2013 - 08:22:48 ---A- . (.Microsoft - Système de classement GRB.) -- C:\Windows\System32\grb.rs   [21504]
O44 - LFC:[MD5.661AE5EAC62C4598DD01795CEB915BAE] - 09/01/2013 - 08:22:48 ---A- . (.Microsoft - Système de classement PEGI.) -- C:\Windows\SysNative\pegi.rs   [20480]
O44 - LFC:[MD5.661AE5EAC62C4598DD01795CEB915BAE] - 09/01/2013 - 08:22:48 ---A- . (.Microsoft - Système de classement PEGI.) -- C:\Windows\System32\pegi.rs   [20480]
O44 - LFC:[MD5.65A8302C7551CFE45FAA2BC085C9E7E2] - 09/01/2013 - 08:22:48 ---A- . (.Microsoft - Système de classification DJCTQ.) -- C:\Windows\SysNative\djctq.rs   [15360]
O44 - LFC:[MD5.65A8302C7551CFE45FAA2BC085C9E7E2] - 09/01/2013 - 08:22:48 ---A- . (.Microsoft - Système de classification DJCTQ.) -- C:\Windows\System32\djctq.rs   [15360]
O44 - LFC:[MD5.6D540AF9B183FC97DC4CC54369561548] - 09/01/2013 - 08:22:47 ---A- . (.Microsoft - Système de classement PEGI au Portugal.) -- C:\Windows\SysNative\pegi-pt.rs   [20480]
O44 - LFC:[MD5.6D540AF9B183FC97DC4CC54369561548] - 09/01/2013 - 08:22:47 ---A- . (.Microsoft - Système de classement PEGI au Portugal.) -- C:\Windows\System32\pegi-pt.rs   [20480]
O44 - LFC:[MD5.51D25C805A01A2C4F930F9720CF51FFE] - 09/01/2013 - 08:22:43 ---A- . (.Microsoft - Système de classement ESRB.) -- C:\Windows\SysNative\esrb.rs   [51712]
O44 - LFC:[MD5.51D25C805A01A2C4F930F9720CF51FFE] - 09/01/2013 - 08:22:43 ---A- . (.Microsoft - Système de classement ESRB.) -- C:\Windows\System32\esrb.rs   [51712]
O44 - LFC:[MD5.D0C01412FBF59C1C25630C49F0C1B803] - 09/01/2013 - 08:22:42 ---A- . (.Microsoft - Système de classement CERO.) -- C:\Windows\SysNative\cero.rs   [55296]
O44 - LFC:[MD5.D0C01412FBF59C1C25630C49F0C1B803] - 09/01/2013 - 08:22:42 ---A- . (.Microsoft - Système de classement CERO.) -- C:\Windows\System32\cero.rs   [55296]
O44 - LFC:[MD5.4773EB5962548068547214A620E9ACC3] - 09/01/2013 - 08:22:42 ---A- . (.Microsoft - Système de classement OFLC.) -- C:\Windows\SysNative\oflc.rs   [23552]
O44 - LFC:[MD5.4773EB5962548068547214A620E9ACC3] - 09/01/2013 - 08:22:42 ---A- . (.Microsoft - Système de classement OFLC.) -- C:\Windows\System32\oflc.rs   [23552]
O44 - LFC:[MD5.9BB05674E013C35F4DAED51F5015355D] - 09/01/2013 - 08:22:42 ---A- . (.Microsoft - Système de classement PEGI en Finlande.) -- C:\Windows\SysNative\pegi-fi.rs   [20480]
O44 - LFC:[MD5.9BB05674E013C35F4DAED51F5015355D] - 09/01/2013 - 08:22:42 ---A- . (.Microsoft - Système de classement PEGI en Finlande.) -- C:\Windows\System32\pegi-fi.rs   [20480]
O44 - LFC:[MD5.1BCDB508143B517F21BBDAC10F5777BF] - 09/01/2013 - 08:22:00  . (.Microsoft - Système de classification COB-AU.) -- C:\Windows\System32\conhost.exe   [40960]
O44 - LFC:[MD5.1153AC6E133AA849853DFD407B086B80] - 30/11/2012 - 00:15:43 ---A- . (...) -- C:\Windows\SysNative\locale.nls   [420064]
O44 - LFC:[MD5.1153AC6E133AA849853DFD407B086B80] - 30/11/2012 - 00:15:43 ---A- . (...) -- C:\Windows\System32\locale.nls   [420064]
O44 - LFC:[MD5.639774C9ACD063F028F6084ABF5593AD] - 23/11/2012 - 04:13:57  . (...) -- C:\Windows\System32\taskhost.exe   [1690558]
O44 - LFC:[MD5.F042EE4C8D66248D9B86DCF52ABAE416] - 26/06/2011 - 07:45:56 ---A- . (...) -- C:\Windows\PEV.exe   [256000]
O44 - LFC:[MD5.0277C027A26428DB64EF4F64F52BB4FD] - 07/11/2010 - 18:20:24 ---A- . (...) -- C:\Windows\MBR.exe   [208896]
O44 - LFC:[MD5.9E05A9C264C8A908A8E79450FCBFF047] - 31/08/2000 - 01:00:00 ---A- . (...) -- C:\Windows\grep.exe   [80412]
O44 - LFC:[MD5.2B657A67AEBB84AEA5632C53E61E23BF] - 31/08/2000 - 01:00:00 ---A- . (...) -- C:\Windows\sed.exe   [98816]
O44 - LFC:[MD5.5E832F4FAF5F481F2EAF3B3A48F603B8] - 31/08/2000 - 01:00:00 ---A- . (...) -- C:\Windows\zip.exe   [68096]
~ Scan Files in 00mn 10s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll
~ Scan Keys in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s



---\\ MountPoints2 Shell Key (O51) (None)

---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ Scan Keys in 00mn 00s



---\\ ShareTools MSconfig StartupReg (O53)
O53 - SMSR:HKLM\...\startupreg\ACMON  [Key] . (.ASUS - ACMON.) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
O53 - SMSR:HKLM\...\startupreg\Adobe ARM  [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher  [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe
O53 - SMSR:HKLM\...\startupreg\ApnUpdater  [Key] . (.Ask - Ask Updater.) -- C:\Program Files (x86)\Ask.com\Updater\Updater.exe
O53 - SMSR:HKLM\...\startupreg\APSDaemon  [Key] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O53 - SMSR:HKLM\...\startupreg\ASUS Screen Saver Protector  [Key] . (.ASUS - AsScrPro.) -- C:\Windows\AsScrPro.exe
O53 - SMSR:HKLM\...\startupreg\ASUSPRP  [Key] . (.ASUSTek Computer Inc. - ASUS Product Register Program.) -- C:\Program Files (x86)\ASUS\APRP\APRP.exe
O53 - SMSR:HKLM\...\startupreg\ASUSWebStorage  [Key] . (.ecareme - AsusWebStorage.) -- C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe
O53 - SMSR:HKLM\...\startupreg\ATKMEDIA  [Key] . (.ASUS - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O53 - SMSR:HKLM\...\startupreg\ATKOSD2  [Key] . (.ASUSTek Computer Inc. - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O53 - SMSR:HKLM\...\startupreg\BLEServicesCtrl  [Key] . (.Intel Corporation - Bluetooth LE Services Control Program.) -- C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
O53 - SMSR:HKLM\...\startupreg\BrStsMon00  [Key] . (.Brother Industries, Ltd. - Brother Status Monitor Application.) -- C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
O53 - SMSR:HKLM\...\startupreg\BTMTrayAgent  [Key] . (.Intel Corporation - Bluetooth Shell Extension.) -- C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll
O53 - SMSR:HKLM\...\startupreg\CLMLServer  [Key] . (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
O53 - SMSR:HKLM\...\startupreg\Clownfish  [Key] . (.Bogdan Sharkov - Clownfish for Skype.) -- C:\Program Files (x86)\Clownfish\Clownfish.exe
O53 - SMSR:HKLM\...\startupreg\ControlCenter3  [Key] . (.Brother Industries, Ltd. - ControlCenter Program.) -- C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe
O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Lite  [Key] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O53 - SMSR:HKLM\...\startupreg\ETDCtrl  [Key] . (...) -- C:\Program Files (x86)\Elantech\ETDCtrl.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\HControlUser  [Key] . (.ASUS - HControlUser.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O53 - SMSR:HKLM\...\startupreg\HotKeysCmds  [Key] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O53 - SMSR:HKLM\...\startupreg\IgfxTray  [Key] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O53 - SMSR:HKLM\...\startupreg\LogMeIn Hamachi Ui  [Key] . (.LogMeIn Inc. - Hamachi Client Application.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
O53 - SMSR:HKLM\...\startupreg\ManyCam  [Key] . (.ManyCam LLC - ManyCam Virtual Webcam.) -- C:\Program Files (x86)\ManyCam\Bin\ManyCam.exe
O53 - SMSR:HKLM\...\startupreg\msnmsgr  [Key] . (...) -- ~"C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Persistence  [Key] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O53 - SMSR:HKLM\...\startupreg\RTHDVCPL  [Key] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O53 - SMSR:HKLM\...\startupreg\Skype  [Key] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched  [Key] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O53 - SMSR:HKLM\...\startupreg\SweetIM  [Key] . (.SweetIM Technologies Ltd. - SweetIM Instant Messenger Enhancer.) -- C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
O53 - SMSR:HKLM\...\startupreg\Sweetpacks Communicator  [Key] . (.SweetIM Technologies Ltd. - Update Manager for SweetPacks.) -- C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe
O53 - SMSR:HKLM\...\startupreg\USB3MON  [Key] . (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
O53 - SMSR:HKLM\...\startupreg\Wireless Console 3  [Key] . (.ASUSTeK Computer Inc. - A program that manage wireless devices in s.) -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
~ Scan SMSR Keys in 00mn 00s



---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "DisableRegistryTools"=0
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDrives"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDrives"=0
~ Scan Keys in 00mn 00s



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys   [491088]
O58 - SDL:[MD5.1E6438D4EA6E1174A3B3B1EDC4DE660B] - 30/12/1899 - 16:35:42 --HA- . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\System32\hamachi.sys   [33856]
O58 - SDL:[MD5.16F6F6B7903B913AB41AB848C8BB5658] - 29/02/2012 - 19:08:34 ---A- . (.ASUSTek Computer Inc. - ASUS Charger driver.) -- C:\Windows\SysWOW64\drivers\AiCharger.sys   [17152]
~ Scan Drivers in 00mn 00s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.34 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
O63 - Logiciel: HiJackThis - (.Trend Micro.) [HKLM] -- {45A66726-69BC-466B-A7A4-12FCBA4883D7}
~ Scan ADS in 00mn 00s



---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 24/01/2012 - C:\Program Files (x86)\FinalWire\AIDA64 Extreme Edition\kerneld.x64 - FinalWire AIDA64 Kernel Driver (AIDA64Driver)  .(...) - LEGACY_AIDA64DRIVER
O64 - Services: CurCS - 03/07/2009 - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys (ASMMAP64)  .(.ASUS - Memory mapping Driver.) - LEGACY_ASMMAP64
O64 - Services: CurCS - 07/09/2011 - C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys (ATKWMIACPIIO)  .(.ASUS - ATK WMIACPI Utility.) - LEGACY_ATKWMIACPIIO
O64 - Services: CurCS - ??\??\???? - C:\Windows\System32\Drivers\secdrv.sys (secdrv)  .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
~ Scan Services in 00mn 00s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <ComFile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <ChromeHTML>[HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <ComFile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCR\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
~ Scan Keys in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Windows\System32\ie4uinit.exe (.not file.)
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Windows\System32\ie4uinit.exe (.not file.)
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Windows\System32\ie4uinit.exe (.not file.)
~ Scan Keys in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Search the web (Babylon)) - [url=http://search.babylon.com]Babylon Search[/url]
O69 - SBI: SearchScopes [HKCU] {202AAA64-69EC-4A58-92DE-2EA963D8991D} - (Bing) - [url=http://www.bing.com]Bing[/url]
O69 - SBI: SearchScopes [HKCU] {EEE6C360-6118-11DC-9C72-001320C79847} [DefaultScope] - (SweetIM Search) - [url=http://search.sweetim.com]Server Error[/url]
~ Scan Keys in 00mn 00s



---\\ Recherche des services démarrés par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll   [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll   [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll   [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll   [853504]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll   [679424]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll   [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll   [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll   [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll   [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll   [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll   [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll   [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll   [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll   [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll   [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll   [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll   [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll   [70656]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll   [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll   [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll   [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll   [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll   [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll   [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll   [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll   [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll   [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll   [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll   [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll   [100864]
~ Scan Services in 00mn 00s



---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.D79CB35E2A78B3776572A66C0D58F920] [sPRF][20/01/2013] (...) -- C:\Users\Cécile\AppData\Roaming\sp_data.sys   [380]
~ Scan Files in 00mn 00s



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "{CDB1E2E2-EAAA-4A75-8A84-25A7EE4B2816}" | In - None - P6 - TRUE | .(.Pas de propriétaire - Wireless PAN DHCP and DNS Server.) -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O87 - FAEL: "{B1531C31-E4FF-482F-AC2F-F032A019973E}" | In - None - P6 - TRUE | .(.Intel Corporation - WiDiApp.) -- C:\Program Files (x86)\Intel Corporation\Intel WiDi\WiDiApp.exe
O87 - FAEL: "{7CAF7BB8-C76F-487E-AC97-019DE8637D7A}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer.exe (.not file.)
O87 - FAEL: "{E2443159-7C2C-4533-AD5B-BA5F817DA2E2}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer.exe (.not file.)
O87 - FAEL: "{F0D97039-2E9F-45E7-8D7E-F229AF71C92D}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe (.not file.)
O87 - FAEL: "{91E5415F-BC1B-431B-BDEC-CDE9FB9C0D0E}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe (.not file.)
O87 - FAEL: "{E80E9DF0-9A70-413D-AB08-D39F95178E6D}" | In - None - P6 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
O87 - FAEL: "{D18A2474-0AD1-4AA5-A28F-B656108638C9}" | In - None - P17 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
O87 - FAEL: "{ECE81D01-9A70-4E8B-AA9C-679597A1E1CD}" | In - Public - P6 - TRUE | .(.CAPCOM CO., LTD. - RESIDENT EVIL 5.) -- C:\Program Files (x86)\CAPCOM\RESIDENT EVIL 5\RE5DX9.exe
O87 - FAEL: "{D96195D6-2B7D-44AC-95C3-A23AD51CD48A}" | In - Public - P17 - TRUE | .(.CAPCOM CO., LTD. - RESIDENT EVIL 5.) -- C:\Program Files (x86)\CAPCOM\RESIDENT EVIL 5\RE5DX9.exe
O87 - FAEL: "{EC63EF7F-B5CC-4134-A6C8-59DC1925FF85}" | In - Public - P6 - TRUE | .(.CAPCOM CO., LTD. - RESIDENT EVIL 5.) -- C:\Program Files (x86)\CAPCOM\RESIDENT EVIL 5\RE5DX10.exe
O87 - FAEL: "{BF1DFCAC-4C0F-4B06-839D-D303AC03C1AA}" | In - Public - P17 - TRUE | .(.CAPCOM CO., LTD. - RESIDENT EVIL 5.) -- C:\Program Files (x86)\CAPCOM\RESIDENT EVIL 5\RE5DX10.exe
O87 - FAEL: "{D29028E1-E87A-49FC-9ADD-8306CD7742CE}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\ (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (.not file.)
O87 - FAEL: "{277C33E1-1002-4EFD-B115-E9E474E5A669}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\ (x86)\LogMeIn Hamachi\hamachi-2.exe (.not file.)
O87 - FAEL: "{B74500E8-4DD4-4494-AEF3-2A68A7CC4A27}" |Out - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\ (x86)\LogMeIn Hamachi\hamachi-2.exe (.not file.)
O87 - FAEL: "{7146CF7F-8057-4B9C-A3D5-BCCABC68E2D9}" |Out - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\ (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (.not file.)
O87 - FAEL: "{C3435C57-2A98-45EC-B871-20319FE990F6}" | In - Public - P6 - TRUE | .(.SweetIM Technologies Ltd. - Update Manager for SweetPacks.) -- C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe
O87 - FAEL: "{66611092-254F-4FB9-964C-95EB40415AE3}" | In - Public - P17 - TRUE | .(.SweetIM Technologies Ltd. - Update Manager for SweetPacks.) -- C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe
O87 - FAEL: "{C52843FE-2900-41EE-96BF-E78809E53447}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{F7F8700F-70A5-4F42-8BFC-C849F2A37DA8}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{09A942FF-D9CC-4077-9B93-33212BEADA4C}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{8E1AE54D-82A2-444A-AAD5-8AD2667FDEC2}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{70632DDC-9DB9-4DC0-9E89-4E9DD3D39CCD}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O87 - FAEL: "{D662BABA-9D03-40D3-BCD2-2AB0879EFD50}" | In - Public - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{8573C1D8-CB70-488D-B58C-1C2BCFBCF265}" | In - Public - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{677AF6A9-46F2-414B-992D-743C2C47F9E7}" | In - Public - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
O87 - FAEL: "{806C91FF-EB8A-4AC8-8816-1072140C9185}" | In - Public - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
O87 - FAEL: "{5C47D2C1-7F35-4C24-835B-F64E1F08F519}" | In - Public - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O87 - FAEL: "{06E9F333-C17D-4418-9C99-1408F5FA0FC9}" | In - Public - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O87 - FAEL: "{3028EDDD-7F30-405D-A6C3-F6482ADF933A}" | In - Private - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
O87 - FAEL: "{E89B3D67-DF88-4351-8DBF-D335952527F5}" | In - Private - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
O87 - FAEL: "{941D12D7-06C5-4095-9691-13C98F34FF97}" | In - Private - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O87 - FAEL: "{AA5D85D9-6B85-4048-92B5-F2F3D8C5FA38}" | In - Private - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O87 - FAEL: "{744CCDA8-0F30-4EB1-8DC4-9AFAAC75A491}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
~ Scan Firewall in 00mn 00s



---\\ Scan Additionnel (O88)
Database Version : v2.10390 - (29/01/2013)
Clés trouvées (Keys found) : 102
Valeurs trouvées (Values found) : 1
Dossiers trouvés  (Folders found) : 5
Fichiers trouvés  (Files found) : 0

[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0C43FE6B-E881-4AFC-B384-4AEBC90047E8}]   =>PUP.SweetIM
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}]   =>Toolbar.Babylon
[HKLM\Software\Classes\TypeLib\{4d3b167e-5fd8-4276-8fd7-9df19c1e4d19}]   =>PUP.SweetIM
[HKLM\Software\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}]   =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}]   =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}]   =>Adware.AskSBAR
[HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}]   =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}]   =>Toolbar.Ask
[HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}]   =>Adware.AskSBAR
[HKLM\Software\Wow6432Node\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}]   =>Adware.AskSBAR
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}]   =>Toolbar.Babylon
[HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}]   =>Adware.AskSBAR
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}]   =>Adware.AskSBAR
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}]   =>PUP.DealPly
[HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}]   =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}]   =>Toolbar.Ask
[HKLM\Software\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}]   =>Adware.CDNHelper
[HKLM\Software\Wow6432Node\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}]   =>Adware.CDNHelper
[HKLM\Software\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}]   =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}]   =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]   =>Adware.AskSBAR
[HKLM\Software\Classes\Interface\{eee6c358-6118-11dc-9c72-001320c79847}]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Interface\{eee6c358-6118-11dc-9c72-001320c79847}]   =>PUP.SweetIM
[HKLM\Software\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}]   =>Adware.BHO
[HKLM\Software\Wow6432Node\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}]   =>Adware.BHO
[HKLM\Software\Classes\Interface\{eee6c35a-6118-11dc-9c72-001320c79847}]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Interface\{eee6c35a-6118-11dc-9c72-001320c79847}]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]   =>Adware.BHO
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847}]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847}]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}]   =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\GenericAskToolbar.DLL]   =>Adware.AskSBAR
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASMANCS]   =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\sweetim.exe]   =>PUP.SweetIM
[HKLM\Software\Classes\sim-packages]   =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb]   =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\gaiilaahiahdejapggenmdmafpmbipje]   =>PUP.DealPly
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj]   =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED]   =>Toolbar.Ask
[HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF]   =>Adware.AskSBAR
[HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF]   =>Adware.AskSBAR
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF]   =>Adware.AskSBAR
[HKLM\Software\Wow6432Node\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF]   =>Adware.AskSBAR
[HKLM\Software\Wow6432Node\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF]   =>Adware.AskSBAR
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9]   =>Adware.MyWebSearch
[HKCU\Software\APN PIP]   =>Toolbar.Ask
[HKCU\Software\APN]   =>Toolbar.Ask
[HKLM\Software\Wow6432Node\APN]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\ApnUpdater]   =>Toolbar.Ask
[HKCU\Software\Ask.com]   =>Toolbar.AskBar
[HKCU\Software\AppDataLow\Software\AskToolbar]   =>Toolbar.AskTBar
[HKLM\Software\Wow6432Node\AskToolbar]   =>Toolbar.AskTBar
[HKCU\Software\lollipop]   =>Adware.Lollipop
[HKLM\Software\Wow6432Node\PIP]   =>Toolbar.Agent
[HKLM\Software\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B]   =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B]   =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EB6AF8AEEB922FA4392548F13812E50B]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Features\EB6AF8AEEB922FA4392548F13812E50B]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Products\EB6AF8AEEB922FA4392548F13812E50B]   =>PUP.SweetIM
[HKCU\Software\SweetIM]   =>PUP.SweetIM
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\SweetIM]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\SweetIM]   =>PUP.SweetIM
[HKCU\Software\DealPly]   =>PUP.DealPly
[HKLM\Software\Wow6432Node\DealPly]   =>PUP.DealPly
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASAPI32]   =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASMANCS]   =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1E03DB52-D5CB-4338-A338-E526DD4D4DB1}]   =>Toolbar.Bing
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}]   =>Toolbar.AskBar
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DealPly]   =>PUP.DealPly
[HKLM\Software\Classes\Prod.cap]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32]   =>Toolbar.Agent
[HKLM\Software\Classes\Installer\Features\9EE58E3C298524145B73CBBED3CAC4D3]   =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\9EE58E3C298524145B73CBBED3CAC4D3]   =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9EE58E3C298524145B73CBBED3CAC4D3]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Features\9EE58E3C298524145B73CBBED3CAC4D3]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Products\9EE58E3C298524145B73CBBED3CAC4D3]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}]   =>PUP.SweetIM
[HKCU\Software\InstallCore]   =>Adware.InstallCore
[HKLM\Software\Classes\Installer\Features\6207E55EA2FE71A4AA7ABD89AEF31D1B]   =>PUP.DealPly
[HKLM\Software\Classes\Installer\Products\6207E55EA2FE71A4AA7ABD89AEF31D1B]   =>PUP.DealPly
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6207E55EA2FE71A4AA7ABD89AEF31D1B]   =>PUP.DealPly
[HKLM\Software\Wow6432Node\Classes\Installer\Features\6207E55EA2FE71A4AA7ABD89AEF31D1B]   =>PUP.DealPly
[HKLM\Software\Wow6432Node\Classes\Installer\Products\6207E55EA2FE71A4AA7ABD89AEF31D1B]   =>PUP.DealPly
[HKLM\Software\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B]   =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B]   =>PUP.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B2FD9C0A5B9838449838816A28001F4B]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Features\B2FD9C0A5B9838449838816A28001F4B]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Classes\Installer\Products\B2FD9C0A5B9838449838816A28001F4B]   =>PUP.SweetIM
[HKLM\Software\Classes\Installer\Features\25BD30E1BC5D83343A835E62DDD4D41B]   =>Toolbar.Agent
[HKLM\Software\Classes\Installer\Products\25BD30E1BC5D83343A835E62DDD4D41B]   =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\25BD30E1BC5D83343A835E62DDD4D41B]   =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Installer\Features\25BD30E1BC5D83343A835E62DDD4D41B]   =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Installer\Products\25BD30E1BC5D83343A835E62DDD4D41B]   =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar]:{D4027C7F-154A-4066-A1AD-4243D8127440}   =>Adware.AskSBAR
C:\Program Files (x86)\Ask.com   =>Toolbar.AskBar
C:\ProgramData\Babylon   =>Toolbar.Babylon
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DealPly   =>PUP.DealPly
C:\Users\Cécile\AppData\Roaming\Babylon   =>Toolbar.Babylon
C:\Users\Cécile\AppData\LocalLow\AskToolbar   =>Toolbar.AskTBar
~ Scan Additionnel in 00mn 09s



---\\ Product Upgrade Codes (O90)
O90 - PUC: "00004159070000000000000000F01FEC" . (.Microsoft Office 2010.) -- C:\Windows\Installer\{95140000-0070-0000-0000-0000000FF1CE}\oobeicon.exe
O90 - PUC: "02F12AEC4FBDC464B818828B05A8DFDD" . (.Windows Live Family Safety.) -- C:\Windows\Installer\{CEA21F20-DBF4-464C-8B81-28B8508AFDDD}\fssicon.ico
O90 - PUC: "076CFAAAB965F2A4284B2449E5D03EFE" . (.Windows Live Writer.) -- C:\Windows\Installer\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}\ApplicationIcon.ico
O90 - PUC: "0ABB80CA9B69A1347A0D8D95E8947357" . (.RESIDENT EVIL 5.) -- C:\Windows\Installer\{AC08BBA0-96B9-431A-A7D0-D8598E493775}\ARPPRODUCTICON.exe
O90 - PUC: "11F12B5E3396B0E42AC597363E0CD711" . (.Windows Live Messenger.) -- C:\Windows\Installer\{E5B21F11-6933-4E0B-A25C-7963E3C07D11}\MsblIco.Exe
O90 - PUC: "16525446F96163A42AFF5B1E81CE565F" . (.ASUS FaceLogon.) -- C:\Windows\Installer\{64452561-169F-4A36-A2FF-B5E118EC65F5}\_bb32ea6.exe
O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
O90 - PUC: "21F1DBD139DE0C947ACC65BCED841885" . (.ASUS LifeFrame3.) -- C:\Windows\Installer\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}\_853F67D554F05449430E7E.exe
O90 - PUC: "25BD30E1BC5D83343A835E62DDD4D41B" . (.Bing Bar.) -- C:\Windows\Installer\{1E03DB52-D5CB-4338-A338-E526DD4D4DB1}\icon_installer_ico
O90 - PUC: "275E2715571C08F46A5DC54B8562DA16" . (.SceneSwitch.) -- C:\Windows\Installer\{5172E572-C175-4F80-A6D5-5CB45826AD61}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "38E1FB04BE028D11795C00905C206085" . (.Power2Go.) -- C:\Windows\Installer\{40BF1E83-20EB-11D8-97C5-0009C5020658}\ARPPRODUCTICON.exe
O90 - PUC: "3F7A4F31CBAE1624FAB6317177F77055" . (.Fast Boot.) -- C:\Windows\Installer\{13F4A7F3-EABC-4261-AF6B-1317777F0755}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "42C6FBF1DF1C10144AB2C065F4E9E897" . (.PowerStarter.) -- C:\Windows\Installer\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}\ARPPRODUCTICON.exe
O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico
O90 - PUC: "4DB6E0C21B5628E42BCA34FECFF801C0" . (.Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed.) -- C:\Windows\Installer\{2C0E6BD4-65B1-4E82-B2AC-43EFFC8F100C}\IntelBluetoothICO
O90 - PUC: "4DD4C0257CB2B904AB841E4A8F2366D2" . (.Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology.) -- C:\Windows\Installer\{520C4DD4-2BC7-409B-BA48-E1A4F832662D}\IntelBluetoothICO
O90 - PUC: "50FA96906FF400C4496034952983EDD0" . (.ASUS Splendid Video Enhancement Technology.) -- C:\Windows\Installer\{0969AF05-4FF6-4C00-9406-43599238DE0D}\_853F67D554F05449430E7E.exe
O90 - PUC: "5E3E958AF26CAFB4FAD1B2590E1366FA" . (.ASUS USB Charger Plus.) -- C:\Windows\Installer\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}\_853F67D554F05449430E7E.exe
O90 - PUC: "6760F93DE36159549A712EF899BB4D2D" . (.ASUS AI Recovery.) -- C:\Windows\Installer\{D39F0676-163E-4595-A917-E28F99BBD4D2}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "68AB67CA7DA7FFFFB744AA0000000010" . (.Adobe Reader X MUI.) -- C:\Windows\Installer\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}\SC_Reader.ico
O90 - PUC: "76E045AFC590B1A479ABD445D7CEA94F" . (.ASUS Live Update.) -- C:\Windows\Installer\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}\MyIcon
O90 - PUC: "7AB342D44CA91D64095EEE8B98475F10" . (.Microsoft Games for Windows - LIVE .) -- C:\Windows\Installer\{4D243BA7-9AC4-46D1-90E5-EEB88974F501}\GameForWindowsLiveDash.exe
O90 - PUC: "92294B502A2288F448A2BB2CBE1ECC6F" . (.Microsoft Games for Windows - LIVE Redistributable.) -- C:\Windows\Installer\{05B49229-22A2-4F88-842A-BBC2EBE1CCF6}\GameForWindowsLiveRedist.exe
O90 - PUC: "987A09F2E1DDEC14FBACDB8712B3BA7C" . (.OpenOffice.org 3.4.) -- C:\Windows\Installer\{2F90A789-DD1E-41CE-BFCA-BD78213BABC7}\soffice.ico
O90 - PUC: "9EE58E3C298524145B73CBBED3CAC4D3" . (.Internet Explorer Toolbar 4.6 by SweetPacks.) -- C:\Windows\Installer\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}\ARPPRODUCTICON.exe
O90 - PUC: "A28B4D68DEBAA244EB686953B7074FEF" . (.Ask Toolbar.) -- c:\program files (x86)\ask.com\cb_9286.ico
O90 - PUC: "A58BCE98339DAEC41961C5CBC9E29DB5" . (.ASUS Instant Connect.) -- C:\Windows\Installer\{89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}\_853F67D554F05449430E7E.exe
O90 - PUC: "B2FD9C0A5B9838449838816A28001F4B" . (.SweetIM for Messenger 3.7.) -- C:\Windows\Installer\{A0C9DF2B-89B5-4483-8983-18A68200F1B4}\ARPPRODUCTICON.exe
O90 - PUC: "B476F94747628E7478C965620AB6A219" . (.InstantOn for NB.) -- C:\Windows\Installer\{749F674B-2674-47E8-879C-5626A06B2A91}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "BF33AE91E43BAE04B8A81647A3BE97A5" . (.Wireless Console 3.) -- C:\Windows\Installer\{19EA33FB-B34E-40EA-8B8A-61743AEB795A}\_853F67D554F05449430E7E.exe
O90 - PUC: "C971C95CD8669A946BAE1012CCCF2134" . (.LabelPrint.) -- C:\Windows\Installer\{C59C179C-668D-49A9-B6EA-0121CCFC1243}\ARPPRODUCTICON.exe
O90 - PUC: "D5D8BCF7693971D4C8AF43D9D694DC23" . (.Intel(R) WiDi.) -- C:\Windows\Installer\{7FCB8D5D-9396-4D17-8CFA-349D6D49CD32}\ARPPRODUCTICON.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "DD6577FDA6563C54AB174776E328959A" . (.Intel® PROSet/Wireless WiFi Software.) -- C:\Windows\Installer\{DF7756DD-656A-45C3-BA71-74673E8259A9}\ARPPRODUCTICON.exe
O90 - PUC: "DF97238AB4AC602459530979D47E6645" . (.Apple Application Support.) -- C:\Windows\Installer\{A83279FD-CA4B-4206-9535-90974DE76654}\WinInstall.ico
O90 - PUC: "E19212F84440D1B49B9F34077AE343D6" . (.WinFlash.) -- C:\Windows\Installer\{8F21291E-0444-4B1D-B9F9-4370A73E346D}\MyIcon
O90 - PUC: "E339C5BAD7C503D43B41C9384AB949EB" . (.ATK Package.) -- C:\Windows\Installer\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}\_2cd672ae.exe
O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype™ 6.1.) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
O90 - PUC: "F12DB8CE0AC0FBB4799DA4253B00141A" . (.ASUS Virtual Camera.) -- C:\Windows\Installer\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "F9A84C6AA49643243BAA2695B0669872" . (.Intel(R) Manageability Engine Firmware Recovery Agent.) -- C:\Windows\Installer\{A6C48A9F-694A-4234-B3AA-62590B668927}\AppIcon
O90 - PUC: "FB9326B958E40954D827153ED01B9AAA" . (.ASUS Power4Gear Hybrid.) -- C:\Windows\Installer\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}\_6FEFF9B68218417F98F549.exe
~ Scan Files in 00mn 00s



---\\ MyComputer Name Space (O92)
O92 - MNS: ASUS WebStorage Drive - {d6044399-0b9e-4084-a9ac-c4b7c7800fcf}
~ Scan MNS in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Disabled 04/03/2011 379520 |  (AFBAgent) . (.ASUSTeK Computer Inc..) - C:\Windows\system32\FBAgent.exe
SS - | Demand  28320 |  (AIDA64Driver) . (...) - C:\Program Files (x86)\FinalWire\AIDA64 Extreme Edition\kerneld.x64
SS - | Disabled 09/01/2012 659968 |  (AMPPALR3) . (.Intel Corporation.) - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
SS - | Disabled 21/11/2011 80512 |  (ASLDRService) . (.ASUS.) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
SS - | Disabled 13/04/2012 277120 |  (ASUS InstantOn) . (.ASUS.) - C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe
SS - | Disabled 21/11/2011 96896 |  (ATKGFNEXSrv) . (.ASUS.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
SS - | Demand 02/03/2011 183560 |  (BBSvc) . (.Microsoft Corporation..) - C:\Program Files (x86)\Microsoft\BingBar\BBSvc.exe
SS - | Disabled 22/02/2012 1014096 |  (Bluetooth Device Monitor) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
SS - | Disabled 22/02/2012 1304912 |  (Bluetooth Media Service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
SS - | Disabled 22/02/2012 1104208 |  (Bluetooth OBEX Service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
SS - | Disabled 25/01/2010 245760 |  (BrYNSvc) . (.Brother Industries, Ltd..) - C:\Program Files (x86)\Browny02\BrYNSvc.exe
SS - | Disabled 12/01/2012 135952 |  (BTHSSecurityMgr) . (.Intel(R) Corporation.) - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
SS - | Disabled 10/10/2012 277024 |  (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
SS - | Disabled 08/12/2011 618256 |  (EvtEng) . (.Intel(R) Corporation.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
SS - | Auto 24/02/2012 136176 |  (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 24/02/2012 136176 |  (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Disabled 10/12/2012 2465712 |  (Hamachi2Svc) . (.LogMeIn Inc..) - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
SS - | Disabled 03/02/2012 628448 |  (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
SS - | Disabled  128280 |  (Intel(R) ME Service) . (...) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
SS - | Disabled 21/02/2012 161560 |  (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SS - | Disabled 28/02/2012 277784 |  (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SS - | Disabled  273168 |  (MyWiFiDHCPDNS) . (...) - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
SS - | Disabled 16/10/2012 891240 |  (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SS - | Disabled 25/10/2012 1258856 |  (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SS - | Disabled 08/12/2011 148752 |  (RegSrvc) . (.Intel(R) Corporation.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
SR - | Auto 25/02/2011 249648 |  (SeaPort) . (.Microsoft Corporation.) - C:\Program Files (x86)\Microsoft\BingBar\SeaPort.exe
SS - | Auto 08/01/2013 161536 |  (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - | Auto 14/12/2012 3467768 |  (TeamViewer8) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
SS - | Disabled 28/02/2012 363800 |  (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto  0 |  (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SS - | Disabled 08/12/2011 594704 |  (ZeroConfigService) . (.Intel® Corporation.) - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
~ Scan Services in 00mn 02s



---\\ Liste des émulateurs de CD/DVD (Hook du MBR)
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite
~ Scan Emulateurs in 00mn 02s



End of the scan (1460 lines in 01mn 37s)(0)

 

Et je suis arrivé à lancer Hijackthis (il fallait que je l'execute en tant qu'administrateur, et je comprends pas pourquoi il fallait faire ça, alors qu'il y a qu'une seule session, et que par conséquent je suis administrateur) :

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:44:18, on 29/01/2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\ismagent.exe
C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\updateui.exe
C:\Program Files (x86)\Clownfish\Clownfish.exe
C:\Windows\SysWOW64\DllHost.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [url=http://asus.msn.com]MSN Hotmail.fr, Messenger, Skype, Actualité, Sport, People, Femmes - MSN France[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [url=http://go.microsoft.com/fwlink/?LinkId=69157]MSN Hotmail.fr, Messenger, Skype, Actualité, Sport, People, Femmes - MSN France[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [url=http://go.microsoft.com/fwlink/?LinkId=54896]Bing[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [url=http://go.microsoft.com/fwlink/?LinkId=54896]Bing[/url]
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [url=http://home.sweetim.com/?crg=3.1010000.10015]Server Error[/url]
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: DealPly - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Program Files (x86)\DealPly\DealPlyIE.dll (file missing)
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

--
End of file - 20926 bytes

Lien vers le commentaire
Partager sur d’autres sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

 Share

  • En ligne récemment   0 membre est en ligne

    Aucun utilisateur enregistré regarde cette page.

×
×
  • Créer...